$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4DB/3A315DCECD0211E7B0442D28C4F9AE02/D9C4471C32D911F0B3466E0BC4F9AE02.roa File: D9C4471C32D911F0B3466E0BC4F9AE02.roa (raw, json) Hash identifier: kEqVolPWbZYybXeWnS2WqFsHodl52XHMAsJNtlbgCXo= Subject key identifier: E3:E9:58:9C:CE:73:B6:BE:94:5B:61:E3:B9:04:43:5D:01:93:50:46 Certificate issuer: /CN=A91CD4DB/serialNumber=3FB7855EF330BA77D9F3B72DFFDEC20712AC1407 Certificate serial: 17E8 Authority key identifier: 3F:B7:85:5E:F3:30:BA:77:D9:F3:B7:2D:FF:DE:C2:07:12:AC:14:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7eFXvMwunfZ87ct_97CBxKsFAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4DB/3A315DCECD0211E7B0442D28C4F9AE02/D9C4471C32D911F0B3466E0BC4F9AE02.roa Signing time: Thu 14 Aug 2025 16:55:11 +0000 ROA not before: Thu 14 Aug 2025 16:55:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153800 IP address blocks: 103.158.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4DB/3A315DCECD0211E7B0442D28C4F9AE02/P7eFXvMwunfZ87ct_97CBxKsFAc.crl rsync://rpki.apnic.net/member_repository/A91CD4DB/3A315DCECD0211E7B0442D28C4F9AE02/P7eFXvMwunfZ87ct_97CBxKsFAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7eFXvMwunfZ87ct_97CBxKsFAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6120 (0x17e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4DB, serialNumber=3FB7855EF330BA77D9F3B72DFFDEC20712AC1407 Validity Not Before: Aug 14 16:55:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689e14ef-7054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5f:40:9a:d8:37:30:03:91:be:27:98:4d:82: 06:a3:f6:45:e7:9c:75:69:c3:d8:14:8b:46:7c:3b: 7a:59:40:92:18:23:50:36:d3:96:4f:3a:a6:f1:11: d0:5e:08:d1:6f:64:88:1a:c1:50:40:0a:6c:a5:50: 2a:c5:a7:3d:06:26:35:e1:f3:bf:34:10:12:f0:c6: 35:fb:2c:56:d8:21:b7:f4:99:41:20:bf:21:ff:6f: 0e:56:e6:f6:1f:4f:8d:6b:9c:e6:1d:63:e1:29:83: 24:44:3c:ff:a5:84:41:c6:d7:27:d2:be:98:1a:4d: 67:95:d7:81:72:98:15:61:cc:96:12:42:f8:56:04: 91:92:b9:13:d7:ba:b2:9d:9d:a9:1a:ef:f9:c2:2e: 29:4a:a1:34:86:98:b1:db:1f:99:6d:77:91:c7:c0: dc:0c:ff:38:9e:64:7d:dd:a6:7e:f5:89:69:30:de: 31:21:ff:5e:ff:52:fb:3e:72:c3:84:35:58:66:68: 41:06:2f:c7:b5:a3:8c:07:77:8b:3e:2d:74:56:78: 1a:a3:24:01:fc:85:66:aa:a0:cd:40:7a:f9:47:c4: 15:35:da:af:57:be:2d:ad:58:db:71:7b:65:a1:28: 65:f8:f3:eb:37:a7:2c:ea:95:e6:34:73:73:23:da: 85:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E9:58:9C:CE:73:B6:BE:94:5B:61:E3:B9:04:43:5D:01:93:50:46 X509v3 Authority Key Identifier: