$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/145F8B6434D211EEA9BD8F64C4F9AE02.roa File: 145F8B6434D211EEA9BD8F64C4F9AE02.roa (raw, json) Hash identifier: LIC3UjwuX1L1kGuepSck3yzfK3nMMe4EkNAzNmI2D14= Subject key identifier: FC:39:68:CB:D5:87:69:22:53:EB:FD:12:65:2A:F9:0C:6A:D1:40:09 Certificate issuer: /CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Certificate serial: 04F0 Authority key identifier: E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/145F8B6434D211EEA9BD8F64C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:16:11 +0000 ROA not before: Wed 03 Sep 2025 00:16:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132007 IP address blocks: 43.255.136.0/22 maxlen: 24 103.239.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DBA, serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Validity Not Before: Sep 3 00:16:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b788cb-3b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0c:3b:5d:a4:2f:09:5b:86:e5:36:f5:ed:18: a9:78:88:29:f0:da:bf:4e:17:c7:a5:2d:71:fa:f3: d7:99:59:a4:f1:c9:8d:d4:f7:ce:b8:4a:3f:e1:3e: cf:b6:b2:11:1f:a2:65:aa:03:ee:30:f1:05:11:6a: e3:4e:21:e3:32:50:44:3a:e8:85:83:78:a8:6f:55: 1e:21:1b:ff:61:96:9f:f5:23:b5:1d:9a:9a:af:c1: 0b:3e:01:fc:53:02:ff:e2:c9:48:00:12:7d:fc:37: e2:3e:d9:5b:fe:9e:67:f0:d2:f2:61:28:3a:fb:30: d5:c4:9e:65:f9:65:a7:48:9f:e6:c5:47:85:bd:ff: 03:70:e8:3c:9a:a6:e2:e6:c5:27:a3:57:1a:f3:35: a7:07:d6:47:09:d3:6d:a8:96:14:eb:d6:3a:43:27: 2a:df:25:b6:f0:b2:eb:ae:67:c4:80:36:0b:c3:ca: c2:78:64:86:5f:65:16:ac:79:b1:ba:0e:5d:2b:70: ec:67:aa:c8:be:94:d9:16:12:e8:d1:26:ca:73:08: 9d:86:66:c1:fc:11:08:a6:f3:61:32:92:dd:6c:f5: 4f:b3:62:85:9b:e7:d7:b1:17:cb:d1:78:96:b2:7a: f5:21:07:f4:e0:be:37:1a:63:f0:62:0c:25:da:81: c1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:39:68:CB:D5:87:69:22:53:EB:FD:12:65:2A:F9:0C:6A:D1:40:09 X509v3 Authority Key Identifier: keyid:E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/145F8B6434D211EEA9BD8F64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.136.0/22 103.239.132.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:e5:84:ec:45:a5:6a:0f:2a:f8:81:84:5f:09:c0:76:81:d4: 8d:9f:ad:fe:74:82:40:07:cb:4e:58:d7:28:96:e7:dd:fe:64: e4:76:c5:99:9a:9d:13:66:1a:7e:91:18:17:4a:a3:a2:b3:0f: b2:25:bc:4c:71:97:60:51:59:2c:94:26:29:ad:8b:f7:b9:45: 2d:fc:0b:91:d2:d2:d3:6a:2d:ca:9c:bc:a0:a5:a5:a3:60:10: 22:b7:48:91:13:dd:ae:08:fd:87:43:35:b3:a7:7d:93:ed:c3: 8d:d4:d5:c9:4e:15:f8:13:eb:1c:88:62:75:5f:52:af:79:67: b2:c6:e5:13:db:fe:ae:9a:cb:a7:da:17:d3:5c:86:45:7a:3e: 65:4a:3a:9f:d4:aa:54:64:d0:c7:50:96:f6:ad:4a:0f:06:e7: 96:7f:ed:74:ff:c8:3f:9d:a4:1d:d9:d7:e5:5a:41:c3:65:1d: 3a:4c:f9:1d:fc:4a:c6:32:54:bf:86:e9:7a:9e:5d:da:c8:27: 9a:90:4a:5d:c0:4c:31:91:7d:db:05:8a:72:e5:42:46:e8:fa: 2c:b1:6e:09:5a:02:a8:dd:de:cb:be:fc:dd:62:05:48:3a:80: c8:dd:e5:64:20:f9:da:56:79:5c:ff:be:c7:f6:5b:db:29:25: 0c:9c:84:ea -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQkExMTAvBgNVBAUTKEUwODQ5RjA1NDM5MTgyMDJCMTc4NDQ0RTVGRjIyRjg5 OUY5RTMyMEUwHhcNMjUwOTAzMDAxNjExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODhjYi0zYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gw7XaQvCVuG5Tb17RipeIgp8Nq/ThfHpS1x+vPXmVmk8cmN1PfOuEo/4T7P trIRH6JlqgPuMPEFEWrjTiHjMlBEOuiFg3iob1UeIRv/YZaf9SO1HZqar8ELPgH8 UwL/4slIABJ9/DfiPtlb/p5n8NLyYSg6+zDVxJ5l+WWnSJ/mxUeFvf8DcOg8mqbi 5sUno1ca8zWnB9ZHCdNtqJYU69Y6Qycq3yW28LLrrmfEgDYLw8rCeGSGX2UWrHmx ug5dK3DsZ6rIvpTZFhLo0SbKcwidhmbB/BEIpvNhMpLdbPVPs2KFm+fXsRfL0XiW snr1IQf04L43GmPwYgwl2oHB9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPw5aMvV h2kiU+v9EmUq+Qxq0UAJMB8GA1UdIwQYMBaAFOCEnwVDkYICsXhETl/yL4mfnjIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RCQS8yOEVCNzE0NjJC RDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdnS3hlRVJPWF9JdmlaLWVN ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJU2ZCVU9SZ2dLeGVFUk9YX0l2aVotZU1nNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdEQkEvMjhFQjcxNDYyQkQ0MTFFQ0IwQkFERTU4QzRGOUFFMDIvMTQ1RjhCNjQz NEQyMTFFRUE5QkQ4RjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/4gDBAJn74QwDQYJKoZIhvcNAQELBQADggEBADrlhOxF pWoPKviBhF8JwHaB1I2frf50gkAHy05Y1yiW593+ZOR2xZmanRNmGn6RGBdKo6Kz D7IlvExxl2BRWSyUJimti/e5RS38C5HS0tNqLcqcvKClpaNgECK3SJET3a4I/YdD NbOnfZPtw43U1clOFfgT6xyIYnVfUq95Z7LG5RPb/q6ay6faF9NchkV6PmVKOp/U qlRk0MdQlvatSg8G55Z/7XT/yD+dpB3Z1+VaQcNlHTpM+R38SsYyVL+G6XqeXdrI J5qQSl3ATDGRfdsFinLlQkbo+iyxbglaAqjd3su+/N1iBUg6gMjd5WQg+dpWeVz/ vsf2W9spJQychOo= -----END CERTIFICATE-----Generated at Mon Oct 20 16:16:54 2025 by rpki-client