$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa File: E54E5FF6632311ED8D313442C4F9AE02.roa (raw, json) Hash identifier: VG7uY+n06V7ME8pwAgLhqvJUKL4X9ZH+oVhIO2dzfMM= Subject key identifier: EB:6D:08:A8:F7:21:CD:48:96:39:42:B9:BE:E7:51:4D:2E:EC:92:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 2642 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa Signing time: Sun 17 Aug 2025 06:07:21 +0000 ROA not before: Sun 17 Aug 2025 06:07:21 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9230 IP address blocks: 103.12.166.0/24 maxlen: 24 103.31.108.0/24 maxlen: 24 103.129.244.0/22 maxlen: 24 103.234.192.0/23 maxlen: 24 122.144.8.0/21 maxlen: 24 150.129.16.0/23 maxlen: 24 182.163.96.0/19 maxlen: 24 202.84.32.0/20 maxlen: 24 2402:c000::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9794 (0x2642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Aug 17 06:07:21 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68a17199-f93c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:54:6b:28:2e:f1:17:b5:30:39:9b:96:87:30: 1a:d8:2f:3a:57:b7:ed:b9:56:da:b8:5b:dd:4c:9c: 65:ab:5a:d2:22:e4:c5:2d:d6:fa:21:4f:91:9d:ae: 7e:58:98:2d:1a:cd:b0:5f:18:22:6e:3b:4e:2e:5a: c1:e2:9b:1c:91:de:18:8d:aa:86:ab:5a:4a:9d:6c: 71:f1:27:0d:50:f1:3b:de:b9:d2:f0:67:5d:95:b6: 69:c4:d8:6a:28:87:12:e0:c9:19:30:b3:ca:0b:3b: f6:76:0c:52:a4:87:08:9a:50:ab:17:61:31:c6:57: cb:0b:14:68:ab:84:b4:63:f7:7d:85:49:70:cf:53: 8a:9c:b7:c9:67:3a:5b:9b:be:c8:ef:28:6e:58:0d: 96:ad:ea:47:52:c4:dc:30:93:91:89:75:9e:eb:1e: 36:fd:b2:c9:f3:b1:af:22:bc:e1:b9:54:b4:49:ff: e0:2d:9c:df:a8:57:b7:12:bd:53:71:cb:b7:9e:be: 31:2a:27:50:b8:fb:21:37:e8:a3:5d:01:bc:70:61: 32:73:4f:6a:ee:a5:5a:1a:0e:44:99:54:3c:e9:ff: ee:dc:45:fa:3b:c2:10:fa:d6:fa:15:e1:ce:9b:42: c4:c0:f6:2e:08:bc:d0:65:ec:dd:92:20:a0:db:a9: 7d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:6D:08:A8:F7:21:CD:48:96:39:42:B9:BE:E7:51:4D:2E:EC:92:41 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.166.0/24 103.31.108.0/24 103.129.244.0/22 103.234.192.0/23 122.144.8.0/21 150.129.16.0/23 182.163.96.0/19 202.84.32.0/20 IPv6: 2402:c000::/32 Signature Algorithm: sha256WithRSAEncryption 7a:18:5e:ce:b8:93:56:9a:8f:b1:19:6f:3d:e8:8a:68:c3:af: 50:4e:8b:5d:82:dc:74:04:f7:80:17:4c:aa:32:5c:e4:13:7e: 82:b6:ac:1e:a3:31:41:f6:c4:14:93:ce:31:4c:17:05:e2:79: 61:ea:58:97:dd:22:1d:1a:fe:4c:db:7d:29:41:c2:b0:53:7d: 56:9e:0a:82:c2:fc:f6:29:c1:1f:bc:71:58:05:3d:75:8a:af: 9e:55:d9:f8:72:8a:25:21:76:75:14:77:a1:96:3b:e0:11:55: 49:6a:88:53:44:12:cc:17:7c:4d:35:a5:41:a6:46:52:24:52: 86:51:c9:86:12:10:df:4c:b0:3c:9f:ae:8c:c5:72:cd:98:55: ac:6f:4b:ae:a8:ad:39:63:2a:ae:37:60:d9:0f:e8:32:fc:02: d9:9a:94:6f:76:83:eb:fc:0f:ff:96:26:11:43:c2:09:03:c0: 7a:01:2f:1f:f7:9d:36:81:29:62:e0:54:7c:e8:7e:13:67:a5: 76:50:57:fb:b3:70:d0:e5:ff:82:89:08:d8:12:d0:19:61:bf: 9d:9b:81:a6:96:06:df:39:cd:77:2f:d0:e1:45:1d:c6:17:38: b3:fd:b7:cf:f0:36:26:2a:51:7f:9f:5e:ae:c1:61:b6:8f:5c: b8:66:fc:ea -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICJkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUwODE3MDYwNzIxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGExNzE5OS1mOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lRrKC7xF7UwOZuWhzAa2C86V7ftuVbauFvdTJxlq1rSIuTFLdb6IU+Rna5+ WJgtGs2wXxgibjtOLlrB4psckd4YjaqGq1pKnWxx8ScNUPE73rnS8GddlbZpxNhq KIcS4MkZMLPKCzv2dgxSpIcImlCrF2ExxlfLCxRoq4S0Y/d9hUlwz1OKnLfJZzpb m77I7yhuWA2WrepHUsTcMJORiXWe6x42/bLJ87GvIrzhuVS0Sf/gLZzfqFe3Er1T ccu3nr4xKidQuPshN+ijXQG8cGEyc09q7qVaGg5EmVQ86f/u3EX6O8IQ+tb6FeHO m0LEwPYuCLzQZezdkiCg26l9VQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFOttCKj3 Ic1IljlCub7nUU0u7JJBMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMDIvNEVBNDhFODRGQkE5MTFFNEE4QjM0QzIzQzRGOUFFMDIvRTU0RTVGRjY2 MzIzMTFFRDhEMzEzNDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBABnDKYDBABnH2wDBAJngfQDBAFn6sADBAN6kAgDBAGWgRAD BAW2o2ADBATKVCAwDQQCAAIwBwMFACQCwAAwDQYJKoZIhvcNAQELBQADggEBAHoY Xs64k1aaj7EZbz3oimjDr1BOi12C3HQE94AXTKoyXOQTfoK2rB6jMUH2xBSTzjFM FwXieWHqWJfdIh0a/kzbfSlBwrBTfVaeCoLC/PYpwR+8cVgFPXWKr55V2fhyiiUh dnUUd6GWO+ARVUlqiFNEEswXfE01pUGmRlIkUoZRyYYSEN9MsDyfrozFcs2YVaxv S66orTljKq43YNkP6DL8AtmalG92g+v8D/+WJhFDwgkDwHoBLx/3nTaBKWLgVHzo fhNnpXZQV/uzcNDl/4KJCNgS0Blhv52bgaaWBt85zXcv0OFFHcYXOLP9t8/wNiYq UX+fXq7BYbaPXLhm/Oo= -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:16 2025 by rpki-client