$ rpki-client -vvf rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/36333AA6928111F0AA95D96AC4F9AE02.roa File: 36333AA6928111F0AA95D96AC4F9AE02.roa (raw, json) Hash identifier: VniQg/Q8eQO09WHTg5jdvrFHg394rGunw1V45oxGtZA= Subject key identifier: 7F:B7:5C:2A:0E:A1:2F:4F:9E:E4:05:85:7A:56:18:B7:5D:5A:B3:89 Certificate issuer: /CN=A91954A0/serialNumber=C659365B9F2E31D75A8D20A9B98E153A496F4499 Certificate serial: 01A8 Authority key identifier: C6:59:36:5B:9F:2E:31:D7:5A:8D:20:A9:B9:8E:15:3A:49:6F:44:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xlk2W58uMddajSCpuY4VOklvRJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/36333AA6928111F0AA95D96AC4F9AE02.roa Signing time: Mon 15 Sep 2025 22:13:31 +0000 ROA not before: Mon 15 Sep 2025 22:13:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 6079 IP address blocks: 103.115.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.crl rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xlk2W58uMddajSCpuY4VOklvRJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954A0, serialNumber=C659365B9F2E31D75A8D20A9B98E153A496F4499 Validity Not Before: Sep 15 22:13:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68c88f8a-5fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:89:2c:66:86:9d:5f:84:43:02:b1:2a:58:9e: 39:05:54:96:bf:64:f9:69:99:e2:48:a3:f5:4f:8b: 1e:3e:91:04:d3:f7:5e:12:7d:74:8c:40:2e:dc:7d: a4:95:7b:81:d6:a1:ca:f5:af:51:dc:34:0a:75:fd: 2b:ef:16:d4:61:46:6c:fc:82:c8:76:76:d5:69:aa: 62:35:5d:ae:dc:ee:a6:95:c0:88:44:ca:12:9e:6b: 42:64:04:dc:22:99:56:8c:52:e9:c9:5f:b6:71:6f: d6:df:09:83:f3:73:5e:d3:b3:e7:e6:b6:32:c9:9b: fc:9b:b2:4c:f9:ef:4c:1d:a0:6c:11:58:6d:2d:0a: 9f:79:09:90:b4:7c:6d:66:6f:94:04:77:7c:45:26: 24:6b:f2:92:3c:f9:f7:ea:2b:66:af:fc:bd:10:18: 95:e4:b2:bc:15:1c:f3:03:59:fb:0c:19:9e:c6:04: 5d:35:00:c3:06:e1:51:02:f3:86:db:72:19:45:10: d8:29:0e:61:0e:ce:28:b8:45:6b:f7:08:95:bd:df: 89:5f:fb:9e:9e:72:e3:eb:28:4a:1b:2a:54:31:9f: f8:5b:3e:5e:57:e1:f0:6b:de:fb:a1:6e:a1:fc:b7: 29:0f:69:68:2a:7b:92:9f:3c:9a:1d:db:a4:df:73: 81:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B7:5C:2A:0E:A1:2F:4F:9E:E4:05:85:7A:56:18:B7:5D:5A:B3:89 X509v3 Authority Key Identifier: keyid:C6:59:36:5B:9F:2E:31:D7:5A:8D:20:A9:B9:8E:15:3A:49:6F:44:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xlk2W58uMddajSCpuY4VOklvRJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/36333AA6928111F0AA95D96AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.186.