$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa File: 4CB6FAD482E511F0B57EE434C4F9AE02.roa (raw, json) Hash identifier: 9arVIkvwCMJQp1ZfBQ9/+i/kNwxii6qQmOc3SD5i3yY= Subject key identifier: 95:BF:7C:63:83:A3:A6:CF:A0:FC:CF:D3:B9:AC:DC:3F:3F:2F:D2:49 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 02AC Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa Signing time: Wed 01 Oct 2025 02:29:06 +0000 ROA not before: Wed 01 Oct 2025 02:29:06 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 45867 IP address blocks: 140.168.64.0/18 maxlen: 20 140.168.66.0/24 maxlen: 24 140.168.67.0/24 maxlen: 24 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.80.0/24 maxlen: 24 140.168.81.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.128.0/18 maxlen: 20 140.168.135.0/24 maxlen: 24 140.168.138.0/24 maxlen: 24 140.168.139.0/24 maxlen: 24 140.168.166.0/24 maxlen: 24 140.168.236.0/22 maxlen: 24 140.168.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 03:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Oct 1 02:29:06 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dc91f1-7003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e7:c3:2a:af:70:18:86:13:9f:c5:5f:7c:34: f3:de:d2:6b:88:0b:c2:a5:59:42:57:59:b0:9f:8d: eb:f9:ac:4b:6f:03:80:cc:7a:0b:b0:f2:95:34:b6: 52:c4:f4:8f:ce:5e:c5:2c:bd:c6:02:08:8d:d2:54: e1:0a:28:ad:f5:89:3e:71:33:82:70:d6:c7:8d:ae: 46:de:3d:13:12:46:f7:2a:ae:9a:c6:00:76:ea:69: 44:02:00:ac:68:ce:3e:24:16:0c:ed:4c:9d:1e:a2: e1:8a:20:4c:1b:42:b7:e4:53:69:46:2b:4a:f7:f3: 59:c6:af:f5:64:b8:19:98:3a:49:50:d3:a4:6b:fc: c3:d9:72:a2:1a:8d:47:aa:15:70:dc:0f:d6:8c:1a: 32:42:e9:dd:3b:c1:3e:4d:a8:ac:1d:b4:30:3b:0b: 55:83:3c:d8:99:65:06:41:ad:ae:4b:4b:2f:f1:39: 6b:39:c3:93:b2:c8:47:43:c7:ea:19:21:86:92:45: 50:77:52:81:69:0d:4d:a9:c9:e5:7e:66:4b:f4:0a: 8d:35:87:25:d4:7f:38:a5:14:ec:93:5d:6b:c5:d1: 00:f7:37:31:73:9b:31:61:75:ef:83:02:a7:06:2e: ca:c4:a5:2b:41:21:d5:ad:9d:30:d0:a5:c8:f7:25: 00:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BF:7C:63:83:A3:A6:CF:A0:FC:CF:D3:B9:AC:DC:3F:3F:2F:D2:49 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0-140.168.191.255 140.168.236.0/22 140.168.250.0/23 Signature Algorithm: sha256WithRSAEncryption a4:6a:b1:89:ad:aa:f4:44:64:3f:45:9c:ff:ca:fd:03:1d:64: e9:05:55:d1:16:55:6c:ab:4f:9c:74:07:32:ee:e3:5c:41:0f: 00:a2:7e:ba:2d:18:47:61:3f:d2:7d:04:69:dc:2d:81:58:61: b3:6f:e7:6d:20:15:81:1d:3b:7e:0c:34:c0:86:14:7a:1a:17: 88:c0:18:a5:42:88:bf:1c:d6:64:bf:f2:24:72:48:84:cd:ff: 21:6b:ba:bd:64:5c:28:fb:db:ef:2f:df:6b:3c:25:cb:db:8a: c5:31:b3:ae:ac:33:6b:6b:49:6b:9d:34:88:11:ca:ca:59:36: a9:ad:ee:6a:6d:e9:23:f7:06:95:9c:3a:5d:41:e8:09:8f:a6: d6:b2:31:c1:e0:de:47:b4:33:bc:10:9b:c8:43:f3:2a:29:6c: ff:f7:10:5c:9e:74:16:11:97:f8:af:1a:39:60:b0:73:04:93: 16:6d:1a:84:13:78:ba:08:39:0f:4c:76:ba:24:c8:87:75:c1: 4a:25:8a:f4:58:b3:e6:28:07:b3:fc:dc:9a:4f:c9:f7:f0:f0: f4:ca:9e:b6:9e:7d:6c:a8:13:39:5e:37:5e:f5:4e:42:ea:9e: 03:95:8b:7f:be:71:45:00:f0:18:29:12:a9:0b:83:f8:aa:d3: 07:4a:90:e3 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUxMDAxMDIyOTA2WhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjOTFmMS03MDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyufDKq9wGIYTn8VffDTz3tJriAvCpVlCV1mwn43r+axLbwOAzHoLsPKVNLZS xPSPzl7FLL3GAgiN0lThCiit9Yk+cTOCcNbHja5G3j0TEkb3Kq6axgB26mlEAgCs aM4+JBYM7UydHqLhiiBMG0K35FNpRitK9/NZxq/1ZLgZmDpJUNOka/zD2XKiGo1H qhVw3A/WjBoyQundO8E+TaisHbQwOwtVgzzYmWUGQa2uS0sv8TlrOcOTsshHQ8fq GSGGkkVQd1KBaQ1NqcnlfmZL9AqNNYcl1H84pRTsk11rxdEA9zcxc5sxYXXvgwKn Bi7KxKUrQSHVrZ0w0KXI9yUAAwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFJW/fGOD o6bPoPzP07ms3D8/L9JJMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvNENCNkZBRDQ4 MkU1MTFGMEI1N0VFNDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEBoyoQAMEBoyogAMEAoyo7AMEAYyo+jANBgkqhkiG9w0B AQsFAAOCAQEApGqxia2q9ERkP0Wc/8r9Ax1k6QVV0RZVbKtPnHQHMu7jXEEPAKJ+ ui0YR2E/0n0EadwtgVhhs2/nbSAVgR07fgw0wIYUehoXiMAYpUKIvxzWZL/yJHJI hM3/IWu6vWRcKPvb7y/fazwly9uKxTGzrqwza2tJa500iBHKylk2qa3uam3pI/cG lZw6XUHoCY+m1rIxweDeR7QzvBCbyEPzKils//cQXJ50FhGX+K8aOWCwcwSTFm0a hBN4ugg5D0x2uiTIh3XBSiWK9Fiz5igHs/zcmk/J9/Dw9Mqetp59bKgTOV43XvVO QuqeA5WLf75xRQDwGCkSqQuD+KrTB0qQ4w== -----END CERTIFICATE-----Generated at Fri Oct 24 12:57:54 2025 by rpki-client