$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/AE929D88823711E782F9A440C4F9AE02.roa File: AE929D88823711E782F9A440C4F9AE02.roa (raw, json) Hash identifier: E6UpldRotsggXgn0nl1/UsRHEfM+J1lVtu1dNLHwKlU= Subject key identifier: 65:F3:AF:DA:23:5D:F0:58:67:E9:7B:DE:76:73:F0:64:26:F5:36:55 Certificate issuer: /CN=A91DC5E3/serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Certificate serial: 192B Authority key identifier: 30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/AE929D88823711E782F9A440C4F9AE02.roa Signing time: Wed 16 Jul 2025 16:54:42 +0000 ROA not before: Wed 16 Jul 2025 16:54:42 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136738 IP address blocks: 103.94.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6443 (0x192b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5E3, serialNumber=30C0407629BB4F9FCD815489A378DC1A353DAFEC Validity Not Before: Jul 16 16:54:42 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6877d951-0e8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:36:7c:88:c3:47:70:6d:f2:48:08:3c:48:58: 6d:0a:4e:5d:be:3c:fe:41:d9:c6:50:8f:a1:19:d5: 43:89:3e:15:f1:91:f8:20:f3:4e:c5:f3:8d:44:d3: 1a:44:64:06:5c:e5:84:d6:75:cb:8c:01:5d:a5:d5: 1a:01:31:e9:f5:ea:f6:6d:70:ed:7e:b9:41:bb:47: 07:37:aa:91:be:c2:98:b6:a2:89:a0:a5:e2:22:05: cb:d2:e6:73:71:c6:56:81:ec:0e:4a:3b:b4:36:b2: bd:44:13:49:e2:c2:97:0b:25:6e:d0:99:24:b1:3a: 64:6b:4b:41:c5:a4:b5:40:db:1a:03:7f:6a:98:ba: 53:e2:0b:c5:ba:d5:91:23:af:be:43:9e:91:5f:cd: e7:74:3b:0a:4e:81:a4:95:82:73:e3:24:c9:36:45: 5f:24:a6:65:a4:55:4a:39:ac:ed:ec:b7:df:41:be: 43:cc:a6:92:57:34:ae:d8:70:3e:1b:9f:01:41:9b: 77:cd:50:4e:74:e6:6e:5c:1b:2c:10:25:8f:ec:20: 70:ef:21:d6:74:f1:0b:d9:24:a6:d7:e0:8b:df:12: 7d:00:5c:09:ef:9a:e5:e7:4a:68:26:14:75:c3:10: 00:ab:64:16:90:d3:13:b6:19:de:b0:10:8a:6f:3c: bd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F3:AF:DA:23:5D:F0:58:67:E9:7B:DE:76:73:F0:64:26:F5:36:55 X509v3 Authority Key Identifier: keyid:30:C0:40:76:29:BB:4F:9F:CD:81:54:89:A3:78:DC:1A:35:3D:AF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/MMBAdim7T5_NgVSJo3jcGjU9r-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMBAdim7T5_NgVSJo3jcGjU9r-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5E3/B709A5DA823511E78DB3B139C4F9AE02/AE929D88823711E782F9A440C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.246.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:cd:a0:1f:c1:5f:c8:58:d2:ef:39:ca:66:cf:10:77:5f:9b: a9:a4:99:18:08:45:1b:5c:f3:dd:61:0b:19:4b:f0:79:1c:70: 3e:d1:a5:5b:76:50:4d:63:e9:00:fa:f9:d6:61:7a:63:0f:6d: c9:9c:be:0c:3b:06:66:fd:22:5c:eb:10:9f:3a:72:b0:6a:f9: 58:34:3a:b8:96:2f:56:b3:a2:0f:2b:64:48:ed:3a:d3:ab:4c: 66:da:fb:5d:d2:f6:14:b7:31:33:ac:52:3e:0b:e8:57:35:65: 02:6e:31:d6:85:22:0b:29:65:d4:cd:b0:eb:28:99:22:c4:b3: 9a:a7:e9:2c:da:fe:e2:db:8b:00:57:c0:bb:2f:61:ce:0c:05: 1c:c4:a6:9e:a7:5a:ca:75:a4:4f:5e:ae:3b:02:bd:6d:ac:82: 97:c2:fd:19:f4:52:6d:7b:66:ac:16:33:9a:5f:ba:21:40:00: 16:3b:52:1b:23:40:17:3a:1e:e0:17:57:d0:ea:aa:b2:28:8c: f4:c4:ad:55:42:ee:a7:59:fa:45:86:ee:b3:27:10:d3:19:17: 4a:27:76:46:93:83:5e:ee:70:8a:0d:d8:54:3c:bd:ae:df:16: ac:a0:2e:19:60:0c:e4:92:f6:23:17:77:22:aa:14:3e:53:1d: 36:f2:a1:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1RTMxMTAvBgNVBAUTKDMwQzA0MDc2MjlCQjRGOUZDRDgxNTQ4OUEzNzhEQzFB MzUzREFGRUMwHhcNMjUwNzE2MTY1NDQyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3ZDk1MS0wZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzZ8iMNHcG3ySAg8SFhtCk5dvjz+QdnGUI+hGdVDiT4V8ZH4IPNOxfONRNMa RGQGXOWE1nXLjAFdpdUaATHp9er2bXDtfrlBu0cHN6qRvsKYtqKJoKXiIgXL0uZz ccZWgewOSju0NrK9RBNJ4sKXCyVu0JkksTpka0tBxaS1QNsaA39qmLpT4gvFutWR I6++Q56RX83ndDsKToGklYJz4yTJNkVfJKZlpFVKOazt7LffQb5DzKaSVzSu2HA+ G58BQZt3zVBOdOZuXBssECWP7CBw7yHWdPEL2SSm1+CL3xJ9AFwJ75rl50poJhR1 wxAAq2QWkNMTthnesBCKbzy9FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGXzr9oj XfBYZ+l73nZz8GQm9TZVMB8GA1UdIwQYMBaAFDDAQHYpu0+fzYFUiaN43Bo1Pa/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVFMy9CNzA5QTVEQTgy MzUxMUU3OERCM0IxMzlDNEY5QUUwMi9NTUJBZGltN1Q1X05nVlNKbzNqY0dqVTly LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01NQkFkaW03VDVfTmdWU0pvM2pjR2pVOXItdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM1RTMvQjcwOUE1REE4MjM1MTFFNzhEQjNCMTM5QzRGOUFFMDIvQUU5MjlEODg4 MjM3MTFFNzgyRjlBNDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnXvYwDQYJKoZIhvcNAQELBQADggEBAD3NoB/BX8hY0u85 ymbPEHdfm6mkmRgIRRtc891hCxlL8HkccD7RpVt2UE1j6QD6+dZhemMPbcmcvgw7 Bmb9IlzrEJ86crBq+Vg0OriWL1azog8rZEjtOtOrTGba+13S9hS3MTOsUj4L6Fc1 ZQJuMdaFIgspZdTNsOsomSLEs5qn6Sza/uLbiwBXwLsvYc4MBRzEpp6nWsp1pE9e rjsCvW2sgpfC/Rn0Um17ZqwWM5pfuiFAABY7UhsjQBc6HuAXV9DqqrIojPTErVVC 7qdZ+kWG7rMnENMZF0ondkaTg17ucIoN2FQ8va7fFqygLhlgDOSS9iMXdyKqFD5T HTbyoSU= -----END CERTIFICATE-----Generated at Sun Aug 24 04:44:15 2025 by rpki-client