$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/56CBAF060CEE11EF80CB5642C4F9AE02.roa File: 56CBAF060CEE11EF80CB5642C4F9AE02.roa (raw, json) Hash identifier: eodiFGpIfsgXUXxslrRHT6wLB6egOaD+ezHH/eHicB4= Subject key identifier: C2:A5:BE:C7:8D:F1:26:EE:01:03:0E:D7:BC:C6:F0:5D:C6:F4:DC:EE Certificate issuer: /CN=A91B4E2B/serialNumber=4B3B9D9305880FF66B7F1E4C90FF987528863811 Certificate serial: FB Authority key identifier: 4B:3B:9D:93:05:88:0F:F6:6B:7F:1E:4C:90:FF:98:75:28:86:38:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzudkwWID_Zrfx5MkP-YdSiGOBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/56CBAF060CEE11EF80CB5642C4F9AE02.roa Signing time: Thu 21 Aug 2025 05:43:41 +0000 ROA not before: Thu 21 Aug 2025 05:43:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55649 IP address blocks: 43.242.140.0/22 maxlen: 22 43.242.140.0/24 maxlen: 24 43.242.141.0/24 maxlen: 24 43.242.142.0/24 maxlen: 24 43.242.143.0/24 maxlen: 24 103.38.28.0/22 maxlen: 22 103.38.28.0/24 maxlen: 24 103.38.29.0/24 maxlen: 24 103.38.30.0/24 maxlen: 24 103.38.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.crl rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzudkwWID_Zrfx5MkP-YdSiGOBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4E2B, serialNumber=4B3B9D9305880FF66B7F1E4C90FF987528863811 Validity Not Before: Aug 21 05:43:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a6b20d-01c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:61:a0:fc:b9:9e:71:ef:d1:78:68:3a:b1:b7: 9e:7a:2d:a4:20:2a:ec:eb:25:61:ac:b8:44:77:72: 09:ed:cd:a5:37:f6:19:c7:f3:a6:d7:92:c9:c0:a5: ad:dc:db:a7:f9:b1:d1:0c:c7:e6:ea:63:dd:c2:43: 7e:69:23:1b:8e:80:17:61:08:62:f8:d0:c9:6f:dc: 72:06:54:90:c0:ca:6c:94:ab:f8:72:bc:ae:f2:3c: 3d:d1:69:1d:1b:d6:39:50:0e:b3:d9:3d:cb:f3:0d: 06:91:e3:e2:bc:3b:b7:25:7f:8c:ec:ec:23:78:8e: 44:3c:a6:06:f8:0a:84:f9:40:f9:42:23:a7:04:35: a5:db:7e:b1:59:9d:0e:17:ca:e4:b1:4b:14:4a:48: b8:5f:b5:0d:ea:39:b7:cf:a5:1c:54:63:b3:72:49: 7b:16:11:39:fc:f8:f2:37:5e:51:13:82:f1:67:46: a7:ca:8e:4a:86:fc:fe:fb:64:ac:40:a7:04:84:b0: e0:cb:bf:1a:e8:63:3d:02:ef:0c:ab:d0:39:c4:5b: 05:24:54:7e:4a:17:06:f8:05:25:25:fb:8a:70:8b: db:18:f1:7b:6b:ed:c7:48:13:d7:87:fe:b1:be:ba: fc:5e:dc:3a:d0:a7:b3:54:60:cb:40:51:cb:26:bf: 51:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A5:BE:C7:8D:F1:26:EE:01:03:0E:D7:BC:C6:F0:5D:C6:F4:DC:EE X509v3 Authority Key Identifier: keyid:4B:3B:9D:93:05:88:0F:F6:6B:7F:1E:4C:90:FF:98:75:28:86:38:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzudkwWID_Zrfx5MkP-YdSiGOBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/56CBAF060CEE11EF80CB5642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.140.0/22 