$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/CE833D6041CD11F088FC5360C4F9AE02.roa File: CE833D6041CD11F088FC5360C4F9AE02.roa (raw, json) Hash identifier: RTwx+ZXjQ9Oy4qWQVUIKFrKPg4NKSpbv6f+uvarpu+M= Subject key identifier: 8B:A4:7C:DF:6E:57:1D:FE:E8:49:D3:39:1C:3A:2C:AF:AB:E8:43:DE Certificate issuer: /CN=A91E2391/serialNumber=BF9E0D788870911BD574C0ECD4A05C290A09B5FF Certificate serial: 39 Authority key identifier: BF:9E:0D:78:88:70:91:1B:D5:74:C0:EC:D4:A0:5C:29:0A:09:B5:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v54NeIhwkRvVdMDs1KBcKQoJtf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/CE833D6041CD11F088FC5360C4F9AE02.roa Signing time: Mon 15 Sep 2025 08:17:12 +0000 ROA not before: Mon 15 Sep 2025 08:17:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136799 IP address blocks: 103.35.112.0/24 maxlen: 24 103.117.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/v54NeIhwkRvVdMDs1KBcKQoJtf8.crl rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/v54NeIhwkRvVdMDs1KBcKQoJtf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v54NeIhwkRvVdMDs1KBcKQoJtf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2391, serialNumber=BF9E0D788870911BD574C0ECD4A05C290A09B5FF Validity Not Before: Sep 15 08:17:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c7cb87-0cc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b4:33:8a:9d:87:4f:0d:4e:ab:df:77:7d:24: cd:f5:5c:5f:11:1e:96:c4:38:1a:6f:96:8e:12:1b: f5:50:83:7f:30:a6:c7:b2:a9:9b:e0:cc:5f:0f:6f: 6f:b1:4a:80:86:3b:54:69:67:64:d2:ae:a9:cd:1f: 20:34:38:b3:de:a1:cb:ee:0a:3f:f9:97:6f:37:0d: af:85:85:59:2b:b3:4e:02:d4:be:42:5b:9c:7f:f7: f3:8d:9a:3a:e8:7a:29:3a:d4:10:7e:0e:13:73:d9: ca:6e:27:2a:7d:48:84:b7:da:3d:f0:53:1e:a4:23: 87:41:e9:67:8c:0d:a1:3d:08:55:53:ab:9d:7e:73: 3c:30:53:5d:73:a3:6c:fb:25:5c:cc:76:33:d0:f4: d4:6e:ae:e3:bd:b1:07:26:82:c6:e2:15:2f:2f:ff: 25:cf:a4:18:2c:84:ac:45:d3:4e:01:e1:1f:a8:c6: 44:f2:2d:77:f7:66:1c:c7:45:2a:ba:3e:4b:7d:3f: 35:1d:2e:90:22:ce:03:5d:58:52:18:01:1a:ed:5a: dd:c4:67:67:eb:8e:a3:52:10:6e:9e:e8:1d:a9:34: 5d:3a:9b:17:25:87:fd:17:e8:71:62:8c:e1:1d:06: 75:45:df:0f:3d:89:a6:da:3c:51:05:fd:49:fd:f2: 2c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A4:7C:DF:6E:57:1D:FE:E8:49:D3:39:1C:3A:2C:AF:AB:E8:43:DE X509v3 Authority Key Identifier: keyid:BF:9E:0D:78:88:70:91:1B:D5:74:C0:EC:D4:A0:5C:29:0A:09:B5:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/v54NeIhwkRvVdMDs1KBcKQoJtf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v54NeIhwkRvVdMDs1KBcKQoJtf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/CE833D6041CD11F088FC5360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.112.0/24 