$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa File: 6CAE0142092E11F094B4703FC4F9AE02.roa (raw, json) Hash identifier: dAr5iBEgksscApG/hnOmTYygVomN/E/w8I2tDgWWF54= Subject key identifier: 4E:32:ED:94:2A:2F:47:B5:85:BF:05:90:31:3C:BA:B1:FF:90:E3:86 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C6A Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa Signing time: Mon 29 Sep 2025 14:08:33 +0000 ROA not before: Mon 29 Sep 2025 14:08:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 142622 IP address blocks: 43.249.241.0/24 maxlen: 24 43.251.187.0/24 maxlen: 24 45.124.60.0/24 maxlen: 24 45.124.62.0/24 maxlen: 24 103.7.116.0/24 maxlen: 24 103.12.53.0/24 maxlen: 24 103.12.54.0/24 maxlen: 24 103.13.16.0/24 maxlen: 24 103.13.17.0/24 maxlen: 24 103.13.18.0/24 maxlen: 24 103.24.160.0/24 maxlen: 24 103.24.161.0/24 maxlen: 24 103.24.162.0/24 maxlen: 24 103.244.209.0/24 maxlen: 24 103.244.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3178 (0xc6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Sep 29 14:08:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68da92e0-5d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:15:b9:c3:04:d9:fd:2d:9c:55:11:5c:43:53: bd:da:01:f8:6a:c2:07:2d:0a:2c:ed:57:76:11:32: 22:98:e6:c6:96:cd:5b:2c:f9:38:cc:38:52:49:01: dd:96:cb:66:f9:d4:ef:fe:8d:f2:06:b1:37:15:2a: 45:c0:e1:3e:60:d1:8c:a6:6c:d4:58:6c:bc:9e:74: ba:a8:dc:6c:17:0e:41:29:3c:6c:ea:82:9c:70:fc: ae:82:4a:5c:13:44:72:c5:b9:9a:e1:67:e7:5c:5b: 34:2e:ef:15:80:f8:8d:02:d1:9f:ad:8a:8d:ba:29: 22:60:e4:77:eb:68:82:95:10:6a:fb:ab:a4:d0:6b: a3:63:e3:e4:8b:9b:72:19:07:e9:c3:79:16:5d:85: f9:da:d5:f1:d5:dc:91:98:89:a6:da:60:a6:db:66: 89:6a:60:44:f4:cf:d9:d7:0a:23:7d:e1:5a:e3:96: 12:0b:4b:9b:12:b8:49:d1:31:a4:33:4b:e7:0d:12: 56:8e:da:40:5e:bb:12:2b:b9:91:db:1a:2e:43:f1: d8:0d:29:62:27:22:55:71:a4:39:b7:c9:c4:e4:02: 63:c7:48:c4:65:ed:a3:0d:1e:34:8b:f6:47:1d:14: 83:d7:7b:cc:a5:55:fb:46:95:d4:79:02:8e:f1:ad: 4b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:32:ED:94:2A:2F:47:B5:85:BF:05:90:31:3C:BA:B1:FF:90:E3:86 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.241.0/24 43.251.187.0/24 45.124.60.0/24 45.124.62.0/24 103.7.116.0/24 103.12.53.0-103.12.54.255 103.13.16.0-103.13.18.255 103.24.160.0-103.24.162.255 103.244.209.0-103.244.210.255 Signature Algorithm: sha256WithRSAEncryption bc:91:28:5b:46:13:e2:8b:9a:0a:23:3f:84:63:39:67:28:4a: a6:06:f7:56:c2:7c:48:e7:98:98:c6:df:2c:4e:b9:ef:c1:47: b6:2a:df:1e:ea:a5:b5:a3:a8:dd:93:71:d2:87:5d:9f:d0:33: 2d:8a:f2:2c:ed:35:f0:24:0e:a1:e7:db:46:1a:8e:ee:b9:88: 2f:fb:17:e6:7b:e6:19:db:6e:7c:7c:6a:56:9c:52:e5:f8:25: 0f:27:25:c6:f2:c5:56:08:0e:fa:3c:16:bd:3e:b1:e7:dd:dc: 17:4b:d3:13:88:f0:60:da:df:55:ac:0d:3e:99:96:84:9c:db: c7:d7:74:28:0e:79:38:16:0c:82:bb:14:9e:46:45:46:c8:a3: 3a:2f:87:10:20:11:a2:c5:f2:af:4a:65:09:e3:8f:a0:8d:64: e1:8c:bb:c4:a1:95:4f:5e:99:33:2e:78:d4:2b:a3:a8:53:5b: ad:d8:dc:3c:44:e8:42:98:1e:68:dd:a5:9f:ef:bd:10:82:87: 54:b2:fc:58:88:84:3d:26:5d:54:d7:15:73:13:b4:1b:ea:3d: c7:37:18:b9:80:3a:56:55:48:36:15:02:a8:49:76:f1:12:b7: 7d:fc:f7:1d:ad:b9:61:52:ae:a1:a2:69:f4:58:2a:6d:14:a0: 03:d5:6f:2d -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgICDGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwOTI5MTQwODMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGRhOTJlMC01ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hW5wwTZ/S2cVRFcQ1O92gH4asIHLQos7Vd2ETIimObGls1bLPk4zDhSSQHd lstm+dTv/o3yBrE3FSpFwOE+YNGMpmzUWGy8nnS6qNxsFw5BKTxs6oKccPyugkpc E0Ryxbma4WfnXFs0Lu8VgPiNAtGfrYqNuikiYOR362iClRBq+6uk0GujY+Pki5ty GQfpw3kWXYX52tXx1dyRmImm2mCm22aJamBE9M/Z1wojfeFa45YSC0ubErhJ0TGk M0vnDRJWjtpAXrsSK7mR2xouQ/HYDSliJyJVcaQ5t8nE5AJjx0jEZe2jDR40i/ZH HRSD13vMpVX7RpXUeQKO8a1LiQIDAQABo4IC5TCCAuEwHQYDVR0OBBYEFE4y7ZQq L0e1hb8FkDE8urH/kOOGMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNkNBRTAxNDIw OTJFMTFGMDk0QjQ3MDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbwYIKwYBBQUHAQcBAf8E YDBeMFwEAgABMFYDBAAr+fEDBAAr+7sDBAAtfDwDBAAtfD4DBABnB3QwDAMEAGcM NQMEAGcMNjAMAwQEZw0QAwQAZw0SMAwDBAVnGKADBABnGKIwDAMEAGf00QMEAGf0 0jANBgkqhkiG9w0BAQsFAAOCAQEAvJEoW0YT4ouaCiM/hGM5ZyhKpgb3VsJ8SOeY mMbfLE6578FHtirfHuqltaOo3ZNx0oddn9AzLYryLO018CQOoefbRhqO7rmIL/sX 5nvmGdtufHxqVpxS5fglDyclxvLFVggO+jwWvT6x593cF0vTE4jwYNrfVawNPpmW hJzbx9d0KA55OBYMgrsUnkZFRsijOi+HECARosXyr0plCeOPoI1k4Yy7xKGVT16Z My541CujqFNbrdjcPEToQpgeaN2ln++9EIKHVLL8WIiEPSZdVNcVcxO0G+o9xzcY uYA6VlVINhUCqEl28RK3ffz3Ha25YVKuoaJp9FgqbRSgA9VvLQ== -----END CERTIFICATE-----Generated at Mon Oct 20 13:34:30 2025 by rpki-client