$ rpki-client -vvf rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/A149F286EFD311EFB37AB53EC4F9AE02.roa File: A149F286EFD311EFB37AB53EC4F9AE02.roa (raw, json) Hash identifier: vy9kn/CQhwnh1wHa9U7nugbVkMKjYeyVr6QFutwruhE= Subject key identifier: C3:15:F8:E1:1D:4B:BB:BF:CD:E5:1F:C3:50:39:F5:38:6E:CB:8B:B9 Certificate issuer: /CN=A9164390/serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Certificate serial: 1CD5 Authority key identifier: C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/A149F286EFD311EFB37AB53EC4F9AE02.roa Signing time: Mon 30 Jun 2025 16:26:31 +0000 ROA not before: Mon 30 Jun 2025 16:26:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38201 IP address blocks: 43.255.148.0/22 maxlen: 22 43.255.148.0/23 maxlen: 23 43.255.150.0/23 maxlen: 23 103.239.160.0/22 maxlen: 22 103.239.160.0/23 maxlen: 23 103.239.160.0/24 maxlen: 24 103.239.161.0/24 maxlen: 24 103.239.162.0/23 maxlen: 23 175.176.144.0/22 maxlen: 22 175.176.144.0/23 maxlen: 23 175.176.146.0/23 maxlen: 23 175.176.147.0/24 maxlen: 24 202.134.24.0/21 maxlen: 21 202.134.24.0/22 maxlen: 22 202.134.24.0/24 maxlen: 24 202.134.25.0/24 maxlen: 24 202.134.26.0/24 maxlen: 24 202.134.27.0/24 maxlen: 24 202.134.28.0/22 maxlen: 22 202.134.29.0/24 maxlen: 24 202.134.30.0/24 maxlen: 24 202.134.31.0/24 maxlen: 24 2400:6400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7381 (0x1cd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164390, serialNumber=C6433C49E63CD92035B307E8F79637608FEADBF5 Validity Not Before: Jun 30 16:26:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6862bab7-ed17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4f:d7:10:8d:95:c1:21:6a:2c:cd:84:8f:4a: ce:fe:bd:2f:2b:ed:26:c5:39:4f:1e:eb:eb:09:c2: e7:67:74:1a:82:ad:29:13:0b:9c:b7:27:49:be:05: a4:57:8d:c1:72:4e:93:54:29:56:a7:8b:e0:be:23: 20:3a:2b:07:cc:78:af:65:ac:fd:56:b2:38:f0:ba: b7:90:fb:91:b7:10:35:49:f6:96:96:70:f6:a1:e0: 62:be:74:c2:ed:9f:d7:42:33:8e:c3:18:33:47:84: 2e:3f:3e:9a:96:2c:7d:4f:10:11:3f:6b:3f:c8:9c: e1:7e:b0:e3:89:51:49:02:d8:0c:61:c6:c5:da:c8: 52:6d:ef:37:30:a5:8f:4f:21:4d:88:8a:4d:f6:89: 7c:62:a8:92:dc:33:f0:aa:e5:17:eb:96:ef:45:f1: c0:13:b8:cd:0e:23:a8:11:9a:96:51:18:74:f6:54: c5:a0:b1:df:84:12:63:7f:32:fd:55:fa:16:1c:cc: 02:2b:d9:05:4c:90:67:a7:73:b8:db:b0:3d:15:87: 68:41:de:5f:a4:9c:53:81:59:b0:6b:73:fd:a7:18: 67:fc:52:6d:fe:21:35:ed:29:00:20:72:e4:b6:57: a4:76:6e:ee:fc:dd:39:92:2e:40:3e:f3:61:bb:0f: e2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:15:F8:E1:1D:4B:BB:BF:CD:E5:1F:C3:50:39:F5:38:6E:CB:8B:B9 X509v3 Authority Key Identifier: keyid:C6:43:3C:49:E6:3C:D9:20:35:B3:07:E8:F7:96:37:60:8F:EA:DB:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/xkM8SeY82SA1swfo95Y3YI_q2_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkM8SeY82SA1swfo95Y3YI_q2_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164390/0E9354FCDC5C11E68E915E32C4F9AE02/A149F286EFD311EFB37AB53EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.148.0/22 