$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/DFEA30745C3011EEB250DE0EC4F9AE02.roa File: DFEA30745C3011EEB250DE0EC4F9AE02.roa (raw, json) Hash identifier: /a+ZA2ERE3wFJg9UM9vnT7hTqkW6cEzxlPnScilW2Xc= Subject key identifier: CA:6C:85:4B:CD:F0:16:9B:FC:A3:75:A0:4C:44:37:61:A4:8D:AE:78 Certificate issuer: /CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Certificate serial: 08A6 Authority key identifier: 3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/DFEA30745C3011EEB250DE0EC4F9AE02.roa Signing time: Fri 08 Aug 2025 21:01:56 +0000 ROA not before: Fri 08 Aug 2025 21:01:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135580 IP address blocks: 45.255.252.0/22 maxlen: 24 103.65.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEC2, serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Validity Not Before: Aug 8 21:01:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689665c4-f38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:78:66:a1:40:3c:c7:63:9d:24:dd:e2:31:13: d3:1c:35:9e:47:e7:5a:3c:4c:14:56:4f:d5:36:e6: a2:f1:80:12:4e:af:2b:cc:fa:9c:58:1a:78:bc:77: 40:70:23:ca:1e:ef:4f:42:11:c4:93:99:73:c7:e7: eb:26:3b:c9:08:33:7b:b6:e9:fa:36:9a:2e:68:96: bf:ea:21:5e:2a:a9:a5:b6:23:4b:a6:5b:75:e2:1a: 55:e2:a9:0f:e6:41:b4:41:e8:19:7f:0e:2f:2c:80: 6e:bb:95:b5:26:ed:7b:14:98:70:ca:8b:f8:88:f1: 95:bd:4f:7e:e0:69:b6:58:02:68:35:4f:9b:a4:73: 72:3a:8a:25:56:6d:a0:89:f9:c5:a6:69:41:5a:a0: b3:3e:6e:21:38:13:74:9e:87:8f:8a:4f:07:d5:09: 8a:1a:e6:7b:f3:32:58:a1:98:fa:d8:bc:1d:04:11: 10:35:4a:a4:e1:d3:94:51:a5:77:4b:d0:93:59:40: 08:d1:17:91:1c:78:9e:7a:1e:9c:8f:09:43:f6:de: fd:71:0b:0d:44:44:ef:bc:33:f6:c6:a1:eb:dd:8b: ce:34:f9:3b:9d:ae:09:12:c1:d2:ef:93:15:4d:35: 9e:cc:19:56:70:e7:f0:3c:66:69:b2:c3:41:54:c8: 19:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6C:85:4B:CD:F0:16:9B:FC:A3:75:A0:4C:44:37:61:A4:8D:AE:78 X509v3 Authority Key Identifier: keyid:3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/DFEA30745C3011EEB250DE0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.255.252.0/22 103.65.176.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:80:c9:99:1b:8a:b7:6d:ac:b2:7b:ed:e7:75:34:43:65:2c: 05:3e:a1:cc:a6:9d:c2:8f:ef:26:13:75:04:23:7c:a1:86:76: 47:39:4f:31:57:9c:64:5a:b0:a2:97:9b:95:e7:69:05:14:c4: 47:27:60:06:c2:84:95:80:ff:18:41:f7:6e:1e:df:16:45:72: ce:1a:fe:7d:56:96:6a:4a:6a:a8:fd:1a:10:b7:bb:ea:8a:88: e0:e9:3c:49:dc:99:29:ad:14:93:1e:10:c3:45:88:ca:3e:07: 3e:72:5d:8f:63:4b:e4:f2:58:02:98:45:21:e5:d0:53:68:cc: a9:86:23:f4:48:53:5a:99:a4:89:dc:3e:46:92:4e:72:be:55: cb:84:31:18:fe:3d:f8:a0:a3:c1:f7:3b:f7:bc:1b:1d:03:b2: 0b:8f:08:7d:2a:6d:91:95:9f:52:b3:8c:88:1a:58:0b:84:91: b7:ba:80:c5:87:9b:75:27:bf:22:af:22:7c:53:ea:aa:1c:9f: f9:3c:61:51:d5:d2:25:7c:c2:ed:8b:09:53:e9:5c:8b:54:a5: ad:7a:78:73:e5:c9:6f:3e:9d:e4:55:f7:9b:d5:5b:2d:ce:35: 87:16:05:dc:e7:d2:1b:07:99:c0:95:b0:75:b7:96:e7:87:73: 46:0a:6a:fb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQzIxMTAvBgNVBAUTKDNEMzg5MUE0NkNCQ0JBQjQ3NDc4REVBNDBEMjkwOEY2 N0NDRTNCMkEwHhcNMjUwODA4MjEwMTU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2NjVjNC1mMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunhmoUA8x2OdJN3iMRPTHDWeR+daPEwUVk/VNuai8YASTq8rzPqcWBp4vHdA cCPKHu9PQhHEk5lzx+frJjvJCDN7tun6NpouaJa/6iFeKqmltiNLplt14hpV4qkP 5kG0QegZfw4vLIBuu5W1Ju17FJhwyov4iPGVvU9+4Gm2WAJoNU+bpHNyOoolVm2g ifnFpmlBWqCzPm4hOBN0noePik8H1QmKGuZ78zJYoZj62LwdBBEQNUqk4dOUUaV3 S9CTWUAI0ReRHHieeh6cjwlD9t79cQsNRETvvDP2xqHr3YvONPk7na4JEsHS75MV TTWezBlWcOfwPGZpssNBVMgZDwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMpshUvN 8Bab/KN1oExEN2Gkja54MB8GA1UdIwQYMBaAFD04kaRsvLq0dHjepA0pCPZ8zjsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVDMi8yRERERDI2Q0My QzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVyUjBlTjZrRFNrSTluek9P eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUaVJwR3k4dXJSMGVONmtEU2tJOW56T095by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQzIvMkREREQyNkNDMkMwMTFFQTkzRDU4NTdGQzRGOUFFMDIvREZFQTMwNzQ1 QzMwMTFFRUIyNTBERTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt//wDBAJnQbAwDQYJKoZIhvcNAQELBQADggEBAIuAyZkb irdtrLJ77ed1NENlLAU+ocymncKP7yYTdQQjfKGGdkc5TzFXnGRasKKXm5XnaQUU xEcnYAbChJWA/xhB924e3xZFcs4a/n1WlmpKaqj9GhC3u+qKiODpPEncmSmtFJMe EMNFiMo+Bz5yXY9jS+TyWAKYRSHl0FNozKmGI/RIU1qZpIncPkaSTnK+VcuEMRj+ Pfigo8H3O/e8Gx0DsguPCH0qbZGVn1KzjIgaWAuEkbe6gMWHm3UnvyKvInxT6qoc n/k8YVHV0iV8wu2LCVPpXItUpa16eHPlyW8+neRV95vVWy3ONYcWBdzn0hsHmcCV sHW3lueHc0YKavs= -----END CERTIFICATE-----Generated at Sat Aug 9 23:14:03 2025 by rpki-client