$ rpki-client -vvf rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4B3A4250B46A11EAB5A01176C4F9AE02.roa File: 4B3A4250B46A11EAB5A01176C4F9AE02.roa (raw, json) Hash identifier: rJeii+ilF+9cVriG2vucr/nhWEU/kidxHLEjPFgUME0= Subject key identifier: 0A:53:9D:BC:57:F7:93:99:0B:D8:34:C0:AF:29:48:9B:80:3A:31:D9 Certificate issuer: /CN=A912512F/serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Certificate serial: 091F Authority key identifier: E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4B3A4250B46A11EAB5A01176C4F9AE02.roa Signing time: Tue 02 Sep 2025 20:41:07 +0000 ROA not before: Tue 02 Sep 2025 20:41:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135387 IP address blocks: 43.246.216.0/22 maxlen: 22 43.246.216.0/24 maxlen: 24 43.246.217.0/24 maxlen: 24 43.246.218.0/24 maxlen: 24 43.246.219.0/24 maxlen: 24 103.5.44.0/22 maxlen: 22 103.5.44.0/24 maxlen: 24 103.5.45.0/24 maxlen: 24 103.5.46.0/24 maxlen: 24 103.5.47.0/24 maxlen: 24 103.35.204.0/22 maxlen: 22 103.35.204.0/24 maxlen: 24 103.35.205.0/24 maxlen: 24 103.35.206.0/24 maxlen: 24 103.35.207.0/24 maxlen: 24 103.249.160.0/24 maxlen: 24 103.249.161.0/24 maxlen: 24 103.249.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2335 (0x91f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912512F, serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Validity Not Before: Sep 2 20:41:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b75663-2b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2d:c0:aa:41:00:14:35:00:1c:4c:35:05:d6: 06:17:33:cd:4f:f1:e1:8c:47:76:c6:3b:0a:8c:30: b9:02:ba:5a:27:41:c7:65:45:0e:78:a0:2c:82:fc: a6:91:0b:90:2c:a1:cf:26:58:c1:b6:d2:aa:c6:20: 99:2f:99:29:54:f9:41:37:8e:99:e8:a7:63:d7:21: 43:e6:f2:70:21:c9:cc:c9:15:b4:89:af:2f:d4:6f: 09:05:ce:5e:65:4c:80:47:ba:81:b3:0c:1a:4e:b7: e6:d4:c0:89:c2:f5:06:47:0d:f1:34:d3:ca:57:5d: ce:a0:a6:78:e4:eb:57:02:2f:02:67:ba:87:e0:9a: c2:8b:02:3f:e9:c6:97:bb:1e:a6:9a:e3:e6:43:d0: 0c:41:37:e0:30:68:df:d8:37:f2:48:07:c4:4d:59: 14:92:55:d9:a0:d0:d3:62:45:90:9c:b3:d5:f6:85: 2f:20:67:73:e8:1c:13:a4:df:d7:6c:c5:9a:fe:32: 93:d9:d2:e2:7f:2a:31:c9:ea:d9:e9:c6:47:99:3b: a8:2a:34:ac:16:03:21:ee:d4:aa:4e:4b:88:ea:98: 17:2a:5f:b7:08:dd:13:1f:18:a7:c9:30:f1:55:95: 36:7f:5c:3b:94:5a:0b:21:fb:5b:48:19:e8:bc:c4: 0a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:53:9D:BC:57:F7:93:99:0B:D8:34:C0:AF:29:48:9B:80:3A:31:D9 X509v3 Authority Key Identifier: keyid:E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4B3A4250B46A11EAB5A01176C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.216.0/22 