$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/90A6E260F97711EF931B0A48C4F9AE02.roa File: 90A6E260F97711EF931B0A48C4F9AE02.roa (raw, json) Hash identifier: v01c2WR6mvZw3sWMYWmDtotXZb2SUQ2g/5Y8AaRi1t8= Subject key identifier: B2:0A:88:40:8C:F2:43:B3:0A:A2:3D:32:C7:69:88:AC:B9:1C:86:A5 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D85 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/90A6E260F97711EF931B0A48C4F9AE02.roa Signing time: Wed 02 Jul 2025 20:30:10 +0000 ROA not before: Wed 02 Jul 2025 20:30:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 36352 IP address blocks: 14.192.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Jul 2 20:30:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686596d2-7612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8a:2b:8e:04:a2:f4:f8:13:60:d8:ea:40:96: 2a:2e:24:1d:6f:8b:74:2b:b8:d5:74:24:a0:3c:be: 88:9a:27:cb:a2:3d:10:04:52:10:d7:e7:e7:9e:53: ae:c4:87:39:cc:99:80:6b:1a:8e:e2:c9:a5:1a:fd: 86:de:f0:33:59:29:d8:4b:0a:2f:0e:91:21:76:95: 70:83:cd:4e:27:ab:0f:db:c2:bf:b1:ba:57:48:76: 0a:41:82:a1:a1:c0:02:ec:be:89:98:6b:15:ca:64: a7:44:04:a2:13:92:e2:e3:04:f8:78:49:04:a2:db: d2:a5:f1:25:ab:54:86:fd:96:95:68:2c:f9:15:b0: fb:b1:1c:36:e6:38:9a:7d:3e:72:57:08:e4:ec:f6: 84:eb:9d:53:5f:54:6d:81:69:e5:f8:c7:79:92:50: 2c:22:92:de:1d:ed:10:cf:39:62:35:e6:ff:b5:27: a5:dc:4a:c7:d7:b0:0e:e6:79:7e:18:81:76:a8:d7: af:92:1a:b2:09:80:78:a8:9a:b9:9f:f2:d4:4b:b0: 8d:7e:54:3a:b6:c6:4a:b3:8c:c2:45:f1:62:f6:12: 4b:01:7f:50:31:78:a8:7a:06:c5:d8:8a:4b:4b:eb: 73:08:d3:c1:c4:78:cf:26:6e:c7:46:86:eb:75:96: f9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0A:88:40:8C:F2:43:B3:0A:A2:3D:32:C7:69:88:AC:B9:1C:86:A5 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/90A6E260F97711EF931B0A48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.146.0/24 Signature Algorithm: sha256WithRSAEncryption b8:27:e8:70:ed:ea:06:df:fb:75:2b:58:26:e6:cb:43:ef:eb: f8:e0:21:2b:02:6d:ac:32:ec:c4:04:fe:04:6a:78:a9:ad:77: f8:55:38:8c:eb:a7:1e:e0:af:bd:21:bb:02:a1:f7:59:63:32: c3:3e:1c:70:00:7a:d9:e9:99:b5:60:a0:d5:9c:5b:2e:27:b8: d4:dd:5a:65:d1:d5:57:8c:43:90:f5:c0:43:92:72:c8:73:19: c1:37:c6:f6:e2:0e:a1:c1:3a:18:db:c8:cf:91:7f:f6:25:1d: 25:cb:2d:a0:24:ed:1d:6f:f1:98:b4:13:df:d1:f6:e3:da:5b: a7:8a:0c:76:75:20:d8:de:5a:bb:fd:c4:02:97:8e:c8:5c:3e: 43:85:24:4a:32:50:70:d4:54:e4:76:de:bb:1a:b7:8f:f0:e3: b7:5c:94:64:fc:11:04:24:0c:2e:37:ad:25:0e:04:86:73:05: 85:4b:a3:4d:25:e7:b5:4a:2a:6f:82:1d:80:68:2a:0d:92:f1: 1c:a0:55:47:f1:a8:b1:93:e4:a3:7b:ee:09:0b:59:75:96:ed: fa:fc:1a:5f:63:42:b3:ff:dc:28:54:c5:05:4a:a7:40:bb:20: e7:11:71:aa:91:8c:28:24:f2:1c:86:51:35:0c:ee:d7:ce:c7: 08:0d:64:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNzAyMjAzMDEwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1OTZkMi03NjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4orjgSi9PgTYNjqQJYqLiQdb4t0K7jVdCSgPL6ImifLoj0QBFIQ1+fnnlOu xIc5zJmAaxqO4smlGv2G3vAzWSnYSwovDpEhdpVwg81OJ6sP28K/sbpXSHYKQYKh ocAC7L6JmGsVymSnRASiE5Li4wT4eEkEotvSpfElq1SG/ZaVaCz5FbD7sRw25jia fT5yVwjk7PaE651TX1RtgWnl+Md5klAsIpLeHe0QzzliNeb/tSel3ErH17AO5nl+ GIF2qNevkhqyCYB4qJq5n/LUS7CNflQ6tsZKs4zCRfFi9hJLAX9QMXioegbF2IpL S+tzCNPBxHjPJm7HRobrdZb5vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLIKiECM 8kOzCqI9MsdpiKy5HIalMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvOTBBNkUyNjBG OTc3MTFFRjkzMUIwQTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAOwJIwDQYJKoZIhvcNAQELBQADggEBALgn6HDt6gbf+3Ur WCbmy0Pv6/jgISsCbawy7MQE/gRqeKmtd/hVOIzrpx7gr70huwKh91ljMsM+HHAA etnpmbVgoNWcWy4nuNTdWmXR1VeMQ5D1wEOScshzGcE3xvbiDqHBOhjbyM+Rf/Yl HSXLLaAk7R1v8Zi0E9/R9uPaW6eKDHZ1INjeWrv9xAKXjshcPkOFJEoyUHDUVOR2 3rsat4/w47dclGT8EQQkDC43rSUOBIZzBYVLo00l57VKKm+CHYBoKg2S8RygVUfx qLGT5KN77gkLWXWW7fr8Gl9jQrP/3ChUxQVKp0C7IOcRcaqRjCgk8hyGUTUM7tfO xwgNZMI= -----END CERTIFICATE-----Generated at Thu Jul 3 15:06:23 2025 by rpki-client