$ rpki-client -vvf rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6492D4985B9011EF8DB48C24C4F9AE02.roa File: 6492D4985B9011EF8DB48C24C4F9AE02.roa (raw, json) Hash identifier: 9ep1wiqjzYZ+lm7hkjm5oqCcldFBIxrPyckVfPB6GMo= Subject key identifier: 4B:F0:67:0B:3A:86:6E:17:4C:39:4F:66:FF:53:3D:7B:D2:E3:14:7F Certificate issuer: /CN=A911C362/serialNumber=EA83AF4A21CBC2071F56956E5DDD584C7638FA5B Certificate serial: FD Authority key identifier: EA:83:AF:4A:21:CB:C2:07:1F:56:95:6E:5D:DD:58:4C:76:38:FA:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6492D4985B9011EF8DB48C24C4F9AE02.roa Signing time: Sun 15 Jun 2025 10:10:27 +0000 ROA not before: Sun 15 Jun 2025 10:10:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 146943 IP address blocks: 43.230.203.0/24 maxlen: 24 45.64.107.0/24 maxlen: 24 45.113.224.0/24 maxlen: 24 45.113.226.0/24 maxlen: 24 45.113.227.0/24 maxlen: 24 45.120.137.0/24 maxlen: 24 45.120.138.0/24 maxlen: 24 157.119.41.0/24 maxlen: 24 157.119.42.0/24 maxlen: 24 157.119.43.0/24 maxlen: 24 2405:7140:2::/48 maxlen: 48 2405:7140:4::/48 maxlen: 48 2405:7140:5::/48 maxlen: 48 2405:7140:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.crl rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 04:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C362, serialNumber=EA83AF4A21CBC2071F56956E5DDD584C7638FA5B Validity Not Before: Jun 15 10:10:27 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=684e9c12-b820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:14:c3:ca:8e:1a:7c:50:26:57:d8:22:d6:b9: ac:17:1b:ae:5c:70:88:3b:66:ca:0d:65:fd:73:25: 39:47:97:fa:bc:43:54:05:03:55:de:86:d3:97:3c: 97:37:25:27:6b:97:dd:ab:ba:8c:09:64:f8:e9:b6: 6a:e5:75:c5:1d:14:26:f6:8e:26:e2:63:66:64:54: 7d:65:e0:d5:47:28:d8:94:6b:0d:d6:42:d3:55:db: 14:0b:41:58:7d:6d:da:48:5d:c2:3d:89:82:7c:33: bb:10:5c:e8:f5:6f:21:49:0c:9d:7d:9b:c7:f7:d8: c8:d9:c9:fb:62:2a:35:c5:f4:e1:14:fe:07:26:13: a8:95:9d:9d:d0:cf:32:95:fa:13:95:ba:8c:2f:7d: f3:e9:0e:1c:05:0f:57:11:5a:bb:1f:f0:c7:3d:7a: 72:f6:27:c2:05:7d:ec:b1:9f:4e:b6:96:97:a8:ef: 1a:4b:e6:86:e0:7c:81:25:7d:ea:8c:29:c1:d0:66: 78:2c:be:d2:62:e1:76:8c:f9:32:bb:49:c2:20:df: 1c:28:a6:8e:67:7f:1d:c6:73:4e:a3:96:9c:a5:ba: 04:db:b7:a6:7d:72:e4:07:11:77:54:3e:49:5a:bb: c9:8a:55:95:55:1b:14:0b:1c:3a:6b:2d:99:53:47: 56:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F0:67:0B:3A:86:6E:17:4C:39:4F:66:FF:53:3D:7B:D2:E3:14:7F X509v3 Authority Key Identifier: keyid:EA:83:AF:4A:21:CB:C2:07:1F:56:95:6E:5D:DD:58:4C:76:38:FA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6492D4985B9011EF8DB48C24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.203.0/24 45.64.107.0/24 45.113.224.0/24 45.113.226.0/23 45.120.137.0-45.120.138.255 