$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/F2A462E66B6C11F0B453B656C4F9AE02.roa File: F2A462E66B6C11F0B453B656C4F9AE02.roa (raw, json) Hash identifier: Ms6hkj2gNBoVKwju3YpVFi7TOZ5XoCEB+ud2155SGQw= Subject key identifier: A0:90:B4:20:F1:B1:FC:5B:26:89:73:68:67:2C:16:F2:AF:A0:76:16 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 0939 Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/F2A462E66B6C11F0B453B656C4F9AE02.roa Signing time: Mon 28 Jul 2025 04:40:12 +0000 ROA not before: Mon 28 Jul 2025 04:40:12 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 10207 IP address blocks: 101.234.128.0/23 maxlen: 24 101.234.130.0/23 maxlen: 24 101.234.135.0/24 maxlen: 24 101.234.138.0/23 maxlen: 24 101.234.155.0/24 maxlen: 24 101.234.159.0/24 maxlen: 24 101.234.160.0/24 maxlen: 24 101.234.170.0/24 maxlen: 24 101.234.171.0/24 maxlen: 24 114.111.152.0/23 maxlen: 24 114.111.154.0/23 maxlen: 24 122.100.5.0/24 maxlen: 24 122.100.12.0/23 maxlen: 24 2406:5800:1000::/40 maxlen: 48 2406:5800:1100::/40 maxlen: 48 2406:5800:1200::/40 maxlen: 48 2406:5800:1300::/40 maxlen: 48 2406:5800:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2361 (0x939) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Jul 28 04:40:12 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6886ff2c-e80f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:46:98:c4:46:f1:fa:f9:6f:da:7f:11:c4:12: 2d:c4:dc:37:ed:65:a3:1d:d5:cf:23:83:83:a1:c8: 3a:8b:3a:6e:2b:42:48:2f:7e:24:17:b0:c8:87:a3: 6b:3f:99:e6:a6:c8:44:73:80:c8:e6:f3:df:6a:15: 45:86:94:21:19:ef:f4:83:12:5a:0a:84:1b:61:56: a8:00:6c:ac:a1:b4:a0:3a:82:d3:2d:7b:22:a0:71: 91:b7:08:67:68:6f:f2:20:0a:62:bf:07:44:26:b4: 32:13:e7:0a:30:2d:ef:42:32:5a:ee:d3:c2:f1:b5: 50:59:f1:f2:35:a2:ed:ab:1b:6e:6a:08:91:d7:f8: c4:d0:68:4b:e5:df:69:3d:a2:be:e6:f7:d5:8d:95: c7:33:09:5d:b5:c6:a6:19:9b:fd:d8:8b:93:01:38: c9:eb:aa:f0:50:3c:cf:58:74:7e:6f:69:2c:0f:50: 9a:a0:90:3b:a2:c5:35:e7:01:89:c8:18:06:b8:1d: 1a:ec:3b:dd:62:77:74:cd:45:44:53:95:3a:c8:f1: f3:18:8d:f7:55:9d:e5:fe:14:cd:0d:a9:7b:88:99: 43:98:34:f2:8f:61:40:1e:12:b5:01:94:de:39:46: a2:fe:9d:15:fd:c5:87:2f:4c:0e:36:56:04:00:21: db:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:90:B4:20:F1:B1:FC:5B:26:89:73:68:67:2C:16:F2:AF:A0:76:16 X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/F2A462E66B6C11F0B453B656C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.234.128.0/22 101.234.135.0/24 101.234.138.0/23 