$ rpki-client -vvf rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa File: 4B95A58630B111ECAC3FE61DC4F9AE02.roa (raw, json) Hash identifier: 9tJ/pt8L/gxVmpVNxOtZ9pIC/aw1tdXK8msH8pvZQPI= Subject key identifier: 04:C5:F5:F2:2A:7C:ED:10:2A:93:BF:0D:07:9A:FF:97:0C:86:6E:38 Certificate issuer: /CN=A91D025A/serialNumber=734090EFC37983FD175BE02F4949668A21437221 Certificate serial: 04E4 Authority key identifier: 73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa Signing time: Tue 19 Aug 2025 00:36:31 +0000 ROA not before: Tue 19 Aug 2025 00:36:31 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142575 IP address blocks: 103.174.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D025A, serialNumber=734090EFC37983FD175BE02F4949668A21437221 Validity Not Before: Aug 19 00:36:31 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a3c70e-a3f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:89:03:fb:cd:d7:a5:36:b5:8c:3e:39:d6: a5:c9:17:1f:8b:aa:5d:3d:8e:d4:ed:17:20:6f:80: 47:aa:50:2e:f1:7f:e6:ca:0f:fe:06:32:04:17:37: 73:64:f9:d5:d3:12:7a:77:4b:93:14:ce:47:55:32: eb:66:c9:a4:2f:5b:2e:d7:04:b3:b7:d4:4c:6b:88: 76:46:94:4a:71:df:8c:7d:a2:0a:4d:28:bd:47:b7: 2c:da:19:e4:c5:46:fa:16:7a:69:74:40:a1:35:68: 30:dc:18:44:f3:c4:f9:43:22:5c:2d:5c:ee:bc:07: e9:ef:60:d8:7b:dc:36:17:a7:5d:85:e1:ca:35:7c: ef:ed:0d:4e:64:97:08:7c:dc:c1:06:7d:cc:1d:14: 44:c1:12:ad:83:d6:8e:9f:22:9f:ec:33:41:cc:1b: da:6e:7b:6d:74:e3:3b:c5:8a:87:9e:c0:4a:93:f6: f6:eb:91:4a:35:7c:dc:cd:b4:39:3d:0e:ac:16:94: 56:16:82:77:aa:34:5b:c7:13:26:b4:d0:ac:a5:02: 87:0c:c2:32:4e:da:69:61:73:e2:c7:cc:d4:f1:ef: 8b:b7:36:68:f1:73:99:13:ab:e7:44:d0:81:f9:e0: 31:1c:d5:d3:21:9f:b7:62:0c:96:4f:47:1c:e1:c4: 32:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C5:F5:F2:2A:7C:ED:10:2A:93:BF:0D:07:9A:FF:97:0C:86:6E:38 X509v3 Authority Key Identifier: keyid:73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.125.0/24 Signature Algorithm: sha256WithRSAEncryption b4:a0:8a:84:67:78:b0:cd:bb:29:0f:56:47:8e:d9:e6:f7:65: 9a:0d:e3:c5:5c:b5:2c:b9:3a:7f:f2:64:b4:b4:be:0e:5d:6e: 6d:85:38:1b:74:41:51:a6:a1:43:63:d1:32:ec:37:56:40:71: 7e:1a:b0:85:2b:ce:80:91:5c:91:3b:dc:4d:42:93:0d:2d:e7: 0c:ce:7c:ae:b5:c1:8a:b3:2f:e8:61:42:df:22:ec:31:5e:44: b6:12:2f:21:60:58:51:09:4b:21:53:70:9e:c8:49:29:0e:a4: e8:a5:ee:28:51:24:d7:3e:cc:02:24:db:7a:ff:ce:90:e1:01: 44:c3:55:63:92:f6:6e:a7:df:3e:4b:d1:fe:db:fc:36:31:14: 91:10:f3:7c:1b:64:e6:7f:06:80:aa:73:6c:80:f9:27:2b:ee: 9e:4a:bc:72:83:b8:a2:87:e5:fe:f1:47:35:b4:ee:d2:cd:f3: 68:8b:2f:e0:3d:55:be:54:fb:03:4e:d6:de:92:b5:13:16:14: d8:47:2d:e3:be:97:be:f1:bf:3a:4b:5a:6f:f9:9d:14:52:11: c9:45:e6:a1:05:b9:99:ab:e2:72:f9:e6:63:32:9e:e3:23:da: 1d:3a:67:1e:ec:c5:4c:f4:64:f9:e5:4c:d3:5b:c4:a0:7c:79: 4f:27:5d:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAyNUExMTAvBgNVBAUTKDczNDA5MEVGQzM3OTgzRkQxNzVCRTAyRjQ5NDk2NjhB MjE0MzcyMjEwHhcNMjUwODE5MDAzNjMxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzYzcwZS1hM2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWGJA/vN16U2tYw+OdalyRcfi6pdPY7U7Rcgb4BHqlAu8X/myg/+BjIEFzdz ZPnV0xJ6d0uTFM5HVTLrZsmkL1su1wSzt9RMa4h2RpRKcd+MfaIKTSi9R7cs2hnk xUb6FnppdEChNWgw3BhE88T5QyJcLVzuvAfp72DYe9w2F6ddheHKNXzv7Q1OZJcI fNzBBn3MHRREwRKtg9aOnyKf7DNBzBvabnttdOM7xYqHnsBKk/b265FKNXzczbQ5 PQ6sFpRWFoJ3qjRbxxMmtNCspQKHDMIyTtppYXPix8zU8e+LtzZo8XOZE6vnRNCB +eAxHNXTIZ+3YgyWT0cc4cQywQIDAQABo4IClTCCApEwHQYDVR0OBBYEFATF9fIq fO0QKpO/DQea/5cMhm44MB8GA1UdIwQYMBaAFHNAkO/DeYP9F1vgL0lJZoohQ3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDI1QS9ENUVGMUE5MDMw QUQxMUVDOTVCMTVEMThDNEY5QUUwMi9jMENRNzhONWdfMFhXLUF2U1VsbWlpRkRj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MwQ1E3OE41Z18wWFctQXZTVWxtaWlGRGNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAyNUEvRDVFRjFBOTAzMEFEMTFFQzk1QjE1RDE4QzRGOUFFMDIvNEI5NUE1ODYz MEIxMTFFQ0FDM0ZFNjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrn0wDQYJKoZIhvcNAQELBQADggEBALSgioRneLDNuykP VkeO2eb3ZZoN48VctSy5On/yZLS0vg5dbm2FOBt0QVGmoUNj0TLsN1ZAcX4asIUr zoCRXJE73E1Ckw0t5wzOfK61wYqzL+hhQt8i7DFeRLYSLyFgWFEJSyFTcJ7ISSkO pOil7ihRJNc+zAIk23r/zpDhAUTDVWOS9m6n3z5L0f7b/DYxFJEQ83wbZOZ/BoCq c2yA+Scr7p5KvHKDuKKH5f7xRzW07tLN82iLL+A9Vb5U+wNO1t6StRMWFNhHLeO+ l77xvzpLWm/5nRRSEclF5qEFuZmr4nL55mMynuMj2h06Zx7sxUz0ZPnlTNNbxKB8 eU8nXUI= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:47 2025 by rpki-client