$ rpki-client -vvf rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/7CBE8274103011F08606D714C4F9AE02.roa File: 7CBE8274103011F08606D714C4F9AE02.roa (raw, json) Hash identifier: nYxqj73b+UbpA3yZRqe9v89tHuWD0HE4rShKwmuxddM= Subject key identifier: 2B:19:85:1A:62:8D:50:FA:D3:36:68:3F:91:09:18:21:C5:3B:92:52 Certificate issuer: /CN=A9189396/serialNumber=EF85AEFC7B0814DF3F410DA01CA34BE4D66BB1A3 Certificate serial: 4B Authority key identifier: EF:85:AE:FC:7B:08:14:DF:3F:41:0D:A0:1C:A3:4B:E4:D6:6B:B1:A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/7CBE8274103011F08606D714C4F9AE02.roa Signing time: Thu 21 Aug 2025 07:45:03 +0000 ROA not before: Thu 21 Aug 2025 07:45:03 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24436 IP address blocks: 152.98.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.crl rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189396, serialNumber=EF85AEFC7B0814DF3F410DA01CA34BE4D66BB1A3 Validity Not Before: Aug 21 07:45:03 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a6ce7f-19e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:15:a2:47:cf:7b:a4:71:de:77:14:03:67:8b: f5:0f:6a:a5:f6:46:39:e1:95:a9:51:46:3b:db:2a: 71:66:ce:00:4b:66:e4:c7:bc:0b:a5:af:dc:47:7e: 2e:87:7f:8a:da:42:1c:e8:27:51:7e:d7:d1:68:fa: ec:f1:27:cf:50:5d:f2:ac:c7:3d:f9:c0:8e:91:08: a9:6b:cc:79:62:81:54:74:fa:1f:cc:4a:37:5f:45: c4:c0:94:44:3c:ab:a2:37:4a:43:e2:0e:2d:f6:6b: 08:aa:ce:d9:c0:e3:a3:a8:b4:cd:b8:90:0d:91:34: b6:db:b1:7f:50:13:ce:be:55:24:cd:17:e6:2e:40: 7b:ea:ff:06:44:9f:ec:1f:87:a1:9c:04:f6:79:3c: d9:93:de:b0:26:e6:cb:5e:17:8b:3b:b7:7e:3b:31: 43:1e:f2:9f:68:cf:9c:5a:d2:3e:cf:f4:d0:a9:09: 63:47:69:da:cc:9e:3c:ac:e1:1c:f3:44:bc:cf:ac: 54:e8:ac:4d:1f:e6:c5:d4:37:46:7e:aa:33:dc:ad: 4e:9f:df:ba:61:dc:8b:f7:78:54:2c:81:76:2d:fb: b0:79:8e:43:26:42:64:a0:f6:ca:a6:4f:af:9b:f4: 26:4d:67:c0:99:c7:60:e6:8d:c1:2a:ee:0c:02:df: 11:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:19:85:1A:62:8D:50:FA:D3:36:68:3F:91:09:18:21:C5:3B:92:52 X509v3 Authority Key Identifier: keyid:EF:85:AE:FC:7B:08:14:DF:3F:41:0D:A0:1C:A3:4B:E4:D6:6B:B1:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/7CBE8274103011F08606D714C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.98.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2a:57:ed:35:2f:56:4a:d4:03:c0:7a:22:15:ad:1d:cd:d8:bb: 68:78:1e:3c:8d:5f:97:5a:3e:ca:ce:a7:9a:5d:b7:d5:8d:de: c8:b8:b7:da:e5:ce:db:26:88:ab:e6:7b:b2:49:01:0b:c6:f5: a4:5b:8e:14:52:42:d3:ce:c5:1e:09:21:69:6b:8b:5e:51:9f: 59:2c:10:c7:27:bd:06:44:b0:e0:d9:07:c9:c4:34:d0:ff:8a: c2:38:7a:0b:5c:13:81:77:17:94:22:b9:35:1e:e5:68:38:5a: ad:88:69:f1:f9:ef:ae:33:d7:87:fa:06:bb:4f:c6:4d:3c:49: 57:c5:73:f6:b1:01:31:6b:f9:fc:42:ff:4d:be:37:44:41:c9: 34:3a:5c:48:fe:d4:e0:f6:2e:83:ab:02:1e:35:e7:45:cd:dd: be:60:94:ab:98:08:38:ec:4a:fa:1d:5e:42:94:7b:03:50:49: d7:b1:ce:8b:ce:d6:f9:ea:49:2c:40:f9:6d:20:fe:0d:dc:24: f2:8c:74:54:ca:43:37:7c:73:3b:66:6d:1e:db:fd:eb:d9:17: 9d:f3:68:82:92:0a:60:72:4b:dd:21:f2:7d:5a:3b:e4:0d:fe: 7e:51:35:85:40:15:b2:3d:eb:a4:6c:95:84:cc:f0:d3:03:a6: 4b:9d:7f:03 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OTM5NjExMC8GA1UEBRMoRUY4NUFFRkM3QjA4MTRERjNGNDEwREEwMUNBMzRCRTRE NjZCQjFBMzAeFw0yNTA4MjEwNzQ1MDNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTZjZTdmLTE5ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5FaJHz3ukcd53FANni/UPaqX2RjnhlalRRjvbKnFmzgBLZuTHvAulr9xHfi6H f4raQhzoJ1F+19Fo+uzxJ89QXfKsxz35wI6RCKlrzHligVR0+h/MSjdfRcTAlEQ8 q6I3SkPiDi32awiqztnA46OotM24kA2RNLbbsX9QE86+VSTNF+YuQHvq/wZEn+wf h6GcBPZ5PNmT3rAm5steF4s7t347MUMe8p9oz5xa0j7P9NCpCWNHadrMnjys4Rzz RLzPrFTorE0f5sXUN0Z+qjPcrU6f37ph3Iv3eFQsgXYt+7B5jkMmQmSg9sqmT6+b 9CZNZ8CZx2DmjcEq7gwC3xGpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKxmFGmKN UPrTNmg/kQkYIcU7klIwHwYDVR0jBBgwFoAU74Wu/HsIFN8/QQ2gHKNL5NZrsaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5Mzk2LzNCOEQ3NDg4MTAy OTExRjA5MDIyMjYzREM0RjlBRTAyLzc0V3VfSHNJRk44X1FRMmdIS05MNU5acnNh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNzRXdV9Ic0lGTjhfUVEyZ0hLTkw1Tlpyc2FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTM5Ni8zQjhENzQ4ODEwMjkxMUYwOTAyMjI2M0RDNEY5QUUwMi83Q0JFODI3NDEw MzAxMUYwODYwNkQ3MTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBphiwDANBgkqhkiG9w0BAQsFAAOCAQEAKlftNS9WStQDwHoi Fa0dzdi7aHgePI1fl1o+ys6nml231Y3eyLi32uXO2yaIq+Z7skkBC8b1pFuOFFJC 087FHgkhaWuLXlGfWSwQxye9BkSw4NkHycQ00P+Kwjh6C1wTgXcXlCK5NR7laDha rYhp8fnvrjPXh/oGu0/GTTxJV8Vz9rEBMWv5/EL/Tb43REHJNDpcSP7U4PYug6sC HjXnRc3dvmCUq5gIOOxK+h1eQpR7A1BJ17HOi87W+epJLED5bSD+Ddwk8ox0VMpD N3xzO2ZtHtv969kXnfNogpIKYHJL3SHyfVo75A3+flE1hUAVsj3rpGyVhMzw0wOm S51/Aw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:43:41 2025 by rpki-client