$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/D470449E0E4411ED9C0F5B45C4F9AE02.roa File: D470449E0E4411ED9C0F5B45C4F9AE02.roa (raw, json) Hash identifier: M5cm8ltbxVdRcxdqwX20eH12vgkHWhKoQMG7Vy7tBQU= Subject key identifier: 83:D8:EC:50:5C:61:35:F4:A1:F3:D2:45:37:70:80:A7:71:E6:38:3B Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 029A Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/D470449E0E4411ED9C0F5B45C4F9AE02.roa Signing time: Fri 25 Jul 2025 02:09:31 +0000 ROA not before: Fri 25 Jul 2025 02:09:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 3661 IP address blocks: 43.230.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Jul 25 02:09:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6882e75b-926d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:42:b9:a2:43:47:d3:23:e3:0a:2e:9c:56:3e: e6:c7:45:a8:b7:2f:78:e7:fa:af:b4:05:e9:c4:98: 9d:9c:32:15:7a:f0:da:70:5d:a2:ac:06:05:40:7e: 9d:cd:45:64:93:2b:1b:23:81:47:d0:8d:a3:09:6c: f6:73:c7:0f:20:49:97:49:dc:f4:5e:ec:3b:86:2f: a9:c1:b0:d8:ef:97:64:cc:9c:f5:5b:f3:d1:1e:03: 95:99:e2:bc:f1:72:dd:e8:45:65:2b:50:20:5c:50: 57:9a:18:39:29:ef:df:f1:9a:b0:92:86:8f:d9:47: 95:f8:12:02:a7:bc:6e:58:84:8e:bd:c2:2c:69:ea: 4e:a4:78:27:54:82:f6:41:dc:dd:d4:e4:ac:93:59: 8a:07:e5:96:3b:f7:08:7c:b1:24:67:30:83:7e:46: 45:d3:12:8b:0b:1d:2d:92:1d:5a:6e:af:c6:52:f5: f6:fa:df:8c:3d:1e:ae:a3:62:5e:c7:6e:53:82:8b: 27:dd:c2:da:b7:e1:8e:86:ce:26:96:a3:e8:5e:cc: 26:fc:95:38:f7:47:b4:a1:5c:d2:d9:bd:a1:9a:04: 49:af:18:58:0b:31:9a:45:27:2b:aa:c3:47:e7:74: 01:6f:b8:da:25:e1:cd:39:75:52:b4:08:e9:eb:f4: 36:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D8:EC:50:5C:61:35:F4:A1:F3:D2:45:37:70:80:A7:71:E6:38:3B X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/D470449E0E4411ED9C0F5B45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.116.0/22 Signature Algorithm: sha256WithRSAEncryption 97:c5:34:a5:29:bf:72:9d:c0:ec:5b:c6:02:16:2f:96:ee:73: 16:47:35:22:8e:ce:8a:31:2a:75:72:6e:37:5d:a7:3f:5f:2c: 76:d1:6e:e9:78:0d:cc:98:6e:8d:30:89:89:da:66:75:f4:fd: 04:39:b0:93:57:2e:08:93:82:a9:6b:fd:ac:91:45:02:e0:10: 50:60:90:5b:47:c1:0a:28:4c:be:e3:62:76:d3:18:92:ba:37: bf:2c:e2:92:ae:f9:83:5e:df:5f:c5:80:da:38:1d:8f:f7:42: 6b:17:07:d9:e8:2d:c1:52:8c:35:79:17:57:07:29:38:cf:45: 72:1d:bd:7c:4d:2d:16:d3:33:c7:c5:7d:94:5b:e0:4d:ea:27: e1:42:b6:7b:c1:bd:8c:a1:04:fc:4b:10:05:a9:45:78:40:ed: 94:83:47:bc:bb:93:bc:af:27:3a:90:94:c3:c1:81:67:05:ac: 6a:be:07:6b:33:46:c3:6b:6a:b0:20:46:6b:0f:f2:0c:eb:47: 61:2d:b0:a5:a5:61:5a:67:f8:9a:25:be:d1:57:03:06:6e:34: dc:70:a5:60:71:2c:17:19:88:61:85:c9:5c:1d:3c:14:96:f5: ed:e1:f6:85:ce:46:dd:3b:30:16:92:4f:0b:28:9f:88:c3:1b: 01:2f:1d:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwNzI1MDIwOTMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyZTc1Yi05MjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUK5okNH0yPjCi6cVj7mx0Woty945/qvtAXpxJidnDIVevDacF2irAYFQH6d zUVkkysbI4FH0I2jCWz2c8cPIEmXSdz0Xuw7hi+pwbDY75dkzJz1W/PRHgOVmeK8 8XLd6EVlK1AgXFBXmhg5Ke/f8ZqwkoaP2UeV+BICp7xuWISOvcIsaepOpHgnVIL2 Qdzd1OSsk1mKB+WWO/cIfLEkZzCDfkZF0xKLCx0tkh1abq/GUvX2+t+MPR6uo2Je x25Tgosn3cLat+GOhs4mlqPoXswm/JU490e0oVzS2b2hmgRJrxhYCzGaRScrqsNH 53QBb7jaJeHNOXVStAjp6/Q2hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIPY7FBc YTX0ofPSRTdwgKdx5jg7MB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTc4QTcvMTA0QjE5NDYwQ0JEMTFFREFBNzdEMTJEQzRGOUFFMDIvRDQ3MDQ0OUUw RTQ0MTFFRDlDMEY1QjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr5nQwDQYJKoZIhvcNAQELBQADggEBAJfFNKUpv3KdwOxb xgIWL5bucxZHNSKOzooxKnVybjddpz9fLHbRbul4DcyYbo0wiYnaZnX0/QQ5sJNX LgiTgqlr/ayRRQLgEFBgkFtHwQooTL7jYnbTGJK6N78s4pKu+YNe31/FgNo4HY/3 QmsXB9noLcFSjDV5F1cHKTjPRXIdvXxNLRbTM8fFfZRb4E3qJ+FCtnvBvYyhBPxL EAWpRXhA7ZSDR7y7k7yvJzqQlMPBgWcFrGq+B2szRsNrarAgRmsP8gzrR2EtsKWl YVpn+JolvtFXAwZuNNxwpWBxLBcZiGGFyVwdPBSW9e3h9oXORt07MBaSTwson4jD GwEvHVg= -----END CERTIFICATE-----Generated at Mon Aug 11 08:58:58 2025 by rpki-client