$ rpki-client -vvf rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6492D4985B9011EF8DB48C24C4F9AE02.roa File: 6492D4985B9011EF8DB48C24C4F9AE02.roa (raw, json) Hash identifier: It848C/9Bwo+dM5KHxOWOmLE+nNLbDgRj+xtHR+Q7NY= Subject key identifier: 33:96:D7:CD:A7:35:19:DB:FD:5B:C7:E0:04:B2:66:8C:F0:F9:29:39 Certificate issuer: /CN=A911C362/serialNumber=EA83AF4A21CBC2071F56956E5DDD584C7638FA5B Certificate serial: 0149 Authority key identifier: EA:83:AF:4A:21:CB:C2:07:1F:56:95:6E:5D:DD:58:4C:76:38:FA:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6492D4985B9011EF8DB48C24C4F9AE02.roa Signing time: Mon 13 Oct 2025 06:37:29 +0000 ROA not before: Mon 13 Oct 2025 06:37:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 146943 IP address blocks: 43.230.203.0/24 maxlen: 24 45.64.107.0/24 maxlen: 24 45.113.224.0/24 maxlen: 24 45.113.226.0/24 maxlen: 24 45.113.227.0/24 maxlen: 24 45.120.137.0/24 maxlen: 24 45.120.138.0/24 maxlen: 24 103.26.205.0/24 maxlen: 24 157.119.41.0/24 maxlen: 24 157.119.42.0/24 maxlen: 24 157.119.43.0/24 maxlen: 24 2405:7140:2::/48 maxlen: 48 2405:7140:4::/48 maxlen: 48 2405:7140:5::/48 maxlen: 48 2405:7140:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.crl rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C362, serialNumber=EA83AF4A21CBC2071F56956E5DDD584C7638FA5B Validity Not Before: Oct 13 06:37:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68ec9e29-90e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:35:b2:dd:73:e6:6b:51:5e:70:12:ba:c1:a1: a8:38:15:99:45:4d:79:a2:f9:1e:f8:c8:43:58:a1: 93:ea:29:2b:7a:8c:ce:3d:5d:51:d0:29:57:4c:c9: 19:18:db:5b:b8:16:f0:d9:4e:3a:7c:8c:52:c1:b1: e4:70:18:b2:86:68:89:88:9a:58:aa:2d:49:46:97: d0:6a:5b:6f:7b:15:ee:ea:9e:9d:24:ee:a0:c2:54: f7:4a:46:17:a3:cd:ce:83:8d:14:bd:fe:b8:ac:c7: d0:0e:d5:b9:8f:04:f3:2c:b8:58:1b:61:e6:eb:73: 05:38:b3:62:c0:2c:20:e8:b7:03:49:f8:31:e2:31: 05:e8:16:bf:a3:83:42:19:51:37:e7:ee:ae:55:b0: db:44:e5:c2:24:7e:48:3d:48:b1:3c:52:45:72:af: 1b:61:13:2d:4a:9c:80:f8:35:3f:45:3e:fc:24:81: 49:db:74:4e:2a:4b:c8:41:65:38:92:68:f6:c4:10: c4:fd:d5:cd:89:47:e5:94:d5:9b:c8:e2:e8:8a:dd: 64:26:9e:4f:39:54:b2:50:36:52:9b:91:4e:b3:dc: 84:62:4f:8e:db:3b:e7:1c:82:90:14:39:28:b0:c9: 00:3e:fd:69:09:2a:7f:c6:2b:2f:b9:37:b0:42:fe: 35:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:96:D7:CD:A7:35:19:DB:FD:5B:C7:E0:04:B2:66:8C:F0:F9:29:39 X509v3 Authority Key Identifier: keyid:EA:83:AF:4A:21:CB:C2:07:1F:56:95:6E:5D:DD:58:4C:76:38:FA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6492D4985B9011EF8DB48C24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.203.0/24 45.64.107.0/24 45.113.224.0/24 45.113.226.0/23 45.120.137.0-45.120.138.255 103.26.205.0/24 