$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F3B9AEC4740A11F09DAF2A29C4F9AE02.roa File: F3B9AEC4740A11F09DAF2A29C4F9AE02.roa (raw, json) Hash identifier: BAnbwoxPeN/akyQ4VZTfLI7vBW7dc5W2AtRL8aSNk8w= Subject key identifier: 37:6A:93:21:59:E4:AE:9D:8C:6E:4C:D5:CF:D0:39:E3:14:E8:22:0E Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C35 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F3B9AEC4740A11F09DAF2A29C4F9AE02.roa Signing time: Fri 08 Aug 2025 03:51:24 +0000 ROA not before: Fri 08 Aug 2025 03:51:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139076 IP address blocks: 43.246.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Aug 8 03:51:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6895743b-463d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:c6:36:71:17:c9:e2:45:05:48:9b:13:bf: 32:23:a6:2f:4a:f2:73:60:1c:88:af:d2:3d:4f:a8: 9a:d3:fe:c7:4f:2e:84:26:a8:b0:1f:7e:5b:f8:b2: 04:57:92:1e:ab:61:a4:6a:2c:6a:b0:c9:7c:68:df: 61:1c:3a:22:61:3d:d7:44:4e:33:4c:fc:18:96:ac: 91:57:52:4f:46:4f:79:c2:85:f0:d6:e8:d5:75:65: 7a:d5:c0:a0:98:95:9c:64:da:72:07:7c:0d:9d:98: 5f:ae:62:dd:9d:7d:e2:d5:e0:44:38:b4:a5:b1:da: 3a:ae:ae:d3:ed:2e:9d:fd:ea:86:e3:dd:9c:8d:e9: f2:3b:c0:dd:34:43:4d:21:ec:42:31:b5:a1:3c:c0: d7:1f:ea:90:43:5f:b9:90:43:5d:dc:25:e9:24:4a: 39:e3:c4:90:d1:4e:af:fa:5d:6c:e5:1c:3e:40:be: 21:8c:ed:a3:6c:d5:d9:d1:07:3a:8b:dd:3c:d3:9e: 7b:b5:cc:7f:8f:9e:d6:f3:ab:04:dc:27:94:e4:a0: 5b:9d:85:8b:ef:32:88:18:27:89:57:8d:6a:2e:84: 00:62:46:41:b6:8f:55:e4:cd:57:1d:44:e4:1f:be: ff:2e:5e:29:89:e4:dd:df:35:3e:cb:1e:1c:fa:71: 7c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6A:93:21:59:E4:AE:9D:8C:6E:4C:D5:CF:D0:39:E3:14:E8:22:0E X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F3B9AEC4740A11F09DAF2A29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.199.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:45:19:64:1c:af:8e:22:2f:9a:cc:f8:ab:a5:5b:4e:f1:5f: ec:6b:ae:df:73:e5:c0:01:16:7f:e4:bb:30:49:dd:2e:cc:ad: ab:26:5c:4b:e3:19:46:65:f5:3d:db:08:20:bc:fa:68:59:49: 27:e0:f8:5f:7c:24:c4:14:73:d7:94:31:42:25:db:bd:6d:b5: 46:95:f0:ef:70:9e:ff:35:ec:2e:11:a2:bd:ab:02:7f:2a:ec: ad:42:e8:e7:97:c7:20:6c:85:eb:6d:69:b6:50:6a:14:21:cf: 3c:3b:57:fb:82:26:bb:3d:9b:70:a7:41:2b:13:5b:af:7c:f9: 70:9b:b1:34:d6:00:78:66:0a:48:25:11:9f:e9:ee:76:85:83: 5c:06:9e:5f:cb:58:d8:e8:91:98:85:25:9e:65:92:0e:e5:1f: 9e:61:04:ac:e8:a4:56:0b:67:45:23:75:1a:33:be:a6:7f:9e: 13:72:66:40:26:90:ff:9b:cc:c5:7a:fe:d6:da:9a:d5:8b:79: be:62:45:01:1c:00:c9:2e:d5:53:a4:54:cc:a7:3e:c5:a7:32: b6:6d:75:ec:9f:36:f3:74:da:9c:2e:f9:ee:ac:7b:86:5e:4a: 36:cd:13:b9:92:23:94:36:17:b1:91:84:7f:6b:3f:63:d3:af: e1:2f:09:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwODA4MDM1MTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODk1NzQzYi00NjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNvGNnEXyeJFBUibE78yI6YvSvJzYByIr9I9T6ia0/7HTy6EJqiwH35b+LIE V5Ieq2GkaixqsMl8aN9hHDoiYT3XRE4zTPwYlqyRV1JPRk95woXw1ujVdWV61cCg mJWcZNpyB3wNnZhfrmLdnX3i1eBEOLSlsdo6rq7T7S6d/eqG492cjenyO8DdNENN IexCMbWhPMDXH+qQQ1+5kENd3CXpJEo548SQ0U6v+l1s5Rw+QL4hjO2jbNXZ0Qc6 i9080557tcx/j57W86sE3CeU5KBbnYWL7zKIGCeJV41qLoQAYkZBto9V5M1XHUTk H77/Ll4pieTd3zU+yx4c+nF8mwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDdqkyFZ 5K6djG5M1c/QOeMU6CIOMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRjNCOUFFQzQ3 NDBBMTFGMDlEQUYyQTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr9scwDQYJKoZIhvcNAQELBQADggEBAGtFGWQcr44iL5rM +KulW07xX+xrrt9z5cABFn/kuzBJ3S7MrasmXEvjGUZl9T3bCCC8+mhZSSfg+F98 JMQUc9eUMUIl271ttUaV8O9wnv817C4Ror2rAn8q7K1C6OeXxyBshettabZQahQh zzw7V/uCJrs9m3CnQSsTW698+XCbsTTWAHhmCkglEZ/p7naFg1wGnl/LWNjokZiF JZ5lkg7lH55hBKzopFYLZ0UjdRozvqZ/nhNyZkAmkP+bzMV6/tbamtWLeb5iRQEc AMku1VOkVMynPsWnMrZtdeyfNvN02pwu+e6se4ZeSjbNE7mSI5Q2F7GRhH9rP2PT r+EvCUs= -----END CERTIFICATE-----Generated at Sat Aug 9 10:36:57 2025 by rpki-client