$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa File: 05163DEADD8711EC9BF56E5BC4F9AE02.roa (raw, json) Hash identifier: 04IkSuQjN5iNoBHNEnhW0185UxD8n8l9rsTvIawl80g= Subject key identifier: 6D:28:17:A4:CD:3F:0D:33:51:BA:3E:4E:2D:23:9A:F3:87:9C:D8:9D Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 0495 Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa Signing time: Wed 27 Aug 2025 01:05:27 +0000 ROA not before: Wed 27 Aug 2025 01:05:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142299 IP address blocks: 147.50.229.0/24 maxlen: 24 147.50.233.0/24 maxlen: 24 147.50.235.0/24 maxlen: 24 147.50.238.0/24 maxlen: 24 147.50.240.0/24 maxlen: 24 147.50.242.0/24 maxlen: 24 147.50.243.0/24 maxlen: 24 147.50.244.0/24 maxlen: 24 147.50.252.0/23 maxlen: 23 147.50.252.0/24 maxlen: 24 147.50.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:20:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1173 (0x495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Aug 27 01:05:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59d7-e21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:79:5f:a0:e4:70:c2:1e:16:1b:ef:3a:7a:5a: cb:b2:81:86:bc:fe:b1:f2:4b:02:6d:2c:86:89:02: d1:02:bc:6d:39:7d:34:8d:a5:2f:52:ba:61:7f:30: a0:46:95:38:8f:53:ca:43:a3:3d:2b:9b:e3:aa:fa: 77:22:f1:04:28:71:b5:a6:a4:dc:85:d4:f5:b6:b2: 37:93:f4:73:26:eb:be:0b:a5:50:d4:b6:94:e4:cb: 13:b3:f4:f7:a0:95:f9:e7:a1:a2:40:d6:dd:83:d6: 77:0c:13:a3:37:87:5f:aa:28:2b:8d:ba:da:37:b9: 6d:6a:3c:e3:79:ee:ee:c5:cf:34:b2:a3:4c:af:f9: ce:d8:7d:81:1d:ef:cc:3d:44:63:7b:c1:28:0a:49: 4e:02:8b:d2:73:b0:f7:ed:44:4f:47:46:b3:4d:ba: 13:f5:24:c8:a2:0a:46:69:29:7c:b8:ca:15:92:3b: 25:52:1c:79:8b:4d:b4:92:bb:1a:c1:9b:ad:48:cb: 60:f2:e5:c3:69:1a:9c:af:32:3b:11:97:76:a8:00: a1:39:ec:b0:ee:2b:25:64:dd:18:ee:a0:df:ce:3b: 72:ba:62:a5:88:4f:8d:a1:15:57:45:90:1e:fa:6e: b5:04:cd:6b:1f:ea:a6:29:c2:bf:01:bb:20:86:70: 77:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:28:17:A4:CD:3F:0D:33:51:BA:3E:4E:2D:23:9A:F3:87:9C:D8:9D X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.229.0/24 147.50.233.0/24 147.50.235.0/24 147.50.238.0/24 147.50.240.0/24 147.50.242.0-147.50.244.255 147.50.252.0/23 Signature Algorithm: sha256WithRSAEncryption aa:40:62:d8:0c:fd:75:e3:e7:fe:c3:c9:b4:60:21:7c:24:34: 1e:b6:67:ef:bb:53:6c:db:64:c7:e8:d6:9b:ad:35:fc:ac:19: ca:20:02:86:37:1e:7b:55:12:00:cc:82:9e:9e:01:ce:ba:16: d1:3f:31:b4:4e:39:cf:34:0b:db:d4:04:1f:d9:4a:78:ee:45: 98:1d:ef:25:d1:4f:81:11:65:4a:e7:74:45:b7:29:e1:43:b8: 5b:d5:2d:bc:7d:54:6a:53:d4:f9:97:cd:0e:f8:a5:8e:25:d8: 9b:ad:10:82:b2:00:76:85:54:b8:23:7e:29:fa:ad:26:91:06: 2a:61:ec:76:49:c1:dd:39:f2:e7:8f:cd:7c:13:f5:90:d5:2b: 90:bc:80:83:0a:48:11:bf:2c:85:9e:cd:f2:5f:f7:58:95:a9: 8b:8b:cd:f3:7c:a0:ae:56:41:53:cc:0a:bc:e7:d9:13:e7:4b: 51:9d:4c:86:70:18:d7:50:ab:46:90:36:0d:0b:e6:1d:a5:d0: 9d:03:48:e7:d6:81:ed:c4:86:fd:af:a4:cf:a2:c3:9b:61:66: 04:9e:88:12:3a:44:7f:a3:12:1e:e1:d7:3a:63:2e:ed:ec:67: 84:a3:75:b1:77:ab:aa:82:60:fa:5d:34:56:fa:aa:a3:5d:12: a9:c7:c9:0d -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICBJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjUwODI3MDEwNTI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTlkNy1lMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nlfoORwwh4WG+86elrLsoGGvP6x8ksCbSyGiQLRArxtOX00jaUvUrphfzCg RpU4j1PKQ6M9K5vjqvp3IvEEKHG1pqTchdT1trI3k/RzJuu+C6VQ1LaU5MsTs/T3 oJX556GiQNbdg9Z3DBOjN4dfqigrjbraN7ltajzjee7uxc80sqNMr/nO2H2BHe/M PURje8EoCklOAovSc7D37URPR0azTboT9STIogpGaSl8uMoVkjslUhx5i020krsa wZutSMtg8uXDaRqcrzI7EZd2qAChOeyw7islZN0Y7qDfzjtyumKliE+NoRVXRZAe +m61BM1rH+qmKcK/AbsghnB3UQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFG0oF6TN Pw0zUbo+Ti0jmvOHnNidMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMDUxNjNERUFE RDg3MTFFQzlCRjU2RTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBACTMuUDBACTMukDBACTMusDBACTMu4DBACTMvAwDAMEAZMy 8gMEAJMy9AMEAZMy/DANBgkqhkiG9w0BAQsFAAOCAQEAqkBi2Az9dePn/sPJtGAh fCQ0HrZn77tTbNtkx+jWm601/KwZyiAChjcee1USAMyCnp4BzroW0T8xtE45zzQL 29QEH9lKeO5FmB3vJdFPgRFlSud0Rbcp4UO4W9UtvH1UalPU+ZfNDviljiXYm60Q grIAdoVUuCN+KfqtJpEGKmHsdknB3Tny54/NfBP1kNUrkLyAgwpIEb8shZ7N8l/3 WJWpi4vN83ygrlZBU8wKvOfZE+dLUZ1MhnAY11CrRpA2DQvmHaXQnQNI59aB7cSG /a+kz6LDm2FmBJ6IEjpEf6MSHuHXOmMu7exnhKN1sXerqoJg+l00Vvqqo10SqcfJ DQ== -----END CERTIFICATE-----Generated at Wed Oct 22 10:31:39 2025 by rpki-client