$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/465DBB30BA8811EAAF996D39C4F9AE02.roa File: 465DBB30BA8811EAAF996D39C4F9AE02.roa (raw, json) Hash identifier: 23ndFVCcLg+/bCNKhL706A7YBuPjvG2i31lg9YjdTYE= Subject key identifier: C3:5B:63:69:69:36:54:B5:7B:D1:A8:E1:BA:A1:C8:84:F4:C0:8C:5B Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 088D Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/465DBB30BA8811EAAF996D39C4F9AE02.roa Signing time: Thu 06 Feb 2025 20:19:24 +0000 ROA not before: Thu 06 Feb 2025 20:19:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137280 IP address blocks: 104.250.32.0/23 maxlen: 23 104.250.32.0/24 maxlen: 24 104.250.33.0/24 maxlen: 24 104.250.34.0/23 maxlen: 23 104.250.38.0/23 maxlen: 23 104.250.40.0/23 maxlen: 23 104.250.42.0/23 maxlen: 23 104.250.44.0/24 maxlen: 24 104.250.46.0/23 maxlen: 23 104.250.48.0/23 maxlen: 23 104.250.50.0/23 maxlen: 23 104.250.52.0/22 maxlen: 22 104.250.56.0/22 maxlen: 22 104.250.56.0/23 maxlen: 23 104.250.58.0/23 maxlen: 23 104.250.60.0/23 maxlen: 23 104.250.60.0/24 maxlen: 24 104.250.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Feb 6 20:19:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a5194c-8c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:55:f5:75:61:7f:09:18:8b:26:3c:2e:41:c5: 92:20:38:2c:37:37:d6:f6:ea:0e:6d:53:fc:87:c4: ae:26:fb:8d:32:36:43:70:c6:ed:99:4c:aa:70:f4: 96:6b:3e:be:f9:43:bb:c5:ff:b4:b2:42:c9:86:f1: d2:cb:80:fc:b9:3e:b0:cc:a7:12:0e:18:71:94:56: af:60:c3:91:bb:06:85:17:42:5c:c9:3a:7f:42:05: 83:c7:d6:4f:80:7e:be:a0:a8:14:0d:27:ea:76:34: bb:9b:31:15:b3:5a:40:0c:77:6a:d2:f6:15:91:f8: 61:6e:0a:bd:6f:ec:89:52:93:b7:b9:f8:4a:72:57: 74:28:d5:14:a8:ed:a4:e3:c6:b7:b5:6b:2d:46:67: c2:2f:b6:65:b3:f0:dd:27:e4:65:26:82:3a:08:14: a0:e8:55:54:44:d8:dd:48:31:5e:7f:e7:4e:a4:3f: 26:d8:95:09:15:5e:cf:2e:c8:5f:67:fa:5d:04:9c: 1f:f2:ea:50:99:78:4b:03:2e:ac:53:eb:a5:91:17: 69:47:68:ae:aa:cc:6f:46:67:bd:87:d3:c9:cc:cb: c3:1e:15:53:c1:42:88:58:d2:07:dc:05:8e:09:a3: 84:64:94:ba:40:59:1d:ce:c2:e1:ca:b1:68:16:01: c9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:5B:63:69:69:36:54:B5:7B:D1:A8:E1:BA:A1:C8:84:F4:C0:8C:5B X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/465DBB30BA8811EAAF996D39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.250.32.0/22 104.250.38.0-104.250.44.255 104.250.46.0-104.250.63.255 Signature Algorithm: sha256WithRSAEncryption 29:e1:47:b8:3b:27:51:44:e6:68:a6:f2:3c:21:e8:fd:32:9f: f7:75:68:36:18:d9:f9:25:63:5c:e3:bf:ff:04:82:c5:13:27: b4:87:c6:e2:04:c1:d6:f5:a2:80:f5:7f:c9:cd:12:58:3d:88: 79:b0:8d:e8:54:13:96:00:74:ba:ea:b8:f3:3c:90:f8:6b:4a: f4:5b:fe:d2:67:d2:5e:89:7e:91:33:fd:d1:37:ae:c0:0c:18: f8:9c:fc:1e:fe:a0:6e:51:51:f7:d7:fb:34:a0:5b:c4:08:d1: a6:6d:4c:84:47:eb:61:f7:7c:56:dc:18:f8:e0:25:05:29:79: 1b:93:ad:a9:cf:fe:63:fd:e4:43:7e:18:7a:05:41:6b:b3:bd: d7:8e:6a:ae:c6:50:b0:df:0a:f9:85:a6:f9:87:81:c3:e6:da: 20:37:16:68:ee:a4:b0:67:08:8b:17:7f:d1:a1:b2:ac:9c:24: cf:51:e2:e5:bf:ca:5f:76:52:14:29:22:c1:99:73:b1:90:3f: 58:9f:84:48:f3:62:4a:48:86:24:f0:36:f0:e8:9f:55:eb:84: 43:0a:99:78:4e:d1:0f:34:f9:10:8e:4d:9a:a8:0c:a5:f6:01: 1e:3a:80:d9:e4:a0:0c:5b:9a:f9:a9:4b:27:76:c2:11:41:f3: 3a:96:ff:1f -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjUwMjA2MjAxOTI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1MTk0Yy04YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41X1dWF/CRiLJjwuQcWSIDgsNzfW9uoObVP8h8SuJvuNMjZDcMbtmUyqcPSW az6++UO7xf+0skLJhvHSy4D8uT6wzKcSDhhxlFavYMORuwaFF0JcyTp/QgWDx9ZP gH6+oKgUDSfqdjS7mzEVs1pADHdq0vYVkfhhbgq9b+yJUpO3ufhKcld0KNUUqO2k 48a3tWstRmfCL7Zls/DdJ+RlJoI6CBSg6FVURNjdSDFef+dOpD8m2JUJFV7PLshf Z/pdBJwf8upQmXhLAy6sU+ulkRdpR2iuqsxvRme9h9PJzMvDHhVTwUKIWNIH3AWO CaOEZJS6QFkdzsLhyrFoFgHJhQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFMNbY2lp NlS1e9Go4bqhyIT0wIxbMB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I4QkEvMkI3MzJFNzBCQTg1MTFFQUJBODM4RTMwQzRGOUFFMDIvNDY1REJCMzBC QTg4MTFFQUFGOTk2RDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIDBAJo+iAwDAMEAWj6JgMEAGj6LDAMAwQBaPouAwQGaPoAMA0G CSqGSIb3DQEBCwUAA4IBAQAp4Ue4OydRROZopvI8Iej9Mp/3dWg2GNn5JWNc47// BILFEye0h8biBMHW9aKA9X/JzRJYPYh5sI3oVBOWAHS66rjzPJD4a0r0W/7SZ9Je iX6RM/3RN67ADBj4nPwe/qBuUVH31/s0oFvECNGmbUyER+th93xW3Bj44CUFKXkb k62pz/5j/eRDfhh6BUFrs73XjmquxlCw3wr5hab5h4HD5togNxZo7qSwZwiLF3/R obKsnCTPUeLlv8pfdlIUKSLBmXOxkD9Yn4RI82JKSIYk8Dbw6J9V64RDCpl4TtEP NPkQjk2aqAyl9gEeOoDZ5KAMW5r5qUsndsIRQfM6lv8f -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:57 2025 by rpki-client