$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa File: E26173CE050611EAA0470B49C4F9AE02.roa (raw, json) Hash identifier: dNrcrB1ldAK21HJ4LwO0zPl4lvszMcZ0JAWqxSxU9s0= Subject key identifier: 53:A8:63:72:78:AB:0E:7B:B5:AC:F9:BF:47:AC:B1:63:49:5B:88:E4 Certificate issuer: /CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Certificate serial: 0C9B Authority key identifier: 13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa Signing time: Thu 28 Aug 2025 05:48:38 +0000 ROA not before: Thu 28 Aug 2025 05:48:38 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 56132 IP address blocks: 43.246.232.0/22 maxlen: 22 49.127.0.0/16 maxlen: 16 59.191.208.0/20 maxlen: 20 59.191.220.0/22 maxlen: 22 103.35.228.0/22 maxlen: 22 118.138.0.0/16 maxlen: 16 118.138.232.0/21 maxlen: 21 118.138.240.0/20 maxlen: 20 118.138.240.0/21 maxlen: 21 118.139.0.0/17 maxlen: 17 203.6.141.0/24 maxlen: 24 2404:2400::/32 maxlen: 32 2404:2400::/40 maxlen: 40 2404:2400::/44 maxlen: 44 2404:2400::/48 maxlen: 48 2404:2400:100::/40 maxlen: 40 2404:2400:100::/44 maxlen: 44 2404:2400:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Validity Not Before: Aug 28 05:48:38 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68afedb5-20aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:b5:13:70:ff:cb:2d:91:5e:1c:15:d4:12: 82:6c:53:3d:e5:ee:b1:25:a2:b4:f9:8e:21:71:04: cf:df:9b:46:01:1f:40:e0:6d:02:bb:d0:95:dd:4a: 15:61:64:5c:dc:01:28:3b:e2:19:d9:ac:88:32:a8: 94:68:54:e5:d8:b0:cc:78:18:bb:48:00:e3:63:17: a8:9b:ff:ec:de:02:44:b0:96:50:da:be:33:0b:f5: 2a:ff:ae:7b:cf:43:c8:c1:3f:7e:f6:96:d7:f1:f7: b6:33:05:fe:6f:13:79:52:7d:7d:fd:15:88:f8:bc: f5:11:b1:12:22:3a:c7:aa:49:8b:11:43:5c:cc:d9: 24:d6:14:70:af:57:22:40:63:71:69:cd:ba:01:e2: 98:8c:3e:5a:a6:d1:32:d5:36:dd:5e:47:75:a3:7e: b6:4b:ee:88:05:cd:bb:6b:0d:02:96:f2:6d:2e:aa: fe:9b:5d:97:9b:5e:3d:f2:2e:d4:36:98:e3:e3:64: 7f:1a:dd:49:56:6a:66:7b:79:cd:1b:1f:3e:af:08: 3d:ef:a2:a3:37:af:8f:4a:87:55:61:3e:83:18:74: 7d:7b:30:c6:72:84:03:fd:f8:5d:e0:a4:53:32:f1: 5e:c9:63:bb:4f:60:5d:0d:e5:a0:2f:1f:b6:49:b3: 3f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A8:63:72:78:AB:0E:7B:B5:AC:F9:BF:47:AC:B1:63:49:5B:88:E4 X509v3 Authority Key Identifier: keyid:13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.232.0/22 49.127.0.0/16 59.191.208.0/20 103.35.228.0/22 118.138.0.0-118.139.127.255 203.6.141.0/24 IPv6: 2404:2400::/32 Signature Algorithm: sha256WithRSAEncryption 