$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/7594FBFA2C7311EFA27A6526C4F9AE02.roa File: 7594FBFA2C7311EFA27A6526C4F9AE02.roa (raw, json) Hash identifier: 1wzYMLFHk5w163izK/FwbdDLwMdZuNPTMa1yYNCw1jQ= Subject key identifier: 54:E9:A7:78:79:E3:7E:F3:AF:40:7C:1A:0A:EA:A8:7D:3A:72:2A:21 Certificate issuer: /CN=A91D09B8/serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Certificate serial: E8 Authority key identifier: E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/7594FBFA2C7311EFA27A6526C4F9AE02.roa Signing time: Wed 03 Sep 2025 05:55:37 +0000 ROA not before: Wed 03 Sep 2025 05:55:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140062 IP address blocks: 103.69.164.0/22 maxlen: 22 203.14.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09B8, serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Validity Not Before: Sep 3 05:55:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7d858-4de0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5f:b0:dd:68:6e:fb:73:8b:e4:57:6c:ae:ec: d1:78:50:81:1f:ec:1e:3c:33:22:e9:cc:77:84:9d: cc:a3:ad:e7:22:17:7f:91:f9:e6:44:9c:73:1f:eb: 79:ef:58:14:dc:be:2f:cc:60:04:aa:c4:f7:48:64: 3b:73:ab:ac:4a:c1:6a:33:ad:f5:be:72:e6:cb:f2: e2:01:e4:49:7f:11:00:d0:12:ae:4e:77:cf:af:61: be:ea:1e:22:e1:94:a8:90:0a:cd:6c:f2:0a:b7:69: 21:34:d3:e3:86:31:db:81:58:e1:da:be:99:48:e5: 9a:c8:35:e5:0c:64:8f:17:6e:09:6f:48:af:51:d7: dc:29:2f:d2:93:13:3c:ba:3f:d0:7e:c7:60:a7:ee: 43:18:bc:84:06:d8:07:c1:6b:f6:38:26:fa:0c:f5: 28:3c:61:2c:1d:c2:2d:ac:53:73:99:93:84:86:0d: ea:53:50:f6:ac:c6:2c:f0:89:05:33:31:70:c2:91: 1f:ae:3e:dd:f3:7e:97:09:23:c8:bc:18:a2:55:c2: d8:be:ff:b6:c2:2c:66:27:d9:72:10:76:19:77:4b: 88:78:23:f1:f0:62:a8:a3:a2:60:24:cc:f9:06:1e: f2:1f:9a:ae:6c:44:dc:15:22:ca:e4:e8:f2:b6:88: 89:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E9:A7:78:79:E3:7E:F3:AF:40:7C:1A:0A:EA:A8:7D:3A:72:2A:21 X509v3 Authority Key Identifier: keyid:E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/7594FBFA2C7311EFA27A6526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.164.0/22 203.14.199.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:26:20:b9:de:55:39:29:69:0c:40:ca:88:e4:78:3f:7b:d8: b9:21:0d:87:12:55:46:78:74:76:a7:2e:17:be:d8:31:f8:1e: 0d:36:d0:d6:5f:de:9b:58:b5:06:5b:9e:54:36:5c:cd:b8:95: 77:3c:c3:c1:5e:ee:97:cc:69:5b:5a:cb:e6:90:dc:b9:01:65: 2f:b5:98:a2:47:46:91:b2:09:32:27:38:df:82:41:37:88:c3: 7a:55:eb:b2:80:7b:d8:93:81:ed:97:f9:10:d5:08:dc:12:57: 75:fa:1f:bb:74:ad:42:a2:8c:dd:31:f7:31:54:c0:92:41:3b: 8a:e0:cd:7a:8f:2f:8d:0d:7b:65:34:27:30:72:29:eb:65:c6: 8d:cb:56:9b:a1:83:51:8e:87:96:cc:76:17:d1:ea:49:1f:97: 3f:bb:43:68:c7:b8:b8:2b:ff:c5:92:54:22:67:03:dc:fe:0e: 7d:a4:07:d6:71:f9:21:c2:93:5b:e0:16:b2:a4:f7:d1:ea:46: a0:7a:74:39:16:50:25:b0:2b:4c:03:68:5d:99:f9:c5:93:f0: 94:68:8a:ef:dc:be:a2:f4:d4:e3:1c:64:34:cf:33:94:0f:01: 0a:b0:87:93:fc:3f:6f:b5:b1:58:49:60:3d:04:e1:bc:c5:18: 76:fd:b8:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QjgxMTAvBgNVBAUTKEUzRThGRjA3OUUwM0ZEQTQzMzQ2ODg5RDkzNzY1Qjk1 OUY2RTFENTkwHhcNMjUwOTAzMDU1NTM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZDg1OC00ZGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31+w3Whu+3OL5FdsruzReFCBH+wePDMi6cx3hJ3Mo63nIhd/kfnmRJxzH+t5 71gU3L4vzGAEqsT3SGQ7c6usSsFqM631vnLmy/LiAeRJfxEA0BKuTnfPr2G+6h4i 4ZSokArNbPIKt2khNNPjhjHbgVjh2r6ZSOWayDXlDGSPF24Jb0ivUdfcKS/SkxM8 uj/Qfsdgp+5DGLyEBtgHwWv2OCb6DPUoPGEsHcItrFNzmZOEhg3qU1D2rMYs8IkF MzFwwpEfrj7d836XCSPIvBiiVcLYvv+2wixmJ9lyEHYZd0uIeCPx8GKoo6JgJMz5 Bh7yH5qubETcFSLK5OjytoiJqwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFTpp3h5 437zr0B8GgrqqH06ciohMB8GA1UdIwQYMBaAFOPo/weeA/2kM0aInZN2W5Wfbh1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCOC82QUI5OUUyNjJD NzIxMUVGQjg5QjBGODRDNEY5QUUwMi80LWpfQjU0RF9hUXpSb2lkazNaYmxaOXVI VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtal9CNTREX2FRelJvaWRrM1pibFo5dUhWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA5QjgvNkFCOTlFMjYyQzcyMTFFRkI4OUIwRjg0QzRGOUFFMDIvNzU5NEZCRkEy QzczMTFFRkEyN0E2NTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRaQDBADLDscwDQYJKoZIhvcNAQELBQADggEBAAwmILne VTkpaQxAyojkeD972LkhDYcSVUZ4dHanLhe+2DH4Hg020NZf3ptYtQZbnlQ2XM24 lXc8w8Fe7pfMaVtay+aQ3LkBZS+1mKJHRpGyCTInON+CQTeIw3pV67KAe9iTge2X +RDVCNwSV3X6H7t0rUKijN0x9zFUwJJBO4rgzXqPL40Ne2U0JzByKetlxo3LVpuh g1GOh5bMdhfR6kkflz+7Q2jHuLgr/8WSVCJnA9z+Dn2kB9Zx+SHCk1vgFrKk99Hq RqB6dDkWUCWwK0wDaF2Z+cWT8JRoiu/cvqL01OMcZDTPM5QPAQqwh5P8P2+1sVhJ YD0E4bzFGHb9uIQ= -----END CERTIFICATE-----Generated at Mon Oct 20 11:27:46 2025 by rpki-client