$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/C4391160305611EABE7DF272C4F9AE02.roa File: C4391160305611EABE7DF272C4F9AE02.roa (raw, json) Hash identifier: ShWNoWlK1A1y7tJIOL2NddDhqDzgH2F/9l1o2jwcmL0= Subject key identifier: 21:01:82:3A:3F:0A:3D:59:32:2A:E6:32:04:58:9D:D9:1D:E0:58:F0 Certificate issuer: /CN=A91DA649/serialNumber=B9EB15486677737DB2739FD65462AEE7906168C2 Certificate serial: 0C41 Authority key identifier: B9:EB:15:48:66:77:73:7D:B2:73:9F:D6:54:62:AE:E7:90:61:68:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uesVSGZ3c32yc5_WVGKu55BhaMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/C4391160305611EABE7DF272C4F9AE02.roa Signing time: Thu 14 Aug 2025 18:58:57 +0000 ROA not before: Thu 14 Aug 2025 18:58:57 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45276 IP address blocks: 115.69.208.0/21 maxlen: 21 115.69.208.0/23 maxlen: 24 115.69.210.0/24 maxlen: 24 115.69.211.0/24 maxlen: 24 115.69.212.0/23 maxlen: 24 115.69.214.0/24 maxlen: 24 115.69.215.0/24 maxlen: 24 2400:1020::/32 maxlen: 32 2400:1020::/48 maxlen: 48 2400:1020:1100::/44 maxlen: 44 2400:1020:1110::/44 maxlen: 44 2400:1020:1160::/44 maxlen: 44 2400:1020:1167::/48 maxlen: 48 2400:1020:2000::/40 maxlen: 40 2400:1020:2100::/40 maxlen: 40 2400:1020:2110::/44 maxlen: 44 2400:1020:a000::/44 maxlen: 44 2400:1020:a000::/48 maxlen: 48 2400:1020:a001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/uesVSGZ3c32yc5_WVGKu55BhaMI.crl rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/uesVSGZ3c32yc5_WVGKu55BhaMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uesVSGZ3c32yc5_WVGKu55BhaMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA649, serialNumber=B9EB15486677737DB2739FD65462AEE7906168C2 Validity Not Before: Aug 14 18:58:57 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689e31f0-cbf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8f:a9:9e:05:75:b6:ad:0e:3e:dd:09:50:95: 47:07:2f:12:5d:85:7c:f4:44:fa:17:32:5a:25:bb: a4:d8:71:fb:23:bb:41:ce:13:48:1f:23:ef:29:db: 39:ae:9f:52:31:10:4a:09:a6:ce:e1:3d:81:10:1f: 74:66:c1:74:ef:c4:e4:6c:e5:0b:46:0a:5f:49:7f: e1:1f:af:bc:ed:0e:96:19:1b:af:3c:32:63:1d:17: 20:a2:78:a0:11:79:75:61:00:db:44:72:19:7c:62: 3c:fe:c0:ae:65:ef:b0:41:38:88:de:fc:45:85:dd: e5:47:e4:e2:7d:00:39:50:04:54:b9:f9:e5:71:e1: 38:4f:3f:86:7c:4d:68:18:33:94:aa:1f:c1:cb:a3: dc:bc:49:05:ce:12:a7:9d:03:e8:f0:e9:bc:39:8c: 30:61:78:5e:45:12:bb:84:3a:ff:d6:ae:1f:15:b7: a1:f4:e8:1f:74:6b:a6:5f:a6:ff:7f:c0:87:6e:2e: 3e:ec:30:05:64:e4:31:e4:26:4b:d8:9f:7d:a0:1a: 6e:ab:be:0c:88:9b:c6:80:eb:3d:4c:28:33:63:a7: 91:8f:4f:e2:e6:1d:6f:9c:da:8f:44:29:24:b1:7e: 2b:73:fa:63:33:54:83:84:7d:70:53:d6:f5:60:ef: eb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:01:82:3A:3F:0A:3D:59:32:2A:E6:32:04:58:9D:D9:1D:E0:58:F0 X509v3 Authority Key Identifier: