$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6548/7DCF248A0D7C11ECBABDD56DC4F9AE02/E6EC55EE0D7E11EC94917272C4F9AE02.roa File: E6EC55EE0D7E11EC94917272C4F9AE02.roa (raw, json) Hash identifier: 5TCX/3CD8XIHNztH4iBEyxKHoCWiUsFbLjCD+Hqqkes= Subject key identifier: 27:C4:EA:F7:06:DE:CB:ED:15:7C:2B:0C:98:2C:BE:4E:EE:87:40:FE Certificate issuer: /CN=A91A6548/serialNumber=E5F8C9E03ED1EF5067765614DA6B5126AD6FCB3E Certificate serial: 0538 Authority key identifier: E5:F8:C9:E0:3E:D1:EF:50:67:76:56:14:DA:6B:51:26:AD:6F:CB:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5fjJ4D7R71BndlYU2mtRJq1vyz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6548/7DCF248A0D7C11ECBABDD56DC4F9AE02/E6EC55EE0D7E11EC94917272C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:15:09 +0000 ROA not before: Wed 03 Sep 2025 00:15:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 146946 IP address blocks: 103.171.232.0/23 maxlen: 23 103.171.232.0/24 maxlen: 24 103.171.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6548/7DCF248A0D7C11ECBABDD56DC4F9AE02/5fjJ4D7R71BndlYU2mtRJq1vyz4.crl rsync://rpki.apnic.net/member_repository/A91A6548/7DCF248A0D7C11ECBABDD56DC4F9AE02/5fjJ4D7R71BndlYU2mtRJq1vyz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5fjJ4D7R71BndlYU2mtRJq1vyz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:10:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6548, serialNumber=E5F8C9E03ED1EF5067765614DA6B5126AD6FCB3E Validity Not Before: Sep 3 00:15:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7888d-f2a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b2:91:a5:c5:cb:12:c9:ab:ed:0a:44:26:1f: 9b:94:91:0a:7e:32:ba:b8:f8:80:2d:46:64:d7:fc: db:be:df:32:53:c8:cd:d5:94:c6:3a:d0:5d:c8:ff: a7:9f:6f:9a:98:6a:a7:4c:42:47:e5:ca:78:d7:6d: 1c:aa:d6:b7:9a:65:56:85:9a:ca:9a:53:0d:be:8e: 53:13:18:be:54:ee:57:18:4e:3c:9e:09:43:4c:c0: 9d:77:23:d0:04:a9:5c:c5:dd:24:ef:fb:72:9b:cd: 25:65:4d:60:6f:1e:da:62:98:b8:21:1a:4a:13:95: fd:88:e4:24:98:1b:e2:5c:e4:dc:43:c2:0f:9b:0b: cf:15:14:02:91:72:b9:28:3e:9a:1b:9b:a0:71:34: 36:44:9c:c8:c8:1c:9a:c9:25:e3:9d:80:b0:46:0f: 29:7b:91:da:65:2d:c3:f6:fd:4b:f7:53:e7:b7:7f: 04:02:59:dc:c5:5a:26:2d:b1:b0:99:75:8c:43:6e: 8a:8b:d7:5c:40:3a:25:72:cb:ce:9d:21:f6:85:de: ae:5e:eb:ff:4d:6e:56:8b:4f:86:0f:db:f1:77:2f: a7:46:8d:ed:37:2e:42:51:03:50:8f:9a:3e:66:99: 6b:d8:61:e0:13:92:6f:80:de:d4:0e:0c:f0:29:1c: d0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C4:EA:F7:06:DE:CB:ED:15:7C:2B:0C:98:2C:BE:4E:EE:87:40:FE X509v3 Authority Key Identifier: