$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa File: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (raw, json) Hash identifier: pXS3ULi3ginDl77te4ltHgefmxNNqQdIdLlWLdgZ/tE= Subject key identifier: 73:A5:AF:24:29:6B:92:E5:AF:A4:2C:AB:FC:84:E5:35:9F:84:C6:11 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0BE1 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa Signing time: Wed 28 May 2025 06:12:05 +0000 ROA not before: Wed 28 May 2025 06:12:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 395793 IP address blocks: 43.230.54.0/24 maxlen: 24 43.230.55.0/24 maxlen: 24 43.231.188.0/24 maxlen: 24 45.115.32.0/24 maxlen: 24 103.12.52.0/24 maxlen: 24 103.24.163.0/24 maxlen: 24 103.248.148.0/24 maxlen: 24 103.248.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: May 28 06:12:05 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6836a935-4342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c1:e6:db:d6:ac:c4:73:ae:d4:bf:c7:d9:c0: de:4f:32:75:21:68:58:45:06:02:33:37:0a:71:97: 91:5a:05:75:aa:99:67:69:ce:4f:c8:a4:1e:4b:5a: 13:e7:17:06:a8:bf:bb:10:5d:0f:56:a4:43:db:49: 60:eb:a1:e3:31:df:f1:16:9d:82:77:f6:a9:f9:4b: 55:f4:f6:c1:d7:32:ed:a6:52:66:1c:f9:31:85:bf: e5:0a:34:a6:9c:f3:62:b1:1a:73:ce:f9:0c:18:52: 4f:48:f4:50:40:0c:46:2d:30:e1:c4:57:1e:cf:cb: b1:54:9c:70:e9:eb:3b:8c:13:e8:90:29:fd:47:34: ae:68:fb:7e:f9:84:f2:c8:06:f3:56:16:b9:a5:f7: 4b:f6:ea:b0:66:f3:a1:f0:06:bd:bd:52:52:23:1e: ff:26:b1:3d:06:ec:a0:37:04:e3:25:71:81:fb:60: 5b:b1:d4:2f:5c:7d:b0:f1:75:c0:32:cc:93:54:be: 18:1f:66:a4:0e:75:85:58:28:be:af:a2:21:89:2d: 65:dc:8e:90:b7:5a:6b:78:40:b3:c9:ca:31:12:14: 3b:28:4a:83:ed:8f:4c:e4:35:fa:a9:ff:13:b4:d9: 61:5a:db:b9:98:58:45:25:4d:1e:b7:23:6d:37:ec: 9a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A5:AF:24:29:6B:92:E5:AF:A4:2C:AB:FC:84:E5:35:9F:84:C6:11 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.54.0/23 43.231.188.0/24 45.115.32.0/24 103.12.52.0/24 103.24.163.0/24 103.248.148.0/23 Signature Algorithm: sha256WithRSAEncryption 24:62:9b:01:a8:93:d7:f4:70:49:ce:37:66:ff:66:7b:c7:0f: 77:3a:42:86:65:ee:ab:f5:62:93:4b:4b:7e:75:c8:5b:45:b0: cf:ab:e9:ff:79:96:c4:f4:93:22:cc:a9:91:a6:f5:2d:c6:89: d1:5c:66:1d:c7:12:03:f0:70:ed:7b:d0:43:bc:24:be:99:12: ee:45:be:db:3b:98:d0:da:17:8d:e2:3a:ef:e2:7d:53:3d:94: 82:91:04:ca:58:04:f9:ba:b4:88:32:7f:11:6f:42:10:52:09: cf:87:40:72:aa:40:1b:16:e1:31:a6:04:c6:53:9e:f3:7d:93: 64:2b:59:bc:68:18:af:b5:77:63:da:f3:e8:f5:b1:f1:53:be: 7f:40:fc:ef:c7:fb:07:42:4e:63:cb:ab:11:87:39:66:85:9c: 00:1c:fd:ec:18:02:80:0c:ad:ac:f7:aa:66:06:c3:bd:38:c0: f9:6e:fa:09:c2:32:27:e3:6a:5b:ac:f1:42:b7:c7:60:99:3a: cf:3e:fb:ed:ba:ef:64:d7:64:79:a4:9d:21:34:43:7c:a1:58: dd:d5:d6:7d:d6:d7:24:cc:34:26:bb:fa:e4:a1:5d:bb:8b:26: 51:f9:09:51:19:38:3e:c1:e7:8f:34:50:a7:b8:28:9a:52:f0: a1:08:a1:53 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNTI4MDYxMjA1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODM2YTkzNS00MzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8Hm29asxHOu1L/H2cDeTzJ1IWhYRQYCMzcKcZeRWgV1qplnac5PyKQeS1oT 5xcGqL+7EF0PVqRD20lg66HjMd/xFp2Cd/ap+UtV9PbB1zLtplJmHPkxhb/lCjSm nPNisRpzzvkMGFJPSPRQQAxGLTDhxFcez8uxVJxw6es7jBPokCn9RzSuaPt++YTy yAbzVha5pfdL9uqwZvOh8Aa9vVJSIx7/JrE9BuygNwTjJXGB+2BbsdQvXH2w8XXA MsyTVL4YH2akDnWFWCi+r6IhiS1l3I6Qt1preECzycoxEhQ7KEqD7Y9M5DX6qf8T tNlhWtu5mFhFJU0etyNtN+ya4QIDAQABo4ICszCCAq8wHQYDVR0OBBYEFHOlryQp a5Llr6Qsq/yE5TWfhMYRMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMEU0M0FFQ0Ez QjVEMTFGMEEyNkJDMDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAEr5jYDBAAr57wDBAAtcyADBABnDDQDBABnGKMDBAFn+JQw DQYJKoZIhvcNAQELBQADggEBACRimwGok9f0cEnON2b/ZnvHD3c6QoZl7qv1YpNL S351yFtFsM+r6f95lsT0kyLMqZGm9S3GidFcZh3HEgPwcO170EO8JL6ZEu5Fvts7 mNDaF43iOu/ifVM9lIKRBMpYBPm6tIgyfxFvQhBSCc+HQHKqQBsW4TGmBMZTnvN9 k2QrWbxoGK+1d2Pa8+j1sfFTvn9A/O/H+wdCTmPLqxGHOWaFnAAc/ewYAoAMraz3 qmYGw704wPlu+gnCMifjalus8UK3x2CZOs8+++2672TXZHmknSE0Q3yhWN3V1n3W 1yTMNCa7+uShXbuLJlH5CVEZOD7B5480UKe4KJpS8KEIoVM= -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:40 2025 by rpki-client