103.117.104.0/23 Signature Algorithm: sha256WithRSAEncryption 89:06:66:5b:69:d1:2d:d3:fa:32:24:95:eb:e5:05:81:f8:a4: 3d:d1:ae:9e:11:05:8e:89:32:23:96:4a:ed:87:33:e8:a9:3b: d3:50:73:6e:6c:b7:1c:05:d9:0c:a6:07:f0:79:01:5e:b1:25: 3c:ce:78:36:25:52:10:45:f2:bb:38:c8:e2:a7:f9:c2:c3:0f: 82:09:c8:fc:79:b7:1d:af:38:af:09:49:37:7a:83:11:e5:4c: e3:2c:46:86:21:5e:04:5f:59:88:56:94:b8:a9:81:9e:c4:0c: 32:dd:ae:c3:13:49:03:05:14:7e:fd:9d:09:30:3b:31:e7:61: 32:1d:d5:f1:4f:dc:7b:a6:1b:b5:1e:59:f8:72:b1:06:89:b5: 8e:f5:20:9c:52:a9:e4:6b:d1:a0:b0:3d:99:0e:e0:5c:60:5c: 40:91:68:a8:d6:07:b5:fe:38:97:f0:7a:a2:f9:f9:49:74:e5: eb:d7:a9:8d:4e:00:a9:16:33:0f:37:fb:62:8c:31:9c:bc:a4: 13:6f:f7:3b:4f:72:9e:ab:d0:df:b1:77:24:8b:99:22:f4:46: 42:de:e2:10:a5:c9:d6:4a:14:59:5d:69:05:c3:3d:fa:46:39: 55:09:3c:d7:e7:db:ff:34:8a:71:fd:94:d9:17:3b:ad:64:1f: 71:08:ae:7a -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MjM5MTExMC8GA1UEBRMoQkY5RTBENzg4ODcwOTExQkQ1NzRDMEVDRDRBMDVDMjkw QTA5QjVGRjAeFw0yNTA5MTUwODE3MTFaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzdjYjg3LTBjYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDptDOKnYdPDU6r33d9JM31XF8RHpbEOBpvlo4SG/VQg38wpseyqZvgzF8Pb2+x SoCGO1RpZ2TSrqnNHyA0OLPeocvuCj/5l283Da+FhVkrs04C1L5CW5x/9/ONmjro eik61BB+DhNz2cpuJyp9SIS32j3wUx6kI4dB6WeMDaE9CFVTq51+czwwU11zo2z7 JVzMdjPQ9NRuruO9sQcmgsbiFS8v/yXPpBgshKxF004B4R+oxkTyLXf3ZhzHRSq6 Pkt9PzUdLpAizgNdWFIYARrtWt3EZ2frjqNSEG6e6B2pNF06mxclh/0X6HFijOEd BnVF3w89iabaPFEF/Un98ix7AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUi6R8325X Hf7oSdM5HDosr6voQ94wHwYDVR0jBBgwFoAUv54NeIhwkRvVdMDs1KBcKQoJtf8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyMzkxLzYwNzU1MkQ2NDFD RDExRjA5REY2RjM1RUM0RjlBRTAyL3Y1NE5lSWh3a1J2VmRNRHMxS0JjS1FvSnRm OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjU0TmVJaHdrUnZWZE1EczFLQmNLUW9KdGY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjM5MS82MDc1NTJENjQxQ0QxMUYwOURGNkYzNUVDNEY5QUUwMi9DRTgzM0Q2MDQx Q0QxMUYwODhGQzUzNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGcjcAMEAWd1aDANBgkqhkiG9w0BAQsFAAOCAQEAiQZmW2nR LdP6MiSV6+UFgfikPdGunhEFjokyI5ZK7Ycz6Kk701Bzbmy3HAXZDKYH8HkBXrEl PM54NiVSEEXyuzjI4qf5wsMPggnI/Hm3Ha84rwlJN3qDEeVM4yxGhiFeBF9ZiFaU uKmBnsQMMt2uwxNJAwUUfv2dCTA7MedhMh3V8U/ce6YbtR5Z+HKxBom1jvUgnFKp 5GvRoLA9mQ7gXGBcQJFoqNYHtf44l/B6ovn5SXTl69epjU4AqRYzDzf7YowxnLyk E2/3O09ynqvQ37F3JIuZIvRGQt7iEKXJ1koUWV1pBcM9+kY5VQk81+fb/zSKcf2U 2Rc7rWQfcQiueg== -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:22 2025 by rpki-client