$ rpki-client -vvf rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/0EBC5C0E7F3611F090B1EA74C4F9AE02.roa File: 0EBC5C0E7F3611F090B1EA74C4F9AE02.roa (raw, json) Hash identifier: TbV9ax/aopcJVKrc3y0ZYBSXPQbH45FsXlcn6ri4slM= Subject key identifier: 1F:79:45:84:9B:1D:42:F2:A3:EC:9A:F6:27:98:30:1E:32:2E:31:47 Certificate issuer: /CN=A91E54CF/serialNumber=C1BECF97CA95E06DC06E00C239F62CC6942416D1 Certificate serial: 0879 Authority key identifier: C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/0EBC5C0E7F3611F090B1EA74C4F9AE02.roa Signing time: Fri 22 Aug 2025 08:57:40 +0000 ROA not before: Fri 22 Aug 2025 08:57:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9304 IP address blocks: 103.70.224.0/23 maxlen: 24 103.70.226.0/23 maxlen: 24 182.255.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.crl rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E54CF, serialNumber=C1BECF97CA95E06DC06E00C239F62CC6942416D1 Validity Not Before: Aug 22 08:57:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a83104-a997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ed:23:a2:21:73:03:8c:d1:bc:b2:ae:8b:30: 20:f9:30:92:ac:39:c2:ea:14:c8:03:4e:7b:55:f1: 25:32:e9:93:01:0b:12:c5:69:c1:f2:94:b8:00:7e: 88:fb:68:11:45:18:75:d1:c1:d1:1b:d0:e2:8e:ff: 4b:9c:96:23:4a:7d:51:99:a9:ec:2e:9a:1b:2b:36: cf:78:89:b3:a1:67:13:39:71:01:c3:bf:01:12:16: d4:00:8b:1e:89:66:80:f4:5f:3f:af:ad:36:21:4c: 73:97:ce:09:43:f7:ce:a0:63:de:7e:3f:06:34:67: 0a:4e:58:31:4f:46:67:23:37:26:d5:35:3a:d5:e1: 54:0a:06:03:dd:91:e3:a0:fb:74:9d:1e:c4:e8:0e: 67:af:24:07:be:60:c9:d1:6e:0d:d8:76:b5:0b:39: a6:96:a6:d5:83:8f:a2:37:6b:1f:c2:ad:7a:b5:02: 60:fb:ec:d2:f8:da:19:5b:46:25:2e:ef:da:83:35: 3e:f5:63:b8:d2:6d:6a:12:9b:e2:ff:46:bd:84:d5: 8b:fb:23:56:c4:45:ba:4c:27:75:3c:86:e8:c4:65: a0:1b:fc:19:50:01:79:79:d9:fe:b8:4d:40:0f:46: ea:5c:0f:92:2e:d1:58:22:ef:f2:58:60:e4:7f:da: de:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:79:45:84:9B:1D:42:F2:A3:EC:9A:F6:27:98:30:1E:32:2E:31:47 X509v3 Authority Key Identifier: keyid:C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/0EBC5C0E7F3611F090B1EA74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.224.0/22 182.255.62.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:b3:e3:16:bb:c2:7b:f0:99:ec:10:94:53:6d:2d:0b:57:4b: f0:5a:ee:cf:f8:e3:32:37:c7:c7:ba:12:c3:bb:ac:d5:3e:11: 00:58:57:d6:c9:25:01:e4:3a:a6:7f:ec:1e:a8:78:44:ab:98: 39:e9:e1:9b:c8:aa:ca:2f:41:6c:31:94:3c:9a:42:d9:90:4c: 20:a4:8a:27:75:11:20:4c:eb:54:b0:8a:aa:13:56:74:14:aa: 75:54:c4:6c:01:e2:c1:14:7d:b0:3d:58:96:78:14:5a:11:10: a7:67:ce:4d:7d:ac:3c:9f:aa:ea:7b:84:45:3c:30:ad:12:ea: 94:80:49:a4:ac:cf:88:df:a7:e1:60:34:e2:92:26:7d:8c:89: c7:c4:51:da:e8:1a:98:76:18:71:7c:67:88:fc:ad:bd:d4:e0: 42:4d:5c:ab:aa:bd:c2:38:25:74:db:8b:55:1f:1c:09:a7:7e: 17:e8:0d:d5:d9:52:e2:3c:2f:89:9c:b7:21:ce:d1:e5:07:a9: c4:83:b2:24:20:d6:99:7c:ba:0e:7b:8a:02:ec:45:77:7e:23: 13:fa:2f:cd:0c:7c:81:cd:f0:95:ff:be:c4:e9:f8:49:90:d1: 46:d4:b5:ad:b0:6c:f4:d5:d8:25:99:0f:99:da:6e:96:f7:6e: 4c:e0:75:90 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0Q0YxMTAvBgNVBAUTKEMxQkVDRjk3Q0E5NUUwNkRDMDZFMDBDMjM5RjYyQ0M2 OTQyNDE2RDEwHhcNMjUwODIyMDg1NzQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4MzEwNC1hOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3e0joiFzA4zRvLKuizAg+TCSrDnC6hTIA057VfElMumTAQsSxWnB8pS4AH6I +2gRRRh10cHRG9Dijv9LnJYjSn1RmansLpobKzbPeImzoWcTOXEBw78BEhbUAIse iWaA9F8/r602IUxzl84JQ/fOoGPefj8GNGcKTlgxT0ZnIzcm1TU61eFUCgYD3ZHj oPt0nR7E6A5nryQHvmDJ0W4N2Ha1CzmmlqbVg4+iN2sfwq16tQJg++zS+NoZW0Yl Lu/agzU+9WO40m1qEpvi/0a9hNWL+yNWxEW6TCd1PIboxGWgG/wZUAF5edn+uE1A D0bqXA+SLtFYIu/yWGDkf9reeQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB95RYSb HULyo+ya9ieYMB4yLjFHMB8GA1UdIwQYMBaAFMG+z5fKleBtwG4Awjn2LMaUJBbR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTRDRi9EOEYzQUNBQ0ND OEYxMUVBQkMxRjE0NDJDNEY5QUUwMi93YjdQbDhxVjRHM0FiZ0RDT2ZZc3hwUWtG dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3diN1BsOHFWNEczQWJnRENPZllzeHBRa0Z0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU0Q0YvRDhGM0FDQUNDQzhGMTFFQUJDMUYxNDQyQzRGOUFFMDIvMEVCQzVDMEU3 RjM2MTFGMDkwQjFFQTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRuADBAG2/z4wDQYJKoZIhvcNAQELBQADggEBAA+z4xa7 wnvwmewQlFNtLQtXS/Ba7s/44zI3x8e6EsO7rNU+EQBYV9bJJQHkOqZ/7B6oeESr mDnp4ZvIqsovQWwxlDyaQtmQTCCkiid1ESBM61SwiqoTVnQUqnVUxGwB4sEUfbA9 WJZ4FFoREKdnzk19rDyfqup7hEU8MK0S6pSASaSsz4jfp+FgNOKSJn2MicfEUdro Gph2GHF8Z4j8rb3U4EJNXKuqvcI4JXTbi1UfHAmnfhfoDdXZUuI8L4mctyHO0eUH qcSDsiQg1pl8ug57igLsRXd+IxP6L80MfIHN8JX/vsTp+EmQ0UbUta2wbPTV2CWZ D5nabpb3bkzgdZA= -----END CERTIFICATE-----Generated at Sat Aug 23 17:16:14 2025 by rpki-client