$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa File: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (raw, json) Hash identifier: QUdZc8sayDCRZbnJ5FbRX8LCLMgHbtBh8Rf8sW0KF+4= Subject key identifier: 53:66:78:F2:F7:07:D4:A7:62:A2:56:B7:B8:D9:A3:6E:7F:84:D5:87 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C31 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa Signing time: Tue 05 Aug 2025 05:25:15 +0000 ROA not before: Tue 05 Aug 2025 05:25:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 395793 IP address blocks: 43.230.54.0/24 maxlen: 24 43.230.55.0/24 maxlen: 24 43.231.188.0/24 maxlen: 24 43.231.190.0/24 maxlen: 24 43.231.191.0/24 maxlen: 24 43.246.196.0/24 maxlen: 24 43.246.197.0/24 maxlen: 24 45.115.32.0/24 maxlen: 24 45.115.34.0/24 maxlen: 24 103.12.52.0/24 maxlen: 24 103.24.163.0/24 maxlen: 24 103.248.148.0/24 maxlen: 24 103.248.149.0/24 maxlen: 24 160.20.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3121 (0xc31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Aug 5 05:25:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=689195bb-c3cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:56:2e:c4:56:e2:c2:88:4c:9d:d1:fd:c6:46: 23:61:da:52:8f:20:6c:2e:a4:90:9f:f5:bd:0a:dc: f5:b6:eb:1a:15:c7:53:71:15:e1:2e:57:58:c3:41: 9a:80:66:32:04:a5:a4:5b:d0:a8:b5:42:00:d4:ab: ed:f6:32:a6:e0:de:7f:08:cf:98:81:7e:17:ef:14: 6d:c6:87:5d:af:2c:be:26:12:f3:1e:46:e8:62:db: d6:57:a9:77:3e:ff:e6:c1:a5:00:df:48:10:8a:16: 5c:62:f7:f7:66:e9:0e:cd:4a:34:7c:d4:8e:73:6c: d7:40:1c:ca:f4:d5:4c:b7:f3:45:0d:f6:80:7d:64: bc:f4:23:6a:30:ca:95:02:10:8b:14:6d:8f:58:07: 40:02:4b:7e:12:84:77:11:24:a0:af:f8:c5:c6:85: ab:10:b0:c1:ab:09:11:50:8e:84:be:d5:ef:14:3a: c4:55:34:85:71:e3:ce:96:f2:ec:bc:5c:a5:8f:5d: e3:ae:79:05:6f:60:7c:3a:64:dd:db:88:7c:2e:8d: fd:05:71:68:52:f5:2d:5f:fe:33:df:3b:61:88:35: e3:6c:88:c3:a9:e8:4a:b8:0a:23:6b:bd:5d:29:1f: 45:05:2c:64:91:fd:16:b4:77:83:09:e3:43:96:cd: 3d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:66:78:F2:F7:07:D4:A7:62:A2:56:B7:B8:D9:A3:6E:7F:84:D5:87 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.54.0/23 43.231.188.0/24 43.231.190.0/23 43.246.196.0/23 45.115.32.0/24 45.115.34.0/24 103.12.52.0/24 103.24.163.0/24 103.248.148.0/23 160.20.46.0/24 Signature Algorithm: sha256WithRSAEncryption dc:0f:6b:54:82:00:bd:df:7d:1d:83:9d:2a:eb:85:aa:7b:2a: ec:9f:72:c6:5f:66:43:70:24:1d:b7:e0:16:e9:09:48:64:50: f7:5f:78:80:f5:91:22:a5:ce:8e:a0:33:da:a6:65:75:5e:46: 46:d2:d8:6a:6c:d8:d8:dd:92:fd:64:9a:55:7c:49:7e:62:61: 61:61:0f:63:e1:ae:a9:65:9c:05:45:cd:d2:99:ba:fa:00:ae: f7:56:84:cb:46:3d:b2:eb:9f:4e:57:1e:a1:3a:85:58:5d:52: 64:15:f0:b6:2e:8c:c8:54:db:a4:c8:8a:d6:b2:2a:8d:ca:a2: 23:05:fb:69:4f:ec:45:89:3d:74:45:ab:3c:b6:87:58:36:15: 3b:bb:52:c5:e2:00:fc:a0:59:c9:1a:86:69:a9:bf:c0:60:87: 7f:ae:b0:81:73:91:5f:a3:7d:cf:9a:66:ea:43:b5:94:2e:1f: 03:3f:36:17:ca:0d:29:85:64:34:b0:63:ab:97:43:9a:04:82: 01:82:38:88:f7:da:62:c2:a0:90:45:a8:e0:b1:6f:73:90:e9: 66:7e:4a:fa:6e:08:64:a6:66:48:b6:ef:43:51:b2:ee:12:9f: 13:d5:b0:fa:66:16:47:95:e3:c4:ed:48:ec:8b:fb:9e:7c:3d: 64:0a:18:b9 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICDDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwODA1MDUyNTE1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxOTViYi1jM2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFYuxFbiwohMndH9xkYjYdpSjyBsLqSQn/W9Ctz1tusaFcdTcRXhLldYw0Ga gGYyBKWkW9CotUIA1Kvt9jKm4N5/CM+YgX4X7xRtxoddryy+JhLzHkboYtvWV6l3 Pv/mwaUA30gQihZcYvf3ZukOzUo0fNSOc2zXQBzK9NVMt/NFDfaAfWS89CNqMMqV AhCLFG2PWAdAAkt+EoR3ESSgr/jFxoWrELDBqwkRUI6EvtXvFDrEVTSFcePOlvLs vFylj13jrnkFb2B8OmTd24h8Lo39BXFoUvUtX/4z3zthiDXjbIjDqehKuAoja71d KR9FBSxkkf0WtHeDCeNDls09KQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFFNmePL3 B9SnYqJWt7jZo25/hNWHMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMEU0M0FFQ0Ez QjVEMTFGMEEyNkJDMDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMEIEAgABMDwDBAEr5jYDBAAr57wDBAEr574DBAEr9sQDBAAtcyADBAAtcyID BABnDDQDBABnGKMDBAFn+JQDBACgFC4wDQYJKoZIhvcNAQELBQADggEBANwPa1SC AL3ffR2DnSrrhap7KuyfcsZfZkNwJB234BbpCUhkUPdfeID1kSKlzo6gM9qmZXVe RkbS2Gps2Njdkv1kmlV8SX5iYWFhD2PhrqllnAVFzdKZuvoArvdWhMtGPbLrn05X HqE6hVhdUmQV8LYujMhU26TIitayKo3KoiMF+2lP7EWJPXRFqzy2h1g2FTu7UsXi APygWckahmmpv8Bgh3+usIFzkV+jfc+aZupDtZQuHwM/NhfKDSmFZDSwY6uXQ5oE ggGCOIj32mLCoJBFqOCxb3OQ6WZ+SvpuCGSmZki270NRsu4SnxPVsPpmFkeV48Tt SOyL+558PWQKGLk= -----END CERTIFICATE-----Generated at Sat Aug 9 14:28:57 2025 by rpki-client