103.239.160.0/22 175.176.144.0/22 202.134.24.0/21 IPv6: 2400:6400::/32 Signature Algorithm: sha256WithRSAEncryption 75:9c:2f:b5:8c:5e:94:d4:c2:6c:32:52:c2:70:0c:a7:6f:55: bb:6b:15:f9:17:f1:7d:dc:56:63:5b:09:c1:67:05:23:19:ba: 2d:69:55:3e:65:fb:8d:21:19:62:9e:fc:9d:db:c7:c8:96:ef: 3a:a5:47:f5:4e:77:ab:66:0a:de:24:98:e3:aa:b7:5c:fa:28: d3:3a:2b:ae:8a:2c:f4:b9:43:0e:26:61:ce:91:0a:60:d6:16: 20:24:9d:7d:ee:01:8d:79:42:a9:62:76:32:99:c8:29:b3:b5: 15:7f:f9:66:f9:e0:f7:f2:2c:75:13:15:1e:41:e2:fd:96:fc: 62:11:7c:16:21:e8:df:3f:1c:91:9b:d4:89:cc:4d:71:6a:f6: 94:38:3f:83:64:cf:a4:70:b4:eb:9c:29:7c:42:b1:06:17:9e: fa:78:ea:db:a8:dc:f8:f1:3a:ad:f9:26:e9:85:65:5e:8e:ec: e5:d1:a3:22:0b:cb:44:80:48:c6:c6:32:95:97:0d:1f:cc:36: a4:ba:79:bd:bc:f8:91:a1:14:79:f3:7f:9e:c7:d9:7e:3c:7c: 2f:38:61:6e:cf:22:0a:ae:97:46:36:a9:80:d2:6c:e7:75:d1: 4d:f1:03:e1:b5:ee:89:b2:e4:4a:66:9d:a4:b2:87:35:b3:d9: 97:61:e6:b1 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICHNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzOTAxMTAvBgNVBAUTKEM2NDMzQzQ5RTYzQ0Q5MjAzNUIzMDdFOEY3OTYzNzYw OEZFQURCRjUwHhcNMjUwNjMwMTYyNjMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyYmFiNy1lZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6U/XEI2VwSFqLM2Ej0rO/r0vK+0mxTlPHuvrCcLnZ3Qagq0pEwuctydJvgWk V43Bck6TVClWp4vgviMgOisHzHivZaz9VrI48Lq3kPuRtxA1SfaWlnD2oeBivnTC 7Z/XQjOOwxgzR4QuPz6alix9TxARP2s/yJzhfrDjiVFJAtgMYcbF2shSbe83MKWP TyFNiIpN9ol8YqiS3DPwquUX65bvRfHAE7jNDiOoEZqWURh09lTFoLHfhBJjfzL9 VfoWHMwCK9kFTJBnp3O427A9FYdoQd5fpJxTgVmwa3P9pxhn/FJt/iE17SkAIHLk tlekdm7u/N05ki5APvNhuw/i2QIDAQABo4ICtjCCArIwHQYDVR0OBBYEFMMV+OEd S7u/zeUfw1A59Thuy4u5MB8GA1UdIwQYMBaAFMZDPEnmPNkgNbMH6PeWN2CP6tv1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDM5MC8wRTkzNTRGQ0RD NUMxMUU2OEU5MTVFMzJDNEY5QUUwMi94a004U2VZODJTQTFzd2ZvOTVZM1lJX3Ey X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrTThTZVk4MlNBMXN3Zm85NVkzWUlfcTJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQzOTAvMEU5MzU0RkNEQzVDMTFFNjhFOTE1RTMyQzRGOUFFMDIvQTE0OUYyODZF RkQzMTFFRkIzN0FCNTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIr/5QDBAJn76ADBAKvsJADBAPKhhgwDQQCAAIwBwMFACQA ZAAwDQYJKoZIhvcNAQELBQADggEBAHWcL7WMXpTUwmwyUsJwDKdvVbtrFfkX8X3c VmNbCcFnBSMZui1pVT5l+40hGWKe/J3bx8iW7zqlR/VOd6tmCt4kmOOqt1z6KNM6 K66KLPS5Qw4mYc6RCmDWFiAknX3uAY15QqlidjKZyCmztRV/+Wb54PfyLHUTFR5B 4v2W/GIRfBYh6N8/HJGb1InMTXFq9pQ4P4Nkz6RwtOucKXxCsQYXnvp46tuo3Pjx Oq35JumFZV6O7OXRoyILy0SASMbGMpWXDR/MNqS6eb28+JGhFHnzf57H2X48fC84 YW7PIgqul0Y2qYDSbOd10U3xA+G17omy5EpmnaSyhzWz2Zdh5rE= -----END CERTIFICATE-----Generated at Fri Jul 4 07:45:32 2025 by rpki-client