$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/B0425744D7E211ECBD1D447FC4F9AE02.roa File: B0425744D7E211ECBD1D447FC4F9AE02.roa (raw, json) Hash identifier: FmrrPxT3AQS1QsODrOl0Mag5fJkdo8yw7npJe5EvI48= Subject key identifier: D4:90:02:72:4D:CB:FD:81:53:56:F3:B2:47:B8:B6:13:57:DF:DA:C5 Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 07F3 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/B0425744D7E211ECBD1D447FC4F9AE02.roa Signing time: Tue 19 Aug 2025 02:49:25 +0000 ROA not before: Tue 19 Aug 2025 02:49:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 2519 IP address blocks: 43.231.220.0/22 maxlen: 22 43.251.48.0/22 maxlen: 22 103.3.28.0/22 maxlen: 22 103.8.240.0/22 maxlen: 22 103.20.156.0/22 maxlen: 22 103.37.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Aug 19 02:49:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a3e635-9582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ab:5a:3b:59:7f:cc:c9:e1:8f:a8:93:9b:38: ea:9a:4f:4e:d8:f8:de:62:e2:91:d1:e6:3a:9c:41: 5d:3e:b6:80:94:bf:75:00:36:22:02:f5:68:37:2a: 05:e1:dc:7d:06:72:53:a4:23:ba:47:b3:7e:72:66: 48:ee:8e:8b:22:b7:94:37:e2:e3:03:00:60:f6:4f: fc:fd:a2:3a:f6:6d:59:88:f5:c7:b6:19:22:92:f2: 9f:36:29:98:31:74:22:d7:84:c8:23:47:ce:70:d7: 7e:ed:e2:c6:e5:d8:74:f5:17:fe:1f:e3:4b:cc:b5: 27:8c:d1:c1:df:8c:95:5e:cb:de:72:88:ce:44:d9: 4e:ac:5c:e7:56:af:25:6e:18:5e:e8:74:9b:99:36: 16:b9:5a:58:2b:07:2c:73:f6:ed:66:15:95:07:7a: 40:cc:5e:dc:8e:a1:cc:92:94:f7:d2:4e:28:55:d4: d6:3f:43:f0:08:46:d8:68:3b:f7:08:86:e2:22:8a: 18:62:fa:c5:75:08:ad:5e:1e:70:08:b9:53:24:55: 9d:73:6c:4d:7a:15:8c:43:4c:e1:68:9d:9b:e0:96: 49:0e:8f:d3:56:fa:7c:a3:4d:e7:6b:a6:22:8c:43: be:96:50:99:2a:1f:29:80:a3:00:82:df:b0:40:7a: 61:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:90:02:72:4D:CB:FD:81:53:56:F3:B2:47:B8:B6:13:57:DF:DA:C5 X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/B0425744D7E211ECBD1D447FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.220.0/22 43.251.48.0/22 103.3.28.0/22 103.8.240.0/22 103.20.156.0/22 103.37.236.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:53:be:11:c5:41:aa:58:eb:c8:f5:87:72:c9:1b:96:57:88: 34:8b:88:27:5c:8f:36:f7:85:ef:74:60:f5:ed:b9:db:33:6c: 52:4c:35:8b:a8:11:e9:ba:c0:91:75:22:59:04:b5:f3:cc:50: 28:c2:1c:14:5b:6c:72:a9:db:41:30:df:c2:d1:2c:27:fd:2f: e4:12:59:8b:4b:4e:0a:a8:f9:8a:a0:1a:bb:ed:f3:4d:7c:b8: 03:af:ef:73:8c:11:73:5e:be:0f:79:5b:56:2a:d8:01:dc:72: 07:b9:7c:da:08:43:fa:28:31:ca:cb:83:a0:9e:2f:e6:76:64: 7a:cc:2d:27:2a:d6:18:4e:04:8d:52:87:ef:5f:86:b6:43:7d: 63:c2:d7:4c:d7:b4:de:a8:e1:ad:e6:9b:b8:2b:b8:56:23:65: db:11:79:3a:6a:45:79:e5:7c:63:90:cf:9a:41:57:56:cd:5e: e5:ed:07:f0:35:f4:ea:94:d5:ff:ee:49:36:b7:96:bf:59:89: 19:51:0f:9f:84:db:e2:03:2f:28:c6:85:2b:27:23:60:4d:62: b0:91:6c:d8:d8:3f:c0:c6:96:24:5b:40:82:18:b9:0e:9e:f7: 39:7c:76:b6:9b:16:c4:cb:4e:44:f1:10:cd:18:e1:28:43:96: 99:cf:27:21 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUwODE5MDI0OTI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzZTYzNS05NTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvataO1l/zMnhj6iTmzjqmk9O2PjeYuKR0eY6nEFdPraAlL91ADYiAvVoNyoF 4dx9BnJTpCO6R7N+cmZI7o6LIreUN+LjAwBg9k/8/aI69m1ZiPXHthkikvKfNimY MXQi14TII0fOcNd+7eLG5dh09Rf+H+NLzLUnjNHB34yVXsvecojORNlOrFznVq8l bhhe6HSbmTYWuVpYKwcsc/btZhWVB3pAzF7cjqHMkpT30k4oVdTWP0PwCEbYaDv3 CIbiIooYYvrFdQitXh5wCLlTJFWdc2xNehWMQ0zhaJ2b4JZJDo/TVvp8o03na6Yi jEO+llCZKh8pgKMAgt+wQHphwQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFNSQAnJN y/2BU1bzske4thNX39rFMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvQjA0MjU3NDRE N0UyMTFFQ0JEMUQ0NDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAIr59wDBAIr+zADBAJnAxwDBAJnCPADBAJnFJwDBAJnJeww DQYJKoZIhvcNAQELBQADggEBAC1TvhHFQapY68j1h3LJG5ZXiDSLiCdcjzb3he90 YPXtudszbFJMNYuoEem6wJF1IlkEtfPMUCjCHBRbbHKp20Ew38LRLCf9L+QSWYtL Tgqo+YqgGrvt8018uAOv73OMEXNevg95W1Yq2AHccge5fNoIQ/ooMcrLg6CeL+Z2 ZHrMLScq1hhOBI1Sh+9fhrZDfWPC10zXtN6o4a3mm7gruFYjZdsReTpqRXnlfGOQ z5pBV1bNXuXtB/A19OqU1f/uSTa3lr9ZiRlRD5+E2+IDLyjGhSsnI2BNYrCRbNjY P8DGliRbQIIYuQ6e9zl8drabFsTLTkTxEM0Y4ShDlpnPJyE= -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:12 2025 by rpki-client