$ rpki-client -vvf rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/0A2469F095E011F0B2B5CE77C4F9AE02.roa File: 0A2469F095E011F0B2B5CE77C4F9AE02.roa (raw, json) Hash identifier: 2TUs1YZ2Eqxk5relT6yIF5miILYOJS8mbAVh6fsYe7A= Subject key identifier: FC:71:D2:83:2E:4A:F5:13:BB:55:DC:40:BD:0C:A2:70:FD:08:8F:13 Certificate issuer: /CN=A91951AF/serialNumber=18ECE629EEF3B6A2696EBAB34B3FB02EF8A8B887 Certificate serial: 04 Authority key identifier: 18:EC:E6:29:EE:F3:B6:A2:69:6E:BA:B3:4B:3F:B0:2E:F8:A8:B8:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOzmKe7ztqJpbrqzSz-wLviouIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/0A2469F095E011F0B2B5CE77C4F9AE02.roa Signing time: Sat 20 Sep 2025 05:09:52 +0000 ROA not before: Sat 20 Sep 2025 05:09:52 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9498 IP address blocks: 45.117.84.0/24 maxlen: 24 45.117.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/GOzmKe7ztqJpbrqzSz-wLviouIc.crl rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/GOzmKe7ztqJpbrqzSz-wLviouIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOzmKe7ztqJpbrqzSz-wLviouIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951AF, serialNumber=18ECE629EEF3B6A2696EBAB34B3FB02EF8A8B887 Validity Not Before: Sep 20 05:09:52 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ce3720-44cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:41:e8:5f:7d:e4:9e:04:ae:c8:56:dd:bc:63: d5:91:2f:93:8b:6e:62:f3:3f:fb:2a:1f:84:80:87: 51:f1:e0:a2:4f:d9:47:df:58:80:0d:90:07:a8:69: a0:5d:be:b7:fc:e7:2e:94:c0:f8:1d:52:9a:c4:40: 3e:f9:dd:6d:b8:d6:cf:e8:d2:ad:f4:62:84:a9:03: 7c:be:84:4f:98:49:26:ed:db:66:97:cc:26:b9:a9: 85:45:f7:bd:06:6c:f8:f3:15:23:5b:8f:a2:01:08: 38:f4:e5:e5:fe:92:32:51:79:1c:03:8c:e9:a7:56: 3e:4b:b4:97:6f:3b:ec:61:0a:ff:ff:06:9d:d3:02: bb:59:dc:e2:22:dd:37:47:36:ac:99:a9:d8:6d:52: af:2c:de:6a:69:a4:bb:ea:9d:fd:53:f7:ef:7f:61: 57:2d:4c:5c:c7:f2:03:ce:21:f0:97:6a:f7:82:78: 40:be:dc:5e:fd:77:13:97:0f:a6:8c:06:e3:ce:8b: 08:58:90:fc:7c:6f:f9:14:68:03:d9:64:14:77:24: 35:0f:97:be:e8:71:4a:a4:c1:07:3f:07:77:dc:0d: 40:23:9f:28:c6:ed:7b:46:d2:c9:ab:a6:14:8f:7c: d3:45:8d:ae:df:a7:2e:5e:f2:e8:d0:57:41:ea:79: cd:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:71:D2:83:2E:4A:F5:13:BB:55:DC:40:BD:0C:A2:70:FD:08:8F:13 X509v3 Authority Key Identifier: keyid:18:EC:E6:29:EE:F3:B6:A2:69:6E:BA:B3:4B:3F:B0:2E:F8:A8:B8:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/GOzmKe7ztqJpbrqzSz-wLviouIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOzmKe7ztqJpbrqzSz-wLviouIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/0A2469F095E011F0B2B5CE77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.84.