$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7409/41D52D467CB611F08C5F7769C4F9AE02/E983DB547CB711F0AC8F9D6EC4F9AE02.roa File: E983DB547CB711F0AC8F9D6EC4F9AE02.roa (raw, json) Hash identifier: E0HpiYi9oekDhMBwLHO28cWKce/Mgln+cFcKFRPDwlg= Subject key identifier: 12:67:01:80:34:FD:59:F9:2A:99:76:15:B6:E9:29:12:F9:E6:71:7D Certificate issuer: /CN=A91C7409/serialNumber=521492104AB1A8BBBEBD80A99629D4E2E6632370 Certificate serial: 02 Authority key identifier: 52:14:92:10:4A:B1:A8:BB:BE:BD:80:A9:96:29:D4:E2:E6:63:23:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhSSEEqxqLu-vYCplinU4uZjI3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7409/41D52D467CB611F08C5F7769C4F9AE02/E983DB547CB711F0AC8F9D6EC4F9AE02.roa Signing time: Tue 19 Aug 2025 04:49:39 +0000 ROA not before: Tue 19 Aug 2025 04:49:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58634 IP address blocks: 103.2.192.0/24 maxlen: 24 103.2.193.0/24 maxlen: 24 103.2.194.0/24 maxlen: 24 103.2.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7409/41D52D467CB611F08C5F7769C4F9AE02/UhSSEEqxqLu-vYCplinU4uZjI3A.crl rsync://rpki.apnic.net/member_repository/A91C7409/41D52D467CB611F08C5F7769C4F9AE02/UhSSEEqxqLu-vYCplinU4uZjI3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhSSEEqxqLu-vYCplinU4uZjI3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7409, serialNumber=521492104AB1A8BBBEBD80A99629D4E2E6632370 Validity Not Before: Aug 19 04:49:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a40262-f418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:df:69:a5:33:4e:fd:0b:cf:d3:e5:a5:5a:c4: ea:bb:82:a7:65:54:eb:cc:b0:93:e6:51:e8:3d:98: 74:00:8e:2f:d2:84:d9:22:09:30:67:71:fd:af:ad: 06:05:a4:7f:98:a2:ad:9e:27:c5:c8:94:fa:27:2e: f0:0b:09:35:26:dd:1a:b4:04:4b:59:bf:f4:f0:d4: 7b:35:73:26:9f:fb:8a:a5:f5:96:0e:f1:d7:9c:cc: 1f:52:71:0a:92:d9:7c:d2:14:e2:0f:6f:58:fa:97: 30:d0:49:bc:d1:a7:6e:27:63:1b:67:4e:09:a9:8b: 35:69:44:3b:a3:8e:34:04:f0:b2:c7:7f:34:cd:97: 73:f3:7a:18:67:c0:2d:b0:87:11:bc:26:0b:4a:19: 94:04:3d:c8:fe:2c:8a:6f:45:83:68:08:e9:21:35: 97:16:2a:b3:76:a5:1c:4b:4f:b2:d1:e8:59:6a:52: 16:94:c2:73:76:d3:8f:3e:30:87:6d:8e:b3:b4:1c: e9:6d:71:54:42:75:b1:d3:0e:a2:dc:63:36:56:40: 8e:07:ad:db:57:d1:b1:b4:4c:2d:f8:e5:a8:0f:98: 07:69:bd:1d:ab:c2:a7:f6:c5:96:87:57:87:7d:4f: aa:0f:3f:fc:6d:fc:71:ab:37:59:04:b2:31:b9:00: 8f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:67:01:80:34:FD:59:F9:2A:99:76:15:B6:E9:29:12:F9:E6:71:7D X509v3 Authority Key Identifier: keyid:52:14:92:10:4A:B1:A8:BB:BE:BD:80:A9:96:29:D4:E2:E6:63:23:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7409/41D52D467CB611F08C5F7769C4F9AE02/UhSSEEqxqLu-vYCplinU4uZjI3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhSSEEqxqLu-vYCplinU4uZjI3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7409/41D52D467CB611F08C5F7769C4F9AE02/E983DB547CB711F0AC8F9D6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.192.