$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/4F467C58D3AA11ED91B0C532C4F9AE02.roa File: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (raw, json) Hash identifier: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y= Subject key identifier: 28:97:64:39:E1:9E:1F:A1:FB:3A:13:F9:6D:43:B6:13:DA:B8:D9:9C Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01B2 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/4F467C58D3AA11ED91B0C532C4F9AE02.roa Signing time: Thu 17 Jul 2025 03:39:47 +0000 ROA not before: Thu 17 Jul 2025 03:39:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45352 IP address blocks: 43.228.244.0/22 maxlen: 24 103.67.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Jul 17 03:39:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68787083-67e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0a:ba:86:fc:c6:58:8c:a8:de:85:30:a5:69: c1:a9:7e:65:7b:d9:1e:c2:5a:c8:97:59:6b:37:1a: bd:28:d3:b3:1e:65:58:d8:8d:e8:36:25:fe:46:6e: 92:54:aa:ca:70:4b:d3:d1:20:b3:7d:8f:cc:71:74: 5b:e1:a1:50:4b:db:5c:eb:7e:ce:64:ef:38:aa:af: 44:23:35:10:cf:0a:a4:b8:a9:ee:81:cd:ee:a4:93: a6:bf:1c:25:54:a0:8f:e8:2b:14:b4:b7:a4:d1:53: 82:7b:db:19:7b:72:8c:00:9e:ff:47:2c:69:79:b1: ce:33:f0:80:0f:7e:b2:86:d5:41:0a:12:25:4b:57: bd:e0:45:14:da:33:f2:c7:d7:24:71:4d:04:17:fe: 63:36:d0:f3:27:88:9d:e7:01:3a:80:f6:60:68:10: e3:16:f9:7f:65:5c:a2:8a:80:b4:a9:7c:5c:64:62: 90:ea:1b:7f:3c:1b:a2:e5:d8:62:9a:49:e9:f3:e9: 2a:a4:ce:a3:92:a2:c2:65:68:1d:67:f1:86:05:f3: f2:bd:e1:38:13:c2:97:26:f1:b7:e1:d7:3c:07:b5: 89:da:55:82:17:d7:0b:b1:e0:dd:06:43:c4:30:d6: c9:f6:70:18:0d:8f:0a:a1:69:43:55:f7:6b:02:e1: c7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:97:64:39:E1:9E:1F:A1:FB:3A:13:F9:6D:43:B6:13:DA:B8:D9:9C X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/4F467C58D3AA11ED91B0C532C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.244.0/22 103.67.36.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:34:ea:1a:f2:2f:82:5b:14:7c:96:84:05:93:1d:08:c8:92: 68:45:63:fa:13:56:da:8e:17:33:89:4a:8b:5d:85:6a:4c:1f: bb:50:8a:db:2e:5e:96:f7:47:7a:97:dc:26:ff:0a:81:31:74: 70:b4:f1:c6:3b:cb:33:97:03:a6:62:40:71:3a:28:f8:ec:e3: 81:c4:da:d2:a5:67:4c:ba:60:31:52:dd:6d:05:8c:12:44:ad: 90:30:eb:29:b2:37:7f:f3:fa:b2:01:16:09:19:18:62:04:26: 8f:52:23:2b:c5:d3:2d:5c:86:5c:a2:f9:11:13:24:ef:3c:cc: 6e:fe:b6:0a:b8:9f:22:ae:73:92:06:73:0d:36:98:e1:7e:4e: 70:9c:eb:1a:8d:c2:aa:c9:42:85:e8:f6:d4:12:af:30:a1:f4: 36:7d:df:8b:b3:a4:19:ef:c9:fc:3b:b2:6b:70:de:79:61:a0: 5f:6c:7d:6f:ad:53:5a:8d:06:ca:4d:b6:07:1a:ba:7f:75:76: e4:01:95:c3:bd:a0:4f:0d:82:f5:3e:85:5c:4c:8a:b7:70:ab: 17:60:11:4a:e6:40:6d:6c:11:a8:74:fe:a6:2c:23:f4:16:02: 8e:4a:89:b7:67:dc:51:9c:9d:b4:07:79:c1:fa:4a:d9:d6:1a: 42:bc:6d:f7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNzE3MDMzOTQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc4NzA4My02N2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQq6hvzGWIyo3oUwpWnBqX5le9kewlrIl1lrNxq9KNOzHmVY2I3oNiX+Rm6S VKrKcEvT0SCzfY/McXRb4aFQS9tc637OZO84qq9EIzUQzwqkuKnugc3upJOmvxwl VKCP6CsUtLek0VOCe9sZe3KMAJ7/RyxpebHOM/CAD36yhtVBChIlS1e94EUU2jPy x9ckcU0EF/5jNtDzJ4id5wE6gPZgaBDjFvl/ZVyiioC0qXxcZGKQ6ht/PBui5dhi mknp8+kqpM6jkqLCZWgdZ/GGBfPyveE4E8KXJvG34dc8B7WJ2lWCF9cLseDdBkPE MNbJ9nAYDY8KoWlDVfdrAuHHxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCiXZDnh nh+h+zoT+W1DthPauNmcMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEzODkvQjIxNzBCNzREM0EzMTFFRDg4MDZBQzExQzRGOUFFMDIvNEY0NjdDNThE M0FBMTFFRDkxQjBDNTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5PQDBAJnQyQwDQYJKoZIhvcNAQELBQADggEBAAo06hry L4JbFHyWhAWTHQjIkmhFY/oTVtqOFzOJSotdhWpMH7tQitsuXpb3R3qX3Cb/CoEx dHC08cY7yzOXA6ZiQHE6KPjs44HE2tKlZ0y6YDFS3W0FjBJErZAw6ymyN3/z+rIB FgkZGGIEJo9SIyvF0y1chlyi+RETJO88zG7+tgq4nyKuc5IGcw02mOF+TnCc6xqN wqrJQoXo9tQSrzCh9DZ934uzpBnvyfw7smtw3nlhoF9sfW+tU1qNBspNtgcaun91 duQBlcO9oE8NgvU+hVxMirdwqxdgEUrmQG1sEah0/qYsI/QWAo5Kibdn3FGcnbQH ecH6StnWGkK8bfc= -----END CERTIFICATE-----Generated at Tue Jul 22 04:57:26 2025 by rpki-client