$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa File: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (raw, json) Hash identifier: /uldeOBBVv+zaXl5jNRHeGbB+ckh7FIYfUU0p3GU20E= Subject key identifier: 00:BE:EE:89:8F:CF:0D:5A:5F:7F:AC:56:C8:74:40:2E:65:48:7E:66 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 088A Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa Signing time: Sat 23 Aug 2025 01:38:10 +0000 ROA not before: Sat 23 Aug 2025 01:38:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154114 IP address blocks: 45.125.50.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Aug 23 01:38:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a91b81-7498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:20:37:fd:9a:33:7d:b1:3b:d0:71:f6:40: c6:70:18:99:a6:48:10:5a:f6:f3:60:23:97:f1:8f: f6:02:46:0c:3e:e6:6b:3c:75:47:26:df:5b:65:09: 3a:24:dd:6e:92:d2:7b:6a:b8:2b:7a:4f:e4:9d:c7: cc:fb:11:45:8a:2e:9f:cf:d2:07:b5:40:a0:50:ce: 70:1f:d1:bf:73:3c:e7:71:0e:92:86:db:15:61:25: 66:82:f1:01:c3:ed:37:e3:c3:35:be:9c:1f:d7:69: e4:fe:48:f2:b7:c6:1e:49:cd:6b:dd:2c:ea:9f:2e: b9:75:67:b4:53:d9:4d:d1:de:60:a4:d4:b9:52:74: 2f:49:b7:09:58:89:5f:f1:00:e9:8e:bf:eb:c6:83: 1e:8c:19:6c:05:f3:64:bb:5e:27:76:0e:3a:0c:fe: 17:ee:22:78:81:28:f0:85:2a:22:2e:7b:84:67:55: 5b:9f:3e:f1:7d:e0:3b:b3:04:5d:33:da:ba:a6:87: 0b:17:65:45:af:88:1d:a6:dd:f3:c2:d9:4f:c1:96: a5:2f:a1:20:c9:b5:28:9f:4a:e5:b3:30:1f:97:fd: 36:af:cc:30:a5:89:00:b0:ca:4b:d2:3c:3b:fa:e4: 4e:39:b8:8a:d0:8d:ed:9a:0d:b2:7f:d9:19:5f:49: 49:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BE:EE:89:8F:CF:0D:5A:5F:7F:AC:56:C8:74:40:2E:65:48:7E:66 X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.50.0/23 Signature Algorithm: sha256WithRSAEncryption 12:40:fc:96:19:4e:37:b4:5c:88:fa:e8:b1:88:e1:fd:18:9e: 56:12:0d:a6:3c:bb:4b:d0:d2:30:1f:18:36:61:bc:2d:14:73: d5:f8:9d:49:f5:f5:0c:d7:30:78:c9:28:40:3a:4f:3f:bf:92: fe:14:78:72:2c:2d:b7:96:d8:ba:24:78:07:0d:40:ac:0d:39: 26:2c:4c:cc:c9:a5:d9:3c:0b:d9:40:37:24:83:bb:e2:03:08: e9:88:5f:4c:89:c9:81:a1:0a:85:86:0a:09:90:6e:67:ba:4e: 4d:84:9c:c5:87:80:16:c2:e2:54:03:4e:84:11:90:9f:ac:a7: a5:50:ec:58:66:5e:ea:7d:38:0c:5e:bf:16:5e:5e:a6:c5:06: 4f:31:7c:9b:1c:48:95:c5:f2:0f:ed:c2:11:73:bf:9a:6c:a7: 4e:4b:61:2f:8f:78:8d:dc:8d:75:4c:9d:53:ec:72:32:a4:fb: 0d:74:d3:61:66:bf:ec:59:d4:f5:cd:16:60:ea:61:93:b0:95: f7:bc:15:02:ff:c9:18:bf:9c:7b:69:1c:1e:e4:07:cf:63:b4: 51:f7:a4:f9:1c:9d:8a:a8:cc:f6:7a:f1:8a:38:6a:2f:5c:76: ad:cb:05:48:63:52:7a:57:3d:74:53:6d:96:70:50:40:de:15: e6:f9:a0:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUwODIzMDEzODEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5MWI4MS03NDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3wgN/2aM32xO9Bx9kDGcBiZpkgQWvbzYCOX8Y/2AkYMPuZrPHVHJt9bZQk6 JN1uktJ7argrek/kncfM+xFFii6fz9IHtUCgUM5wH9G/czzncQ6ShtsVYSVmgvEB w+0348M1vpwf12nk/kjyt8YeSc1r3Szqny65dWe0U9lN0d5gpNS5UnQvSbcJWIlf 8QDpjr/rxoMejBlsBfNku14ndg46DP4X7iJ4gSjwhSoiLnuEZ1Vbnz7xfeA7swRd M9q6pocLF2VFr4gdpt3zwtlPwZalL6EgybUon0rlszAfl/02r8wwpYkAsMpL0jw7 +uROObiK0I3tmg2yf9kZX0lJswIDAQABo4IClTCCApEwHQYDVR0OBBYEFAC+7omP zw1aX3+sVsh0QC5lSH5mMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ4MzQvNTFCRURGQzRDQzhEMTFFQUFGRkVEQjM2QzRGOUFFMDIvRDMyREIzQUU3 RkMxMTFGMEIzQkVDMDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEtfTIwDQYJKoZIhvcNAQELBQADggEBABJA/JYZTje0XIj6 6LGI4f0YnlYSDaY8u0vQ0jAfGDZhvC0Uc9X4nUn19QzXMHjJKEA6Tz+/kv4UeHIs LbeW2LokeAcNQKwNOSYsTMzJpdk8C9lANySDu+IDCOmIX0yJyYGhCoWGCgmQbme6 Tk2EnMWHgBbC4lQDToQRkJ+sp6VQ7FhmXup9OAxevxZeXqbFBk8xfJscSJXF8g/t whFzv5psp05LYS+PeI3cjXVMnVPscjKk+w1002Fmv+xZ1PXNFmDqYZOwlfe8FQL/ yRi/nHtpHB7kB89jtFH3pPkcnYqozPZ68Yo4ai9cdq3LBUhjUnpXPXRTbZZwUEDe Feb5oGs= -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:34 2025 by rpki-client