$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa File: B42198DC64F211ED9AEC046FC4F9AE02.roa (raw, json) Hash identifier: GPN+fU+xzGuylWye0nkTRYwbIM5sQRJJyZ5po6QU8a8= Subject key identifier: 3B:F1:3C:BA:6E:DB:6E:EE:6C:AF:D2:5D:95:4E:C9:76:DE:52:CF:15 Certificate issuer: /CN=A91B5CEA/serialNumber=FD4E5CFBBE51340160396D596E1B3248CFC81CC4 Certificate serial: 0202 Authority key identifier: FD:4E:5C:FB:BE:51:34:01:60:39:6D:59:6E:1B:32:48:CF:C8:1C:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa Signing time: Sun 27 Jul 2025 01:49:17 +0000 ROA not before: Sun 27 Jul 2025 01:49:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133606 IP address blocks: 43.243.120.0/22 maxlen: 24 43.243.176.0/22 maxlen: 24 43.254.56.0/22 maxlen: 24 103.94.180.0/22 maxlen: 24 103.238.116.0/22 maxlen: 24 116.199.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 02:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=FD4E5CFBBE51340160396D596E1B3248CFC81CC4 Validity Not Before: Jul 27 01:49:17 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6885859d-11d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:99:cd:78:f7:e4:92:f3:e1:6b:71:68:9f:7a: b5:bd:42:6a:4a:2b:d3:07:21:0e:6b:c3:ae:76:4a: ca:fb:db:4f:a5:da:82:12:c1:94:3e:5d:ea:62:3f: 13:2c:98:3f:2f:6f:9b:66:fa:32:5b:61:4f:53:6e: b0:7f:2b:b4:ad:f9:ad:5c:e2:db:6d:7b:7a:df:c6: 6f:0d:82:c2:5c:08:f1:d0:dd:64:00:0f:57:93:95: a9:e9:e8:b3:95:72:a6:9a:57:7f:21:4b:df:97:0c: 6b:8c:c0:68:94:2e:3b:d1:49:75:74:a4:49:cd:67: a3:83:06:3b:44:0e:ad:ec:49:cc:a2:9a:a2:4a:8a: a9:36:70:11:06:99:9f:82:af:51:0a:fb:c8:00:2e: 33:06:01:cd:59:a1:62:62:2f:fe:86:ec:4b:3b:23: 5e:41:72:aa:da:b8:ad:31:6c:83:87:e7:25:83:06: f2:2f:21:78:7b:f1:6d:b4:2e:88:0d:95:1b:2f:16: b1:ca:0f:6f:94:bd:d3:4c:5e:8f:70:cd:37:03:18: 18:cc:cc:68:90:1a:ac:c4:fe:61:e6:53:18:02:9b: 5b:94:94:b3:e4:7d:21:d6:25:03:6c:54:51:0b:7c: 8f:b1:f1:99:41:f5:1e:ac:f7:79:cc:88:f7:e1:db: e0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F1:3C:BA:6E:DB:6E:EE:6C:AF:D2:5D:95:4E:C9:76:DE:52:CF:15 X509v3 Authority Key Identifier: keyid:FD:4E:5C:FB:BE:51:34:01:60:39:6D:59:6E:1B:32:48:CF:C8:1C:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.120.0/22 43.243.176.0/22 43.254.56.0/22 103.94.180.0/22 103.238.116.0/22 116.199.172.