$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa File: 4CB6FAD482E511F0B57EE434C4F9AE02.roa (raw, json) Hash identifier: m8k4F06VmmiExsx1XyaFS/SDrFIaVWOgCFFzFPY5WkQ= Subject key identifier: 6A:36:5B:EF:32:42:2E:F4:14:E7:8B:36:7F:74:36:69:A5:BE:D4:BD Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 0292 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa Signing time: Wed 27 Aug 2025 01:30:26 +0000 ROA not before: Wed 27 Aug 2025 01:30:26 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 45867 IP address blocks: 140.168.64.0/18 maxlen: 20 140.168.66.0/24 maxlen: 24 140.168.67.0/24 maxlen: 24 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.80.0/24 maxlen: 24 140.168.81.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.128.0/18 maxlen: 20 140.168.135.0/24 maxlen: 24 140.168.138.0/24 maxlen: 24 140.168.139.0/24 maxlen: 24 140.168.166.0/24 maxlen: 24 140.168.236.0/22 maxlen: 24 140.168.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Aug 27 01:30:26 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68ae5fb2-ac9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:c0:95:16:71:3e:fb:89:32:a9:55:15:0d: 45:12:48:cb:15:5c:6f:6c:36:4b:5e:9a:ad:d9:ae: 7c:47:4a:5d:71:0e:47:9b:d0:12:3c:d4:84:cf:3f: 51:3f:cc:f7:18:48:c9:c4:c4:bd:3f:84:b9:74:e9: d6:e6:f1:9a:da:53:f3:65:57:4f:07:cc:54:02:7c: d8:e9:63:fc:3f:a6:c2:7d:81:ac:5e:3c:89:2b:39: 53:07:a9:28:c7:33:ed:68:63:67:50:45:41:5f:97: 74:a2:4e:40:18:8f:1f:5d:df:ee:e4:8b:cb:79:fd: 4a:f8:5a:8c:8d:13:33:cc:ff:b6:07:ce:2a:9a:4b: da:99:be:98:5b:7a:7d:33:e3:66:11:39:20:4b:54: 65:23:4b:06:54:45:be:c3:60:c4:3e:2a:a3:4e:5f: f4:6e:6f:c6:f7:9c:7e:02:c9:53:44:a4:b0:1a:87: 31:47:49:ec:eb:99:6d:c2:41:24:d2:f8:f4:86:39: 12:ab:43:11:5b:d5:5c:8f:68:0a:c3:ba:be:2f:b6: e8:ef:49:9c:82:33:e5:6b:94:2c:ba:2b:d5:9b:e8: 13:4d:84:04:e8:04:5c:ed:ad:23:2f:21:69:90:fd: 69:66:93:2e:9a:3b:38:84:4a:e3:42:80:60:53:d4: 74:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:36:5B:EF:32:42:2E:F4:14:E7:8B:36:7F:74:36:69:A5:BE:D4:BD X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0-140.168.191.255 140.168.236.0/22 140.168.250.0/23 Signature Algorithm: sha256WithRSAEncryption 60:ec:b6:de:a4:5e:23:d6:e3:30:86:6b:4d:b7:cb:b0:10:4d: 63:2e:78:1a:01:f9:a3:0a:2a:90:87:9b:9f:6a:61:ac:61:1e: 4c:65:01:c4:8a:f9:e1:ad:14:e8:6f:86:be:46:a9:63:0b:fd: 69:b6:3c:40:91:1e:1e:cc:58:4b:fd:27:bf:90:49:f1:c5:a5: 35:cf:24:03:44:28:9e:96:b4:c6:67:df:e9:8b:3a:60:65:0a: 1c:9e:b8:9e:2b:c3:1b:b1:42:60:8d:07:cb:d2:36:c7:ce:61: 3d:6e:d0:85:e8:0b:a3:39:4c:6f:bf:ed:49:8c:ea:c6:5d:5f: 75:ce:ee:39:d6:a5:13:e8:c0:03:8d:87:16:b8:63:6c:e1:56: e9:51:f4:86:1f:3d:fb:a9:78:d9:53:ea:cc:8a:7c:01:c0:c6: 71:48:7b:14:2f:aa:fe:69:c5:df:4e:19:a4:0f:1f:cf:95:cf: 3c:64:db:6f:e5:75:1d:ab:2e:b2:fb:b9:96:2c:92:49:4b:b3: 4d:9b:d7:c8:ab:97:4b:7d:c9:e3:1e:45:10:e7:97:e6:16:96: 5f:33:17:df:cc:97:96:56:2d:9f:bf:2e:80:ff:5e:0f:23:38: f0:2f:43:c0:8e:c0:d5:bc:2e:2c:dc:0b:b7:83:b7:a0:8f:74: 3b:b0:ec:25 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwODI3MDEzMDI2WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNWZiMi1hYzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7bAlRZxPvuJMqlVFQ1FEkjLFVxvbDZLXpqt2a58R0pdcQ5Hm9ASPNSEzz9R P8z3GEjJxMS9P4S5dOnW5vGa2lPzZVdPB8xUAnzY6WP8P6bCfYGsXjyJKzlTB6ko xzPtaGNnUEVBX5d0ok5AGI8fXd/u5IvLef1K+FqMjRMzzP+2B84qmkvamb6YW3p9 M+NmETkgS1RlI0sGVEW+w2DEPiqjTl/0bm/G95x+AslTRKSwGocxR0ns65ltwkEk 0vj0hjkSq0MRW9Vcj2gKw7q+L7bo70mcgjPla5QsuivVm+gTTYQE6ARc7a0jLyFp kP1pZpMumjs4hErjQoBgU9R02wIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFGo2W+8y Qi70FOeLNn90NmmlvtS9MB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvNENCNkZBRDQ4 MkU1MTFGMEI1N0VFNDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEBoyoQAMEBoyogAMEAoyo7AMEAYyo+jANBgkqhkiG9w0B AQsFAAOCAQEAYOy23qReI9bjMIZrTbfLsBBNYy54GgH5owoqkIebn2phrGEeTGUB xIr54a0U6G+GvkapYwv9abY8QJEeHsxYS/0nv5BJ8cWlNc8kA0Qonpa0xmff6Ys6 YGUKHJ64nivDG7FCYI0Hy9I2x85hPW7QhegLozlMb7/tSYzqxl1fdc7uOdalE+jA A42HFrhjbOFW6VH0hh89+6l42VPqzIp8AcDGcUh7FC+q/mnF304ZpA8fz5XPPGTb b+V1Hasusvu5liySSUuzTZvXyKuXS33J4x5FEOeX5haWXzMX38yXllYtn78ugP9e DyM48C9DwI7A1bwuLNwLt4O3oI90O7DsJQ== -----END CERTIFICATE-----Generated at Sat Sep 6 09:32:50 2025 by rpki-client