$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4C26EE1EBC4611EFB5EFA548C4F9AE02.roa File: 4C26EE1EBC4611EFB5EFA548C4F9AE02.roa (raw, json) Hash identifier: /T1fttdh7+TrCi7nP4kaDbJZ4o+v0AC54J7OsVNW+7U= Subject key identifier: 37:9D:3E:EB:9C:9C:13:21:5D:85:DB:74:B0:5A:C2:78:0F:27:57:4C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4B61 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4C26EE1EBC4611EFB5EFA548C4F9AE02.roa Signing time: Tue 27 May 2025 03:32:24 +0000 ROA not before: Tue 27 May 2025 03:32:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135983 IP address blocks: 36.50.26.0/24 maxlen: 24 36.50.27.0/24 maxlen: 24 103.127.198.0/24 maxlen: 24 103.127.199.0/24 maxlen: 24 103.163.24.0/23 maxlen: 24 103.167.86.0/23 maxlen: 24 103.241.42.0/23 maxlen: 24 103.245.238.0/23 maxlen: 23 163.223.230.0/23 maxlen: 24 2001:df4:66c0::/48 maxlen: 48 2001:df5:8340::/48 maxlen: 48 2001:df5:9240::/48 maxlen: 48 2401:7c20::/48 maxlen: 48 2401:91a0::/48 maxlen: 48 2405:28c0::/48 maxlen: 48 2407:5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19297 (0x4b61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: May 27 03:32:24 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68353248-dcbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:76:1b:77:56:da:3c:ff:92:97:85:76:40: 5d:e3:45:16:b2:5a:cb:21:42:f2:34:b9:6b:d9:a9: 3d:77:1e:e8:f6:53:bd:82:1d:12:24:95:95:5e:5b: 2b:cf:31:eb:7b:d9:ad:41:2d:78:d0:bd:c9:24:73: 80:b7:3e:85:1b:5f:65:97:85:c0:fd:fb:be:7f:9f: 8c:1b:5a:e9:a8:9c:ba:0f:70:08:d3:f4:b9:40:6c: 5c:21:ec:dd:09:46:a6:38:3f:67:9c:8e:a8:1b:03: 04:9b:8c:56:de:1e:17:61:81:34:64:3e:22:33:03: da:fc:8d:35:a0:c1:b8:dc:56:14:a7:c1:4d:8a:c6: f9:9c:05:c6:44:38:e2:df:67:09:4e:79:fd:a3:7c: ce:07:7e:0e:cf:ab:e1:f3:04:4c:e4:dd:7f:29:cf: dd:dc:1d:9d:0c:6c:14:47:3e:bc:7d:35:a4:07:2c: fd:31:2e:8a:15:cf:03:22:01:97:1f:82:3e:7e:a0: cc:b7:cf:7c:fd:43:31:a0:5e:36:81:ac:54:ca:00: b8:99:e0:71:6b:e6:d9:32:8e:13:64:a0:24:79:5d: 8f:7b:b4:39:92:a1:b7:0b:42:50:e4:59:e4:35:db: c8:2f:54:59:5e:13:aa:67:b3:b1:bb:5f:8e:eb:ad: f2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9D:3E:EB:9C:9C:13:21:5D:85:DB:74:B0:5A:C2:78:0F:27:57:4C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4C26EE1EBC4611EFB5EFA548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.26.0/23 103.127.198.0/23 103.163.24.0/23 103.167.86.0/23 103.241.42.0/23 103.245.238.0/23 