$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/08CE75A6144D11EBA0AF3555C4F9AE02.roa File: 08CE75A6144D11EBA0AF3555C4F9AE02.roa (raw, json) Hash identifier: i2JuCRbl47lyjIy9Uq49MeJ6KkU/aJdqxVXf6ZSbeSM= Subject key identifier: 10:C0:57:7D:01:C5:FA:41:18:01:FE:80:5C:CF:4F:37:F7:BD:1D:E8 Certificate issuer: /CN=A91B6395/serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Certificate serial: 07C4 Authority key identifier: E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/08CE75A6144D11EBA0AF3555C4F9AE02.roa Signing time: Thu 02 Oct 2025 21:51:16 +0000 ROA not before: Thu 02 Oct 2025 21:51:16 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135356 IP address blocks: 103.140.226.0/24 maxlen: 24 103.140.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6395, serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Validity Not Before: Oct 2 21:51:16 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68def3d4-3cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4f:6a:11:42:22:0f:48:3f:d6:d5:d8:e8:51: 89:8d:a8:a1:92:1b:98:86:df:1a:02:19:d0:cb:42: 59:92:72:55:b0:fb:49:46:c3:e5:95:55:5c:95:16: 0f:db:83:6e:4e:d4:70:ac:5c:78:fd:83:0a:cf:af: 50:df:66:41:5a:f4:88:91:eb:4d:f1:8f:32:74:54: 3e:2f:c2:23:62:07:d5:83:8c:b3:7b:b0:df:84:0d: b7:51:02:73:b2:f2:41:f2:3e:fd:79:53:b3:4e:5f: 0a:3e:95:cf:23:41:ce:d1:98:1e:61:79:3e:f7:17: 79:57:be:c5:da:36:1d:12:67:fb:ac:d6:2c:88:df: 50:7b:d0:33:68:c3:14:40:41:a9:41:99:91:9e:63: 30:1b:c3:b4:3b:24:81:85:64:38:8c:73:b8:c2:40: 8c:a3:79:b5:5c:26:1a:3a:64:b3:b8:c4:22:e5:3c: b9:44:b4:26:2a:e6:72:cf:60:76:8e:8c:3b:51:43: f6:c8:9b:f9:08:a7:ac:78:d5:c8:e7:3b:ea:1c:2c: 71:6d:b9:9c:94:c8:88:08:2b:e6:2a:ab:e2:1f:98: ce:41:d5:83:9c:aa:64:2b:54:35:3f:c2:08:cd:66: 4c:0c:68:23:6a:b5:e4:25:e8:a4:76:03:18:b0:c0: d2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C0:57:7D:01:C5:FA:41:18:01:FE:80:5C:CF:4F:37:F7:BD:1D:E8 X509v3 Authority Key Identifier: keyid:E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/08CE75A6144D11EBA0AF3555C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.226.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:b0:f3:89:75:3f:b6:29:f5:b2:e0:ab:27:a3:7a:f8:95:8f: 33:c1:6e:92:3b:19:ed:61:c8:73:9a:d2:ef:26:10:86:a1:90: 31:cd:a7:89:b8:56:14:de:c3:68:18:8f:23:65:b0:b0:a8:7a: 90:75:77:dc:d2:96:bf:fe:5f:c0:80:ba:e4:f6:a8:d3:40:67: 45:bb:ca:62:a9:60:e5:26:a8:33:06:72:5b:fc:91:9c:af:56: 76:9d:ec:82:be:68:d7:08:e6:81:6f:b6:fa:20:a3:c3:93:c1: e8:3a:65:48:16:de:a6:72:4f:30:81:25:68:35:82:5a:00:b9: 4d:30:b5:2a:b1:02:b9:03:15:12:82:d0:b2:73:99:f5:ef:3c: f0:0b:c7:50:0b:4c:f5:55:b2:da:15:c9:5c:9e:d8:51:0f:cc: 37:01:28:87:f9:33:25:b8:a8:e8:c9:d8:b4:cc:d2:f8:26:c9: 12:86:12:50:98:9f:26:b1:20:c8:bf:86:e7:87:1b:40:ca:92: eb:f7:c5:7b:34:f2:35:af:42:4e:00:19:c4:4e:c9:9d:08:77: c4:eb:0e:8f:3c:fe:a0:f7:f8:ff:71:b7:32:99:9c:b1:89:72: 7a:93:64:08:07:a2:67:88:84:bb:b1:3a:47:f2:d9:b6:e2:b2: b2:d6:f6:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYzOTUxMTAvBgNVBAUTKEU2QUNGNEY1OTRBNDQzOEY4OTdBRURBQUI0QTNEMzhD ODY1Q0NFMjIwHhcNMjUxMDAyMjE1MTE2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlZjNkNC0zY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA309qEUIiD0g/1tXY6FGJjaihkhuYht8aAhnQy0JZknJVsPtJRsPllVVclRYP 24NuTtRwrFx4/YMKz69Q32ZBWvSIketN8Y8ydFQ+L8IjYgfVg4yze7DfhA23UQJz svJB8j79eVOzTl8KPpXPI0HO0ZgeYXk+9xd5V77F2jYdEmf7rNYsiN9Qe9AzaMMU QEGpQZmRnmMwG8O0OySBhWQ4jHO4wkCMo3m1XCYaOmSzuMQi5Ty5RLQmKuZyz2B2 jow7UUP2yJv5CKeseNXI5zvqHCxxbbmclMiICCvmKqviH5jOQdWDnKpkK1Q1P8II zWZMDGgjarXkJeikdgMYsMDSwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBDAV30B xfpBGAH+gFzPTzf3vR3oMB8GA1UdIwQYMBaAFOas9PWUpEOPiXrtqrSj04yGXM4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjM5NS9EQzQ1NjU3ODE0 NEExMUVCOTQwNzY2NTJDNEY5QUUwMi81cXowOVpTa1E0LUpldTJxdEtQVGpJWmN6 aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxejA5WlNrUTQtSmV1MnF0S1BUaklaY3ppSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYzOTUvREM0NTY1NzgxNDRBMTFFQjk0MDc2NjUyQzRGOUFFMDIvMDhDRTc1QTYx NDREMTFFQkEwQUYzNTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjOIwDQYJKoZIhvcNAQELBQADggEBAIqw84l1P7Yp9bLg qyejeviVjzPBbpI7Ge1hyHOa0u8mEIahkDHNp4m4VhTew2gYjyNlsLCoepB1d9zS lr/+X8CAuuT2qNNAZ0W7ymKpYOUmqDMGclv8kZyvVnad7IK+aNcI5oFvtvogo8OT weg6ZUgW3qZyTzCBJWg1gloAuU0wtSqxArkDFRKC0LJzmfXvPPALx1ALTPVVstoV yVye2FEPzDcBKIf5MyW4qOjJ2LTM0vgmyRKGElCYnyaxIMi/hueHG0DKkuv3xXs0 8jWvQk4AGcROyZ0Id8TrDo88/qD3+P9xtzKZnLGJcnqTZAgHomeIhLuxOkfy2bbi srLW9nU= -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:24 2025 by rpki-client