$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/B43088B457F311F099129754C4F9AE02.roa File: B43088B457F311F099129754C4F9AE02.roa (raw, json) Hash identifier: j5XwlVwLhRMnxu2C6WteuCnRNZlOoWzDpH2DBdKQLTY= Subject key identifier: 4B:0A:E1:04:78:13:3F:7B:B2:27:B0:68:AB:88:83:2C:1B:C8:20:36 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C46 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/B43088B457F311F099129754C4F9AE02.roa Signing time: Thu 21 Aug 2025 01:33:45 +0000 ROA not before: Thu 21 Aug 2025 01:33:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 5065 IP address blocks: 43.230.52.0/24 maxlen: 24 43.230.53.0/24 maxlen: 24 43.246.198.0/24 maxlen: 24 43.249.240.0/24 maxlen: 24 43.249.242.0/24 maxlen: 24 43.249.243.0/24 maxlen: 24 43.251.184.0/24 maxlen: 24 43.251.186.0/24 maxlen: 24 45.115.33.0/24 maxlen: 24 45.115.35.0/24 maxlen: 24 103.7.117.0/24 maxlen: 24 103.7.118.0/24 maxlen: 24 103.7.119.0/24 maxlen: 24 103.13.19.0/24 maxlen: 24 103.15.32.0/24 maxlen: 24 103.15.33.0/24 maxlen: 24 103.15.34.0/24 maxlen: 24 103.15.35.0/24 maxlen: 24 103.248.150.0/24 maxlen: 24 103.248.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Aug 21 01:33:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68a67778-87f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:39:20:ac:78:10:7d:be:9c:ae:69:e3:a0:b4: 0f:c0:25:ed:c0:2c:a8:0a:a3:8d:ca:09:72:41:75: 89:cd:74:50:4f:80:22:cd:88:05:77:a7:16:21:77: ee:30:10:56:b0:6f:5b:9d:d9:cd:19:bb:40:f2:87: 16:c9:a8:f8:5c:72:d7:53:d8:59:b0:c8:28:70:f3: b9:ee:3c:ff:a3:02:d3:38:c4:7c:51:d3:b4:b4:b5: 06:9b:9a:20:fe:cd:54:b2:67:1c:63:8e:1e:4c:90: 26:9c:57:7b:34:bd:40:af:6b:10:88:a1:79:e4:80: 71:b1:d7:e4:ac:d8:e3:8f:a1:47:5b:10:6a:62:44: 71:56:5c:c4:e1:b4:f1:01:45:28:71:20:b0:6e:98: ca:79:b5:33:20:b4:f0:00:3e:fd:08:5d:27:8d:2e: c5:c2:ea:92:f9:71:92:fd:2a:29:1d:01:ee:82:9b: af:d0:85:a1:aa:a8:e0:25:ba:7b:e5:26:2e:82:8d: 0f:40:0e:ae:93:dc:20:f7:de:0b:38:67:c3:50:d7: 14:1e:aa:93:9e:80:da:b0:94:ba:09:e3:6f:f4:7b: 10:47:7e:f3:a3:1c:bd:33:4d:01:1b:ea:f0:df:5e: 7b:61:1e:d3:fe:70:87:88:9f:65:7e:57:97:92:89: b9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0A:E1:04:78:13:3F:7B:B2:27:B0:68:AB:88:83:2C:1B:C8:20:36 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/B43088B457F311F099129754C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.52.0/23 43.246.198.0/24 43.249.240.0/24 43.249.242.0/23 43.251.184.0/24 43.251.186.0/24 45.115.33.0/24 45.115.35.0/24 103.7.117.0-103.7.119.255 103.13.19.0/24 103.15.32.0/22 103.248.150.