$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB246/FA0003803C0D11F096CCDB5FC4F9AE02/898E9EA83C0E11F093CFD060C4F9AE02.roa File: 898E9EA83C0E11F093CFD060C4F9AE02.roa (raw, json) Hash identifier: opFiT1AJRvuZEtPnqLFXpMlXJ+kJ3W1jD9M7G0TVPCk= Subject key identifier: 72:02:FA:E7:FA:14:6E:D3:8E:20:34:F0:54:BE:27:A4:19:07:35:A5 Certificate issuer: /CN=A91BB246/serialNumber=9B5C12BF99AB288AA5D7A3D63C3588F74E9B26D1 Certificate serial: 30 Authority key identifier: 9B:5C:12:BF:99:AB:28:8A:A5:D7:A3:D6:3C:35:88:F7:4E:9B:26:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1wSv5mrKIql16PWPDWI906bJtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB246/FA0003803C0D11F096CCDB5FC4F9AE02/898E9EA83C0E11F093CFD060C4F9AE02.roa Signing time: Thu 21 Aug 2025 08:14:13 +0000 ROA not before: Thu 21 Aug 2025 08:14:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 9650 IP address blocks: 103.118.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB246/FA0003803C0D11F096CCDB5FC4F9AE02/m1wSv5mrKIql16PWPDWI906bJtE.crl rsync://rpki.apnic.net/member_repository/A91BB246/FA0003803C0D11F096CCDB5FC4F9AE02/m1wSv5mrKIql16PWPDWI906bJtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1wSv5mrKIql16PWPDWI906bJtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB246, serialNumber=9B5C12BF99AB288AA5D7A3D63C3588F74E9B26D1 Validity Not Before: Aug 21 08:14:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a6d555-78aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7e:bb:4f:56:ae:27:07:1c:9c:f6:6c:eb:75: 5a:ce:91:d7:78:50:2d:c4:31:c3:55:c3:c4:5c:16: 59:02:44:b0:18:4b:1d:b6:eb:05:83:eb:1a:f7:0f: 8c:ab:20:a0:69:56:71:71:50:59:31:3a:4e:e0:d6: ba:90:2a:14:d3:3b:e5:67:16:5b:7d:8b:4c:cf:a0: e6:cd:74:99:b2:6a:46:04:d5:bd:88:eb:63:37:3e: 4a:bf:54:41:72:e5:28:9a:88:2b:55:8b:85:cb:5f: 44:ba:79:a4:8f:83:eb:65:ef:73:cd:c1:02:86:1f: cb:55:d7:5d:65:70:46:ad:ef:56:ce:86:c9:c3:2a: 86:2d:44:b4:01:8c:b5:b1:3c:8d:ed:62:10:11:53: 95:d6:fd:0d:da:9c:ac:2b:85:ec:da:c8:44:f9:e6: dc:23:d7:7d:24:cc:4e:5d:45:4a:22:0e:38:5a:14: 97:f1:ef:89:37:78:91:51:3a:2a:b8:04:d4:e3:4f: 39:72:6a:3a:0d:83:49:a9:3f:03:82:41:9f:0e:e0: e0:23:27:e5:a4:3f:8f:99:4d:b1:aa:e9:a1:ee:d2: 76:ff:4f:d8:9a:47:45:57:b0:b6:45:1d:ab:b5:94: bf:aa:fb:74:76:00:d8:8e:c2:4b:0c:a3:b8:82:54: fb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:02:FA:E7:FA:14:6E:D3:8E:20:34:F0:54:BE:27:A4:19:07:35:A5 X509v3 Authority Key Identifier: keyid:9B:5C:12:BF:99:AB:28:8A:A5:D7:A3:D6:3C:35:88:F7:4E:9B:26:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB246/FA0003803C0D11F096CCDB5FC4F9AE02/m1wSv5mrKIql16PWPDWI906bJtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1wSv5mrKIql16PWPDWI906bJtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB246/FA0003803C0D11F096CCDB5FC4F9AE02/898E9EA83C0E11F093CFD060C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.12.0/22 