103.38.28.0/22 Signature Algorithm: sha256WithRSAEncryption 80:2b:12:a4:4b:f4:ae:a1:c3:d0:8a:2b:86:97:25:6b:e6:c2: 4c:0e:e8:fb:8e:e0:5d:2c:48:f8:64:8e:3d:ee:e6:27:e9:47: bf:5e:4e:e2:55:62:1a:33:c4:b5:02:3d:4c:91:83:48:ef:41: 4d:bb:66:f9:2a:61:aa:3a:cb:0c:d1:f1:39:1c:e3:9a:8f:5d: 6f:14:ad:0e:f0:79:5e:e9:7c:5f:84:78:56:de:24:c1:9a:82: 5c:ea:f7:9c:0c:25:ed:02:15:22:c9:76:a4:d3:6f:dd:13:71: 8b:c2:5d:a0:31:1c:48:de:8f:14:a0:6b:d5:01:18:48:9b:bc: 3b:ee:c5:5b:2e:b7:97:ad:fb:1f:4a:80:ea:a4:aa:04:0a:e6: a7:e7:aa:05:0a:4c:5e:fb:77:3b:1d:d2:7e:f2:7a:cd:ae:5d: f8:f0:a4:d9:84:12:ab:f6:b5:47:fc:42:37:45:42:3d:ec:b9: ea:37:da:96:94:dd:02:c5:7c:0e:7b:e2:2b:61:90:fa:e3:4b: 09:70:6b:74:e5:c7:12:ad:d6:60:68:a9:96:ec:56:e2:f1:6b: c4:ad:70:03:ae:78:f1:3f:47:4c:28:e8:7f:a4:29:66:91:8f: ff:63:3e:fb:5d:a7:2b:67:cb:d6:39:d3:90:20:0b:9a:c1:db: 8d:87:bd:ba -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRFMkIxMTAvBgNVBAUTKDRCM0I5RDkzMDU4ODBGRjY2QjdGMUU0QzkwRkY5ODc1 Mjg4NjM4MTEwHhcNMjUwODIxMDU0MzQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2YjIwZC0wMWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWGg/Lmece/ReGg6sbeeei2kICrs6yVhrLhEd3IJ7c2lN/YZx/Om15LJwKWt 3Nun+bHRDMfm6mPdwkN+aSMbjoAXYQhi+NDJb9xyBlSQwMpslKv4cryu8jw90Wkd G9Y5UA6z2T3L8w0GkePivDu3JX+M7OwjeI5EPKYG+AqE+UD5QiOnBDWl236xWZ0O F8rksUsUSki4X7UN6jm3z6UcVGOzckl7FhE5/PjyN15RE4LxZ0anyo5Khvz++2Ss QKcEhLDgy78a6GM9Au8Mq9A5xFsFJFR+ShcG+AUlJfuKcIvbGPF7a+3HSBPXh/6x vrr8Xtw60KezVGDLQFHLJr9RiwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMKlvseN 8SbuAQMO17zG8F3G9NzuMB8GA1UdIwQYMBaAFEs7nZMFiA/2a38eTJD/mHUohjgR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEUyQi9GODM2QkRFQzBD RUMxMUVGOUY4MUY2M0ZDNEY5QUUwMi9TenVka3dXSURfWnJmeDVNa1AtWWRTaUdP QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N6dWRrd1dJRF9acmZ4NU1rUC1ZZFNpR09CRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjRFMkIvRjgzNkJERUMwQ0VDMTFFRjlGODFGNjNGQzRGOUFFMDIvNTZDQkFGMDYw Q0VFMTFFRjgwQ0I1NjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8owDBAJnJhwwDQYJKoZIhvcNAQELBQADggEBAIArEqRL 9K6hw9CKK4aXJWvmwkwO6PuO4F0sSPhkjj3u5ifpR79eTuJVYhozxLUCPUyRg0jv QU27ZvkqYao6ywzR8Tkc45qPXW8UrQ7weV7pfF+EeFbeJMGaglzq95wMJe0CFSLJ dqTTb90TcYvCXaAxHEjejxSga9UBGEibvDvuxVsut5et+x9KgOqkqgQK5qfnqgUK TF77dzsd0n7yes2uXfjwpNmEEqv2tUf8QjdFQj3sueo32paU3QLFfA574ithkPrj Swlwa3TlxxKt1mBoqZbsVuLxa8StcAOuePE/R0wo6H+kKWaRj/9jPvtdpytny9Y5 05AgC5rB242Hvbo= -----END CERTIFICATE-----Generated at Sun Aug 24 11:01:30 2025 by rpki-client