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:5f:07:95:31:b0:cb:e9:a7:86:15:b7:2a:b8:29:a0:50:52: 42:e9:9e:22:d9:44:44:49:a2:cb:7a:60:8c:4d:31:3d:1d:fd: 1a:57:6a:58:9d:b6:b0:2c:37:9d:19:ba:60:c0:ce:bd:48:eb: 72:b4:94:66:7e:be:1d:b8:69:f3:16:22:a5:4a:8a:e2:db:7c: 55:c7:50:ea:9f:f0:2e:f2:82:10:3f:be:a5:35:07:39:fb:cd: eb:35:cd:91:aa:51:e9:cc:72:44:8b:70:09:88:20:d1:9b:bb: 58:e5:68:13:34:57:96:38:c5:1f:7c:27:b6:ac:7b:80:15:59: 78:51:f6:54:f5:a0:8d:e1:7f:6b:b8:3c:fc:c2:04:f9:51:26: 13:31:26:92:f6:4f:af:1d:3c:4d:31:67:8d:e4:bc:c6:a4:04: eb:24:b1:61:f3:61:e4:70:c6:40:e1:f0:ef:61:b2:f5:e8:0f: 08:90:2f:1a:f9:0c:fb:2e:cc:e5:44:c1:12:7c:3f:80:8a:49: 89:18:09:5b:e3:da:06:28:9e:4d:e5:a7:cb:53:be:00:96:fc: d0:45:58:1d:f1:8d:b8:34:78:d8:88:c5:01:12:05:60:50:a5: 1e:3f:b6:14:f7:31:65:81:fd:b3:3d:38:ff:ca:7c:50:1c:cf: b5:b1:66:3e -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwODIxMDEzMzQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2Nzc3OC04N2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTkgrHgQfb6crmnjoLQPwCXtwCyoCqONyglyQXWJzXRQT4AizYgFd6cWIXfu MBBWsG9bndnNGbtA8ocWyaj4XHLXU9hZsMgocPO57jz/owLTOMR8UdO0tLUGm5og /s1UsmccY44eTJAmnFd7NL1Ar2sQiKF55IBxsdfkrNjjj6FHWxBqYkRxVlzE4bTx AUUocSCwbpjKebUzILTwAD79CF0njS7FwuqS+XGS/SopHQHugpuv0IWhqqjgJbp7 5SYugo0PQA6uk9wg994LOGfDUNcUHqqTnoDasJS6CeNv9HsQR37zoxy9M00BG+rw 3157YR7T/nCHiJ9lfleXkom5mQIDAQABo4IC3zCCAtswHQYDVR0OBBYEFEsK4QR4 Ez97siewaKuIgywbyCA2MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvQjQzMDg4QjQ1 N0YzMTFGMDk5MTI5NzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMFYEAgABMFADBAEr5jQDBAAr9sYDBAAr+fADBAEr+fIDBAAr+7gDBAAr+7oD BAAtcyEDBAAtcyMwDAMEAGcHdQMEA2cHcAMEAGcNEwMEAmcPIAMEAWf4ljANBgkq hkiG9w0BAQsFAAOCAQEAC18HlTGwy+mnhhW3KrgpoFBSQumeItlEREmiy3pgjE0x PR39GldqWJ22sCw3nRm6YMDOvUjrcrSUZn6+Hbhp8xYipUqK4tt8VcdQ6p/wLvKC ED++pTUHOfvN6zXNkapR6cxyRItwCYgg0Zu7WOVoEzRXljjFH3wntqx7gBVZeFH2 VPWgjeF/a7g8/MIE+VEmEzEmkvZPrx08TTFnjeS8xqQE6ySxYfNh5HDGQOHw72Gy 9egPCJAvGvkM+y7M5UTBEnw/gIpJiRgJW+PaBiieTeWny1O+AJb80EVYHfGNuDR4 2IjFARIFYFClHj+2FPcxZYH9sz04/8p8UBzPtbFmPg== -----END CERTIFICATE-----Generated at Sun Aug 24 04:56:55 2025 by rpki-client