keyid:3F:B7:85:5E:F3:30:BA:77:D9:F3:B7:2D:FF:DE:C2:07:12:AC:14:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4DB/3A315DCECD0211E7B0442D28C4F9AE02/P7eFXvMwunfZ87ct_97CBxKsFAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7eFXvMwunfZ87ct_97CBxKsFAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4DB/3A315DCECD0211E7B0442D28C4F9AE02/D9C4471C32D911F0B3466E0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.38.0/24 Signature Algorithm: sha256WithRSAEncryption 04:95:61:7a:de:99:57:28:c5:96:66:21:41:d9:74:1c:1b:4b: 83:2f:c6:be:90:95:ce:9b:20:2d:7d:c7:a6:2e:cf:b4:38:54: f5:e8:52:01:55:dc:99:2b:34:8d:0f:30:8a:1f:9d:9a:ca:59: 4c:76:10:bd:8a:93:ac:25:9e:eb:42:62:a7:12:6d:2b:92:84: 72:98:e8:7a:5a:ae:e2:cd:3c:33:08:1f:40:af:61:28:85:7b: 0c:02:5a:0f:7c:b0:fe:93:b1:1c:db:45:e6:d7:83:07:12:94: 57:c8:9d:aa:e0:79:a0:c8:cc:cf:56:d3:94:a5:fb:16:d7:20: 87:fc:11:7d:58:1a:26:9d:8a:3f:4f:3b:bb:98:9b:d8:de:9b: e5:32:79:42:d8:69:a6:7e:98:f4:65:fb:12:92:77:04:e4:ae: a7:ce:2b:f2:d9:06:6b:78:87:1c:84:6f:8e:cf:85:af:a4:2e: 76:5f:dc:c6:c3:b3:0f:a5:07:1f:22:07:84:12:a0:f8:d1:d9: 6b:85:2a:4e:1a:ec:ad:4d:94:3c:01:78:a5:1e:7b:8e:35:49: 7d:3b:74:63:b6:a9:f8:78:e6:86:52:23:42:8c:e4:0d:81:11: f1:2c:89:2c:69:51:4c:cb:c9:82:04:9d:94:8a:8a:51:fd:ca: 45:36:42:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0REIxMTAvBgNVBAUTKDNGQjc4NTVFRjMzMEJBNzdEOUYzQjcyREZGREVDMjA3 MTJBQzE0MDcwHhcNMjUwODE0MTY1NTExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMTRlZi03MDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8F9Amtg3MAORvieYTYIGo/ZF55x1acPYFItGfDt6WUCSGCNQNtOWTzqm8RHQ XgjRb2SIGsFQQApspVAqxac9BiY14fO/NBAS8MY1+yxW2CG39JlBIL8h/28OVub2 H0+Na5zmHWPhKYMkRDz/pYRBxtcn0r6YGk1nldeBcpgVYcyWEkL4VgSRkrkT17qy nZ2pGu/5wi4pSqE0hpix2x+ZbXeRx8DcDP84nmR93aZ+9YlpMN4xIf9e/1L7PnLD hDVYZmhBBi/HtaOMB3eLPi10VngaoyQB/IVmqqDNQHr5R8QVNdqvV74trVjbcXtl oShl+PPrN6cs6pXmNHNzI9qFLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOPpWJzO c7a+lFth47kEQ10Bk1BGMB8GA1UdIwQYMBaAFD+3hV7zMLp32fO3Lf/ewgcSrBQH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDREQi8zQTMxNURDRUNE MDIxMUU3QjA0NDJEMjhDNEY5QUUwMi9QN2VGWHZNd3VuZlo4N2N0Xzk3Q0J4S3NG QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3ZUZYdk13dW5mWjg3Y3RfOTdDQnhLc0ZBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Q0REIvM0EzMTVEQ0VDRDAyMTFFN0IwNDQyRDI4QzRGOUFFMDIvRDlDNDQ3MUMz MkQ5MTFGMEIzNDY2RTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnniYwDQYJKoZIhvcNAQELBQADggEBAASVYXremVcoxZZm IUHZdBwbS4Mvxr6Qlc6bIC19x6Yuz7Q4VPXoUgFV3JkrNI0PMIofnZrKWUx2EL2K k6wlnutCYqcSbSuShHKY6HparuLNPDMIH0CvYSiFewwCWg98sP6TsRzbRebXgwcS lFfInargeaDIzM9W05Sl+xbXIIf8EX1YGiadij9PO7uYm9jem+UyeULYaaZ+mPRl +xKSdwTkrqfOK/LZBmt4hxyEb47Pha+kLnZf3MbDsw+lBx8iB4QSoPjR2WuFKk4a 7K1NlDwBeKUee441SX07dGO2qfh45oZSI0KM5A2BEfEsiSxpUUzLyYIEnZSKilH9 ykU2Qjc= -----END CERTIFICATE-----Generated at Sun Aug 24 04:43:41 2025 by rpki-client