$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/568554A2493411EF859C1D49C4F9AE02.roa File: 568554A2493411EF859C1D49C4F9AE02.roa (raw, json) Hash identifier: Y+ojf+2jX3eowe65KYol38ex1Bpsq2OZibivyd0HsaA= Subject key identifier: 81:FD:4B:C3:A8:FB:C9:5E:DD:8B:AA:77:73:66:4C:A9:63:A9:DF:8C Certificate issuer: /CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Certificate serial: 34D5 Authority key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/568554A2493411EF859C1D49C4F9AE02.roa Signing time: Mon 11 Aug 2025 08:12:47 +0000 ROA not before: Mon 11 Aug 2025 08:12:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.35.251.0/24 maxlen: 24 103.195.128.0/24 maxlen: 24 103.195.129.0/24 maxlen: 24 103.195.130.0/24 maxlen: 24 103.212.169.0/24 maxlen: 24 103.212.170.0/24 maxlen: 24 160.202.137.0/24 maxlen: 24 160.202.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9350, serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Validity Not Before: Aug 11 08:12:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6899a5ff-9ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2f:85:b9:06:7a:6d:c2:82:ac:ee:8c:f4:c7: bd:a7:09:23:64:59:e4:ab:d6:c2:d9:a9:4c:dc:5a: a1:aa:3b:b0:52:ab:e6:c9:5a:6b:7f:ef:38:6f:ae: c5:76:11:44:39:79:1d:61:8b:39:17:d2:3d:d7:ca: fa:34:66:4a:fd:4d:05:0b:ab:bf:da:90:11:b5:70: 92:48:d6:16:f4:8b:d7:5f:f4:d4:ce:fb:3a:72:13: 8c:18:f7:30:30:92:46:97:21:15:93:83:ad:2a:df: 47:54:15:d0:66:49:e2:a5:7d:61:dd:de:7a:b2:f6: 11:e6:8d:a6:99:96:f3:95:6d:d9:f1:7a:ac:3f:8c: 2b:16:44:ad:81:b4:2e:2d:d3:4e:36:e7:a0:b4:a1: 75:58:cc:6a:dd:e6:03:5d:f1:18:38:fe:a4:0a:f4: 50:ef:30:dc:6a:05:c7:72:56:38:5f:87:7e:3b:3d: f4:fa:94:1c:7c:9c:69:f9:35:f6:a0:e9:7f:c4:ae: a7:62:2c:1f:4b:57:9c:fb:93:ed:5a:bf:1a:d4:43: 6c:4f:d5:3d:3e:f8:e6:7c:0d:f2:51:ef:04:ef:d5: 3b:7b:f4:62:16:f6:63:73:31:42:3f:e0:95:31:39: 02:92:1a:b2:61:ab:3e:44:78:c0:91:5c:99:41:85: b9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FD:4B:C3:A8:FB:C9:5E:DD:8B:AA:77:73:66:4C:A9:63:A9:DF:8C X509v3 Authority Key Identifier: keyid:CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/568554A2493411EF859C1D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.251.0/24 103.195.128.0-103.195.130.255 103.212.169.0-103.212.170.255 160.202.137.0-160.202.138.255 Signature Algorithm: sha256WithRSAEncryption 53:a7:21:55:b9:c7:d0:96:00:e3:68:7e:e6:bf:3f:d4:c9:4e: 6a:74:cd:01:9a:92:75:dc:db:2c:a4:1d:24:79:cf:f5:2b:f0: 12:ae:a3:ff:6b:57:c5:d7:54:ca:c6:25:de:ac:c4:af:7c:47: 72:d3:de:5b:6f:a8:f7:73:f7:69:8d:c1:81:1e:b1:73:e7:78: 71:6f:34:61:33:16:07:fc:38:c3:5b:d6:e6:09:62:8e:c5:6d: e8:25:6e:0c:36:19:69:8b:54:7e:b7:39:0c:ea:c5:2d:2d:b1: 5b:75:8b:e9:d0:1e:90:6d:21:58:e1:59:10:52:32:f2:ef:ac: 29:e5:f5:d7:79:e7:7c:35:54:3a:4b:07:1f:28:e0:9c:92:72: 1c:ef:a3:5b:01:4c:84:c2:de:ad:32:d3:4b:fe:54:3f:cb:ba: 23:2f:3f:a6:02:c9:2e:cd:57:3e:4f:d2:f8:3a:0d:a9:07:27: fe:6d:b3:a0:9d:a3:bd:d2:64:c9:e8:f5:99:cd:da:6f:b2:37: 8d:54:06:82:1f:4a:80:81:0e:6e:97:11:47:40:25:68:7e:95: 1b:a9:78:f6:e7:47:62:94:21:64:72:a1:74:a8:ab:5f:d6:20: 96:74:cb:37:38:23:2c:da:62:9b:73:d9:91:35:44:e7:2d:18: b4:44:07:62 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5QUQzOURENUYy REZFNTlERTQwHhcNMjUwODExMDgxMjQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5YTVmZi05YWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvi+FuQZ6bcKCrO6M9Me9pwkjZFnkq9bC2alM3FqhqjuwUqvmyVprf+84b67F dhFEOXkdYYs5F9I918r6NGZK/U0FC6u/2pARtXCSSNYW9IvXX/TUzvs6chOMGPcw MJJGlyEVk4OtKt9HVBXQZknipX1h3d56svYR5o2mmZbzlW3Z8XqsP4wrFkStgbQu LdNONuegtKF1WMxq3eYDXfEYOP6kCvRQ7zDcagXHclY4X4d+Oz30+pQcfJxp+TX2 oOl/xK6nYiwfS1ec+5PtWr8a1ENsT9U9PvjmfA3yUe8E79U7e/RiFvZjczFCP+CV MTkCkhqyYas+RHjAkVyZQYW51QIDAQABo4ICvzCCArswHQYDVR0OBBYEFIH9S8Oo +8le3Yuqd3NmTKljqd+MMB8GA1UdIwQYMBaAFM9wbYFH13kgfZmvmtOd1fLf5Z3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTM1MC8zOTEzQkNBMDFE ODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1VmWGVTQjltYS1hMDUzVjh0X2xu ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozQnRnVWZYZVNCOW1hLWEwNTNWOHRfbG5lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzNTAvMzkxM0JDQTAxRDg3MTFFMkI0MkIwMkRGMDhCMDJDRDIvNTY4NTU0QTI0 OTM0MTFFRjg1OUMxRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBABnI/swDAMEB2fDgAMEAGfDgjAMAwQAZ9SpAwQAZ9SqMAwD BACgyokDBACgyoowDQYJKoZIhvcNAQELBQADggEBAFOnIVW5x9CWAONofua/P9TJ Tmp0zQGaknXc2yykHSR5z/Ur8BKuo/9rV8XXVMrGJd6sxK98R3LT3ltvqPdz92mN wYEesXPneHFvNGEzFgf8OMNb1uYJYo7Fbeglbgw2GWmLVH63OQzqxS0tsVt1i+nQ HpBtIVjhWRBSMvLvrCnl9dd553w1VDpLBx8o4JySchzvo1sBTITC3q0y00v+VD/L uiMvP6YCyS7NVz5P0vg6DakHJ/5ts6Cdo73SZMno9ZnN2m+yN41UBoIfSoCBDm6X EUdAJWh+lRupePbnR2KUIWRyoXSoq1/WIJZ0yzc4IyzaYptz2ZE1ROctGLREB2I= -----END CERTIFICATE-----Generated at Sat Aug 23 07:04:20 2025 by rpki-client