$ rpki-client -vvf rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/192968FAA43411E9BF46490BC4F9AE02.roa File: 192968FAA43411E9BF46490BC4F9AE02.roa (raw, json) Hash identifier: m1DwXGY9qRUMrm5nwSa7A62fQnkXzMeC3XhEB70M3Ec= Subject key identifier: FA:85:EC:45:AB:3E:E6:21:4C:12:8C:03:25:4E:EA:FC:DE:54:47:38 Certificate issuer: /CN=A913F4B0/serialNumber=194CFAEC075611FF83C421CDA8797ED30EA2D039 Certificate serial: 0E70 Authority key identifier: 19:4C:FA:EC:07:56:11:FF:83:C4:21:CD:A8:79:7E:D3:0E:A2:D0:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUz67AdWEf-DxCHNqHl-0w6i0Dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/192968FAA43411E9BF46490BC4F9AE02.roa Signing time: Fri 08 Aug 2025 18:27:29 +0000 ROA not before: Fri 08 Aug 2025 18:27:29 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132882 IP address blocks: 43.228.200.0/22 maxlen: 22 43.252.216.0/22 maxlen: 22 103.12.140.0/22 maxlen: 22 103.22.160.0/22 maxlen: 22 103.26.248.0/22 maxlen: 22 103.194.80.0/22 maxlen: 22 163.53.224.0/22 maxlen: 22 2400:6e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/GUz67AdWEf-DxCHNqHl-0w6i0Dk.crl rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/GUz67AdWEf-DxCHNqHl-0w6i0Dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUz67AdWEf-DxCHNqHl-0w6i0Dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3696 (0xe70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F4B0, serialNumber=194CFAEC075611FF83C421CDA8797ED30EA2D039 Validity Not Before: Aug 8 18:27:29 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68964191-221a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:82:66:5b:3f:9e:08:38:d7:8e:e5:2d:a6:1f: 12:4a:46:3c:8b:c8:ca:fa:2a:36:14:ee:ea:cb:d7: cc:d1:8c:87:5c:5a:26:90:63:ff:29:5a:81:8e:e1: 98:29:e2:a7:7b:a1:6a:ef:80:ed:f1:c2:dd:59:41: a3:c4:98:0b:38:92:5e:e0:e9:ed:a4:ad:4e:bd:ec: b8:54:9a:3e:65:45:04:bf:aa:1a:fd:51:14:ac:ee: 3e:6d:e4:3a:41:a4:46:e2:4a:1f:62:6f:53:2a:3c: ef:fa:78:59:92:da:76:9b:e0:2b:5e:f1:e8:f7:03: 30:25:49:f7:9e:f3:ec:24:af:17:8d:c8:a7:6d:65: 41:54:1e:05:e6:22:7b:1f:94:15:c4:d7:25:c8:74: d9:85:40:e1:38:a5:10:f9:8e:1f:d0:51:4b:1c:1f: d8:66:56:bc:61:f5:4c:d5:03:ae:5f:5a:9f:ed:b1: b1:62:91:82:c4:f1:24:95:8f:79:4c:2a:0e:ce:ca: 0f:4e:a5:4b:0a:15:91:e8:6a:e3:5a:e0:4c:e8:a7: b0:be:d3:5f:44:de:91:e6:74:9c:46:41:9c:e6:d5: 3f:46:ed:22:3f:79:f6:6c:22:0a:16:76:47:52:15: 0c:c8:f5:58:70:a0:6e:73:6f:0d:74:9a:74:bf:2c: 01:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:85:EC:45:AB:3E:E6:21:4C:12:8C:03:25:4E:EA:FC:DE:54:47:38 X509v3 Authority Key Identifier: keyid:19:4C:FA:EC:07:56:11:FF:83:C4:21:CD:A8:79:7E:D3:0E:A2:D0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/GUz67AdWEf-DxCHNqHl-0w6i0Dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUz67AdWEf-DxCHNqHl-0w6i0Dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F4B0/2D270692A43311E988158F09C4F9AE02/192968FAA43411E9BF46490BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.200.0/22 