$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/D36C048A81E211EEAF423C87C4F9AE02.roa File: D36C048A81E211EEAF423C87C4F9AE02.roa (raw, json) Hash identifier: V7HVXcdZqekDWFKQPL+tYLxRmvuZTdFk8E168KA3XsM= Subject key identifier: D8:0D:D5:64:BE:54:B8:0A:C1:CD:AB:24:BB:16:86:D7:58:0E:B9:0C Certificate issuer: /CN=A91BCC23/serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Certificate serial: 014C Authority key identifier: F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/D36C048A81E211EEAF423C87C4F9AE02.roa Signing time: Wed 13 Aug 2025 05:12:45 +0000 ROA not before: Wed 13 Aug 2025 05:12:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 139296 IP address blocks: 103.141.8.0/23 maxlen: 23 103.141.8.0/24 maxlen: 24 103.141.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC23, serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Validity Not Before: Aug 13 05:12:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689c1ecc-8bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e6:26:53:a0:98:e2:5b:8e:80:0f:cd:ca:a4: cf:9a:4b:bd:c3:50:90:5c:3f:58:2b:cb:a0:ee:f8: ca:8f:70:5a:45:76:6c:97:fc:45:8f:e3:0b:09:b9: 52:15:32:d1:51:bc:df:f1:e0:29:2e:41:21:8c:e4: 0a:7b:89:9c:46:c5:cb:c6:53:db:1c:54:e2:43:d1: 97:75:ce:ca:5f:b0:32:45:d7:31:8d:14:d8:30:53: 2e:05:65:23:dd:37:74:f1:74:da:f4:bc:f6:01:72: 0d:12:39:65:95:4c:25:51:93:3b:11:97:90:13:c4: 22:93:18:74:b0:74:88:5c:87:c8:31:ad:b4:62:3b: 26:79:a1:06:a2:13:cc:fe:b5:05:e2:9a:79:b6:06: e4:b0:cc:42:3e:0f:ac:88:14:e7:c1:6d:b4:f7:57: 0f:4c:83:67:38:00:86:13:99:c7:ee:74:1b:9a:03: 84:14:05:70:31:1e:4c:c2:0e:c1:b1:cb:b9:7f:ee: 4e:3c:2f:3b:0c:bd:2c:bb:fc:db:db:d4:6c:ba:03: a3:96:ac:02:ce:e8:c8:62:21:0d:a5:b4:16:28:8b: 5d:b6:82:e6:bd:6d:a5:a7:47:5e:f4:56:fd:2a:17: df:ba:91:07:f1:dc:05:70:dd:9d:29:5f:08:1a:61: 03:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:0D:D5:64:BE:54:B8:0A:C1:CD:AB:24:BB:16:86:D7:58:0E:B9:0C X509v3 Authority Key Identifier: keyid:F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/D36C048A81E211EEAF423C87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.8.0/23 Signature Algorithm: sha256WithRSAEncryption 61:a9:b7:e6:56:78:5e:94:09:de:90:59:11:ce:ad:ae:65:c0: 97:1a:b4:3c:5e:6e:3b:66:9c:ec:68:e8:7d:9c:7d:b9:31:e6: fc:83:d0:3d:f2:13:8f:ce:cf:36:e4:46:ea:99:76:34:02:c8: 6e:ed:a5:90:4b:1a:2b:4b:e8:6e:a8:70:d5:0f:87:67:a3:fa: 08:5e:43:e3:d8:17:e7:02:16:93:81:e9:67:37:7b:02:e1:1f: 52:0d:9b:73:cb:a5:b0:78:b5:e6:87:5c:b9:c1:a3:64:7a:99: 31:83:81:6e:22:1a:a0:02:01:3f:76:6e:45:6f:cf:d7:db:24: 5f:50:b8:99:77:cd:03:28:cc:b0:10:6d:77:25:00:63:00:5a: ee:84:78:d0:c7:1b:91:cb:1c:9e:1f:18:6c:0d:4c:65:39:29: b6:ea:b2:11:4b:a5:cc:b8:74:82:d8:54:c7:89:2b:a3:ee:2a: e1:e4:cc:3a:e3:46:97:62:61:09:de:8a:60:51:86:dd:e5:12: 9b:f3:37:6d:b7:08:d4:75:f6:58:ca:75:a4:fa:d0:1e:30:20: e0:9f:5c:8e:75:6f:4b:c7:59:67:93:b5:0b:72:f6:28:50:e5: 8a:75:7b:3e:e6:65:57:7e:92:3d:6c:61:5f:4d:58:f9:cc:25: d7:32:26:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDMjMxMTAvBgNVBAUTKEYzQzg0OTQwQjJCREY0MDI1NTg4NzA2RjU5QzFFNkVD M0QyMTQ3RjAwHhcNMjUwODEzMDUxMjQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODljMWVjYy04YmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uYmU6CY4luOgA/NyqTPmku9w1CQXD9YK8ug7vjKj3BaRXZsl/xFj+MLCblS FTLRUbzf8eApLkEhjOQKe4mcRsXLxlPbHFTiQ9GXdc7KX7AyRdcxjRTYMFMuBWUj 3Td08XTa9Lz2AXINEjlllUwlUZM7EZeQE8Qikxh0sHSIXIfIMa20YjsmeaEGohPM /rUF4pp5tgbksMxCPg+siBTnwW2091cPTINnOACGE5nH7nQbmgOEFAVwMR5Mwg7B scu5f+5OPC87DL0su/zb29RsugOjlqwCzujIYiENpbQWKItdtoLmvW2lp0de9Fb9 KhffupEH8dwFcN2dKV8IGmEDLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNgN1WS+ VLgKwc2rJLsWhtdYDrkMMB8GA1UdIwQYMBaAFPPISUCyvfQCVYhwb1nB5uw9IUfw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0MyMy85MjVDODBDRTgx RTExMUVFOENGNjZCMEFDNEY5QUUwMi84OGhKUUxLOTlBSlZpSEJ2V2NIbTdEMGhS X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg4aEpRTEs5OUFKVmlIQnZXY0htN0QwaFJfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkNDMjMvOTI1QzgwQ0U4MUUxMTFFRThDRjY2QjBBQzRGOUFFMDIvRDM2QzA0OEE4 MUUyMTFFRUFGNDIzQzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjQgwDQYJKoZIhvcNAQELBQADggEBAGGpt+ZWeF6UCd6Q WRHOra5lwJcatDxebjtmnOxo6H2cfbkx5vyD0D3yE4/OzzbkRuqZdjQCyG7tpZBL GitL6G6ocNUPh2ej+gheQ+PYF+cCFpOB6Wc3ewLhH1INm3PLpbB4teaHXLnBo2R6 mTGDgW4iGqACAT92bkVvz9fbJF9QuJl3zQMozLAQbXclAGMAWu6EeNDHG5HLHJ4f GGwNTGU5KbbqshFLpcy4dILYVMeJK6PuKuHkzDrjRpdiYQneimBRht3lEpvzN223 CNR19ljKdaT60B4wIOCfXI51b0vHWWeTtQty9ihQ5Yp1ez7mZVd+kj1sYV9NWPnM JdcyJkg= -----END CERTIFICATE-----Generated at Sun Aug 24 00:34:37 2025 by rpki-client