$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/AEEADAC8608911F09ACC0566C4F9AE02.roa File: AEEADAC8608911F09ACC0566C4F9AE02.roa (raw, json) Hash identifier: tEr4g5R12h+ldhJP/gdNS212uGl50Z7Cv3zyiy2+0GA= Subject key identifier: B4:9F:41:EA:D2:39:8F:F7:EB:9B:00:F3:1E:7E:E0:DC:84:02:12:7E Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C11 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/AEEADAC8608911F09ACC0566C4F9AE02.roa Signing time: Mon 14 Jul 2025 08:08:11 +0000 ROA not before: Mon 14 Jul 2025 08:08:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 2519 IP address blocks: 43.250.88.0/22 maxlen: 22 103.26.164.0/22 maxlen: 22 103.197.208.0/22 maxlen: 22 103.240.20.0/22 maxlen: 22 160.20.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 14:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3089 (0xc11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jul 14 08:08:11 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6874baeb-b217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:67:c8:5d:e3:86:21:5f:69:f2:ae:71:27:cc: 8a:e0:4c:b9:ba:00:ee:39:36:ca:f5:7e:fc:af:95: 9e:32:14:bf:a7:f1:1f:b9:38:b8:02:f1:78:d6:6f: e4:fb:92:35:48:44:5d:39:10:e4:24:20:f7:c5:02: 3b:97:72:94:47:38:06:13:55:5e:05:c9:ad:ca:64: dd:50:96:e1:54:e5:40:d5:9d:19:01:41:50:e2:c7: 99:c3:17:0a:64:ef:47:52:1f:63:84:65:cf:19:30: 15:ed:ec:9a:bb:cc:b9:12:40:46:10:f0:a6:fe:b8: 01:10:9d:93:08:7e:94:c1:03:34:c9:45:83:f0:a5: 20:c8:66:47:bc:a0:ef:9e:c3:0a:b9:54:5a:92:de: 7c:be:b6:53:31:8b:04:ea:e5:f3:00:c7:c3:97:07: 11:8d:e0:a9:26:12:c7:6b:cc:41:8b:b8:cc:40:2a: a7:06:b6:9f:59:2b:2f:76:ed:03:75:91:e0:6b:35: fc:d6:0c:61:86:54:d6:55:fe:8f:38:f9:63:0e:93: d4:7d:21:3b:71:41:bb:fe:87:f1:8d:1a:41:53:08: 15:e6:9b:b5:2b:3f:6c:3f:ed:6f:7d:d2:04:5b:26: d0:58:5d:53:d9:8c:b2:c0:8a:20:42:cc:27:f9:e2: 58:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9F:41:EA:D2:39:8F:F7:EB:9B:00:F3:1E:7E:E0:DC:84:02:12:7E X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/AEEADAC8608911F09ACC0566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.88.0/22 103.26.164.0/22 103.197.208.0/22 103.240.20.0/22 160.20.44.0/22 Signature Algorithm: sha256WithRSAEncryption 46:7c:a3:48:ec:96:21:20:b4:32:99:99:36:35:40:03:2a:21: 14:2c:f4:a2:c5:90:2e:fb:2e:7f:c8:17:5a:08:b9:22:ae:b9: 94:13:8a:00:f4:7a:65:4d:94:14:72:cd:da:31:a1:f8:01:57: 0c:75:6b:5e:fd:24:d0:8d:5e:23:98:09:d9:91:35:6d:d2:7a: 56:86:fc:07:22:d4:95:7f:dd:2e:91:4a:8a:41:ce:61:b1:5e: 5e:d8:d1:ba:32:b8:e1:ba:52:f6:a0:a9:2b:19:0c:b8:65:74: 54:04:5d:63:ca:40:9c:3e:75:2d:d4:35:07:78:f0:a1:4f:7e: 81:a4:dd:5c:e7:bf:eb:fc:dc:82:7f:09:87:a1:6a:97:f9:5e: 1a:d4:6b:84:d2:f9:c0:8e:48:69:ad:73:80:64:fe:89:75:c7: d3:e0:27:d5:6c:25:05:0f:03:c9:5c:22:7e:2d:c5:4f:1f:1c: c8:fa:95:05:eb:9b:5b:d6:c7:de:9b:a9:b4:88:56:1c:18:fa: ee:75:b8:c4:3f:5e:75:00:69:e8:32:4a:ae:06:ee:f7:52:e2: 7a:74:0e:d0:eb:05:73:04:88:c4:c8:4a:35:42:0e:b7:cb:c3: c9:ab:d9:78:12:95:79:18:e5:ec:6a:ac:71:52:a6:b2:6e:ba: 59:e2:b6:d4 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICDBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNzE0MDgwODExWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODc0YmFlYi1iMjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmfIXeOGIV9p8q5xJ8yK4Ey5ugDuOTbK9X78r5WeMhS/p/EfuTi4AvF41m/k +5I1SERdORDkJCD3xQI7l3KURzgGE1VeBcmtymTdUJbhVOVA1Z0ZAUFQ4seZwxcK ZO9HUh9jhGXPGTAV7eyau8y5EkBGEPCm/rgBEJ2TCH6UwQM0yUWD8KUgyGZHvKDv nsMKuVRakt58vrZTMYsE6uXzAMfDlwcRjeCpJhLHa8xBi7jMQCqnBrafWSsvdu0D dZHgazX81gxhhlTWVf6POPljDpPUfSE7cUG7/ofxjRpBUwgV5pu1Kz9sP+1vfdIE WybQWF1T2YyywIogQswn+eJYNQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFLSfQerS OY/365sA8x5+4NyEAhJ+MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvQUVFQURBQzg2 MDg5MTFGMDlBQ0MwNTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAIr+lgDBAJnGqQDBAJnxdADBAJn8BQDBAKgFCwwDQYJKoZI hvcNAQELBQADggEBAEZ8o0jsliEgtDKZmTY1QAMqIRQs9KLFkC77Ln/IF1oIuSKu uZQTigD0emVNlBRyzdoxofgBVwx1a179JNCNXiOYCdmRNW3SelaG/Aci1JV/3S6R SopBzmGxXl7Y0boyuOG6UvagqSsZDLhldFQEXWPKQJw+dS3UNQd48KFPfoGk3Vzn v+v83IJ/CYehapf5XhrUa4TS+cCOSGmtc4Bk/ol1x9PgJ9VsJQUPA8lcIn4txU8f HMj6lQXrm1vWx96bqbSIVhwY+u51uMQ/XnUAaegySq4G7vdS4np0DtDrBXMEiMTI SjVCDrfLw8mr2XgSlXkY5exqrHFSprJuulnittQ= -----END CERTIFICATE-----Generated at Sun Jul 20 06:28:30 2025 by rpki-client