43.252.216.0/22 103.12.140.0/22 103.22.160.0/22 103.26.248.0/22 103.194.80.0/22 163.53.224.0/22 IPv6: 2400:6e80::/32 Signature Algorithm: sha256WithRSAEncryption 56:f4:3d:1b:96:85:97:b9:3e:77:8e:74:fd:a7:b0:de:ca:5f: 79:ea:f2:06:31:a6:f2:f8:f5:d2:c9:d8:7e:d8:c4:d6:27:1f: aa:83:ad:ab:5c:3c:e9:c1:b8:7b:5c:a5:20:6c:6b:83:d0:98: d4:0e:ff:01:ec:a5:01:0e:5a:93:c9:66:8a:17:4c:a0:e9:ec: 90:ee:54:a9:ee:03:f2:7c:fd:21:5b:03:32:4b:1e:ac:91:5d: 87:c1:88:d4:20:b4:2a:9f:20:1d:95:16:0a:cc:fd:78:17:5b: dd:d8:29:2e:59:17:2c:b4:6b:3c:0b:ab:b7:c0:33:fd:99:22: d6:f9:f2:73:b5:8c:83:6c:7c:7f:bc:5a:02:e4:02:36:72:b6: c2:e9:38:c1:c6:09:d8:62:59:2d:1f:43:f0:1b:f8:c4:a0:75: 5e:bd:00:47:99:ee:2a:50:6d:cc:e6:a9:98:17:a4:3a:6b:3a: f7:97:d9:53:bd:6e:96:42:8a:a6:38:8b:86:c1:63:4c:b0:6d: 6a:eb:2a:13:5c:9d:f4:da:8d:83:47:4b:31:d9:ec:88:5c:ec: 55:2e:bd:1d:80:36:57:6c:1e:04:c3:c6:47:53:95:6d:74:73: 54:0b:3b:de:b6:c5:50:9b:ff:96:6d:30:57:12:41:d1:ec:a4: f0:94:e9:ee -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y0QjAxMTAvBgNVBAUTKDE5NENGQUVDMDc1NjExRkY4M0M0MjFDREE4Nzk3RUQz MEVBMkQwMzkwHhcNMjUwODA4MTgyNzI5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2NDE5MS0yMjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoJmWz+eCDjXjuUtph8SSkY8i8jK+io2FO7qy9fM0YyHXFomkGP/KVqBjuGY KeKne6Fq74Dt8cLdWUGjxJgLOJJe4OntpK1Ovey4VJo+ZUUEv6oa/VEUrO4+beQ6 QaRG4kofYm9TKjzv+nhZktp2m+ArXvHo9wMwJUn3nvPsJK8XjcinbWVBVB4F5iJ7 H5QVxNclyHTZhUDhOKUQ+Y4f0FFLHB/YZla8YfVM1QOuX1qf7bGxYpGCxPEklY95 TCoOzsoPTqVLChWR6GrjWuBM6KewvtNfRN6R5nScRkGc5tU/Ru0iP3n2bCIKFnZH UhUMyPVYcKBuc28NdJp0vywBXQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFPqF7EWr PuYhTBKMAyVO6vzeVEc4MB8GA1UdIwQYMBaAFBlM+uwHVhH/g8Qhzah5ftMOotA5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjRCMC8yRDI3MDY5MkE0 MzMxMUU5ODgxNThGMDlDNEY5QUUwMi9HVXo2N0FkV0VmLUR4Q0hOcUhsLTB3Nmkw RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dVejY3QWRXRWYtRHhDSE5xSGwtMHc2aTBEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y0QjAvMkQyNzA2OTJBNDMzMTFFOTg4MTU4RjA5QzRGOUFFMDIvMTkyOTY4RkFB NDM0MTFFOUJGNDY0OTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIr5MgDBAIr/NgDBAJnDIwDBAJnFqADBAJnGvgDBAJnwlAD BAKjNeAwDQQCAAIwBwMFACQAboAwDQYJKoZIhvcNAQELBQADggEBAFb0PRuWhZe5 PneOdP2nsN7KX3nq8gYxpvL49dLJ2H7YxNYnH6qDratcPOnBuHtcpSBsa4PQmNQO /wHspQEOWpPJZooXTKDp7JDuVKnuA/J8/SFbAzJLHqyRXYfBiNQgtCqfIB2VFgrM /XgXW93YKS5ZFyy0azwLq7fAM/2ZItb58nO1jINsfH+8WgLkAjZytsLpOMHGCdhi WS0fQ/Ab+MSgdV69AEeZ7ipQbczmqZgXpDprOveX2VO9bpZCiqY4i4bBY0ywbWrr KhNcnfTajYNHSzHZ7Ihc7FUuvR2ANldsHgTDxkdTlW10c1QLO962xVCb/5ZtMFcS QdHspPCU6e4= -----END CERTIFICATE-----Generated at Mon Aug 11 07:28:46 2025 by rpki-client