$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa File: E2D5171C2F3211ED958A415DC4F9AE02.roa (raw, json) Hash identifier: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8= Subject key identifier: 47:7D:2C:62:5D:36:08:C5:CB:8E:8F:6A:5C:46:E8:31:C2:06:D7:6C Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0BE4 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa Signing time: Fri 30 May 2025 19:14:10 +0000 ROA not before: Fri 30 May 2025 19:14:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141711 IP address blocks: 43.246.224.0/24 maxlen: 24 43.246.225.0/24 maxlen: 24 43.246.226.0/24 maxlen: 24 43.246.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3044 (0xbe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: May 30 19:14:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683a0382-403c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:03:93:fb:93:e5:06:bf:9e:76:6d:75:7f:12: 17:60:8c:f5:4d:44:d6:95:96:a3:19:f1:ce:99:4c: a2:e0:24:b9:8c:17:65:14:0b:74:84:a8:0a:26:08: 1c:14:f1:28:00:6a:a8:51:8a:d6:65:ab:4a:43:e2: 20:d4:aa:1c:95:83:c7:ae:80:c8:3d:f1:c4:eb:11: 9a:a4:49:89:8b:45:85:83:b8:6a:54:83:d2:be:8d: 67:f9:81:91:54:81:7f:c3:69:4a:32:07:78:26:c7: ee:91:84:6e:d7:a0:a6:c9:a5:9c:69:cc:e8:6d:d4: 61:55:06:65:d1:d1:92:fb:7c:e3:6d:cf:20:21:69: 51:fd:e7:d8:18:78:2a:fc:bf:52:45:a5:22:44:2a: cf:68:b6:80:8f:5a:22:78:32:50:53:a6:6d:cf:a2: b5:60:c5:a4:f2:40:ef:55:14:cb:06:ac:c3:91:af: 6e:57:82:4f:b5:86:6c:4d:54:6e:3b:af:5b:e3:f9: 69:b3:ef:5d:eb:54:0b:58:7a:e8:9e:91:cf:70:df: 13:4b:1e:d9:31:2b:2c:6d:77:78:4c:75:d2:37:a5: 74:b2:43:4f:e1:08:28:e9:57:dd:83:0b:1b:0e:42: 44:0a:61:d1:23:20:61:f9:ff:5c:05:be:91:e4:3a: 6c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7D:2C:62:5D:36:08:C5:CB:8E:8F:6A:5C:46:E8:31:C2:06:D7:6C X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.224.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:bf:7a:18:e3:16:a7:f7:96:94:77:57:6b:ae:a8:86:53:40: 39:d2:59:c5:57:f3:d6:bd:29:93:c2:22:16:95:83:cf:6b:cb: 20:25:e7:b5:e9:c2:16:f8:e3:71:66:60:32:8f:2b:1b:db:34: 63:5c:09:a0:1a:52:3d:19:10:09:a9:51:d5:a6:e8:db:13:ed: 8a:0f:34:5a:d8:26:0f:0b:1b:76:f1:26:9f:b7:cb:a0:62:02: 75:85:a5:31:1e:a4:9a:bf:48:40:a6:48:b2:b9:76:5d:2a:04: 71:4f:38:3b:f3:c8:db:ae:4a:68:f0:4e:a7:a2:1b:c0:4e:b3: 0a:72:88:f2:85:18:21:5b:3c:bb:54:e4:33:a2:dc:68:01:a7: 62:31:2c:a8:b3:58:76:dd:c9:63:46:35:50:22:36:7e:d1:97: 67:1a:e0:9a:57:a4:98:e8:f7:1b:7e:67:02:72:e1:6b:c4:0a: 83:0e:9f:1f:4b:25:e2:a0:dd:0c:28:db:06:8f:f4:49:08:e7: bf:66:49:a4:89:2c:2c:e8:b2:6d:3e:33:f0:9c:48:3b:ee:55: fb:12:3f:54:e3:e9:a8:51:25:3c:93:c3:2b:41:b5:dc:cd:8c: 84:85:25:22:08:09:e7:1f:fd:65:c9:c3:b0:e2:4b:54:a3:7b: a6:c8:82:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwNTMwMTkxNDEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMDM4Mi00MDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgOT+5PlBr+edm11fxIXYIz1TUTWlZajGfHOmUyi4CS5jBdlFAt0hKgKJggc FPEoAGqoUYrWZatKQ+Ig1KoclYPHroDIPfHE6xGapEmJi0WFg7hqVIPSvo1n+YGR VIF/w2lKMgd4JsfukYRu16CmyaWcaczobdRhVQZl0dGS+3zjbc8gIWlR/efYGHgq /L9SRaUiRCrPaLaAj1oieDJQU6Ztz6K1YMWk8kDvVRTLBqzDka9uV4JPtYZsTVRu O69b4/lps+9d61QLWHronpHPcN8TSx7ZMSssbXd4THXSN6V0skNP4Qgo6Vfdgwsb DkJECmHRIyBh+f9cBb6R5DpsowIDAQABo4IClTCCApEwHQYDVR0OBBYEFEd9LGJd NgjFy46PalxG6DHCBtdsMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4REEvMzRGMzYxMkUyNjgxMTFFQTkwM0Q3MDU4QzRGOUFFMDIvRTJENTE3MUMy RjMyMTFFRDk1OEE0MTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr9uAwDQYJKoZIhvcNAQELBQADggEBAE6/ehjjFqf3lpR3 V2uuqIZTQDnSWcVX89a9KZPCIhaVg89ryyAl57Xpwhb443FmYDKPKxvbNGNcCaAa Uj0ZEAmpUdWm6NsT7YoPNFrYJg8LG3bxJp+3y6BiAnWFpTEepJq/SECmSLK5dl0q BHFPODvzyNuuSmjwTqeiG8BOswpyiPKFGCFbPLtU5DOi3GgBp2IxLKizWHbdyWNG NVAiNn7Rl2ca4JpXpJjo9xt+ZwJy4WvECoMOnx9LJeKg3Qwo2waP9EkI579mSaSJ LCzosm0+M/CcSDvuVfsSP1Tj6ahRJTyTwytBtdzNjISFJSIICecf/WXJw7DiS1Sj e6bIggI= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:19 2025 by rpki-client