52:71:17:49:05:fc:b1:55:7a:7a:88:d9:d1:ac:0a:3c:1a:c5: 0c:2c:02:9d:75:d6:31:b8:6e:3f:5c:96:6d:dd:43:be:29:ec: 91:cd:ee:fc:40:03:24:dc:70:3e:ea:72:c3:c9:02:b6:96:60: 05:f4:83:18:3a:d5:51:e9:35:25:3e:37:2b:75:4e:e5:35:1f: f2:71:35:7c:f2:c3:3d:60:97:22:62:4e:3a:d7:f8:26:8f:d4: b3:38:72:6b:d9:84:31:d3:f4:01:e1:e1:2b:39:54:fd:73:38: 3c:2b:c5:de:00:12:6d:c8:27:76:0c:03:60:78:8e:77:3b:d9: 62:99:75:a2:40:2a:73:63:6f:3c:99:6e:f6:94:6f:2a:4d:d5: 6f:d9:d9:8e:92:eb:97:7a:70:98:b9:8e:5e:62:7a:eb:19:a2: ad:54:f1:8f:43:a8:91:66:13:c8:8b:ca:36:b0:2b:ee:3e:5c: e3:7f:3c:36:5a:9b:d0:b8:48:f7:d6:84:49:3f:ce:c7:ef:99: 91:d9:22:e1:f2:97:89:72:fa:a1:da:17:8c:97:c5:91:98:e3: 9a:a9:46:e1:df:82:2a:9c:1b:32:3d:bf:37:48:4a:0d:97:00: 1d:b7:9a:c7:36:98:42:ef:63:62:89:c7:f1:1e:17:b8:25:a1: c7:1a:a5:b2 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQjUxMTAvBgNVBAUTKDEzNTVENTE4N0QyRTYzRDdFNkQ0OTA3OEQ4RTcxRkEw NTFDNDU2RTMwHhcNMjUwODI4MDU0ODM4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFmZWRiNS0yMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBa1E3D/yy2RXhwV1BKCbFM95e6xJaK0+Y4hcQTP35tGAR9A4G0Cu9CV3UoV YWRc3AEoO+IZ2ayIMqiUaFTl2LDMeBi7SADjYxeom//s3gJEsJZQ2r4zC/Uq/657 z0PIwT9+9pbX8fe2MwX+bxN5Un19/RWI+Lz1EbESIjrHqkmLEUNczNkk1hRwr1ci QGNxac26AeKYjD5aptEy1TbdXkd1o362S+6IBc27aw0ClvJtLqr+m12Xm1498i7U Npjj42R/Gt1JVmpme3nNGx8+rwg976KjN6+PSodVYT6DGHR9ezDGcoQD/fhd4KRT MvFeyWO7T2BdDeWgLx+2SbM/1wIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFFOoY3J4 qw57taz5v0essWNJW4jkMB8GA1UdIwQYMBaAFBNV1Rh9LmPX5tSQeNjnH6BRxFbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NCNS82MzI2NTBGODA1 MDUxMUVBQUE5MzRDNDNDNEY5QUUwMi9FMVhWR0gwdVk5Zm0xSkI0Mk9jZm9GSEVW dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UxWFZHSDB1WTlmbTFKQjQyT2Nmb0ZIRVZ1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQjUvNjMyNjUwRjgwNTA1MTFFQUFBOTM0QzQzQzRGOUFFMDIvRTI2MTczQ0Uw NTA2MTFFQUEwNDcwQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIr9ugDAwAxfwMEBDu/0AMEAmcj5DALAwMBdooDBAd2iwAD BADLBo0wDQQCAAIwBwMFACQEJAAwDQYJKoZIhvcNAQELBQADggEBAFJxF0kF/LFV enqI2dGsCjwaxQwsAp111jG4bj9clm3dQ74p7JHN7vxAAyTccD7qcsPJAraWYAX0 gxg61VHpNSU+Nyt1TuU1H/JxNXzywz1glyJiTjrX+CaP1LM4cmvZhDHT9AHh4Ss5 VP1zODwrxd4AEm3IJ3YMA2B4jnc72WKZdaJAKnNjbzyZbvaUbypN1W/Z2Y6S65d6 cJi5jl5ieusZoq1U8Y9DqJFmE8iLyjawK+4+XON/PDZam9C4SPfWhEk/zsfvmZHZ IuHyl4ly+qHaF4yXxZGY45qpRuHfgiqcGzI9vzdISg2XAB23msc2mELvY2KJx/Ee F7gloccapbI= -----END CERTIFICATE-----Generated at Mon Sep 8 15:29:34 2025 by rpki-client