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:31:21:6c:76:21:3e:23:d1:4d:85:d2:5d:2a:b3:46:02:a3: 6b:ac:6c:08:52:98:42:b5:49:f7:7d:e9:4d:19:2b:3b:7d:fe: bc:6a:7c:bb:de:cc:aa:a8:8b:93:ff:83:61:f3:6b:80:b6:52: af:91:40:22:04:69:90:5e:53:54:4a:e5:62:59:8a:93:b0:5e: c8:82:de:8f:25:df:11:52:13:e9:9f:2b:f6:2a:ac:c1:15:57: 4b:00:38:f9:4d:ff:75:ed:c6:73:f6:17:40:e2:2f:1a:12:69: 92:4c:c2:51:54:bd:a5:ac:c7:7d:b4:c6:32:53:be:44:cc:56: 54:e8:fb:15:4e:e4:56:60:58:15:b5:ec:f9:be:a5:f6:fd:6f: 49:a7:94:c0:6e:32:28:d9:32:d5:56:b0:a0:8a:3b:bc:9f:db: 47:e2:c2:70:cb:88:4a:59:ef:4e:98:26:ec:9e:c9:0c:d6:45: 97:b2:5f:21:ce:e6:37:e5:ca:82:83:d0:fd:7f:56:f1:79:16: b4:80:32:e2:8d:6c:a8:90:76:3c:3c:47:49:b9:94:7f:d3:4f: 9a:a0:df:c7:52:7a:b8:d1:af:15:58:f2:86:eb:db:2c:b7:6e: 9a:42:4d:68:5d:a3:3c:bb:e0:ad:0b:80:90:ab:a6:f0:9f:b7: fc:8b:12:ae -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKEZENEU1Q0ZCQkU1MTM0MDE2MDM5NkQ1OTZFMUIzMjQ4 Q0ZDODFDQzQwHhcNMjUwNzI3MDE0OTE3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1ODU5ZC0xMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZnNePfkkvPha3Fon3q1vUJqSivTByEOa8OudkrK+9tPpdqCEsGUPl3qYj8T LJg/L2+bZvoyW2FPU26wfyu0rfmtXOLbbXt638ZvDYLCXAjx0N1kAA9Xk5Wp6eiz lXKmmld/IUvflwxrjMBolC470Ul1dKRJzWejgwY7RA6t7EnMopqiSoqpNnARBpmf gq9RCvvIAC4zBgHNWaFiYi/+huxLOyNeQXKq2ritMWyDh+clgwbyLyF4e/FttC6I DZUbLxaxyg9vlL3TTF6PcM03AxgYzMxokBqsxP5h5lMYAptblJSz5H0h1iUDbFRR C3yPsfGZQfUerPd5zIj34dvgqwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFDvxPLpu 227ubK/SXZVOyXbeUs8VMB8GA1UdIwQYMBaAFP1OXPu+UTQBYDltWW4bMkjPyBzE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8yOEE3N0I2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9fVTVjLTc1Uk5BRmdPVzFaYmhzeVNNX0lI TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VNWMtNzVSTkFGZ09XMVpiaHN5U01fSUhNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDRUEvMjhBNzdCNjg2NEVFMTFFREE0QTM0NTEzQzRGOUFFMDIvQjQyMTk4REM2 NEYyMTFFRDlBRUMwNDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAIr83gDBAIr87ADBAIr/jgDBAJnXrQDBAJn7nQDBAJ0x6ww DQYJKoZIhvcNAQELBQADggEBAC8xIWx2IT4j0U2F0l0qs0YCo2usbAhSmEK1Sfd9 6U0ZKzt9/rxqfLvezKqoi5P/g2Hza4C2Uq+RQCIEaZBeU1RK5WJZipOwXsiC3o8l 3xFSE+mfK/YqrMEVV0sAOPlN/3XtxnP2F0DiLxoSaZJMwlFUvaWsx320xjJTvkTM VlTo+xVO5FZgWBW17Pm+pfb9b0mnlMBuMijZMtVWsKCKO7yf20fiwnDLiEpZ706Y JuyeyQzWRZeyXyHO5jflyoKD0P1/VvF5FrSAMuKNbKiQdjw8R0m5lH/TT5qg38dS erjRrxVY8obr2yy3bppCTWhdozy74K0LgJCrpvCft/yLEq4= -----END CERTIFICATE-----Generated at Thu Aug 7 03:28:08 2025 by rpki-client