keyid:B9:EB:15:48:66:77:73:7D:B2:73:9F:D6:54:62:AE:E7:90:61:68:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/uesVSGZ3c32yc5_WVGKu55BhaMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uesVSGZ3c32yc5_WVGKu55BhaMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA649/5D97774C0F5111EA8C4A5C0AC4F9AE02/C4391160305611EABE7DF272C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.69.208.0/21 IPv6: 2400:1020::/32 Signature Algorithm: sha256WithRSAEncryption 97:01:3e:82:57:b5:ac:ee:ac:11:68:c8:53:ae:9a:c7:3b:65: 82:4a:70:e3:c7:17:87:b2:c8:a5:31:e6:f4:83:d2:c5:80:c5: 1f:ee:ce:06:99:b0:7c:74:27:2d:b8:39:d9:de:ec:58:9d:16: ac:ad:63:14:c6:f1:e5:d5:2e:10:7b:3e:8a:83:71:5d:8f:4e: 86:51:4f:34:12:8e:d3:53:b7:ff:d3:60:cd:46:76:27:08:f4: e3:b7:86:57:b4:f3:1b:8b:85:8a:ff:25:11:63:28:62:5f:12: c3:c7:6b:c0:ce:51:18:dc:78:46:6a:e9:3b:d3:c9:a0:cf:76: df:53:2b:ec:3c:70:b5:81:c1:e4:9d:79:b2:55:41:09:95:6f: bf:83:66:bd:c3:5f:fb:0b:a6:6b:a3:53:2d:52:f3:b1:2e:3b: f2:d4:2e:b6:79:eb:93:f8:46:85:29:c5:c0:3f:19:a9:71:10: f0:9d:bf:85:cb:f0:d6:a5:87:a4:b3:81:99:fa:1e:4d:34:4b: 10:15:20:90:ea:36:b9:4a:a6:b0:0d:83:0c:82:a0:3c:47:40: 99:a8:e4:e7:45:dc:40:ca:0c:d7:8b:83:6c:f4:a1:1e:66:2f: a7:93:60:74:47:1e:a2:4d:ae:6f:ad:c4:03:70:ff:d0:20:75: 39:05:8c:15 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE2NDkxMTAvBgNVBAUTKEI5RUIxNTQ4NjY3NzczN0RCMjczOUZENjU0NjJBRUU3 OTA2MTY4QzIwHhcNMjUwODE0MTg1ODU3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMzFmMC1jYmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI+pngV1tq0OPt0JUJVHBy8SXYV89ET6FzJaJbuk2HH7I7tBzhNIHyPvKds5 rp9SMRBKCabO4T2BEB90ZsF078TkbOULRgpfSX/hH6+87Q6WGRuvPDJjHRcgonig EXl1YQDbRHIZfGI8/sCuZe+wQTiI3vxFhd3lR+TifQA5UARUufnlceE4Tz+GfE1o GDOUqh/By6PcvEkFzhKnnQPo8Om8OYwwYXheRRK7hDr/1q4fFbeh9OgfdGumX6b/ f8CHbi4+7DAFZOQx5CZL2J99oBpuq74MiJvGgOs9TCgzY6eRj0/i5h1vnNqPRCkk sX4rc/pjM1SDhH1wU9b1YO/r2wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCEBgjo/ Cj1ZMirmMgRYndkd4FjwMB8GA1UdIwQYMBaAFLnrFUhmd3N9snOf1lRirueQYWjC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTY0OS81RDk3Nzc0QzBG NTExMUVBOEM0QTVDMEFDNEY5QUUwMi91ZXNWU0daM2MzMnljNV9XVkdLdTU1Qmhh TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vlc1ZTR1ozYzMyeWM1X1dWR0t1NTVCaGFNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE2NDkvNUQ5Nzc3NEMwRjUxMTFFQThDNEE1QzBBQzRGOUFFMDIvQzQzOTExNjAz MDU2MTFFQUJFN0RGMjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBANzRdAwDQQCAAIwBwMFACQAECAwDQYJKoZIhvcNAQELBQAD ggEBAJcBPoJXtazurBFoyFOumsc7ZYJKcOPHF4eyyKUx5vSD0sWAxR/uzgaZsHx0 Jy24Odne7FidFqytYxTG8eXVLhB7PoqDcV2PToZRTzQSjtNTt//TYM1GdicI9OO3 hle08xuLhYr/JRFjKGJfEsPHa8DOURjceEZq6TvTyaDPdt9TK+w8cLWBweSdebJV QQmVb7+DZr3DX/sLpmujUy1S87EuO/LULrZ565P4RoUpxcA/GalxEPCdv4XL8Nal h6SzgZn6Hk00SxAVIJDqNrlKprANgwyCoDxHQJmo5OdF3EDKDNeLg2z0oR5mL6eT YHRHHqJNrm+txANw/9AgdTkFjBU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:01:01 2025 by rpki-client