$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/49FAAD72591211EDA743880DC4F9AE02.roa File: 49FAAD72591211EDA743880DC4F9AE02.roa (raw, json) Hash identifier: p2SDVbwBZwxr3yJ4yGh7aCxA4CeficP3aVklyI/yKDc= Subject key identifier: E9:1A:96:92:63:0A:DA:B9:D0:44:3E:0C:E1:20:17:11:40:37:2B:9E Certificate issuer: /CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Certificate serial: 062C Authority key identifier: 43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/49FAAD72591211EDA743880DC4F9AE02.roa Signing time: Fri 12 Sep 2025 23:04:15 +0000 ROA not before: Fri 12 Sep 2025 23:04:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 19809 IP address blocks: 119.31.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE146, serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Validity Not Before: Sep 12 23:04:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c4a6ef-772b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:06:b3:5b:ba:32:77:8f:cd:74:18:8a:38:a9: 06:be:de:ae:db:13:09:17:aa:c4:cb:e6:69:49:61: 17:86:2c:c6:27:00:65:94:da:6a:e5:7a:0f:13:a5: a0:04:93:67:99:0b:47:9c:f4:55:85:1f:da:7d:42: 5e:ad:d4:6b:10:26:74:50:5b:e2:12:94:74:95:6a: be:66:7b:5f:80:d0:90:84:9c:9e:ba:6b:02:20:f2: 7e:b2:d9:30:e1:9b:8a:f7:3b:85:6c:e8:b5:f2:fb: 6b:ee:e3:47:1d:ce:0a:11:d3:d0:de:43:2d:22:40: 01:1a:61:95:4d:d8:59:00:4c:b3:eb:f7:2c:bd:3a: 8e:b6:6b:e7:3d:8c:bd:cf:44:04:49:7d:c7:9d:ae: 90:92:6d:3d:11:2d:00:57:ee:86:8b:cd:61:9d:e1: 34:8b:cf:75:ee:2c:d5:4a:d6:56:0a:06:11:85:38: 07:f0:ef:e1:d6:54:b7:2f:8d:2d:10:b8:21:da:1c: 3a:32:c7:92:ca:57:12:54:e2:3c:78:07:5e:69:f7: ab:7a:d0:d3:77:dd:c5:36:83:da:98:37:48:23:21: 8f:0f:2f:f3:d9:4a:f2:01:de:b7:99:04:c6:2e:58: a3:9a:71:81:0b:57:b6:de:e7:d4:39:11:95:70:96: 96:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1A:96:92:63:0A:DA:B9:D0:44:3E:0C:E1:20:17:11:40:37:2B:9E X509v3 Authority Key Identifier: keyid:43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/49FAAD72591211EDA743880DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.31.165.0/24 Signature Algorithm: sha256WithRSAEncryption 41:dd:88:43:1b:0f:51:68:50:7a:f0:fa:f0:e3:4b:5a:64:28: df:5c:d2:c4:27:c4:cf:29:8c:e5:e4:78:92:f6:76:b3:6f:84: f2:2e:b6:1e:7b:ef:aa:9e:a5:f7:66:2b:05:ca:ae:17:ae:93: 8a:9e:c8:15:23:7a:c9:ea:b1:84:60:f5:63:82:75:13:63:6f: b6:29:22:d9:fc:a2:ce:61:12:b2:fb:32:15:be:8f:97:22:fc: a4:07:e6:3e:24:4b:23:c0:24:c4:2d:46:17:60:ef:a0:ca:10: bd:66:f3:70:ab:02:98:16:e0:e6:38:db:75:d9:81:95:9a:f8: 13:82:63:57:34:67:79:6a:55:f3:2b:08:0e:d7:56:8e:ea:65: dc:da:04:1d:de:b3:4b:79:31:a2:45:e9:7b:b3:a3:d6:04:4e: 23:be:8e:25:84:4b:69:40:1c:a0:1f:bc:b6:60:22:83:ee:76: 83:c0:e1:76:22:3a:3d:d8:9c:e4:3e:e5:38:86:68:4e:91:67: 3e:63:5f:43:eb:96:51:d5:33:c3:8b:e1:ee:e8:7b:84:c5:74: 8a:25:9b:fb:39:ad:b5:1d:a6:cf:0b:d9:ee:be:23:51:02:74: 22:c0:0c:0a:03:93:85:d4:7a:0f:ff:e0:27:c3:e0:76:f1:d5: b2:f8:5d:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxNDYxMTAvBgNVBAUTKDQzRUEzQTJEQzA4QzVFMUYyQ0Q2ODQxMTY0NEEwNUMw NzZFODhDMDgwHhcNMjUwOTEyMjMwNDE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0YTZlZi03NzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQazW7oyd4/NdBiKOKkGvt6u2xMJF6rEy+ZpSWEXhizGJwBllNpq5XoPE6Wg BJNnmQtHnPRVhR/afUJerdRrECZ0UFviEpR0lWq+ZntfgNCQhJyeumsCIPJ+stkw 4ZuK9zuFbOi18vtr7uNHHc4KEdPQ3kMtIkABGmGVTdhZAEyz6/csvTqOtmvnPYy9 z0QESX3Hna6Qkm09ES0AV+6Gi81hneE0i8917izVStZWCgYRhTgH8O/h1lS3L40t ELgh2hw6MseSylcSVOI8eAdeaferetDTd93FNoPamDdIIyGPDy/z2UryAd63mQTG LlijmnGBC1e23ufUORGVcJaW9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOkalpJj Ctq50EQ+DOEgFxFANyueMB8GA1UdIwQYMBaAFEPqOi3AjF4fLNaEEWRKBcB26IwI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTE0Ni9FNDFBQjQyQUJE MzExMUVCQkZDM0Y5MjFDNEY5QUUwMi9RLW82TGNDTVhoOHMxb1FSWkVvRndIYm9q QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtbzZMY0NNWGg4czFvUVJaRW9Gd0hib2pBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxNDYvRTQxQUI0MkFCRDMxMTFFQkJGQzNGOTIxQzRGOUFFMDIvNDlGQUFENzI1 OTEyMTFFREE3NDM4ODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3H6UwDQYJKoZIhvcNAQELBQADggEBAEHdiEMbD1FoUHrw +vDjS1pkKN9c0sQnxM8pjOXkeJL2drNvhPIuth5776qepfdmKwXKrheuk4qeyBUj esnqsYRg9WOCdRNjb7YpItn8os5hErL7MhW+j5ci/KQH5j4kSyPAJMQtRhdg76DK EL1m83CrApgW4OY423XZgZWa+BOCY1c0Z3lqVfMrCA7XVo7qZdzaBB3es0t5MaJF 6Xuzo9YETiO+jiWES2lAHKAfvLZgIoPudoPA4XYiOj3YnOQ+5TiGaE6RZz5jX0Pr llHVM8OL4e7oe4TFdIolm/s5rbUdps8L2e6+I1ECdCLADAoDk4XUeg//4CfD4Hbx 1bL4XUA= -----END CERTIFICATE-----Generated at Mon Oct 20 23:11:12 2025 by rpki-client