157.119.41.0-157.119.43.255 IPv6: 2405:7140:2::/48 2405:7140:4::-2405:7140:6:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9f:ee:ee:f8:55:98:67:96:9d:72:b4:ef:94:08:16:ee:f4:2a: 84:0a:45:f2:f8:45:fa:bd:c3:3d:13:6b:d4:6b:c6:9d:16:8b: 4a:dd:b3:8e:9f:b6:c7:e9:16:26:f4:c1:ea:67:4e:06:12:06: 2b:ce:4e:51:38:27:1b:e2:36:08:77:d5:46:12:b9:d5:33:01: 87:49:0f:27:af:7d:0a:1f:1c:db:b3:cc:e0:a1:b9:26:19:11: 5f:94:2f:d7:be:c9:97:20:e4:b5:e7:d9:b9:50:15:ff:57:31: 38:5c:d9:db:27:5f:7f:40:b1:06:b1:79:4e:67:71:2a:49:92: 33:c2:5e:28:4a:b7:9a:68:9a:d4:62:d3:18:4a:e5:71:ff:7c: cd:71:e0:e6:65:00:9a:9a:f1:f3:d6:77:c9:7a:21:1a:8a:b6: 2f:6c:1c:00:4d:82:81:ab:84:16:5b:ef:0a:76:63:e7:63:e2: 66:4b:92:81:5f:43:8a:f7:02:61:d4:09:7a:1e:0d:e4:eb:76: af:b6:45:d4:54:f1:9d:d2:8b:00:a7:cf:ce:cd:41:0c:d1:7a: 2d:3c:38:1e:4d:c8:d0:51:2f:a8:8e:19:fe:00:db:40:26:52: 09:02:28:d3:da:fa:90:99:9f:01:3c:0e:43:33:b5:37:19:8f: a5:6c:eb:42 -----BEGIN CERTIFICATE----- MIIFyjCCBLKgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzNjIxMTAvBgNVBAUTKEVBODNBRjRBMjFDQkMyMDcxRjU2OTU2RTVEREQ1ODRD NzYzOEZBNUIwHhcNMjUxMDEzMDYzNzI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVjOWUyOS05MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozWy3XPma1FecBK6waGoOBWZRU15ovke+MhDWKGT6ikreozOPV1R0ClXTMkZ GNtbuBbw2U46fIxSwbHkcBiyhmiJiJpYqi1JRpfQaltvexXu6p6dJO6gwlT3SkYX o83Og40Uvf64rMfQDtW5jwTzLLhYG2Hm63MFOLNiwCwg6LcDSfgx4jEF6Ba/o4NC GVE35+6uVbDbROXCJH5IPUixPFJFcq8bYRMtSpyA+DU/RT78JIFJ23ROKkvIQWU4 kmj2xBDE/dXNiUfllNWbyOLoit1kJp5POVSyUDZSm5FOs9yEYk+O2zvnHIKQFDko sMkAPv1pCSp/xisvuTewQv41vQIDAQABo4IC7jCCAuowHQYDVR0OBBYEFDOW182n NRnb/VvH4ASyZozw+Sk5MB8GA1UdIwQYMBaAFOqDr0ohy8IHH1aVbl3dWEx2OPpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzM2Mi82QTA4RjQ5MjI1 NzcxMUVGQkIwQjgyNTFDNEY5QUUwMi82b092U2lITHdnY2ZWcFZ1WGQxWVRIWTQt bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZvT3ZTaUhMd2djZlZwVnVYZDFZVEhZNC1scy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMzNjIvNkEwOEY0OTIyNTc3MTFFRkJCMEI4MjUxQzRGOUFFMDIvNjQ5MkQ0OTg1 QjkwMTFFRjhEQjQ4QzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwweAYIKwYBBQUHAQcBAf8E aTBnMEAEAgABMDoDBAAr5ssDBAAtQGsDBAAtceADBAEtceIwDAMEAC14iQMEAC14 igMEAGcazTAMAwQAnXcpAwQCnXcoMCMEAgACMB0DBwAkBXFAAAIwEgMHAiQFcUAA BAMHACQFcUAABjANBgkqhkiG9w0BAQsFAAOCAQEAn+7u+FWYZ5adcrTvlAgW7vQq hApF8vhF+r3DPRNr1GvGnRaLSt2zjp+2x+kWJvTB6mdOBhIGK85OUTgnG+I2CHfV RhK51TMBh0kPJ699Ch8c27PM4KG5JhkRX5Qv177JlyDktefZuVAV/1cxOFzZ2ydf f0CxBrF5TmdxKkmSM8JeKEq3mmia1GLTGErlcf98zXHg5mUAmprx89Z3yXohGoq2 L2wcAE2CgauEFlvvCnZj52PiZkuSgV9DivcCYdQJeh4N5Ot2r7ZF1FTxndKLAKfP zs1BDNF6LTw4Hk3I0FEvqI4Z/gDbQCZSCQIo09r6kJmfATwOQzO1NxmPpWzrQg== -----END CERTIFICATE-----Generated at Mon Oct 20 10:15:50 2025 by rpki-client