$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/4B2F1F725E7811EE9307D234C4F9AE02.roa File: 4B2F1F725E7811EE9307D234C4F9AE02.roa (raw, json) Hash identifier: 3yvbzjuUuh9G6qcJ8V8xglcFed2rUg7lvlhKdI7EHEk= Subject key identifier: 3B:BD:63:C6:54:9D:DC:D1:6D:A9:31:3D:69:10:20:82:53:46:63:87 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 016C Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/4B2F1F725E7811EE9307D234C4F9AE02.roa Signing time: Wed 03 Sep 2025 04:23:46 +0000 ROA not before: Wed 03 Sep 2025 04:23:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140891 IP address blocks: 103.152.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Sep 3 04:23:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7c2d1-3104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:86:4c:f6:c2:61:4c:a6:2c:2d:03:90:a5:97: 0c:22:96:8d:6a:e7:d1:2b:35:6f:ff:64:30:0b:3e: e1:d6:c2:78:99:fe:37:6d:6e:34:4d:c5:8c:09:f7: a9:25:fa:02:b5:c8:2f:a3:93:39:d9:ab:a3:a1:56: 1c:e4:11:ba:69:a4:80:e4:51:48:41:22:a8:65:f5: 92:64:7d:f9:c5:49:fc:a0:11:f8:c2:0f:fb:1e:65: 01:b1:30:91:46:00:cb:f9:67:c6:78:fc:1d:7d:9f: 34:30:68:b0:16:3b:b4:43:6c:9f:d5:63:44:af:9d: 42:c8:e2:9f:f7:c1:81:d4:f8:95:d2:8e:75:06:ca: 35:bb:4e:73:c2:cf:2c:c3:39:39:08:dd:cc:33:26: 66:f6:e6:33:a8:f1:86:12:9f:dd:e6:cd:62:4b:72: 19:50:55:39:b5:ff:8a:e4:5c:51:9a:14:5b:f8:d4: ca:97:7d:06:35:f8:39:2e:bc:1d:6e:bd:ba:3f:0c: a9:89:52:48:86:ce:9a:e4:c5:29:85:95:e1:a7:bb: 37:7c:63:32:6a:a6:b8:f5:d1:f5:50:ac:df:14:19: 27:2c:1d:4a:ea:85:68:f1:31:54:b6:19:9c:27:ba: 7f:80:c3:e0:b4:97:31:e6:8f:c6:92:10:94:a6:a4: 5d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BD:63:C6:54:9D:DC:D1:6D:A9:31:3D:69:10:20:82:53:46:63:87 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/4B2F1F725E7811EE9307D234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.245.0/24 Signature Algorithm: sha256WithRSAEncryption b8:43:6c:fd:02:0c:af:50:3c:77:d5:2e:94:54:37:32:56:ab: 66:2a:4a:8f:d1:24:52:d6:ff:c7:2b:7b:05:11:c8:f8:49:04: 98:e5:c8:f8:f3:ef:f5:1f:67:4a:2d:14:a0:33:c6:1a:f6:4b: db:d7:da:0b:3c:a0:81:fc:bd:67:06:d1:20:cd:11:6d:3f:ac: 58:0a:24:a4:94:4d:0c:e1:5b:8e:8a:2b:f4:68:68:18:8b:56: cc:ed:bf:2e:23:25:19:aa:1e:68:a7:4d:b0:bc:04:79:e3:f2: e1:46:43:bb:78:03:33:52:c0:c6:6a:53:c8:ee:b6:e9:34:5c: 11:4c:3c:54:fc:03:b6:38:28:e2:bc:8c:bc:9b:a5:0d:70:f0: 46:d3:f3:bb:cf:8a:ff:cb:78:29:57:39:5e:63:27:53:5f:f6: f9:00:87:64:6b:bc:93:ff:83:63:76:5e:b3:0f:90:10:52:0c: 0c:81:d4:df:90:04:91:92:dc:3d:4f:5a:3f:be:0b:81:10:3f: 82:d3:b4:65:51:90:03:0a:a6:b6:56:1d:ed:ea:31:cb:fc:c3: 75:7b:e4:73:b2:ed:ea:a4:a7:b1:7a:4d:d2:d2:83:0d:34:1d: 02:e1:d1:dc:20:a3:29:77:1a:58:2b:98:da:0d:61:e6:8f:15: 48:74:c4:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwOTAzMDQyMzQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YzJkMS0zMTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoZM9sJhTKYsLQOQpZcMIpaNaufRKzVv/2QwCz7h1sJ4mf43bW40TcWMCfep JfoCtcgvo5M52aujoVYc5BG6aaSA5FFIQSKoZfWSZH35xUn8oBH4wg/7HmUBsTCR RgDL+WfGePwdfZ80MGiwFju0Q2yf1WNEr51CyOKf98GB1PiV0o51Bso1u05zws8s wzk5CN3MMyZm9uYzqPGGEp/d5s1iS3IZUFU5tf+K5FxRmhRb+NTKl30GNfg5Lrwd br26PwypiVJIhs6a5MUphZXhp7s3fGMyaqa49dH1UKzfFBknLB1K6oVo8TFUthmc J7p/gMPgtJcx5o/GkhCUpqRdTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDu9Y8ZU ndzRbakxPWkQIIJTRmOHMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFGNzMvRDVGRjFGNDA1RTcyMTFFRUJDMkM0OTI2QzRGOUFFMDIvNEIyRjFGNzI1 RTc4MTFFRTkzMDdEMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmPUwDQYJKoZIhvcNAQELBQADggEBALhDbP0CDK9QPHfV LpRUNzJWq2YqSo/RJFLW/8crewURyPhJBJjlyPjz7/UfZ0otFKAzxhr2S9vX2gs8 oIH8vWcG0SDNEW0/rFgKJKSUTQzhW46KK/RoaBiLVsztvy4jJRmqHminTbC8BHnj 8uFGQ7t4AzNSwMZqU8jutuk0XBFMPFT8A7Y4KOK8jLybpQ1w8EbT87vPiv/LeClX OV5jJ1Nf9vkAh2RrvJP/g2N2XrMPkBBSDAyB1N+QBJGS3D1PWj++C4EQP4LTtGVR kAMKprZWHe3qMcv8w3V75HOy7eqkp7F6TdLSgw00HQLh0dwgoyl3GlgrmNoNYeaP FUh0xEs= -----END CERTIFICATE-----Generated at Fri Sep 19 01:01:42 2025 by rpki-client