$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa File: 945DB376E34711EE87868164C4F9AE02.roa (raw, json) Hash identifier: jKYWlk4C7kYul3yO/WtiSzFFPrzY/sFxwRTKtBHcm64= Subject key identifier: 2D:CB:80:9A:B1:FD:7D:38:B9:65:62:F0:D6:AD:CF:A2:B8:43:77:03 Certificate issuer: /CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Certificate serial: 1DBA Authority key identifier: 09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa Signing time: Thu 04 Sep 2025 16:24:57 +0000 ROA not before: Thu 04 Sep 2025 16:24:56 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45204 IP address blocks: 180.149.64.0/18 maxlen: 21 180.149.90.0/24 maxlen: 24 180.149.91.0/24 maxlen: 24 180.149.93.0/24 maxlen: 24 180.149.94.0/24 maxlen: 24 180.149.95.0/24 maxlen: 24 180.149.96.0/24 maxlen: 24 180.149.97.0/24 maxlen: 24 180.149.98.0/24 maxlen: 24 180.149.99.0/24 maxlen: 24 180.149.100.0/22 maxlen: 24 180.149.112.0/24 maxlen: 24 180.149.117.0/24 maxlen: 24 180.149.118.0/24 maxlen: 24 2401:d600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7610 (0x1dba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Validity Not Before: Sep 4 16:24:56 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b9bd58-9c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:bd:a7:b8:b9:44:99:78:e8:5e:28:97:33: 1c:d0:2f:0d:18:44:ce:c4:31:56:bc:da:8c:d5:3e: 2d:a0:2c:e2:cc:96:dc:ff:3e:8d:14:40:db:0c:e9: f4:49:0d:eb:33:33:c7:30:d1:10:82:99:64:c8:78: db:93:b6:5f:48:b4:f8:0c:ac:56:f1:c3:0a:5e:42: 9d:34:83:e5:08:d9:05:86:2b:4a:7b:0f:6f:cf:53: 5f:b1:d6:df:56:95:ae:62:3f:42:f2:34:9f:87:21: c0:2b:c7:6a:f2:33:9c:33:8a:d5:86:ac:e5:f0:78: a5:33:1f:15:cf:0d:51:55:db:26:c9:7c:93:f8:06: 21:c5:68:d8:af:ac:b0:66:0b:6d:c1:ae:be:7c:77: 25:0b:2f:6c:97:0e:ff:3c:c9:0d:47:f2:3d:87:84: 5a:49:e1:0c:c4:95:5c:8e:e4:7d:a9:10:54:0e:b5: 48:9b:62:5f:70:09:b2:b4:53:be:05:67:c7:0c:72: ba:a9:cd:14:b6:fa:66:51:e6:97:49:e0:b2:4d:6e: 9e:ce:37:2c:9e:4b:9b:47:ba:bd:21:b3:f0:db:e8: b3:91:2f:9b:18:de:69:43:35:6c:99:61:ea:9a:79: 1f:46:de:fb:56:46:36:4e:54:54:1e:d6:1f:58:55: 26:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CB:80:9A:B1:FD:7D:38:B9:65:62:F0:D6:AD:CF:A2:B8:43:77:03 X509v3 Authority Key Identifier: keyid:09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.149.64.0/18 IPv6: 2401:d600::/32 Signature Algorithm: sha256WithRSAEncryption 62:b9:d0:6b:af:18:1e:bf:ae:de:2f:f7:51:59:23:8c:ae:bc: fe:f7:8f:2d:0b:5f:f5:f6:a1:5a:e5:82:5b:79:a7:eb:4c:de: 32:0d:cf:6a:69:72:60:a5:18:94:33:92:ec:b0:2f:21:a7:2e: 9c:e4:8b:cd:12:98:35:a5:a1:36:70:3b:9a:17:43:92:f7:5a: c0:1d:c0:ff:73:bd:6f:5d:78:f1:da:2a:cd:4e:bc:c9:f2:82: f3:ea:97:40:f2:d4:20:a7:b2:45:4e:2e:5b:63:81:7e:3d:0c: 2b:cc:7b:09:50:f2:90:8c:96:cc:29:e4:62:a9:d2:b0:7d:a9: 69:5b:e2:d5:8e:5a:bb:6f:e3:bc:4d:cb:e9:7d:49:44:55:34: e7:cb:ef:bd:c5:a6:7a:90:f8:81:26:b8:f2:9c:07:9a:29:b9: 99:dd:b7:d9:31:35:91:b6:49:e9:c4:fc:38:fe:34:d2:4f:a0: 7e:59:30:00:ce:13:41:18:5e:a4:46:28:79:27:dd:79:92:25: 1f:2f:93:08:9c:8d:a2:4e:38:9d:76:2f:1c:32:53:17:14:7c: 45:ff:ab:1b:9e:3b:47:eb:40:66:d5:c4:6f:4b:55:3a:1d:dc: 64:a0:21:ab:e0:0b:16:13:26:9a:8c:ad:0b:2e:bf:f0:72:2f: 09:5b:26:99 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDA5OTcxNEE3MEU2RjQwMTI4OTEwODIwOUQ2QTdGNDg1 OUY5ODAwQ0MwHhcNMjUwOTA0MTYyNDU2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5YmQ1OC05YzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0K9p7i5RJl46F4olzMc0C8NGETOxDFWvNqM1T4toCzizJbc/z6NFEDbDOn0 SQ3rMzPHMNEQgplkyHjbk7ZfSLT4DKxW8cMKXkKdNIPlCNkFhitKew9vz1Nfsdbf VpWuYj9C8jSfhyHAK8dq8jOcM4rVhqzl8HilMx8Vzw1RVdsmyXyT+AYhxWjYr6yw Zgttwa6+fHclCy9slw7/PMkNR/I9h4RaSeEMxJVcjuR9qRBUDrVIm2JfcAmytFO+ BWfHDHK6qc0UtvpmUeaXSeCyTW6ezjcsnkubR7q9IbPw2+izkS+bGN5pQzVsmWHq mnkfRt77VkY2TlRUHtYfWFUmcQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC3LgJqx /X04uWVi8Natz6K4Q3cDMB8GA1UdIwQYMBaAFAmXFKcOb0ASiRCCCdan9IWfmADM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC9DNjgwOTE5NkFD OTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFCS0pFSUlKMXFmMGhaLVlB TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaY1VwdzV2UUJLSkVJSUoxcWYwaFotWUFNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUwOTgvQzY4MDkxOTZBQzk3MTFFNkE0OTFEQzE3QzRGOUFFMDIvOTQ1REIzNzZF MzQ3MTFFRTg3ODY4MTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAa0lUAwDQQCAAIwBwMFACQB1gAwDQYJKoZIhvcNAQELBQAD ggEBAGK50GuvGB6/rt4v91FZI4yuvP73jy0LX/X2oVrlglt5p+tM3jINz2ppcmCl GJQzkuywLyGnLpzki80SmDWloTZwO5oXQ5L3WsAdwP9zvW9dePHaKs1OvMnygvPq l0Dy1CCnskVOLltjgX49DCvMewlQ8pCMlswp5GKp0rB9qWlb4tWOWrtv47xNy+l9 SURVNOfL773FpnqQ+IEmuPKcB5opuZndt9kxNZG2SenE/Dj+NNJPoH5ZMADOE0EY XqRGKHkn3XmSJR8vkwicjaJOOJ12LxwyUxcUfEX/qxueO0frQGbVxG9LVTod3GSg IavgCxYTJpqMrQsuv/ByLwlbJpk= -----END CERTIFICATE-----Generated at Mon Oct 20 11:28:06 2025 by rpki-client