$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa File: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (raw, json) Hash identifier: EDVStKKxG06lw8JN0F9X4jCTKiN0LdF9zVSZbm6YceU= Subject key identifier: 0D:9F:AB:7B:90:0C:0A:57:09:C7:46:ED:21:08:9F:6E:1C:AE:A7:BF Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C7B Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa Signing time: Wed 15 Oct 2025 01:31:25 +0000 ROA not before: Wed 15 Oct 2025 01:31:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 395793 IP address blocks: 43.230.54.0/24 maxlen: 24 43.230.55.0/24 maxlen: 24 43.231.188.0/24 maxlen: 24 43.231.190.0/24 maxlen: 24 43.231.191.0/24 maxlen: 24 43.246.128.0/24 maxlen: 24 43.246.130.0/24 maxlen: 24 43.246.131.0/24 maxlen: 24 43.246.196.0/24 maxlen: 24 43.246.197.0/24 maxlen: 24 45.115.32.0/24 maxlen: 24 45.115.34.0/24 maxlen: 24 103.12.52.0/24 maxlen: 24 103.24.163.0/24 maxlen: 24 103.248.148.0/24 maxlen: 24 103.248.149.0/24 maxlen: 24 160.20.46.0/24 maxlen: 24 160.20.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Oct 15 01:31:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68eef96d-5908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:48:c3:7a:1b:86:2e:99:4b:7b:5b:26:4b:e5: e8:16:29:3e:2b:69:d9:53:21:77:ca:aa:9e:27:3e: b0:1b:4f:21:8d:2e:82:bf:c5:a0:51:bb:70:ce:05: 7f:d0:de:7e:4e:fb:34:65:46:8a:75:89:d9:6c:ed: 7b:49:bf:a1:14:df:1e:57:8b:e4:82:79:0f:50:12: 41:70:32:d2:04:b0:e8:37:8f:ae:3d:29:8d:5a:80: 74:e1:3c:d0:20:95:6e:8f:57:ea:ae:02:6c:71:ca: 40:f0:43:81:85:ad:c3:b9:6b:ee:4f:5f:e5:5b:3f: 16:cd:93:60:9c:e0:b5:cd:48:53:82:fb:3a:96:e7: 7c:32:12:a4:3e:35:1c:d2:0d:eb:92:97:c9:1d:9a: 51:59:9f:46:42:ea:02:35:d6:1f:b6:92:a5:f1:23: 17:f6:70:07:ce:31:b4:97:f4:d2:69:0e:14:e8:10: 9c:34:31:a0:57:7f:be:e6:41:eb:c1:23:b7:4a:6f: 6f:30:8f:59:cf:b5:5d:cd:dc:42:d7:87:06:14:42: 2c:50:e7:41:ba:8d:79:a8:a2:0f:94:5c:5b:92:ab: f3:11:24:6b:f6:56:60:25:64:ac:2e:f2:a9:91:26: 83:3f:a2:ad:8c:74:42:02:70:a3:82:5f:ef:1e:65: 30:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9F:AB:7B:90:0C:0A:57:09:C7:46:ED:21:08:9F:6E:1C:AE:A7:BF X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/0E43AECA3B5D11F0A26BC064C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.54.0/23 43.231.188.0/24 43.231.190.0/23 43.246.128.0/24 43.246.130.0/23 43.246.196.0/23 45.115.32.0/24 45.115.34.0/24 103.12.52.0/24 103.24.163.0/24 103.248.148.0/23 160.20.46.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:15:08:ed:2a:aa:97:31:79:01:c8:c4:4d:6e:7c:95:c5:be: 23:e5:35:8e:c0:f9:71:a6:9d:d7:bd:69:dd:0d:0f:6d:1d:93: 82:b8:af:e6:90:37:c0:2c:49:e7:0d:c2:a3:55:f4:29:76:bc: 93:a2:82:4d:9e:4c:e9:ae:95:9b:82:23:ff:f0:5a:05:2b:b8: a5:f3:4c:9c:2d:8f:34:75:95:69:b3:c0:26:63:90:93:2f:76: 10:a3:87:a5:18:dc:8e:4f:a3:97:09:d6:51:73:f3:30:b5:68: 32:11:93:51:4f:17:ab:3b:fa:37:8e:60:67:c1:8d:52:ee:88: 35:42:cc:17:fa:bd:2c:b8:f9:53:c5:8d:f6:7f:da:c8:fc:81: 36:06:c7:95:7f:98:df:41:5d:f7:62:4b:32:5c:28:e9:a5:3b: 9e:9d:c3:f2:53:d5:5f:ea:9f:07:e3:93:72:cc:07:43:ab:a1: 75:b3:b8:a9:3d:e5:80:74:81:bb:1b:7d:ba:23:1b:cd:17:ba: cf:6b:16:0a:8b:23:84:15:f6:3b:cf:17:8e:64:fd:f6:5b:62: 2d:7f:f9:25:c2:1a:b1:0d:eb:de:c1:47:cf:b0:ff:c5:d9:bc: ca:b4:56:18:59:61:43:42:2c:6a:ea:db:3a:1e:26:99:c6:98: 97:e0:9a:64 -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgICDHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMDE1MDEzMTI1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlZjk2ZC01OTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0jDehuGLplLe1smS+XoFik+K2nZUyF3yqqeJz6wG08hjS6Cv8WgUbtwzgV/ 0N5+Tvs0ZUaKdYnZbO17Sb+hFN8eV4vkgnkPUBJBcDLSBLDoN4+uPSmNWoB04TzQ IJVuj1fqrgJsccpA8EOBha3DuWvuT1/lWz8WzZNgnOC1zUhTgvs6lud8MhKkPjUc 0g3rkpfJHZpRWZ9GQuoCNdYftpKl8SMX9nAHzjG0l/TSaQ4U6BCcNDGgV3++5kHr wSO3Sm9vMI9Zz7VdzdxC14cGFEIsUOdBuo15qKIPlFxbkqvzESRr9lZgJWSsLvKp kSaDP6KtjHRCAnCjgl/vHmUwcQIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFA2fq3uQ DApXCcdG7SEIn24crqe/MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMEU0M0FFQ0Ez QjVEMTFGMEEyNkJDMDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYQYIKwYBBQUHAQcBAf8E UjBQME4EAgABMEgDBAEr5jYDBAAr57wDBAEr574DBAAr9oADBAEr9oIDBAEr9sQD BAAtcyADBAAtcyIDBABnDDQDBABnGKMDBAFn+JQDBAGgFC4wDQYJKoZIhvcNAQEL BQADggEBAD0VCO0qqpcxeQHIxE1ufJXFviPlNY7A+XGmnde9ad0ND20dk4K4r+aQ N8AsSecNwqNV9Cl2vJOigk2eTOmulZuCI//wWgUruKXzTJwtjzR1lWmzwCZjkJMv dhCjh6UY3I5Po5cJ1lFz8zC1aDIRk1FPF6s7+jeOYGfBjVLuiDVCzBf6vSy4+VPF jfZ/2sj8gTYGx5V/mN9BXfdiSzJcKOmlO56dw/JT1V/qnwfjk3LMB0OroXWzuKk9 5YB0gbsbfbojG80Xus9rFgqLI4QV9jvPF45k/fZbYi1/+SXCGrEN697BR8+w/8XZ vMq0VhhZYUNCLGrq2zoeJpnGmJfgmmQ= -----END CERTIFICATE-----Generated at Mon Oct 20 14:00:24 2025 by rpki-client