103.5.44.0/22 103.35.204.0/22 103.249.160.0-103.249.162.255 Signature Algorithm: sha256WithRSAEncryption 7d:ed:13:fc:9f:ca:ba:14:9a:a9:f0:3f:13:1d:ae:a3:f9:ba: b3:eb:f9:65:84:94:ca:57:cc:3d:6d:e9:77:de:5c:9b:38:d3: 21:3b:b5:f5:b7:ea:41:8c:4f:d2:36:ff:d1:c6:3e:5b:1d:f7: 58:ad:a4:1b:22:85:c5:76:6e:85:2e:cb:98:ac:84:5b:64:bd: f3:63:be:e4:06:27:e4:63:28:9d:49:ca:a1:11:a2:a9:14:21: db:8a:90:14:71:0c:0d:53:47:33:db:ba:82:3e:a2:b5:63:c8: 81:57:68:1d:d2:07:b9:03:d6:61:03:d3:7a:a9:d7:9e:fe:1d: b6:9e:fe:17:49:be:da:1f:1f:82:8e:db:61:a3:42:34:4f:26: fe:a4:a8:e0:4b:ae:78:8f:9e:80:5c:f8:f0:72:2f:7f:64:9b: 14:d3:ba:3e:8c:49:e3:33:e8:60:88:9e:b5:38:95:e3:30:b3: f6:45:96:d4:f4:20:90:03:fe:a3:d3:3a:d2:2e:a5:18:3b:07: dd:f0:75:01:ea:e8:d1:80:0e:0a:1d:4b:83:db:b9:36:67:26: 88:0c:25:ba:59:d8:f4:a7:09:41:9f:b9:57:88:5c:6a:08:d0: 4d:9c:9d:5a:37:34:d2:35:e8:1b:00:92:f5:15:a5:1a:83:ff: 14:2b:8b:82 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxMkYxMTAvBgNVBAUTKEUyMzdEMkNEM0JBMUYxQjkyNzU0NUYyNDQ5OTI4NzJB RDBBRkMzMDUwHhcNMjUwOTAyMjA0MTA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NTY2My0yYjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS3AqkEAFDUAHEw1BdYGFzPNT/HhjEd2xjsKjDC5ArpaJ0HHZUUOeKAsgvym kQuQLKHPJljBttKqxiCZL5kpVPlBN46Z6Kdj1yFD5vJwIcnMyRW0ia8v1G8JBc5e ZUyAR7qBswwaTrfm1MCJwvUGRw3xNNPKV13OoKZ45OtXAi8CZ7qH4JrCiwI/6caX ux6mmuPmQ9AMQTfgMGjf2DfySAfETVkUklXZoNDTYkWQnLPV9oUvIGdz6BwTpN/X bMWa/jKT2dLifyoxyerZ6cZHmTuoKjSsFgMh7tSqTkuI6pgXKl+3CN0THxinyTDx VZU2f1w7lFoLIftbSBnovMQKqwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFApTnbxX 95OZC9g0wK8pSJuAOjHZMB8GA1UdIwQYMBaAFOI30s07ofG5J1RfJEmShyrQr8MF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTEyRi80QjhCRkZFQ0I0 NjkxMUVBQUJBNzFDNzVDNEY5QUUwMi80amZTelR1aDhia25WRjhrU1pLSEt0Q3Z3 d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqZlN6VHVoOGJrblZGOGtTWktIS3RDdnd3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjUxMkYvNEI4QkZGRUNCNDY5MTFFQUFCQTcxQzc1QzRGOUFFMDIvNEIzQTQyNTBC NDZBMTFFQUI1QTAxMTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAIr9tgDBAJnBSwDBAJnI8wwDAMEBWf5oAMEAGf5ojANBgkq hkiG9w0BAQsFAAOCAQEAfe0T/J/KuhSaqfA/Ex2uo/m6s+v5ZYSUylfMPW3pd95c mzjTITu19bfqQYxP0jb/0cY+Wx33WK2kGyKFxXZuhS7LmKyEW2S982O+5AYn5GMo nUnKoRGiqRQh24qQFHEMDVNHM9u6gj6itWPIgVdoHdIHuQPWYQPTeqnXnv4dtp7+ F0m+2h8fgo7bYaNCNE8m/qSo4EuueI+egFz48HIvf2SbFNO6PoxJ4zPoYIietTiV 4zCz9kWW1PQgkAP+o9M60i6lGDsH3fB1Aero0YAOCh1Lg9u5NmcmiAwlulnY9KcJ QZ+5V4hcagjQTZydWjc00jXoGwCS9RWlGoP/FCuLgg== -----END CERTIFICATE-----Generated at Fri Sep 19 04:22:46 2025 by rpki-client