$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa File: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (raw, json) Hash identifier: BrjvMyWC8TkTRAeP4NtQF4Bi61DyGO1lu+HWAzFzf2Y= Subject key identifier: 03:2F:44:C0:5D:F9:EF:BF:35:21:DA:A3:0B:C2:01:B4:21:A0:1A:93 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0BEB Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa Signing time: Thu 12 Jun 2025 04:51:31 +0000 ROA not before: Thu 12 Jun 2025 04:51:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 395793 IP address blocks: 43.230.54.0/24 maxlen: 24 43.230.55.0/24 maxlen: 24 43.231.188.0/24 maxlen: 24 43.231.190.0/24 maxlen: 24 43.231.191.0/24 maxlen: 24 43.246.196.0/24 maxlen: 24 43.246.197.0/24 maxlen: 24 45.115.32.0/24 maxlen: 24 103.12.52.0/24 maxlen: 24 103.24.163.0/24 maxlen: 24 103.248.148.0/24 maxlen: 24 103.248.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3051 (0xbeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jun 12 04:51:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=684a5cd3-ba3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:96:b1:a4:fa:94:39:22:84:cc:56:e5:89: 8b:8b:a4:d6:f3:06:f0:f1:21:6f:d0:78:b1:e4:37: 1f:75:05:d9:23:95:46:a4:63:e4:0e:75:a7:9d:15: a4:76:7e:5b:a6:4b:40:08:ec:8c:eb:49:41:bc:1e: 98:93:eb:23:8b:d3:d6:67:a1:c7:bb:08:03:ea:6b: 05:06:8d:2f:00:7b:8e:63:8f:fe:03:27:09:a7:bf: f6:d7:45:2c:fa:d4:e3:91:bc:70:b6:6d:f8:bb:8f: a1:a7:de:a8:ee:4f:01:2f:bc:18:1a:51:5e:fe:df: 22:0f:87:37:25:89:cf:cf:a7:50:53:9d:ac:53:f4: c8:31:62:81:a6:61:3c:88:8f:8e:7e:83:5f:af:53: 91:39:8d:1c:36:e6:cf:eb:ac:18:84:5f:d2:2e:73: b1:eb:a5:1c:12:05:30:72:51:02:1e:94:fa:9a:98: c7:f2:19:81:8b:9b:f2:b0:b3:a8:9f:81:7c:95:85: bf:ba:50:65:91:3d:23:68:05:4d:4a:3d:1a:d5:c7: 4e:37:80:22:fa:e1:77:96:d5:7c:e8:6f:93:a0:3d: b8:b3:f9:9c:cc:05:fa:5e:4a:3e:75:8b:f1:12:52: 0d:aa:61:50:a3:ad:18:38:05:09:ca:22:f1:b1:4e: 8d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2F:44:C0:5D:F9:EF:BF:35:21:DA:A3:0B:C2:01:B4:21:A0:1A:93 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.54.0/23 43.231.188.0/24 43.231.190.0/23 43.246.196.0/23 45.115.32.0/24 103.12.52.0/24 103.24.163.0/24 103.248.148.0/23 Signature Algorithm: sha256WithRSAEncryption 53:2d:ce:19:22:3b:dc:ca:b5:9f:26:f1:cb:12:79:fc:d9:da: ba:a6:70:e6:b6:87:ce:e5:fe:df:9e:3a:d4:18:a0:f4:26:df: 48:0b:be:71:d7:ae:62:e5:3f:f9:5c:eb:5b:66:61:2f:1c:2f: 95:92:75:21:a7:93:bc:61:bf:12:57:d7:42:10:d3:a1:06:64: 39:51:67:60:b6:7e:87:59:75:ea:7c:f4:bc:8f:85:cf:bb:82: 9c:f3:a2:d2:92:91:8a:13:06:82:cb:6b:e2:d6:9c:38:ed:48: e9:66:9d:7b:0d:4c:fb:50:12:65:66:1e:25:7b:f6:8d:7c:6c: 85:e5:e7:76:40:43:78:28:16:84:4c:f8:05:5b:d3:8f:4f:2c: 2e:6c:94:d7:4e:29:31:bb:6f:24:31:2d:d5:5a:cb:8e:94:e5: a3:4c:dc:95:a6:b4:28:48:14:d2:cf:0e:54:c5:75:9a:34:33: 48:c3:2a:81:ad:c7:72:ef:00:0f:a7:98:23:1f:43:a2:dd:4e: 55:8e:4c:9f:0b:21:d3:1b:e9:23:d2:c7:ff:3b:97:f1:e6:97: 84:74:f9:4b:3f:34:c2:0c:8b:b5:35:45:d2:f5:b3:b5:19:3a: 75:cb:c2:43:fa:d2:53:97:88:93:41:dc:7e:1d:5e:e7:cd:83: 00:98:d0:61 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICC+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNjEyMDQ1MTMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODRhNWNkMy1iYTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PaWsaT6lDkihMxW5YmLi6TW8wbw8SFv0Hix5DcfdQXZI5VGpGPkDnWnnRWk dn5bpktACOyM60lBvB6Yk+sji9PWZ6HHuwgD6msFBo0vAHuOY4/+AycJp7/210Us +tTjkbxwtm34u4+hp96o7k8BL7wYGlFe/t8iD4c3JYnPz6dQU52sU/TIMWKBpmE8 iI+OfoNfr1OROY0cNubP66wYhF/SLnOx66UcEgUwclECHpT6mpjH8hmBi5vysLOo n4F8lYW/ulBlkT0jaAVNSj0a1cdON4Ai+uF3ltV86G+ToD24s/mczAX6Xko+dYvx ElINqmFQo60YOAUJyiLxsU6N2wIDAQABo4ICvzCCArswHQYDVR0OBBYEFAMvRMBd +e+/NSHaowvCAbQhoBqTMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMEU0M0FFQ0Ez QjVEMTFGMEEyNkJDMDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBAEr5jYDBAAr57wDBAEr574DBAEr9sQDBAAtcyADBABnDDQD BABnGKMDBAFn+JQwDQYJKoZIhvcNAQELBQADggEBAFMtzhkiO9zKtZ8m8csSefzZ 2rqmcOa2h87l/t+eOtQYoPQm30gLvnHXrmLlP/lc61tmYS8cL5WSdSGnk7xhvxJX 10IQ06EGZDlRZ2C2fodZdep89LyPhc+7gpzzotKSkYoTBoLLa+LWnDjtSOlmnXsN TPtQEmVmHiV79o18bIXl53ZAQ3goFoRM+AVb049PLC5slNdOKTG7byQxLdVay46U 5aNM3JWmtChIFNLPDlTFdZo0M0jDKoGtx3LvAA+nmCMfQ6LdTlWOTJ8LIdMb6SPS x/87l/Hml4R0+Us/NMIMi7U1RdL1s7UZOnXLwkP60lOXiJNB3H4dXufNgwCY0GE= -----END CERTIFICATE-----Generated at Sun Jun 15 08:29:22 2025 by rpki-client