101.234.155.0/24 101.234.159.0-101.234.160.255 101.234.170.0/23 114.111.152.0/22 122.100.5.0/24 122.100.12.0/23 IPv6: 2406:5800:1000::/38 2406:5800:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 81:98:5f:31:66:1d:a0:48:3c:c4:7e:79:22:11:b5:2d:57:69: fe:81:81:e2:e1:0d:74:69:e2:58:6a:d2:d2:86:9e:09:b8:38: 06:d4:6f:dc:05:b9:fa:42:fa:6c:a0:e5:89:f1:8a:d6:52:e0: 01:ce:f9:92:a4:48:06:65:23:25:e0:6f:34:a4:ec:f0:15:c8: e7:f2:71:44:82:a0:d5:20:96:c3:c2:20:b2:a3:3e:b2:cf:42: b5:0d:4b:1e:17:71:48:29:2d:df:b8:cc:b6:76:43:66:34:81: 8f:89:12:97:57:b7:9e:4c:f5:5d:6d:e9:98:79:9f:15:ee:25: 66:78:32:bc:5e:5d:14:90:be:0f:10:89:f9:fd:4b:1d:78:88: f6:04:60:61:5c:d3:31:16:22:0e:69:d2:99:9b:1a:eb:f2:33: 0b:1b:46:10:b1:e6:c8:64:38:4a:12:c1:5a:29:b9:67:39:55: a6:5b:db:62:22:2b:f7:f6:19:15:ab:45:ae:c1:41:de:6a:1b: e4:be:3a:c3:a3:58:0b:27:25:df:d9:3d:cf:b7:cc:18:40:34: 92:09:cb:30:f4:4a:42:87:90:a1:ec:92:b0:d9:34:15:95:ee: aa:7b:6b:96:2b:87:54:3d:5f:4d:9c:66:39:56:d5:d6:f2:34: 2a:c0:8a:b8 -----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgICCTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjUwNzI4MDQ0MDEyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg2ZmYyYy1lODBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kaYxEbx+vlv2n8RxBItxNw37WWjHdXPI4ODocg6izpuK0JIL34kF7DIh6Nr P5nmpshEc4DI5vPfahVFhpQhGe/0gxJaCoQbYVaoAGysobSgOoLTLXsioHGRtwhn aG/yIApivwdEJrQyE+cKMC3vQjJa7tPC8bVQWfHyNaLtqxtuagiR1/jE0GhL5d9p PaK+5vfVjZXHMwldtcamGZv92IuTATjJ66rwUDzPWHR+b2ksD1CaoJA7osU15wGJ yBgGuB0a7DvdYnd0zUVEU5U6yPHzGI33VZ3l/hTNDal7iJlDmDTyj2FAHhK1AZTe OUai/p0V/cWHL0wONlYEACHb2wIDAQABo4IC5jCCAuIwHQYDVR0OBBYEFKCQtCDx sfxbJolzaGcsFvKvoHYWMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU0NkUvMENENDFEQThCNzZBMTFFQTgxNEY1MDg0QzRGOUFFMDIvRjJBNDYyRTY2 QjZDMTFGMEI0NTNCNjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcAYIKwYBBQUHAQcBAf8E YTBfMEQEAgABMD4DBAJl6oADBABl6ocDBAFl6ooDBABl6pswDAMEAGXqnwMEAGXq oAMEAWXqqgMEAnJvmAMEAHpkBQMEAXpkDDAXBAIAAjARAwYCJAZYABADBwAkBlgA /wAwDQYJKoZIhvcNAQELBQADggEBAIGYXzFmHaBIPMR+eSIRtS1Xaf6BgeLhDXRp 4lhq0tKGngm4OAbUb9wFufpC+myg5YnxitZS4AHO+ZKkSAZlIyXgbzSk7PAVyOfy cUSCoNUglsPCILKjPrLPQrUNSx4XcUgpLd+4zLZ2Q2Y0gY+JEpdXt55M9V1t6Zh5 nxXuJWZ4MrxeXRSQvg8Qifn9Sx14iPYEYGFc0zEWIg5p0pmbGuvyMwsbRhCx5shk OEoSwVopuWc5VaZb22IiK/f2GRWrRa7BQd5qG+S+OsOjWAsnJd/ZPc+3zBhANJIJ yzD0SkKHkKHskrDZNBWV7qp7a5Yrh1Q9X02cZjlW1dbyNCrAirg= -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:51 2025 by rpki-client