Signature Algorithm: sha256WithRSAEncryption b8:df:9a:50:8b:3b:73:c7:45:13:e6:a6:a6:b9:ff:d0:f7:22: 8b:85:19:6a:3b:8c:3a:e3:e0:29:f9:15:0e:57:14:82:b5:8c: 43:05:a9:cc:2c:69:d6:16:c7:af:7d:da:aa:f5:c2:e5:e7:84: 38:14:08:13:d2:5f:52:a0:d7:5d:4e:e4:ad:bb:2b:e9:73:0f: 4a:ad:53:ce:74:f1:8c:8c:40:78:6f:c7:49:5c:46:c5:9a:2e: ea:04:55:ff:a3:b1:00:84:31:a8:07:d0:d3:61:f6:a9:a0:92: 60:af:cb:b0:e8:b0:f5:c9:81:71:f6:0e:16:6b:c0:35:5d:44: 1a:3d:78:ee:70:11:22:a6:6d:db:ca:11:57:49:ab:19:0e:59: f4:31:c8:ba:39:d2:bb:60:c6:12:f0:f6:30:34:06:c1:5b:99: c3:b9:38:c0:e9:bb:f9:03:20:a6:7a:63:06:ae:53:6d:b9:a4: 89:bc:35:4b:64:73:51:24:ce:8b:24:6a:4b:85:fd:16:3e:8a: c6:52:d4:ea:88:ea:c9:ab:a1:5a:db:cd:33:c2:26:d2:f5:45: 66:e1:8b:6e:7d:3b:62:47:db:5e:de:38:d6:e7:88:3e:21:38: 5a:0f:77:f4:f3:bd:24:fd:90:8c:a5:94:67:45:ff:f7:ce:02: d1:99:fb:1d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjI0NjExMC8GA1UEBRMoOUI1QzEyQkY5OUFCMjg4QUE1RDdBM0Q2M0MzNTg4Rjc0 RTlCMjZEMTAeFw0yNTA4MjEwODE0MTNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTZkNTU1LTc4YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2frtPVq4nBxyc9mzrdVrOkdd4UC3EMcNVw8RcFlkCRLAYSx226wWD6xr3D4yr IKBpVnFxUFkxOk7g1rqQKhTTO+VnFlt9i0zPoObNdJmyakYE1b2I62M3Pkq/VEFy 5SiaiCtVi4XLX0S6eaSPg+tl73PNwQKGH8tV111lcEat71bOhsnDKoYtRLQBjLWx PI3tYhARU5XW/Q3anKwrhezayET55twj130kzE5dRUoiDjhaFJfx74k3eJFROiq4 BNTjTzlyajoNg0mpPwOCQZ8O4OAjJ+WkP4+ZTbGq6aHu0nb/T9iaR0VXsLZFHau1 lL+q+3R2ANiOwksMo7iCVPufAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcgL65/oU btOOIDTwVL4npBkHNaUwHwYDVR0jBBgwFoAUm1wSv5mrKIql16PWPDWI906bJtEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMjQ2L0ZBMDAwMzgwM0Mw RDExRjA5NkNDREI1RkM0RjlBRTAyL20xd1N2NW1yS0lxbDE2UFdQRFdJOTA2Ykp0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTF3U3Y1bXJLSXFsMTZQV1BEV0k5MDZiSnRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjI0Ni9GQTAwMDM4MDNDMEQxMUYwOTZDQ0RCNUZDNEY5QUUwMi84OThFOUVBODND MEUxMUYwOTNDRkQwNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd2DDANBgkqhkiG9w0BAQsFAAOCAQEAuN+aUIs7c8dFE+am prn/0Pcii4UZajuMOuPgKfkVDlcUgrWMQwWpzCxp1hbHr33aqvXC5eeEOBQIE9Jf UqDXXU7krbsr6XMPSq1TznTxjIxAeG/HSVxGxZou6gRV/6OxAIQxqAfQ02H2qaCS YK/LsOiw9cmBcfYOFmvANV1EGj147nARIqZt28oRV0mrGQ5Z9DHIujnSu2DGEvD2 MDQGwVuZw7k4wOm7+QMgpnpjBq5Tbbmkibw1S2RzUSTOiyRqS4X9Fj6KxlLU6ojq yauhWtvNM8Im0vVFZuGLbn07YkfbXt441ueIPiE4Wg939PO9JP2QjKWUZ0X/984C 0Zn7HQ== -----END CERTIFICATE-----Generated at Sun Aug 24 00:36:20 2025 by rpki-client