163.223.230.0/23 IPv6: 2001:df4:66c0::/48 2001:df5:8340::/48 2001:df5:9240::/48 2401:7c20::/48 2401:91a0::/48 2405:28c0::/48 2407:5c0::/48 Signature Algorithm: sha256WithRSAEncryption ac:3d:f2:32:da:83:a6:7f:91:31:60:3e:0b:32:3b:1e:8c:1c: c5:d0:e4:aa:e9:8b:19:6e:f8:07:54:c7:16:dd:1b:0f:df:fc: 2f:55:bc:8f:fa:d2:e2:d2:0b:81:83:f9:a8:f0:c9:aa:f2:9a: a7:dc:8c:03:db:7f:6d:7a:c5:60:42:5d:5b:db:94:4f:c1:44: 07:f8:5d:61:3b:3d:ac:ab:25:41:25:c8:a1:71:3e:dc:15:9a: f1:8e:37:e4:e1:ad:ac:06:4a:98:3e:85:a7:9f:80:ac:ea:fb: 5b:41:e1:93:4a:f5:57:a1:61:8f:1c:b4:3a:50:1f:26:55:5a: 6e:20:c2:d4:ee:33:b5:92:cb:5a:35:89:ee:d3:fe:05:91:f7: a9:cd:3c:d1:8f:11:d5:d5:fc:01:b6:ed:75:39:4a:7d:ce:97: bb:e7:28:6b:01:91:e2:27:0c:89:8b:83:08:41:7c:50:12:cf: 49:66:03:70:b0:55:c9:90:00:03:fa:11:61:47:40:d4:9f:95: e5:1f:b5:42:d4:a1:22:b8:45:08:6f:14:6e:e2:d8:9c:cb:16: 45:9b:48:cc:34:6a:38:5e:f1:39:a4:c2:d2:7a:36:69:08:42: e8:93:6e:c5:0b:89:cd:94:94:e2:24:90:88:c7:1d:68:32:78: 43:23:46:bf -----BEGIN CERTIFICATE----- MIIF3TCCBMWgAwIBAgICS2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNTI3MDMzMjI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1MzI0OC1kY2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtah2G3dW2jz/kpeFdkBd40UWslrLIULyNLlr2ak9dx7o9lO9gh0SJJWVXlsr zzHre9mtQS140L3JJHOAtz6FG19ll4XA/fu+f5+MG1rpqJy6D3AI0/S5QGxcIezd CUamOD9nnI6oGwMEm4xW3h4XYYE0ZD4iMwPa/I01oMG43FYUp8FNisb5nAXGRDji 32cJTnn9o3zOB34Oz6vh8wRM5N1/Kc/d3B2dDGwURz68fTWkByz9MS6KFc8DIgGX H4I+fqDMt898/UMxoF42gaxUygC4meBxa+bZMo4TZKAkeV2Pe7Q5kqG3C0JQ5Fnk NdvIL1RZXhOqZ7Oxu1+O663yrwIDAQABo4IDATCCAv0wHQYDVR0OBBYEFDedPuuc nBMhXYXbdLBawngPJ1dMMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNEMyNkVFMUVC QzQ2MTFFRkI1RUZBNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYoGCCsGAQUFBwEHAQH/ BHsweTAwBAIAATAqAwQBJDIaAwQBZ3/GAwQBZ6MYAwQBZ6dWAwQBZ/EqAwQBZ/Xu AwQBo9/mMEUEAgACMD8DBwAgAQ30ZsADBwAgAQ31g0ADBwAgAQ31kkADBwAkAXwg AAADBwAkAZGgAAADBwAkBSjAAAADBwAkBwXAAAAwDQYJKoZIhvcNAQELBQADggEB AKw98jLag6Z/kTFgPgsyOx6MHMXQ5Krpixlu+AdUxxbdGw/f/C9VvI/60uLSC4GD +ajwyarymqfcjAPbf216xWBCXVvblE/BRAf4XWE7PayrJUElyKFxPtwVmvGON+Th rawGSpg+haefgKzq+1tB4ZNK9VehYY8ctDpQHyZVWm4gwtTuM7WSy1o1ie7T/gWR 96nNPNGPEdXV/AG27XU5Sn3Ol7vnKGsBkeInDImLgwhBfFASz0lmA3CwVcmQAAP6 EWFHQNSfleUftULUoSK4RQhvFG7i2JzLFkWbSMw0ajhe8TmkwtJ6NmkIQuiTbsUL ic2UlOIkkIjHHWgyeEMjRr8= -----END CERTIFICATE-----Generated at Tue Jun 3 23:17:52 2025 by rpki-client