$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/926610D63ADF11F0A7390D6CC4F9AE02.roa File: 926610D63ADF11F0A7390D6CC4F9AE02.roa (raw, json) Hash identifier: dCfaICrFdOJZxnEtAaS+GJcKKbmMKGNmoIwCKcqibu0= Subject key identifier: D9:CC:D7:DA:6B:30:52:35:E5:46:E8:CE:F6:E3:21:70:DD:65:E8:F9 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0BDA Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/926610D63ADF11F0A7390D6CC4F9AE02.roa Signing time: Tue 27 May 2025 09:47:16 +0000 ROA not before: Tue 27 May 2025 09:47:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17408 IP address blocks: 43.251.185.0/24 maxlen: 24 43.251.187.0/24 maxlen: 24 45.115.35.0/24 maxlen: 24 103.15.76.0/24 maxlen: 24 103.15.77.0/24 maxlen: 24 103.15.78.0/24 maxlen: 24 103.21.105.0/24 maxlen: 24 103.21.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3034 (0xbda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: May 27 09:47:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68358a23-c7ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:02:7a:b7:8e:43:25:8e:b9:3f:0b:b9:1e: 8b:40:3d:64:5d:e4:06:60:be:f8:e6:64:1c:ff:4f: 6f:8e:d9:fe:2f:ee:e4:fe:07:b5:bf:d8:5b:3f:ab: 90:b4:6e:83:76:6b:15:4a:80:92:eb:f3:a8:32:90: 4f:0b:54:80:a9:6c:da:42:82:61:43:9c:fe:d9:55: c2:d8:13:ce:04:2c:43:5a:52:a0:e7:c9:fc:b3:1d: 62:d1:b9:fc:d5:c1:e9:b2:74:7a:72:0e:7d:a1:65: eb:9b:f2:e7:d4:8e:0e:8c:60:d0:5c:3a:86:7c:72: 93:4d:52:81:4e:9d:e9:ba:ab:19:04:81:26:85:a1: f5:d9:59:2f:f2:8d:62:99:ef:74:99:2a:1b:75:9b: 7b:27:43:a9:bd:87:e8:db:46:31:39:24:1b:bb:c1: 2f:1c:f7:01:51:bd:6c:0e:3c:9b:6c:d8:a7:ad:17: ca:56:fa:44:7d:13:78:80:d7:c9:3b:12:9a:44:cf: e6:08:32:e3:95:48:71:e4:5f:af:ed:9b:e1:8f:61: 90:49:f1:3a:0b:d9:c1:b8:b9:c2:81:7d:8d:8d:f8: d4:46:c5:44:92:f4:69:8d:1f:69:58:b0:b2:67:4f: e6:eb:b2:04:52:88:2e:66:5e:26:8f:11:13:e8:9f: ef:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:CC:D7:DA:6B:30:52:35:E5:46:E8:CE:F6:E3:21:70:DD:65:E8:F9 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/926610D63ADF11F0A7390D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.185.0/24 43.251.187.0/24 45.115.35.0/24 103.15.76.0-103.15.78.255 103.21.105.0/24 103.21.107.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:c5:57:ca:1e:0a:02:75:d3:7c:34:02:b1:8b:ca:3d:7c:f4: eb:a7:73:e8:fe:e9:18:32:36:20:cb:76:2b:11:ea:c8:cb:79: 90:db:e7:97:a0:8d:33:c3:5b:f4:4e:d8:6d:40:2a:cc:33:e9: ac:36:10:a7:09:99:d1:cc:90:1c:bb:47:a1:99:73:2c:03:ab: 49:26:03:ff:03:6f:2d:76:86:2c:0b:da:16:9e:04:c8:7a:20: a3:2b:c1:f3:3c:8b:83:ee:19:a7:1a:65:f1:3f:db:68:6f:10: 72:37:eb:29:bd:f5:2f:3c:07:36:1e:ce:32:bb:c0:1b:db:5a: c2:1e:38:d8:b8:d9:42:6b:8d:38:ab:b9:de:ed:de:65:6d:fa: 50:7d:41:01:2d:aa:46:a9:27:4a:c8:81:cd:d2:19:c5:f5:1b: fc:91:39:48:06:30:d5:6f:bb:11:29:c0:65:e0:54:78:46:95: 03:90:e1:46:e7:8f:35:6a:c3:0a:98:7e:92:8b:1a:83:f4:f8: b9:23:c3:ae:de:45:4f:ec:00:42:51:ca:80:eb:00:71:a5:0f: d5:0e:be:bd:cf:6d:37:6e:90:f9:89:c2:c5:64:2c:26:2a:32: 86:c1:39:74:df:ed:f1:4c:25:25:86:5f:03:6f:34:80:e6:aa: 45:2f:71:3e -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICC9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNTI3MDk0NzE2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1OGEyMy1jN2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzq8CereOQyWOuT8LuR6LQD1kXeQGYL745mQc/09vjtn+L+7k/ge1v9hbP6uQ tG6DdmsVSoCS6/OoMpBPC1SAqWzaQoJhQ5z+2VXC2BPOBCxDWlKg58n8sx1i0bn8 1cHpsnR6cg59oWXrm/Ln1I4OjGDQXDqGfHKTTVKBTp3puqsZBIEmhaH12Vkv8o1i me90mSobdZt7J0OpvYfo20YxOSQbu8EvHPcBUb1sDjybbNinrRfKVvpEfRN4gNfJ OxKaRM/mCDLjlUhx5F+v7Zvhj2GQSfE6C9nBuLnCgX2NjfjURsVEkvRpjR9pWLCy Z0/m67IEUoguZl4mjxET6J/vfQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFNnM19pr MFI15UbozvbjIXDdZej5MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvOTI2NjEwRDYz QURGMTFGMEE3MzkwRDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAAr+7kDBAAr+7sDBAAtcyMwDAMEAmcPTAMEAGcPTgMEAGcV aQMEAGcVazANBgkqhkiG9w0BAQsFAAOCAQEAjcVXyh4KAnXTfDQCsYvKPXz066dz 6P7pGDI2IMt2KxHqyMt5kNvnl6CNM8Nb9E7YbUAqzDPprDYQpwmZ0cyQHLtHoZlz LAOrSSYD/wNvLXaGLAvaFp4EyHogoyvB8zyLg+4Zpxpl8T/baG8QcjfrKb31LzwH Nh7OMrvAG9tawh442LjZQmuNOKu53u3eZW36UH1BAS2qRqknSsiBzdIZxfUb/JE5 SAYw1W+7ESnAZeBUeEaVA5DhRuePNWrDCph+kosag/T4uSPDrt5FT+wAQlHKgOsA caUP1Q6+vc9tN26Q+YnCxWQsJioyhsE5dN/t8UwlJYZfA280gOaqRS9xPg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:33 2025 by rpki-client