keyid:E5:F8:C9:E0:3E:D1:EF:50:67:76:56:14:DA:6B:51:26:AD:6F:CB:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6548/7DCF248A0D7C11ECBABDD56DC4F9AE02/5fjJ4D7R71BndlYU2mtRJq1vyz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5fjJ4D7R71BndlYU2mtRJq1vyz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6548/7DCF248A0D7C11ECBABDD56DC4F9AE02/E6EC55EE0D7E11EC94917272C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.232.0/23 Signature Algorithm: sha256WithRSAEncryption 47:8b:e2:7a:ae:5d:68:9b:b3:98:8b:36:6d:53:9f:1b:ba:4e: f3:ea:fe:82:36:1b:c8:1f:9e:67:3c:1a:d6:a8:f2:f4:fe:40: 2d:32:16:b3:fa:4c:22:a2:4e:fa:56:7e:b0:13:27:0b:1e:b2: 9a:76:91:a9:4d:49:c5:fd:a2:5a:0d:f7:aa:b3:8c:5a:ff:12: c3:1d:59:24:ed:9a:2d:e7:2d:26:5a:ac:9e:3b:51:c2:6d:a5: 67:5b:12:b4:da:05:b8:f8:61:be:7b:b7:28:b8:a9:fe:28:bc: 9a:ee:93:1c:c1:43:af:4f:b7:8a:c7:39:70:d3:5a:ac:a9:74: 08:d1:ff:09:58:02:02:f6:af:80:a4:3f:e2:65:b9:ea:3d:ea: cf:71:f2:5f:e6:d0:07:7e:80:9c:2f:19:d6:7f:0b:da:64:4b: 93:55:65:00:b7:13:6d:2d:9c:27:81:8e:f8:03:e0:65:24:11: aa:c6:73:d4:1d:f0:d5:49:5e:e5:f9:62:88:61:70:2e:e8:6b: 69:1a:bf:92:ed:f7:09:92:88:1d:21:59:b9:a3:fd:ac:b7:67: b1:ef:f9:d4:4b:3e:af:2c:97:3f:01:4c:50:8e:a9:93:49:e1: 29:96:a6:4e:57:c0:09:03:41:29:a5:3c:c5:d3:d6:79:c9:12: 7e:67:93:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NDgxMTAvBgNVBAUTKEU1RjhDOUUwM0VEMUVGNTA2Nzc2NTYxNERBNkI1MTI2 QUQ2RkNCM0UwHhcNMjUwOTAzMDAxNTA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODg4ZC1mMmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bKRpcXLEsmr7QpEJh+blJEKfjK6uPiALUZk1/zbvt8yU8jN1ZTGOtBdyP+n n2+amGqnTEJH5cp4120cqta3mmVWhZrKmlMNvo5TExi+VO5XGE48nglDTMCddyPQ BKlcxd0k7/tym80lZU1gbx7aYpi4IRpKE5X9iOQkmBviXOTcQ8IPmwvPFRQCkXK5 KD6aG5ugcTQ2RJzIyByaySXjnYCwRg8pe5HaZS3D9v1L91Pnt38EAlncxVomLbGw mXWMQ26Ki9dcQDolcsvOnSH2hd6uXuv/TW5Wi0+GD9vxdy+nRo3tNy5CUQNQj5o+ Zplr2GHgE5JvgN7UDgzwKRzQRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCfE6vcG 3svtFXwrDJgsvk7uh0D+MB8GA1UdIwQYMBaAFOX4yeA+0e9QZ3ZWFNprUSatb8s+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0OC83RENGMjQ4QTBE N0MxMUVDQkFCREQ1NkRDNEY5QUUwMi81ZmpKNEQ3UjcxQm5kbFlVMm10UkpxMXZ5 ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVmako0RDdSNzFCbmRsWVUybXRSSnExdnl6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NDgvN0RDRjI0OEEwRDdDMTFFQ0JBQkRENTZEQzRGOUFFMDIvRTZFQzU1RUUw RDdFMTFFQzk0OTE3MjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnq+gwDQYJKoZIhvcNAQELBQADggEBAEeL4nquXWibs5iL Nm1Tnxu6TvPq/oI2G8gfnmc8Gtao8vT+QC0yFrP6TCKiTvpWfrATJwsespp2kalN ScX9oloN96qzjFr/EsMdWSTtmi3nLSZarJ47UcJtpWdbErTaBbj4Yb57tyi4qf4o vJrukxzBQ69Pt4rHOXDTWqypdAjR/wlYAgL2r4CkP+Jlueo96s9x8l/m0Ad+gJwv GdZ/C9pkS5NVZQC3E20tnCeBjvgD4GUkEarGc9Qd8NVJXuX5YohhcC7oa2kav5Lt 9wmSiB0hWbmj/ay3Z7Hv+dRLPq8slz8BTFCOqZNJ4SmWpk5XwAkDQSmlPMXT1nnJ En5nk98= -----END CERTIFICATE-----Generated at Tue Oct 21 05:17:55 2025 by rpki-client