$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa File: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (raw, json) Hash identifier: r+OS0Knt0u9zlSwMXXIIOrgidq7fkxM7aM/OittLXrQ= Subject key identifier: A7:15:21:81:32:D2:FB:7B:84:F9:B2:86:E3:BC:0D:19:D2:0C:E6:44 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 02DB Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa Signing time: Sun 05 Oct 2025 01:56:47 +0000 ROA not before: Sun 05 Oct 2025 01:56:47 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4826 IP address blocks: 146.144.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Oct 5 01:56:47 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1d05e-d26b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:09:74:33:08:d6:06:f2:53:81:aa:72:8c: d9:3d:69:c4:8e:cb:33:8f:7d:bd:2b:f1:66:32:0a: 56:30:f4:8e:8e:0f:95:ed:23:b4:ad:be:a0:88:9e: 8a:e1:ea:d3:85:6a:88:31:8c:58:b9:72:e8:0d:20: cd:70:fb:96:7d:4c:69:85:15:80:d7:38:45:58:c1: 75:1a:f5:ce:3e:32:6c:4c:dd:a2:74:9d:44:5f:54: 1d:70:8c:c9:2d:ac:42:d0:e8:4a:1d:e3:82:81:c6: 5a:d4:13:c5:85:d7:c7:3e:4e:10:d9:4e:ed:23:80: eb:7e:16:72:0c:0e:4a:08:89:de:a2:d6:2b:74:76: a7:59:cb:6e:3e:8b:65:6e:05:53:67:58:85:9c:e1: fc:3d:3b:fd:52:8d:51:70:07:90:60:e9:05:fd:35: bb:43:fc:09:71:8d:aa:73:55:03:1a:b5:f8:20:1a: 6c:92:b1:6b:d2:7d:9d:66:c5:de:35:9b:19:76:78: a2:de:5d:cd:36:0a:74:e5:c2:60:d0:ab:89:49:81: ee:fb:54:ed:59:08:d1:fc:28:26:20:68:68:00:ea: a5:b6:4c:09:e9:1d:8d:25:e4:f2:02:c1:33:e9:09: d7:e5:12:cc:03:b6:2d:e7:31:a2:be:1f:b1:1a:78: 4b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:15:21:81:32:D2:FB:7B:84:F9:B2:86:E3:BC:0D:19:D2:0C:E6:44 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.144.8.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:f0:4e:72:a2:6b:d4:bb:62:ca:58:6c:e4:2e:d2:01:e9:ef: d8:ec:b4:eb:37:36:0a:9b:71:8b:2e:ba:8e:18:7e:8d:4c:c7: 14:cf:a6:6d:73:01:f5:d8:3f:26:4b:eb:97:e9:0b:40:87:33: 98:ee:07:4a:72:8a:7d:cc:e1:ae:67:a3:be:f9:8e:53:53:23: d8:0a:09:3d:5b:3b:17:4e:27:aa:cc:cd:32:cd:9d:2f:3c:17: 19:ee:e8:ba:81:ce:ab:00:8a:f1:db:5d:31:d1:5f:1c:63:8e: 02:2c:10:57:66:5c:ae:b3:c9:fa:ba:f2:47:e6:18:40:a1:19: 71:98:cf:c4:37:b5:32:96:75:80:c5:b8:9d:25:12:36:5f:16: 3b:99:12:1d:46:b3:4b:46:2c:65:30:3a:44:de:12:83:7b:02: 78:d0:44:9d:cf:fb:a1:de:53:3f:30:03:d7:09:7e:f7:5c:98: d0:76:06:d9:94:68:1e:d2:df:ba:c2:bf:eb:7d:4c:dc:c1:18: 2f:4c:91:14:b7:d3:fa:ec:96:50:2c:d2:05:02:d2:89:88:e1: fb:85:e4:21:ed:30:be:aa:ce:b2:bd:0e:e5:16:b3:62:67:6d: 70:9d:65:42:f2:ce:f7:b9:ba:08:41:3d:ce:48:8d:f7:8d:90: 2b:07:db:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUxMDA1MDE1NjQ3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxZDA1ZS1kMjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWgJdDMI1gbyU4GqcozZPWnEjsszj329K/FmMgpWMPSOjg+V7SO0rb6giJ6K 4erThWqIMYxYuXLoDSDNcPuWfUxphRWA1zhFWMF1GvXOPjJsTN2idJ1EX1QdcIzJ LaxC0OhKHeOCgcZa1BPFhdfHPk4Q2U7tI4DrfhZyDA5KCIneotYrdHanWctuPotl bgVTZ1iFnOH8PTv9Uo1RcAeQYOkF/TW7Q/wJcY2qc1UDGrX4IBpskrFr0n2dZsXe NZsZdnii3l3NNgp05cJg0KuJSYHu+1TtWQjR/CgmIGhoAOqltkwJ6R2NJeTyAsEz 6QnX5RLMA7Yt5zGivh+xGnhLkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKcVIYEy 0vt7hPmyhuO8DRnSDOZEMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM0QjgvOUYwM0JCNjAwOTQ0MTFFRDhERDEwOTcxQzRGOUFFMDIvQjBGQTMzRkU2 Rjk2MTFFRDhBNjcyRjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACSkAgwDQYJKoZIhvcNAQELBQADggEBADzwTnKia9S7YspY bOQu0gHp79jstOs3NgqbcYsuuo4Yfo1MxxTPpm1zAfXYPyZL65fpC0CHM5juB0py in3M4a5no775jlNTI9gKCT1bOxdOJ6rMzTLNnS88Fxnu6LqBzqsAivHbXTHRXxxj jgIsEFdmXK6zyfq68kfmGEChGXGYz8Q3tTKWdYDFuJ0lEjZfFjuZEh1Gs0tGLGUw OkTeEoN7AnjQRJ3P+6HeUz8wA9cJfvdcmNB2BtmUaB7S37rCv+t9TNzBGC9MkRS3 0/rsllAs0gUC0omI4fuF5CHtML6qzrK9DuUWs2JnbXCdZULyzve5ughBPc5IjfeN kCsH2y4= -----END CERTIFICATE-----Generated at Mon Oct 20 18:50:59 2025 by rpki-client