$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/142EA3A84FEF11EF9A822A21C4F9AE02.roa File: 142EA3A84FEF11EF9A822A21C4F9AE02.roa (raw, json) Hash identifier: PsC0/VUJuwAMkmEBhdJkaydKW8CflQBB5EZOYU0cJtQ= Subject key identifier: B9:EC:03:DC:2B:B2:A8:9D:51:BD:FC:7E:F0:1A:EB:87:38:8D:38:86 Certificate issuer: /CN=A91E91BC/serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608 Certificate serial: 034E Authority key identifier: 6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/142EA3A84FEF11EF9A822A21C4F9AE02.roa Signing time: Thu 05 Jun 2025 01:08:19 +0000 ROA not before: Thu 05 Jun 2025 01:08:19 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151499 IP address blocks: 202.12.87.0/24 maxlen: 24 202.12.88.0/24 maxlen: 24 202.12.89.0/24 maxlen: 24 202.12.90.0/24 maxlen: 24 203.0.12.0/23 maxlen: 24 203.3.124.0/22 maxlen: 22 203.4.226.0/24 maxlen: 24 203.12.236.0/22 maxlen: 22 203.12.236.0/24 maxlen: 24 203.12.237.0/24 maxlen: 24 203.12.238.0/24 maxlen: 24 203.12.239.0/24 maxlen: 24 203.14.152.0/24 maxlen: 24 203.14.153.0/24 maxlen: 24 203.14.154.0/24 maxlen: 24 203.14.155.0/24 maxlen: 24 203.14.158.0/23 maxlen: 24 203.27.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.crl rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608 Validity Not Before: Jun 5 01:08:19 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840ee03-5393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9d:0d:a1:ad:2e:45:fe:45:a5:ad:b9:d3:e1: 79:5f:b9:4b:d3:63:26:39:8d:94:c7:28:e7:c9:7c: ce:0a:34:52:a1:ec:6f:dd:3f:20:e6:a3:28:65:6b: 7a:2e:31:c1:ce:ea:08:87:e7:3e:1b:30:54:d8:19: d5:0e:98:e3:3f:11:31:b8:b0:b7:ca:fa:98:d5:5b: 42:79:53:54:7d:7e:38:c6:8f:ff:03:74:90:f2:51: d4:77:be:46:66:6a:a5:c2:16:80:0f:44:8c:89:d4: e9:0d:00:0f:7a:41:f1:bf:39:01:3e:71:d9:6a:7b: 8d:f2:f3:18:e4:b8:16:d3:97:a2:16:3a:21:2d:1c: 6c:0a:c9:2e:30:50:6e:be:3b:c5:2f:d7:fb:31:8e: 99:59:1d:e1:88:16:b0:19:6f:5e:39:ca:1e:c5:68: 95:33:67:fa:b9:e2:e9:d9:65:4e:fb:d2:40:ef:5e: 81:8c:30:9b:0d:5d:98:36:97:ea:75:2e:a4:45:2d: f5:ec:69:a1:36:04:71:bf:4e:02:4a:bc:19:89:5a: ec:24:e3:ab:98:6d:00:56:a2:de:91:a5:47:b7:c8: 9a:ea:80:10:f8:94:29:5e:33:32:85:b4:01:39:64: e1:f4:69:a0:f6:33:6c:19:e3:78:2b:18:4b:5c:62: dd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:EC:03:DC:2B:B2:A8:9D:51:BD:FC:7E:F0:1A:EB:87:38:8D:38:86 X509v3 Authority Key Identifier: keyid:6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/142EA3A84FEF11EF9A822A21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.87.0-202.12.90.255 203.0.12.0/23 203.3.124.0/22 203.4.226.0/24 203.12.236.0/22 203.14.152.0/22 203.14.158.0/23 