$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/598BD2E268D111ED99477B87C4F9AE02.roa File: 598BD2E268D111ED99477B87C4F9AE02.roa (raw, json) Hash identifier: u6PjzNYcnOXcXRJn9HLyhk2+LGVsDog450i4Tie6o0k= Subject key identifier: 09:2B:EA:23:CD:2A:5E:24:82:53:15:F0:F5:F4:C3:CF:50:93:2B:81 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C73 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/598BD2E268D111ED99477B87C4F9AE02.roa Signing time: Tue 16 Sep 2025 18:58:30 +0000 ROA not before: Tue 16 Sep 2025 18:58:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 10075 IP address blocks: 103.118.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Sep 16 18:58:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c9b356-e081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:94:5d:cb:55:a6:2b:f3:40:48:71:d2:39:65: d6:db:25:a5:ac:ea:be:19:93:17:b8:79:3e:16:a4: d9:2b:cb:5c:ac:7f:1a:47:25:d4:82:a0:8a:55:3f: c4:da:c5:73:99:10:5b:8a:af:d0:35:b4:4a:d9:af: ac:bb:92:6e:48:6f:fe:09:d3:fc:45:33:e6:1d:8a: 5b:5b:71:98:f4:c0:9b:9c:d6:97:c8:ac:18:02:44: 3f:17:7a:10:00:5e:20:5c:45:03:83:c5:26:1c:13: ae:ec:8d:b3:a6:55:5b:a3:35:52:88:25:56:4c:b6: d7:c0:a3:86:cc:14:43:7b:ad:ea:93:f5:db:38:75: 01:1e:84:5a:1d:f9:23:8e:c6:07:c4:ea:03:6c:3d: 05:3f:04:f2:4c:b0:1c:77:59:59:f3:8f:78:1b:78: 9f:76:40:51:88:83:3e:19:f5:3d:72:81:24:ee:81: e3:59:10:e0:d4:06:b9:15:70:68:02:ba:74:24:71: 54:08:ad:98:27:59:80:90:e7:b3:a8:e4:0a:61:95: a1:6c:05:5f:4e:4b:5d:cd:78:10:fb:23:25:7f:bf: 29:df:b1:af:2e:df:f3:04:9f:f6:37:fa:8e:7a:84: 9b:55:2f:01:47:94:ac:eb:d6:a4:1b:b0:54:d5:43: ba:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2B:EA:23:CD:2A:5E:24:82:53:15:F0:F5:F4:C3:CF:50:93:2B:81 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/598BD2E268D111ED99477B87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.87.0/24 Signature Algorithm: sha256WithRSAEncryption 92:ea:17:8d:f8:0d:36:20:e4:88:37:0b:d7:3d:9b:93:19:bc: eb:ba:de:5e:45:0e:28:81:7b:02:06:e8:a5:7a:87:b8:35:58: 81:54:ba:28:cd:b8:b9:08:f9:a8:a9:c1:b7:ed:71:7d:50:f7: 00:12:b2:97:ac:5e:c9:be:49:7b:01:a8:0f:d3:04:90:fb:6f: 20:9b:92:a5:57:15:7b:53:31:ba:1a:41:1c:d1:3d:e0:18:fb: 2d:b9:1c:02:28:be:42:cb:4b:74:2c:33:e1:49:11:f9:cd:47: 0b:54:bf:f4:3d:90:d5:82:dc:3f:c6:04:97:26:ce:fe:21:43: b3:2a:66:88:3c:77:02:54:69:08:14:b0:b0:41:c1:6f:3b:31: 44:c8:e1:da:42:3a:a9:24:a8:26:5c:63:0b:0d:9f:5f:36:06: fd:a2:07:8f:a6:15:57:42:22:5c:55:67:4d:27:e6:69:09:34: 80:a7:d4:e3:81:80:6e:d3:46:e4:04:ba:75:d8:d3:8e:87:94: 7f:1a:b4:e1:de:05:e9:61:6f:d9:d1:a4:0e:8d:6b:12:cb:a8: e7:57:36:d6:ce:a3:fc:5a:ba:60:94:e2:f6:bb:a1:ae:e0:ef: 88:fc:0b:c9:c5:d6:c5:a3:21:77:08:b0:0a:69:33:d7:83:e6: fc:6a:d9:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwOTE2MTg1ODMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5YjM1Ni1lMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZRdy1WmK/NASHHSOWXW2yWlrOq+GZMXuHk+FqTZK8tcrH8aRyXUgqCKVT/E 2sVzmRBbiq/QNbRK2a+su5JuSG/+CdP8RTPmHYpbW3GY9MCbnNaXyKwYAkQ/F3oQ AF4gXEUDg8UmHBOu7I2zplVbozVSiCVWTLbXwKOGzBRDe63qk/XbOHUBHoRaHfkj jsYHxOoDbD0FPwTyTLAcd1lZ8494G3ifdkBRiIM+GfU9coEk7oHjWRDg1Aa5FXBo Arp0JHFUCK2YJ1mAkOezqOQKYZWhbAVfTktdzXgQ+yMlf78p37GvLt/zBJ/2N/qO eoSbVS8BR5Ss69akG7BU1UO6PwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAkr6iPN Kl4kglMV8PX0w89QkyuBMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzREMvMDY2MzlGODYwQTkzMTFFQTg1QUQ4ODZBQzRGOUFFMDIvNTk4QkQyRTI2 OEQxMTFFRDk5NDc3Qjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABndlcwDQYJKoZIhvcNAQELBQADggEBAJLqF434DTYg5Ig3 C9c9m5MZvOu63l5FDiiBewIG6KV6h7g1WIFUuijNuLkI+aipwbftcX1Q9wASspes Xsm+SXsBqA/TBJD7byCbkqVXFXtTMboaQRzRPeAY+y25HAIovkLLS3QsM+FJEfnN RwtUv/Q9kNWC3D/GBJcmzv4hQ7MqZog8dwJUaQgUsLBBwW87MUTI4dpCOqkkqCZc YwsNn182Bv2iB4+mFVdCIlxVZ00n5mkJNICn1OOBgG7TRuQEunXY046HlH8atOHe Belhb9nRpA6NaxLLqOdXNtbOo/xaumCU4va7oa7g74j8C8nF1sWjIXcIsAppM9eD 5vxq2cs= -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:39 2025 by rpki-client