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:93:9a:36:b6:ee:27:02:a9:40:02:89:14:ad:42:ff:cd:fc: d3:55:51:2d:e2:ca:c3:19:6f:33:90:ec:5a:d3:1e:98:52:ad: 0c:1b:d8:6a:cf:26:b2:87:1d:d2:3d:3d:39:35:45:38:be:e7: 07:9f:66:3c:f8:ae:aa:0e:96:23:71:33:92:7a:63:80:80:d5: 87:aa:79:66:a1:f1:bf:61:84:af:2b:a5:a9:e1:14:ff:6c:1d: 52:31:80:7c:3e:76:ca:30:a6:63:09:71:c3:03:bc:ad:5b:32: 0b:c0:76:8a:b8:1d:be:0c:73:05:76:3c:8c:4b:c3:eb:66:ef: 48:a2:f9:b6:ef:93:7f:55:9d:16:de:c2:f3:38:57:11:2e:f9: 24:b2:28:95:33:61:ee:24:53:f2:04:3b:fd:f8:84:38:f6:89: 6e:3a:8c:42:77:0a:05:a0:e1:76:a2:a4:df:54:ab:ff:e9:56: 81:b7:fc:f0:0a:43:bc:47:15:8d:5f:4f:2c:40:2b:6e:53:de: da:fe:ae:aa:76:5f:b6:ca:8b:33:f9:e9:44:70:f3:c2:a9:55: fc:c9:14:d2:d4:81:bb:a3:4a:ed:4a:95:ed:63:7f:8d:5f:12: 31:c6:6c:d6:8f:f8:61:50:8f:70:ba:d2:77:c4:45:50:fb:8e: 11:69:1a:b9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzQwOTExMC8GA1UEBRMoNTIxNDkyMTA0QUIxQThCQkJFQkQ4MEE5OTYyOUQ0RTJF NjYzMjM3MDAeFw0yNTA4MTkwNDQ5MzlaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTQwMjYyLWY0MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCg32mlM079C8/T5aVaxOq7gqdlVOvMsJPmUeg9mHQAji/ShNkiCTBncf2vrQYF pH+Yoq2eJ8XIlPonLvALCTUm3Rq0BEtZv/Tw1Hs1cyaf+4ql9ZYO8deczB9ScQqS 2XzSFOIPb1j6lzDQSbzRp24nYxtnTgmpizVpRDujjjQE8LLHfzTNl3PzehhnwC2w hxG8JgtKGZQEPcj+LIpvRYNoCOkhNZcWKrN2pRxLT7LR6FlqUhaUwnN2048+MIdt jrO0HOltcVRCdbHTDqLcYzZWQI4HrdtX0bG0TC345agPmAdpvR2rwqf2xZaHV4d9 T6oPP/xt/HGrN1kEsjG5AI9nAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEmcBgDT9 WfkqmXYVtukpEvnmcX0wHwYDVR0jBBgwFoAUUhSSEEqxqLu+vYCplinU4uZjI3Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3NDA5LzQxRDUyRDQ2N0NC NjExRjA4QzVGNzc2OUM0RjlBRTAyL1VoU1NFRXF4cUx1LXZZQ3BsaW5VNHVaakkz QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWhTU0VFcXhxTHUtdllDcGxpblU0dVpqSTNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzQwOS80MUQ1MkQ0NjdDQjYxMUYwOEM1Rjc3NjlDNEY5QUUwMi9FOTgzREI1NDdD QjcxMUYwQUM4RjlENkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmcCwDANBgkqhkiG9w0BAQsFAAOCAQEAHpOaNrbuJwKpQAKJ FK1C/83801VRLeLKwxlvM5DsWtMemFKtDBvYas8msocd0j09OTVFOL7nB59mPPiu qg6WI3EzknpjgIDVh6p5ZqHxv2GEryulqeEU/2wdUjGAfD52yjCmYwlxwwO8rVsy C8B2irgdvgxzBXY8jEvD62bvSKL5tu+Tf1WdFt7C8zhXES75JLIolTNh7iRT8gQ7 /fiEOPaJbjqMQncKBaDhdqKk31Sr/+lWgbf88ApDvEcVjV9PLEArblPe2v6uqnZf tsqLM/npRHDzwqlV/MkU0tSBu6NK7UqV7WN/jV8SMcZs1o/4YVCPcLrSd8RFUPuO EWkauQ== -----END CERTIFICATE-----Generated at Sun Aug 24 04:23:12 2025 by rpki-client