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:d9:47:c2:49:6a:7d:18:f4:55:0e:bd:96:78:d0:c3:3d:59: 92:a7:e7:58:15:d1:5e:d0:f1:17:e2:62:b6:79:a3:26:15:6f: c3:98:b5:22:4c:cc:67:97:48:ca:e9:91:59:d0:a1:51:3d:6e: 44:05:15:ce:f8:c4:b7:28:06:c8:3f:18:0f:25:f6:56:ff:f4: 63:69:70:1f:b6:93:d2:79:f2:3f:c8:f4:de:32:ca:1a:88:44: 81:0d:f4:67:6a:d1:71:30:1c:7c:e6:a1:16:16:0c:e5:3c:f8: 28:e8:0d:28:54:6c:11:08:5c:81:6f:9b:83:ad:71:5b:2c:3d: ea:42:b4:f0:25:cf:4f:9a:6f:6b:5a:8a:eb:85:b7:6b:cf:87: f2:8b:3e:0c:d4:3c:fa:5d:ce:69:f9:c3:57:cf:f8:81:22:47: 5e:81:84:2e:1f:04:e3:57:68:15:f2:55:56:76:9f:ae:f5:b7: 0e:bd:da:02:e3:92:9f:c7:46:32:23:49:f7:8f:8a:fd:06:0c: f7:46:06:e6:ea:9f:9e:91:92:d1:4a:8f:0f:c0:d7:99:28:1e: af:1a:c0:ed:60:ed:19:9a:f1:3a:2c:97:f7:97:e3:9a:d7:97: 57:3e:bb:1f:a1:4f:b5:94:88:4e:6f:81:86:37:10:41:76:4d: ed:7a:53:12 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTFBRjExMC8GA1UEBRMoMThFQ0U2MjlFRUYzQjZBMjY5NkVCQUIzNEIzRkIwMkVG OEE4Qjg4NzAeFw0yNTA5MjAwNTA5NTJaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2UzNzIwLTQ0Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJQehffeSeBK7IVt28Y9WRL5OLbmLzP/sqH4SAh1Hx4KJP2UffWIANkAeoaaBd vrf85y6UwPgdUprEQD753W241s/o0q30YoSpA3y+hE+YSSbt22aXzCa5qYVF970G bPjzFSNbj6IBCDj05eX+kjJReRwDjOmnVj5LtJdvO+xhCv//Bp3TArtZ3OIi3TdH NqyZqdhtUq8s3mpppLvqnf1T9+9/YVctTFzH8gPOIfCXaveCeEC+3F79dxOXD6aM BuPOiwhYkPx8b/kUaAPZZBR3JDUPl77ocUqkwQc/B3fcDUAjnyjG7XtG0smrphSP fNNFja7fpy5e8ujQV0Hqec3JAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/HHSgy5K 9RO7VdxAvQyicP0IjxMwHwYDVR0jBBgwFoAUGOzmKe7ztqJpbrqzSz+wLviouIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MUFGLzZCMjhCM0U0OTVD NDExRjA5NEU4NEUzNkM0RjlBRTAyL0dPem1LZTd6dHFKcGJycXpTei13THZpb3VJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR096bUtlN3p0cUpwYnJxelN6LXdMdmlvdUljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTFBRi82QjI4QjNFNDk1QzQxMUYwOTRFODRFMzZDNEY5QUUwMi8wQTI0NjlGMDk1 RTAxMUYwQjJCNUNFNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAS11VDANBgkqhkiG9w0BAQsFAAOCAQEAXtlHwklqfRj0VQ69 lnjQwz1ZkqfnWBXRXtDxF+JitnmjJhVvw5i1IkzMZ5dIyumRWdChUT1uRAUVzvjE tygGyD8YDyX2Vv/0Y2lwH7aT0nnyP8j03jLKGohEgQ30Z2rRcTAcfOahFhYM5Tz4 KOgNKFRsEQhcgW+bg61xWyw96kK08CXPT5pva1qK64W3a8+H8os+DNQ8+l3OafnD V8/4gSJHXoGELh8E41doFfJVVnafrvW3Dr3aAuOSn8dGMiNJ94+K/QYM90YG5uqf npGS0UqPD8DXmSgerxrA7WDtGZrxOiyX95fjmteXVz67H6FPtZSITm+BhjcQQXZN 7XpTEg== -----END CERTIFICATE-----Generated at Mon Oct 20 11:25:21 2025 by rpki-client