$ rpki-client -vvf rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa File: B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa (raw, json) Hash identifier: +jBGaqvKM/p3gFY9j31Ktn8G8q5l2wqpkIruownzwFg= Subject key identifier: A1:F7:3E:03:07:E6:43:04:BA:F6:7C:8C:56:73:9A:89:BA:48:79:E7 Certificate issuer: /CN=A91228BC/serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770 Certificate serial: 05CE Authority key identifier: 98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa Signing time: Wed 13 Aug 2025 00:05:58 +0000 ROA not before: Wed 13 Aug 2025 00:05:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142559 IP address blocks: 103.169.98.0/24 maxlen: 24 103.169.99.0/24 maxlen: 24 2001:df6:f580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.crl rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228BC, serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770 Validity Not Before: Aug 13 00:05:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689bd6e5-d29e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:05:a3:cb:d0:2d:3c:f9:22:c1:69:06:ee:07: df:4d:1e:c3:27:87:85:c1:ce:59:da:0b:9e:6f:db: 8c:19:9d:b0:e5:db:0b:66:30:c6:bc:80:bf:23:fc: a1:56:75:49:8c:b1:2d:97:7a:ec:da:dd:40:d1:01: a8:e5:0f:0f:96:10:5a:b2:0f:33:00:3e:f5:3c:1f: 2c:79:e1:c5:d5:5e:db:da:e6:61:c7:0a:58:ec:c8: b4:69:2f:f7:76:e6:13:dd:ff:5f:19:d5:5b:54:4a: e0:53:94:7c:df:d6:6d:53:71:48:18:4b:49:89:2d: 5f:a7:9d:26:b3:e7:59:f7:cb:64:a2:35:60:60:28: a8:f1:00:41:1d:1a:75:b9:d3:84:9b:c7:12:2a:3a: a2:c0:18:49:2a:8d:89:83:91:a6:80:4b:19:6a:06: 0a:a9:08:6b:b5:48:fd:4c:f8:44:b2:c5:1d:2f:04: 58:72:51:13:7c:a7:19:c8:ba:87:7f:6d:ba:cd:a1: 6b:ed:de:ec:98:4d:02:69:f6:6e:78:5d:1d:c6:b0: af:5b:96:02:a3:22:74:3f:00:33:2c:15:9c:89:41: a6:33:38:d8:2e:ff:02:63:9e:6f:32:3a:3c:44:19: f0:13:c3:88:78:11:14:ca:39:6f:99:a8:28:f2:40: d7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F7:3E:03:07:E6:43:04:BA:F6:7C:8C:56:73:9A:89:BA:48:79:E7 X509v3 Authority Key Identifier: keyid:98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.98.0/23 IPv6: 2001:df6:f580::/48 Signature Algorithm: sha256WithRSAEncryption a5:fe:4f:fe:8a:95:88:de:58:0a:e5:a9:5b:c1:9e:bc:97:12: 13:9c:4a:d0:59:6d:ac:b5:d0:39:82:c8:7a:d9:02:f0:53:c8: d5:f9:4c:12:92:d3:be:20:0e:08:1a:cf:3b:43:78:ad:55:21: 48:16:b7:4c:8b:f5:a9:a0:0a:dc:89:5c:04:4c:e3:39:50:c1: 7a:14:f0:77:34:bf:92:cf:17:6f:1c:20:44:4b:29:67:74:d1: a2:c0:fd:32:b5:29:15:62:2d:24:22:42:8a:3d:ba:b5:bd:87: 25:de:0f:51:1b:8b:43:bc:2d:1b:d2:eb:cf:aa:83:ac:e8:88: e1:23:18:76:ee:18:be:80:17:8d:b4:58:e8:90:9e:8e:98:23: ec:48:33:c8:de:97:8a:82:72:73:32:cf:e7:5a:d6:6b:79:7b: 3f:46:2b:9a:9e:03:d6:45:6c:cf:f7:05:f4:95:c7:eb:ba:f4: 4e:67:de:f7:0a:84:54:e2:54:42:ee:d8:bf:a3:5a:af:9a:e3: dc:e2:aa:8f:83:ff:de:63:b4:2b:cd:d6:9a:f0:f3:96:da:bc: 20:72:b3:30:ba:a7:18:10:13:cd:3f:a6:40:8d:84:2a:1b:29: 37:16:c3:97:b7:25:bc:f7:98:db:bf:db:8b:b0:39:52:da:e6: 74:93:36:2c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4QkMxMTAvBgNVBAUTKDk4QjVDNjE0NzYxOEZDQjY0QzIxNERDQ0MwNzc3NDEz MDg3RTk3NzAwHhcNMjUwODEzMDAwNTU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliZDZlNS1kMjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwWjy9AtPPkiwWkG7gffTR7DJ4eFwc5Z2gueb9uMGZ2w5dsLZjDGvIC/I/yh VnVJjLEtl3rs2t1A0QGo5Q8PlhBasg8zAD71PB8seeHF1V7b2uZhxwpY7Mi0aS/3 duYT3f9fGdVbVErgU5R839ZtU3FIGEtJiS1fp50ms+dZ98tkojVgYCio8QBBHRp1 udOEm8cSKjqiwBhJKo2Jg5GmgEsZagYKqQhrtUj9TPhEssUdLwRYclETfKcZyLqH f226zaFr7d7smE0CafZueF0dxrCvW5YCoyJ0PwAzLBWciUGmMzjYLv8CY55vMjo8 RBnwE8OIeBEUyjlvmago8kDXVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKH3PgMH 5kMEuvZ8jFZzmom6SHnnMB8GA1UdIwQYMBaAFJi1xhR2GPy2TCFNzMB3dBMIfpdw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhCQy8wRTdENjRENkRG MEQxMUVCQjExMzBEODFDNEY5QUUwMi9tTFhHRkhZWV9MWk1JVTNNd0hkMEV3aC1s M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21MWEdGSFlZX0xaTUlVM013SGQwRXdoLWwzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjI4QkMvMEU3RDY0RDZERjBEMTFFQkIxMTMwRDgxQzRGOUFFMDIvQjJDOENCREU1 RURBMTFFRkJGQThBMjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqWIwDwQCAAIwCQMHACABDfb1gDANBgkqhkiG9w0BAQsF AAOCAQEApf5P/oqViN5YCuWpW8GevJcSE5xK0FltrLXQOYLIetkC8FPI1flMEpLT viAOCBrPO0N4rVUhSBa3TIv1qaAK3IlcBEzjOVDBehTwdzS/ks8XbxwgREspZ3TR osD9MrUpFWItJCJCij26tb2HJd4PURuLQ7wtG9Lrz6qDrOiI4SMYdu4YvoAXjbRY 6JCejpgj7EgzyN6XioJyczLP51rWa3l7P0Yrmp4D1kVsz/cF9JXH67r0Tmfe9wqE VOJUQu7Yv6Nar5rj3OKqj4P/3mO0K83WmvDzltq8IHKzMLqnGBATzT+mQI2EKhsp NxbDl7clvPeY27/bi7A5UtrmdJM2LA== -----END CERTIFICATE-----Generated at Sun Aug 24 03:36:18 2025 by rpki-client