$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/2F5ED8E43E1711EA9A272644C4F9AE02.roa File: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (raw, json) Hash identifier: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU= Subject key identifier: 3B:3A:5B:C7:23:4B:DE:88:C5:39:98:9E:E2:BE:1A:BC:F5:F5:36:8A Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B56 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/2F5ED8E43E1711EA9A272644C4F9AE02.roa Signing time: Thu 14 Aug 2025 19:59:15 +0000 ROA not before: Thu 14 Aug 2025 19:59:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58890 IP address blocks: 103.116.180.0/23 maxlen: 24 103.116.182.0/23 maxlen: 24 2402:fec0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2902 (0xb56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Aug 14 19:59:15 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689e4012-48d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1d:1d:e7:c5:c9:ee:45:ba:0a:6f:2b:e8:b8: 63:b0:0c:53:21:a5:af:86:43:c6:20:8b:95:fa:6c: 3f:2c:6f:17:3e:43:1b:42:aa:8f:c1:db:7e:39:dc: d3:0e:90:c7:19:fe:16:21:49:a2:9b:52:98:97:25: d2:78:e0:df:13:e9:0e:3c:b0:cf:52:97:b8:c7:e5: 70:a7:11:ef:53:8d:45:32:84:b7:2e:b0:6c:17:94: e8:eb:ac:55:ec:c8:22:1a:22:2b:7b:98:f5:97:49: cd:19:1b:cd:aa:55:5c:e5:99:8a:01:b2:18:fc:21: 13:b2:2c:44:fd:c8:21:ff:d5:3b:14:b9:01:d4:a3: 75:fc:44:09:44:3e:53:36:5b:33:cb:6c:3c:68:48: 5f:0f:f4:3e:cd:10:da:5c:47:6e:a9:b5:5f:f7:e3: a7:90:4a:bb:27:59:fc:07:6f:7c:f4:f9:61:9b:66: af:9f:1c:41:17:e8:f3:49:df:2c:4f:c1:9a:25:a9: b8:51:aa:a7:da:87:37:bf:36:bf:8b:51:0e:6c:02: d7:fe:5e:73:8c:7b:33:c7:97:5b:46:03:51:0d:8d: 61:99:eb:5d:91:5c:b3:33:f4:fb:85:4a:a4:a6:a4: 1f:38:1e:76:1a:50:8e:56:78:95:d8:5e:85:bb:22: f5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3A:5B:C7:23:4B:DE:88:C5:39:98:9E:E2:BE:1A:BC:F5:F5:36:8A X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/2F5ED8E43E1711EA9A272644C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.180.0/22 IPv6: 2402:fec0::/32 Signature Algorithm: sha256WithRSAEncryption b3:0e:d5:31:a0:c8:c2:e6:b6:6d:f9:82:fe:f6:37:39:fc:22: 5e:1b:88:d6:00:91:a1:1f:49:ae:4f:4d:51:9b:3b:d1:1e:d5: 4b:c5:44:60:90:1d:38:6b:95:14:2e:a9:b7:f0:2e:3a:9d:29: 64:6e:d1:b5:64:a5:27:f7:1c:71:10:6a:0c:3f:b6:3c:dc:45: 07:0b:3b:c7:5b:23:c8:cd:20:ae:e2:7a:0f:21:df:4c:32:85: de:62:52:d5:4a:eb:fc:a6:14:7b:10:94:6e:2a:d3:85:79:16: aa:e0:b0:83:85:0f:59:0f:a8:e6:1b:1e:21:e6:08:47:13:6b: e4:bc:c8:d8:ab:23:50:da:f0:7d:f2:1f:3b:40:40:0d:7b:3f: d9:fa:db:93:62:2b:b2:bd:fb:5a:78:f5:00:b9:05:86:46:15: b8:15:24:ba:0a:c0:12:d6:c1:f5:a1:88:24:b3:01:27:0b:b1: 66:61:57:e7:c8:e8:cf:5c:25:2c:5d:31:dd:e4:4f:cb:2d:56: e6:39:1a:a8:af:71:7c:7b:8c:72:34:80:36:b7:14:c2:8b:31: ce:f8:69:8a:69:e8:18:00:01:74:99:6b:ca:24:59:1a:c8:5b: 29:24:1b:82:50:01:9c:76:66:b3:1a:3b:88:3e:96:8f:d7:26: 17:19:83:dc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwODE0MTk1OTE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNDAxMi00OGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsx0d58XJ7kW6Cm8r6LhjsAxTIaWvhkPGIIuV+mw/LG8XPkMbQqqPwdt+OdzT DpDHGf4WIUmim1KYlyXSeODfE+kOPLDPUpe4x+VwpxHvU41FMoS3LrBsF5To66xV 7MgiGiIre5j1l0nNGRvNqlVc5ZmKAbIY/CETsixE/cgh/9U7FLkB1KN1/EQJRD5T Nlszy2w8aEhfD/Q+zRDaXEduqbVf9+OnkEq7J1n8B2989Plhm2avnxxBF+jzSd8s T8GaJam4Uaqn2oc3vza/i1EObALX/l5zjHszx5dbRgNRDY1hmetdkVyzM/T7hUqk pqQfOB52GlCOVniV2F6FuyL1PwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDs6W8cj S96IxTmYnuK+Grz19TaKMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE3MUMvRTdFRjA4MzYzRTE1MTFFQUIzNzFBNTQxQzRGOUFFMDIvMkY1RUQ4RTQz RTE3MTFFQTlBMjcyNjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndLQwDQQCAAIwBwMFACQC/sAwDQYJKoZIhvcNAQELBQAD ggEBALMO1TGgyMLmtm35gv72Nzn8Il4biNYAkaEfSa5PTVGbO9Ee1UvFRGCQHThr lRQuqbfwLjqdKWRu0bVkpSf3HHEQagw/tjzcRQcLO8dbI8jNIK7ieg8h30wyhd5i UtVK6/ymFHsQlG4q04V5FqrgsIOFD1kPqOYbHiHmCEcTa+S8yNirI1Da8H3yHztA QA17P9n625NiK7K9+1p49QC5BYZGFbgVJLoKwBLWwfWhiCSzAScLsWZhV+fI6M9c JSxdMd3kT8stVuY5GqivcXx7jHI0gDa3FMKLMc74aYpp6BgAAXSZa8okWRrIWykk G4JQAZx2ZrMaO4g+lo/XJhcZg9w= -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:40 2025 by rpki-client