203.27.126.0/24 Signature Algorithm: sha256WithRSAEncryption ad:a0:73:53:ec:4a:af:90:eb:70:59:f5:2b:4b:31:77:7d:e6: a6:99:c5:c9:f0:0c:bf:08:62:e8:d2:fe:ce:a8:3c:0e:f8:a5: 56:b6:74:ed:df:e3:fd:82:c0:ab:7f:99:1e:c2:4e:b0:7c:0c: d8:08:69:58:56:b1:03:82:e1:7c:58:b8:06:ac:54:47:d4:6c: c8:29:03:e8:b2:84:21:7e:06:7e:33:b3:99:c5:07:3e:e3:b6: c5:8e:d6:e4:93:56:49:de:d0:21:8f:5b:3c:eb:a9:36:60:bb: b5:eb:3d:83:4b:a0:f5:99:64:2d:a7:0b:f9:2d:84:18:c8:58: 26:d1:62:57:5d:67:20:5f:8c:79:47:39:a4:ba:ed:e8:78:21: 72:5a:8f:c5:ca:f9:f0:3b:0d:2a:9c:bb:bc:8f:dd:65:31:0d: 3c:e1:4d:16:c1:04:c0:00:96:8c:c7:79:a3:92:d7:52:d2:05: d5:66:bb:65:c5:32:10:2b:95:43:b4:83:81:b7:fe:e1:02:c3: fe:7e:06:81:1b:aa:27:0d:d8:f1:da:86:7a:84:02:27:c0:df: b4:50:94:39:c5:12:32:e1:39:62:fc:18:15:e9:ad:0f:08:49: d5:c1:6e:19:39:e0:86:4b:25:a5:56:c0:bb:d3:b5:66:3b:0e: 7d:81:c1:d2 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICA04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDZENUQ1MEU4OEI5RDY1RThBRkRBMjhDMkNFQTYxNTAx MjcwMzg2MDgwHhcNMjUwNjA1MDEwODE5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZWUwMy01MzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ0Noa0uRf5Fpa250+F5X7lL02MmOY2UxyjnyXzOCjRSoexv3T8g5qMoZWt6 LjHBzuoIh+c+GzBU2BnVDpjjPxExuLC3yvqY1VtCeVNUfX44xo//A3SQ8lHUd75G ZmqlwhaAD0SMidTpDQAPekHxvzkBPnHZanuN8vMY5LgW05eiFjohLRxsCskuMFBu vjvFL9f7MY6ZWR3hiBawGW9eOcoexWiVM2f6ueLp2WVO+9JA716BjDCbDV2YNpfq dS6kRS317GmhNgRxv04CSrwZiVrsJOOrmG0AVqLekaVHt8ia6oAQ+JQpXjMyhbQB OWTh9Gmg9jNsGeN4KxhLXGLd2wIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFLnsA9wr sqidUb38fvAa64c4jTiGMB8GA1UdIwQYMBaAFG1dUOiLnWXor9oows6mFQEnA4YI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BRTQ0RDI0QURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9iVjFRNkl1ZFplaXYyaWpDenFZVkFTY0Ro Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JWMVE2SXVkWmVpdjJpakN6cVlWQVNjRGhnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkxQkMvQUU0NEQyNEFEQkU5MTFFQzk1MTEwNTE1QzRGOUFFMDIvMTQyRUEzQTg0 RkVGMTFFRjlBODIyQTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgABMDgwDAMEAMoMVwMEAMoMWgMEAcsADAMEAssDfAMEAMsE4gMEAssM 7AMEAssOmAMEAcsOngMEAMsbfjANBgkqhkiG9w0BAQsFAAOCAQEAraBzU+xKr5Dr cFn1K0sxd33mppnFyfAMvwhi6NL+zqg8DvilVrZ07d/j/YLAq3+ZHsJOsHwM2Ahp WFaxA4LhfFi4BqxUR9RsyCkD6LKEIX4GfjOzmcUHPuO2xY7W5JNWSd7QIY9bPOup NmC7tes9g0ug9ZlkLacL+S2EGMhYJtFiV11nIF+MeUc5pLrt6HghclqPxcr58DsN Kpy7vI/dZTENPOFNFsEEwACWjMd5o5LXUtIF1Wa7ZcUyECuVQ7SDgbf+4QLD/n4G gRuqJw3Y8dqGeoQCJ8DftFCUOcUSMuE5YvwYFemtDwhJ1cFuGTnghkslpVbAu9O1 ZjsOfYHB0g== -----END CERTIFICATE-----Generated at Wed Nov 5 19:25:31 2025 by rpki-client