$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa File: 51FE6D48D27011ECB30F1F0DC4F9AE02.roa (raw, json) Hash identifier: wY9VV9yadFzt92HS27VdAQZvTr0RsiWh8bLwWXevekM= Subject key identifier: 19:63:EE:75:80:C7:02:62:4A:67:CF:78:EF:5A:96:43:F9:4B:85:C6 Certificate issuer: /CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Certificate serial: 0456 Authority key identifier: C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa Signing time: Thu 02 Oct 2025 07:22:46 +0000 ROA not before: Thu 02 Oct 2025 07:22:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38067 IP address blocks: 43.231.20.0/22 maxlen: 24 45.112.72.0/23 maxlen: 24 103.14.128.0/22 maxlen: 23 103.14.128.0/24 maxlen: 24 103.14.129.0/24 maxlen: 24 103.14.130.0/24 maxlen: 24 103.14.131.0/24 maxlen: 24 103.29.124.0/22 maxlen: 24 103.240.44.0/22 maxlen: 24 116.12.32.0/21 maxlen: 22 116.12.32.0/22 maxlen: 24 116.12.36.0/23 maxlen: 24 116.12.38.0/24 maxlen: 24 116.12.39.0/24 maxlen: 24 120.50.176.0/21 maxlen: 24 122.102.32.0/21 maxlen: 24 210.1.240.0/20 maxlen: 24 210.1.255.128/26 maxlen: 26 2405:6900::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB94, serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Validity Not Before: Oct 2 07:22:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68de2846-9433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:25:84:2d:54:b2:f1:91:7c:0c:ce:e3:fd:1d: 01:c1:c7:87:f9:f8:7f:e1:59:cb:7e:1b:cf:0d:be: a8:08:22:da:f8:23:ac:7c:55:d0:0b:75:46:fa:45: f3:fd:44:2d:5c:7c:7c:40:b5:76:1c:67:02:44:f8: 34:69:bb:4a:f0:72:62:9c:f7:6f:fd:99:69:b5:6e: 9b:79:b4:f6:20:23:50:2b:ab:e3:55:0b:ed:0e:f6: 29:67:b7:e2:ed:0b:7d:fc:96:6d:9e:48:4b:fb:05: 79:60:4f:6a:fd:e1:d8:e9:05:4a:de:ed:56:a5:92: b4:2d:6a:51:1d:79:af:c0:b9:f2:34:12:30:6f:21: c2:ad:17:5b:30:ef:bf:85:8d:68:be:3a:17:15:f3: 15:c6:c4:e6:ff:26:c9:3e:85:65:ab:7c:bd:71:ac: cf:d2:4c:cc:5c:1d:43:e6:22:0e:bc:f1:12:ab:82: b2:e8:68:d2:32:e7:7d:94:56:d4:00:47:70:8e:17: 25:8a:6d:89:c8:33:65:cb:f4:31:c3:d6:63:76:52: b6:85:5e:74:f5:78:b9:ac:f9:ac:01:4b:87:3b:00: a4:d3:88:93:4a:07:1f:4e:03:75:33:c3:e7:b2:13: 41:79:68:5c:62:97:78:eb:9f:8b:46:30:e8:13:2f: b6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:63:EE:75:80:C7:02:62:4A:67:CF:78:EF:5A:96:43:F9:4B:85:C6 X509v3 Authority Key Identifier: keyid:C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.20.0/22 45.112.72.0/23 103.14.128.0/22 103.29.124.0/22 103.240.44.0/22 116.12.32.0/21 120.50.176.0/21 122.102.32.0/21 210.1.240.0/20 IPv6: 2405:6900::/36 Signature Algorithm: sha256WithRSAEncryption 24:6e:8b:2b:b9:04:e9:c7:c9:c7:38:71:d6:fe:0d:42:b3:65: ae:9b:82:72:9e:6c:43:df:f9:9d:5f:4e:95:05:e4:e4:84:55: d6:a1:ff:3f:97:08:67:b9:b9:66:f2:e3:4e:c4:fb:2b:6a:3c: 64:27:5f:75:f3:fa:5b:22:34:4f:a2:dd:d4:d9:b8:15:c8:63: b3:d3:8e:e8:d7:c4:d6:48:fb:13:bd:1e:f4:17:6a:8c:6c:1f: 9d:fd:46:62:02:98:88:2d:d0:cb:5c:31:02:8c:45:05:1c:7a: 72:d7:d5:5b:57:c3:c7:fb:65:eb:86:a0:fc:da:bc:58:93:90: d3:35:8a:13:7d:47:7c:7d:05:78:35:98:df:d6:e2:34:06:f3: 5b:20:6d:87:9d:8f:63:69:fa:ba:3a:58:09:d9:1f:2d:a9:f7: f6:39:6b:c9:a3:d9:50:a5:f6:7f:04:a5:d3:72:6d:6a:2a:e4: 7b:a8:20:8c:96:43:e5:f9:b0:6a:6e:21:ec:d1:45:7f:c1:bf: e1:e3:d0:c8:4c:19:f2:df:28:30:36:e7:86:3c:1d:60:b2:4c: 56:8d:48:d0:9b:0f:1d:6c:75:c5:0b:cc:15:1e:e7:68:8f:4e: 8b:5a:70:7b:3e:c4:99:92:c1:67:31:93:70:9b:8f:ee:90:47: fb:37:47:91 -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTQxMTAvBgNVBAUTKEM0RDRGQjBGRjAyNzc5NkU5REFBMTdCNzU1NTFGRDBC NzdGMTk4MkYwHhcNMjUxMDAyMDcyMjQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlMjg0Ni05NDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyWELVSy8ZF8DM7j/R0BwceH+fh/4VnLfhvPDb6oCCLa+COsfFXQC3VG+kXz /UQtXHx8QLV2HGcCRPg0abtK8HJinPdv/ZlptW6bebT2ICNQK6vjVQvtDvYpZ7fi 7Qt9/JZtnkhL+wV5YE9q/eHY6QVK3u1WpZK0LWpRHXmvwLnyNBIwbyHCrRdbMO+/ hY1ovjoXFfMVxsTm/ybJPoVlq3y9cazP0kzMXB1D5iIOvPESq4Ky6GjSMud9lFbU AEdwjhclim2JyDNly/Qxw9ZjdlK2hV509Xi5rPmsAUuHOwCk04iTSgcfTgN1M8Pn shNBeWhcYpd465+LRjDoEy+2RQIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFBlj7nWA xwJiSmfPeO9alkP5S4XGMB8GA1UdIwQYMBaAFMTU+w/wJ3lunaoXt1VR/Qt38Zgv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5NC9FM0NDMjVEODgx MUUxMUVDOTIwMjU1NTFDNEY5QUUwMi94TlQ3RF9BbmVXNmRxaGUzVlZIOUMzZnht QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOVDdEX0FuZVc2ZHFoZTNWVkg5QzNmeG1DOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVCOTQvRTNDQzI1RDg4MTFFMTFFQzkyMDI1NTUxQzRGOUFFMDIvNTFGRTZENDhE MjcwMTFFQ0IzMEYxRjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMDwEAgABMDYDBAIr5xQDBAEtcEgDBAJnDoADBAJnHXwDBAJn8CwDBAN0DCAD BAN4MrADBAN6ZiADBATSAfAwDgQCAAIwCAMGBCQFaQAAMA0GCSqGSIb3DQEBCwUA A4IBAQAkbosruQTpx8nHOHHW/g1Cs2Wum4JynmxD3/mdX06VBeTkhFXWof8/lwhn ublm8uNOxPsrajxkJ1918/pbIjRPot3U2bgVyGOz047o18TWSPsTvR70F2qMbB+d /UZiApiILdDLXDECjEUFHHpy19VbV8PH+2XrhqD82rxYk5DTNYoTfUd8fQV4NZjf 1uI0BvNbIG2HnY9jafq6OlgJ2R8tqff2OWvJo9lQpfZ/BKXTcm1qKuR7qCCMlkPl +bBqbiHs0UV/wb/h49DITBny3ygwNueGPB1gskxWjUjQmw8dbHXFC8wVHudoj06L WnB7PsSZksFnMZNwm4/ukEf7N0eR -----END CERTIFICATE-----Generated at Tue Oct 21 07:17:09 2025 by rpki-client