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:6f:4d:24:b4:b9:1f:6c:1d:d2:1c:dd:68:1b:d4:83:95:b9: c6:a7:80:e9:09:e4:76:5c:00:55:87:57:5a:3d:c6:3f:6e:2f: 01:b0:72:c9:fc:2f:a6:d2:ad:86:8b:c9:5e:76:8f:e2:e2:b7: ca:41:5b:35:e2:bf:81:08:d9:22:1b:02:9e:fc:b2:dc:1f:61: d0:6c:11:79:69:3d:41:e5:7d:b5:9a:03:1b:81:ea:6a:af:ef: e7:1e:7c:02:68:88:b3:5d:fb:1c:ce:64:20:a9:00:f0:46:96: 92:41:c0:67:ed:18:fd:5d:b4:cb:46:f7:28:35:95:b5:92:ec: a7:04:6f:76:6e:fd:a6:d6:ce:88:22:6b:dc:28:bb:82:77:81: 35:2d:4d:8f:7d:47:5f:9a:08:1e:58:7f:18:81:21:57:a3:39: f7:1c:6f:4c:76:6e:e1:64:d1:bd:de:5c:14:db:72:85:9a:b7: 7a:2c:07:73:c5:8e:bf:7a:7a:55:a2:4b:bc:d7:a3:67:48:e6: d0:93:8f:b6:87:31:7d:e3:4a:5d:fb:27:95:6e:79:15:07:5f: fb:01:f8:87:d7:ba:74:c4:13:1e:c0:d3:b6:43:55:4b:14:88: 1f:f6:73:6e:10:2c:29:03:06:1c:e6:35:f9:47:11:43:de:0c: 0c:c3:99:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0QTAxMTAvBgNVBAUTKEM2NTkzNjVCOUYyRTMxRDc1QThEMjBBOUI5OEUxNTNB NDk2RjQ0OTkwHhcNMjUwOTE1MjIxMzMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM4OGY4YS01ZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIksZoadX4RDArEqWJ45BVSWv2T5aZniSKP1T4sePpEE0/deEn10jEAu3H2k lXuB1qHK9a9R3DQKdf0r7xbUYUZs/ILIdnbVaapiNV2u3O6mlcCIRMoSnmtCZATc IplWjFLpyV+2cW/W3wmD83Ne07Pn5rYyyZv8m7JM+e9MHaBsEVhtLQqfeQmQtHxt Zm+UBHd8RSYka/KSPPn36itmr/y9EBiV5LK8FRzzA1n7DBmexgRdNQDDBuFRAvOG 23IZRRDYKQ5hDs4ouEVr9wiVvd+JX/uennLj6yhKGypUMZ/4Wz5eV+Hwa977oW6h /LcpD2loKnuSnzyaHduk33OBSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH+3XCoO oS9PnuQFhXpWGLddWrOJMB8GA1UdIwQYMBaAFMZZNlufLjHXWo0gqbmOFTpJb0SZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTRBMC85MEI3QTc5QTI3 MEUxMUVFQUFBNUI3NkZDNEY5QUUwMi94bGsyVzU4dU1kZGFqU0NwdVk0Vk9rbHZS SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsazJXNTh1TWRkYWpTQ3B1WTRWT2tsdlJKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU0QTAvOTBCN0E3OUEyNzBFMTFFRUFBQTVCNzZGQzRGOUFFMDIvMzYzMzNBQTY5 MjgxMTFGMEFBOTVEOTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnc7owDQYJKoZIhvcNAQELBQADggEBAE1vTSS0uR9sHdIc 3Wgb1IOVucangOkJ5HZcAFWHV1o9xj9uLwGwcsn8L6bSrYaLyV52j+Lit8pBWzXi v4EI2SIbAp78stwfYdBsEXlpPUHlfbWaAxuB6mqv7+cefAJoiLNd+xzOZCCpAPBG lpJBwGftGP1dtMtG9yg1lbWS7KcEb3Zu/abWzogia9wou4J3gTUtTY99R1+aCB5Y fxiBIVejOfccb0x2buFk0b3eXBTbcoWat3osB3PFjr96elWiS7zXo2dI5tCTj7aH MX3jSl37J5VueRUHX/sB+IfXunTEEx7A07ZDVUsUiB/2c24QLCkDBhzmNflHEUPe DAzDmaw= -----END CERTIFICATE-----Generated at Mon Oct 20 08:32:30 2025 by rpki-client