$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa File: E54E5FF6632311ED8D313442C4F9AE02.roa (raw, json) Hash identifier: juVS2WdVoEjnoooIFlUN1TcwOWE6yqS4du37XkdB8V8= Subject key identifier: 8B:ED:17:85:4B:88:08:43:F3:FF:E8:10:97:D1:0C:45:82:D1:CA:73 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 2661 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa Signing time: Tue 16 Sep 2025 09:19:42 +0000 ROA not before: Tue 16 Sep 2025 09:19:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9230 IP address blocks: 103.12.166.0/24 maxlen: 24 103.31.108.0/24 maxlen: 24 103.129.244.0/22 maxlen: 24 103.234.192.0/23 maxlen: 24 122.144.8.0/21 maxlen: 24 150.129.16.0/23 maxlen: 24 182.163.96.0/19 maxlen: 24 202.84.32.0/20 maxlen: 24 2402:c000::/32 maxlen: 40 2402:c000::/48 maxlen: 48 2402:c000:1::/48 maxlen: 48 2402:c000:5::/48 maxlen: 48 2402:c000:3800::/48 maxlen: 48 2402:c000:3801::/48 maxlen: 48 2402:c000:3802::/48 maxlen: 48 2402:c000:3803::/48 maxlen: 48 2402:c000:38f2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9825 (0x2661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Sep 16 09:19:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c92bae-ae4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e3:31:07:21:f3:28:d9:3a:fd:e4:3e:3b:fb: dd:44:b0:13:f4:67:3e:3c:6a:5a:9a:b2:ec:e4:13: 5a:e9:9d:93:d3:96:6b:fb:ff:fc:b7:74:02:d9:46: 4d:f9:f0:e1:71:1a:d9:99:76:02:9c:79:d7:46:45: 8e:de:d7:e9:be:5a:15:4d:bc:64:77:e4:8e:9c:b7: db:70:c8:fd:bb:13:62:4f:77:4c:37:5a:87:39:e7: 86:01:2d:7e:5e:93:35:18:1c:cd:d9:50:ee:d2:47: 37:eb:c3:be:32:86:8b:0a:43:85:f2:0d:fb:08:fb: 01:44:43:7b:b0:2c:06:16:3d:57:3b:cd:4c:fb:8c: 24:70:cf:59:ea:6f:20:ed:4f:6b:1b:99:11:f0:5d: 08:09:9e:14:ff:f2:ec:31:b6:33:6d:63:e3:27:d7: dc:94:e2:dd:a4:62:77:75:ad:cb:1d:49:09:1d:fe: 1e:45:75:97:37:88:2a:9e:11:85:42:dc:72:fc:43: 00:dc:4d:dd:57:59:4b:28:af:0a:4c:70:43:a1:83: 55:d4:e7:4a:49:4a:4c:8b:f2:1b:c2:ac:c5:37:98: 0a:e7:90:80:9b:55:91:15:4c:b6:25:7c:eb:eb:05: b1:b9:9d:94:20:28:33:5e:42:39:df:99:45:c5:aa: a3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:ED:17:85:4B:88:08:43:F3:FF:E8:10:97:D1:0C:45:82:D1:CA:73 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.166.0/24 103.31.108.0/24 103.129.244.0/22 103.234.192.0/23 122.144.8.0/21 150.129.16.0/23 182.163.96.0/19 202.84.32.0/20 IPv6: 2402:c000::/32 Signature Algorithm: sha256WithRSAEncryption 41:f9:6c:95:f2:e7:d9:6f:12:80:6e:18:50:90:7d:d6:69:d3: b7:ec:34:7e:2a:15:73:60:f2:42:1a:5c:80:f2:95:c0:fc:0c: 5e:1c:0d:47:89:b4:ed:5d:4e:34:5b:74:50:5d:3b:c0:23:26: de:fc:68:ec:3b:b9:4a:63:50:af:cf:d3:6a:a1:1c:ff:22:30: 9e:c1:80:5b:1b:87:4d:f3:16:84:e0:96:4f:28:97:75:54:6d: 01:f2:67:43:ec:f4:aa:6b:2a:d1:9e:06:d6:94:e9:4e:48:0f: d6:59:04:c3:ec:4d:1b:66:33:07:11:bc:53:a5:ff:95:f3:c6: ab:ca:ce:90:bc:6f:f2:f9:02:44:45:8f:11:90:78:18:1c:e1: 05:90:ad:7c:7b:98:c3:21:ad:b9:84:14:4c:35:60:47:7b:6a: 93:50:37:8b:f1:e9:ed:36:fd:b7:71:86:b4:9f:ce:87:e3:b0: 6b:c7:04:71:1b:81:fc:8b:7a:d1:5d:2c:be:15:33:20:66:8d: 32:f2:c1:ea:a9:87:0f:ff:28:58:24:63:33:0e:d4:df:28:84: f3:01:66:5a:08:45:bb:f5:9e:27:44:25:e3:66:97:80:a2:8f: 98:3a:d3:8f:ff:a6:1c:ef:8c:27:c1:3c:ee:c6:e2:78:34:a1: 75:e0:f8:05 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICJmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUwOTE2MDkxOTQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5MmJhZS1hZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweMxByHzKNk6/eQ+O/vdRLAT9Gc+PGpamrLs5BNa6Z2T05Zr+//8t3QC2UZN +fDhcRrZmXYCnHnXRkWO3tfpvloVTbxkd+SOnLfbcMj9uxNiT3dMN1qHOeeGAS1+ XpM1GBzN2VDu0kc368O+MoaLCkOF8g37CPsBREN7sCwGFj1XO81M+4wkcM9Z6m8g 7U9rG5kR8F0ICZ4U//LsMbYzbWPjJ9fclOLdpGJ3da3LHUkJHf4eRXWXN4gqnhGF Qtxy/EMA3E3dV1lLKK8KTHBDoYNV1OdKSUpMi/IbwqzFN5gK55CAm1WRFUy2JXzr 6wWxuZ2UICgzXkI535lFxaqjEQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFIvtF4VL iAhD8//oEJfRDEWC0cpzMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMDIvNEVBNDhFODRGQkE5MTFFNEE4QjM0QzIzQzRGOUFFMDIvRTU0RTVGRjY2 MzIzMTFFRDhEMzEzNDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBABnDKYDBABnH2wDBAJngfQDBAFn6sADBAN6kAgDBAGWgRAD BAW2o2ADBATKVCAwDQQCAAIwBwMFACQCwAAwDQYJKoZIhvcNAQELBQADggEBAEH5 bJXy59lvEoBuGFCQfdZp07fsNH4qFXNg8kIaXIDylcD8DF4cDUeJtO1dTjRbdFBd O8AjJt78aOw7uUpjUK/P02qhHP8iMJ7BgFsbh03zFoTglk8ol3VUbQHyZ0Ps9Kpr KtGeBtaU6U5ID9ZZBMPsTRtmMwcRvFOl/5XzxqvKzpC8b/L5AkRFjxGQeBgc4QWQ rXx7mMMhrbmEFEw1YEd7apNQN4vx6e02/bdxhrSfzofjsGvHBHEbgfyLetFdLL4V MyBmjTLyweqphw//KFgkYzMO1N8ohPMBZloIRbv1nidEJeNml4Cij5g604//phzv jCfBPO7G4ng0oXXg+AU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:59:16 2025 by rpki-client