157.119.41.0-157.119.43.255 IPv6: 2405:7140:2::/48 2405:7140:4::-2405:7140:6:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 80:11:cf:1e:e9:a3:24:5c:8b:a4:3d:68:e7:eb:bc:56:3c:e8: 55:92:a5:1b:52:5d:5f:78:88:d1:e9:ef:8e:36:32:05:98:c4: f2:13:6d:1e:be:47:8c:7a:3f:41:4a:d5:ce:12:f4:60:ec:40: e4:35:2a:e8:ba:e2:aa:1c:8c:45:d2:ad:8d:05:d8:91:34:e9: 39:4e:e1:d2:c0:d2:df:36:fb:92:97:11:68:ba:b3:3c:a2:05: 6d:35:55:d1:3d:6f:91:cb:63:99:c7:5f:33:d9:15:eb:e6:01: b6:a8:a9:d6:6d:8f:21:ca:49:26:cf:b5:be:df:3e:ea:84:3f: be:93:ed:c3:95:35:1e:e3:5a:f1:28:d4:bb:c1:dd:ad:a9:41: 11:2c:4e:31:1c:3e:ed:67:1b:88:a0:e2:ee:72:05:bf:e9:30: 45:f9:8f:06:46:c7:83:ae:99:7a:4e:4f:c3:c5:8b:54:b0:0f: 5a:c8:45:7f:e2:73:3b:9b:b6:ff:e1:6a:54:15:01:34:98:49: 26:00:01:bc:c3:01:53:9e:ae:d2:d2:18:b0:40:2c:fd:d1:9c: cb:48:24:62:00:4d:84:5d:7b:fe:7d:01:14:5c:14:03:8a:41: 40:f4:8c:e2:73:0e:37:1e:12:95:8e:58:0c:75:9e:67:64:18: 48:6a:df:1f -----BEGIN CERTIFICATE----- MIIFxDCCBKygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzNjIxMTAvBgNVBAUTKEVBODNBRjRBMjFDQkMyMDcxRjU2OTU2RTVEREQ1ODRD NzYzOEZBNUIwHhcNMjUwNjE1MTAxMDI3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRlOWMxMi1iODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RTDyo4afFAmV9gi1rmsFxuuXHCIO2bKDWX9cyU5R5f6vENUBQNV3obTlzyX NyUna5fdq7qMCWT46bZq5XXFHRQm9o4m4mNmZFR9ZeDVRyjYlGsN1kLTVdsUC0FY fW3aSF3CPYmCfDO7EFzo9W8hSQydfZvH99jI2cn7Yio1xfThFP4HJhOolZ2d0M8y lfoTlbqML33z6Q4cBQ9XEVq7H/DHPXpy9ifCBX3ssZ9OtpaXqO8aS+aG4HyBJX3q jCnB0GZ4LL7SYuF2jPkyu0nCIN8cKKaOZ38dxnNOo5acpboE27emfXLkBxF3VD5J WrvJilWVVRsUCxw6ay2ZU0dWUwIDAQABo4IC6DCCAuQwHQYDVR0OBBYEFEvwZws6 hm4XTDlPZv9TPXvS4xR/MB8GA1UdIwQYMBaAFOqDr0ohy8IHH1aVbl3dWEx2OPpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzM2Mi82QTA4RjQ5MjI1 NzcxMUVGQkIwQjgyNTFDNEY5QUUwMi82b092U2lITHdnY2ZWcFZ1WGQxWVRIWTQt bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZvT3ZTaUhMd2djZlZwVnVYZDFZVEhZNC1scy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMzNjIvNkEwOEY0OTIyNTc3MTFFRkJCMEI4MjUxQzRGOUFFMDIvNjQ5MkQ0OTg1 QjkwMTFFRjhEQjQ4QzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcgYIKwYBBQUHAQcBAf8E YzBhMDoEAgABMDQDBAAr5ssDBAAtQGsDBAAtceADBAEtceIwDAMEAC14iQMEAC14 ijAMAwQAnXcpAwQCnXcoMCMEAgACMB0DBwAkBXFAAAIwEgMHAiQFcUAABAMHACQF cUAABjANBgkqhkiG9w0BAQsFAAOCAQEAgBHPHumjJFyLpD1o5+u8VjzoVZKlG1Jd X3iI0envjjYyBZjE8hNtHr5HjHo/QUrVzhL0YOxA5DUq6LriqhyMRdKtjQXYkTTp OU7h0sDS3zb7kpcRaLqzPKIFbTVV0T1vkctjmcdfM9kV6+YBtqip1m2PIcpJJs+1 vt8+6oQ/vpPtw5U1HuNa8SjUu8HdralBESxOMRw+7WcbiKDi7nIFv+kwRfmPBkbH g66Zek5Pw8WLVLAPWshFf+JzO5u2/+FqVBUBNJhJJgABvMMBU56u0tIYsEAs/dGc y0gkYgBNhF17/n0BFFwUA4pBQPSM4nMONx4SlY5YDHWeZ2QYSGrfHw== -----END CERTIFICATE-----Generated at Sat Jun 21 16:12:24 2025 by rpki-client