$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0CEDBB72922111F0A04C537CC4F9AE02.roa File: 0CEDBB72922111F0A04C537CC4F9AE02.roa (raw, json) Hash identifier: +CMNP1rhV8qQ/P5stKeQY8U5uVo3wO4tgKafdASh43w= Subject key identifier: 60:3A:62:F2:BD:AB:F9:89:EB:96:E2:47:72:15:BB:AD:0E:D1:08:71 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 29BE Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0CEDBB72922111F0A04C537CC4F9AE02.roa Signing time: Tue 16 Sep 2025 11:15:59 +0000 ROA not before: Tue 16 Sep 2025 11:15:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55453 IP address blocks: 103.151.26.0/24 maxlen: 24 113.203.242.0/24 maxlen: 24 113.203.243.0/24 maxlen: 24 202.92.22.0/24 maxlen: 24 223.29.225.0/24 maxlen: 24 223.29.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10686 (0x29be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Sep 16 11:15:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68c946ee-cc9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c9:ea:c6:b5:97:c4:57:21:4b:c9:35:f7:11: 60:4c:38:58:94:d0:17:f5:89:62:b9:66:0f:44:02: f1:48:94:1c:55:c0:1a:ad:10:ec:b3:94:7d:cb:62: 74:cc:01:df:bf:7b:82:d7:c6:b6:fd:39:b4:e3:9c: cd:d6:a1:35:66:75:f6:aa:98:14:b7:2a:8a:f1:54: af:f6:5b:91:0c:0c:f0:bb:e7:bd:d7:13:d5:db:bc: 2d:90:d0:fc:d8:0e:bb:b1:d6:7a:76:3b:84:3a:e7: 87:e4:35:c9:3e:3a:c8:19:44:ae:6a:e8:ca:59:1d: 4b:24:cb:be:49:cf:65:39:a2:4a:8b:67:cb:09:5b: 87:14:bb:96:6b:82:69:5e:9b:13:f2:14:47:99:22: fc:f5:e7:dd:46:3f:83:42:9e:45:72:7f:41:d0:e5: 0b:37:2d:23:15:b0:cc:fd:28:4a:f7:cf:32:b5:52: cd:94:1e:21:d9:33:76:52:f6:0c:6f:46:9c:12:cc: 11:f0:17:95:cc:c9:c5:52:23:d8:ff:9a:b2:f0:a4: a5:49:2b:e9:12:e4:0d:d3:c1:68:f7:3e:a3:0e:11: cb:9f:c0:45:f4:ce:8c:c1:61:73:cf:31:b1:18:ed: eb:77:31:8d:8c:0c:cf:e2:d0:9e:ea:a9:cf:f8:33: 90:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:3A:62:F2:BD:AB:F9:89:EB:96:E2:47:72:15:BB:AD:0E:D1:08:71 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0CEDBB72922111F0A04C537CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.26.0/24 113.203.242.0/23 202.92.22.0/24 223.29.225.0/24 223.29.235.0/24 Signature Algorithm: sha256WithRSAEncryption 80:80:8c:93:6e:03:32:4c:81:dc:5d:ae:bf:09:23:40:17:db: c5:52:5e:0f:2e:d8:a6:d5:43:3f:f3:1d:fd:2d:54:fb:25:b6: 25:e0:be:e8:e8:bf:29:d0:ab:0a:33:c2:65:3a:80:5a:dc:8a: ca:99:6d:fa:5c:5c:11:83:6c:cf:f7:2b:97:64:dd:d3:bf:54: 4c:b7:bc:e8:22:d4:6a:b5:b8:5f:8f:ee:b4:c4:2c:77:50:04: 8c:34:b1:a3:25:b2:fb:9c:57:71:0e:d2:f0:c3:99:2d:38:87: 40:be:88:6b:4d:ab:64:2b:c9:f6:f1:7d:90:c0:c7:ad:78:9c: 0d:cd:78:fb:09:04:a8:fe:e3:04:f6:11:60:ad:da:b7:c7:78: 89:d8:bb:5d:fb:ee:5e:d3:f1:ad:d5:4a:c9:30:aa:69:69:02: 89:7e:85:cc:0a:2e:ab:71:f5:b9:6a:6b:65:c7:1c:1f:84:f6: 6a:e9:af:86:66:80:8f:cf:b9:72:da:40:7c:95:f3:07:69:38: 15:56:17:cf:30:fe:d6:e2:dd:98:7f:11:bb:c1:f8:b3:c7:7d: 87:a9:34:3e:3e:83:6d:71:30:f7:c6:b4:4a:46:79:bf:d0:f3: 78:18:6e:69:ef:83:19:e0:78:2e:dc:c2:4b:b5:48:56:6d:0a: 98:1f:4d:aa -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICKb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwOTE2MTExNTU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5NDZlZS1jYzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8nqxrWXxFchS8k19xFgTDhYlNAX9YliuWYPRALxSJQcVcAarRDss5R9y2J0 zAHfv3uC18a2/Tm045zN1qE1ZnX2qpgUtyqK8VSv9luRDAzwu+e91xPV27wtkND8 2A67sdZ6djuEOueH5DXJPjrIGUSuaujKWR1LJMu+Sc9lOaJKi2fLCVuHFLuWa4Jp XpsT8hRHmSL89efdRj+DQp5Fcn9B0OULNy0jFbDM/ShK988ytVLNlB4h2TN2UvYM b0acEswR8BeVzMnFUiPY/5qy8KSlSSvpEuQN08Fo9z6jDhHLn8BF9M6MwWFzzzGx GO3rdzGNjAzP4tCe6qnP+DOQKwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFGA6YvK9 q/mJ65biR3IVu60O0QhxMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMENFREJCNzI5 MjIxMTFGMEEwNEM1MzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBABnlxoDBAFxy/IDBADKXBYDBADfHeEDBADfHeswDQYJKoZI hvcNAQELBQADggEBAICAjJNuAzJMgdxdrr8JI0AX28VSXg8u2KbVQz/zHf0tVPsl tiXgvujovynQqwozwmU6gFrcisqZbfpcXBGDbM/3K5dk3dO/VEy3vOgi1Gq1uF+P 7rTELHdQBIw0saMlsvucV3EO0vDDmS04h0C+iGtNq2QryfbxfZDAx614nA3NePsJ BKj+4wT2EWCt2rfHeInYu1377l7T8a3VSskwqmlpAol+hcwKLqtx9blqa2XHHB+E 9mrpr4ZmgI/PuXLaQHyV8wdpOBVWF88w/tbi3Zh/EbvB+LPHfYepND4+g21xMPfG tEpGeb/Q83gYbmnvgxngeC7cwku1SFZtCpgfTao= -----END CERTIFICATE-----Generated at Sun Oct 19 22:25:23 2025 by rpki-client