$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa File: 505FA2389AEC11EC9C828D20C4F9AE02.roa (raw, json) Hash identifier: WqW5ZsJraJeiAI8pG88Vicp1IVX9xBnwQ55aMD+//6M= Subject key identifier: E6:67:3B:62:DF:1C:E1:24:8A:AC:22:6B:30:90:B8:9E:3F:A1:5E:26 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E02 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:58 +0000 ROA not before: Thu 28 Aug 2025 14:56:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38247 IP address blocks: 45.126.96.0/22 maxlen: 24 59.153.212.0/22 maxlen: 24 103.7.36.0/22 maxlen: 24 103.19.96.0/22 maxlen: 24 103.23.156.0/22 maxlen: 24 103.129.188.0/22 maxlen: 24 103.249.20.0/22 maxlen: 24 202.79.232.0/21 maxlen: 24 203.160.96.0/21 maxlen: 24 203.170.26.0/23 maxlen: 24 2400:e240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19970 (0x4e02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e3a-4606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d5:0e:25:05:61:d2:62:ed:c3:f7:0d:8a:36: 7a:94:cb:03:b0:d0:e9:a8:9e:80:af:07:10:74:7b: 00:69:c1:fc:c8:77:32:38:47:be:dd:da:f2:10:83: fe:64:ea:1c:16:18:58:de:fb:f0:ba:4c:62:4b:a7: 14:8b:24:62:ff:c9:7f:98:d9:f9:99:df:54:b0:c8: 10:3a:8f:e6:17:eb:dc:19:18:3b:fa:fc:a1:a8:0f: 8f:8e:e8:69:be:21:6c:20:16:14:e7:8a:29:75:cc: b9:38:a8:f7:40:b4:5c:bd:28:89:63:d1:57:35:01: c1:0a:d8:34:27:91:37:59:dd:53:b9:ba:31:0f:48: a7:00:0b:16:b8:14:3a:ab:b5:c2:41:c9:e9:67:f6: e8:14:82:3a:65:8a:84:a1:82:ba:14:14:49:07:56: 5c:6d:28:e7:51:ee:34:8b:31:ef:09:24:47:74:59: 00:df:92:f6:9d:f7:7d:33:bd:35:5d:b8:02:f0:c4: fa:df:85:14:da:53:14:db:a4:82:3f:d6:d6:36:a3: 34:4c:ab:84:21:fe:eb:3c:da:c8:97:ea:6a:3a:cf: 55:be:c3:d2:8c:18:ff:18:24:c3:e6:f5:4f:fa:58: d5:50:28:62:45:93:96:86:3c:18:2f:d6:61:90:12: dc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:67:3B:62:DF:1C:E1:24:8A:AC:22:6B:30:90:B8:9E:3F:A1:5E:26 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.96.0/22 59.153.212.0/22 103.7.36.0/22 103.19.96.0/22 103.23.156.0/22 103.129.188.0/22 103.249.20.0/22 202.79.232.0/21 203.160.96.0/21 203.170.26.0/23 IPv6: 2400:e240::/32 Signature Algorithm: sha256WithRSAEncryption 38:ad:a6:d4:b6:ce:18:9b:ce:b1:59:55:37:39:d4:eb:e0:7d: 84:46:96:15:9d:3a:5e:b9:3e:dc:0b:95:2e:22:4c:eb:7b:1d: 62:c8:ea:32:9e:f5:91:ec:83:26:80:65:a6:d5:a5:68:3b:5c: 5d:f7:6d:2f:a9:59:7b:25:da:b1:dc:84:89:3a:db:d0:e3:b1: e3:9a:ad:6d:3a:07:b6:dc:e1:b3:95:c9:37:5d:ad:4f:af:23: 20:f0:04:69:d6:20:b1:98:4e:67:24:5d:b3:fa:3b:01:87:e3: 11:19:f6:6b:49:6e:b5:75:dc:48:66:7b:ee:56:e1:0d:18:e2: 25:c3:7b:f5:25:e5:93:27:59:56:78:ee:f3:d0:c2:be:54:e4: 8b:fc:05:69:24:27:d0:67:c4:e7:a3:d8:5f:b8:91:5c:22:a4: 83:0e:3b:0d:1e:bd:cf:78:af:d4:63:e8:20:40:f6:2e:25:ad: f9:33:d9:47:ea:1e:e8:d1:88:e0:d7:c7:a4:00:69:6e:0b:92: b7:3c:07:16:3e:73:11:d4:ac:32:aa:c5:e6:57:ed:6b:a1:52: 76:cd:88:14:c0:ae:2f:68:66:0c:a6:2c:6c:f2:1b:fa:b9:12: d2:36:30:25:87:66:60:e5:a6:95:83:8f:b9:c8:32:a9:d4:8e: 9a:51:62:fc -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgICTgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUzYS00NjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydUOJQVh0mLtw/cNijZ6lMsDsNDpqJ6ArwcQdHsAacH8yHcyOEe+3dryEIP+ ZOocFhhY3vvwukxiS6cUiyRi/8l/mNn5md9UsMgQOo/mF+vcGRg7+vyhqA+Pjuhp viFsIBYU54opdcy5OKj3QLRcvSiJY9FXNQHBCtg0J5E3Wd1TuboxD0inAAsWuBQ6 q7XCQcnpZ/boFII6ZYqEoYK6FBRJB1ZcbSjnUe40izHvCSRHdFkA35L2nfd9M701 XbgC8MT634UU2lMU26SCP9bWNqM0TKuEIf7rPNrIl+pqOs9VvsPSjBj/GCTD5vVP +ljVUChiRZOWhjwYL9ZhkBLc4wIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFOZnO2Lf HOEkiqwiazCQuJ4/oV4mMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNTA1RkEyMzg5 QUVDMTFFQzlDODI4RDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E VTBTMEIEAgABMDwDBAItfmADBAI7mdQDBAJnByQDBAJnE2ADBAJnF5wDBAJngbwD BAJn+RQDBAPKT+gDBAPLoGADBAHLqhowDQQCAAIwBwMFACQA4kAwDQYJKoZIhvcN AQELBQADggEBADitptS2zhibzrFZVTc51OvgfYRGlhWdOl65PtwLlS4iTOt7HWLI 6jKe9ZHsgyaAZabVpWg7XF33bS+pWXsl2rHchIk629DjseOarW06B7bc4bOVyTdd rU+vIyDwBGnWILGYTmckXbP6OwGH4xEZ9mtJbrV13Ehme+5W4Q0Y4iXDe/Ul5ZMn WVZ47vPQwr5U5Iv8BWkkJ9BnxOej2F+4kVwipIMOOw0evc94r9Rj6CBA9i4lrfkz 2UfqHujRiODXx6QAaW4Lkrc8BxY+cxHUrDKqxeZX7WuhUnbNiBTAri9oZgymLGzy G/q5EtI2MCWHZmDlppWDj7nIMqnUjppRYvw= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:34 2025 by rpki-client