$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa File: 350711FA881211EE9710F928C4F9AE02.roa (raw, json) Hash identifier: qIQKdkJiQ6vR/a23UDA9XAzbB7yWjWrazranQiTao60= Subject key identifier: 29:F9:D9:32:AA:7D:B0:53:CE:26:4D:CB:2A:75:20:EB:7A:38:F7:45 Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Certificate serial: 0E83 Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa Signing time: Sat 30 Aug 2025 18:08:28 +0000 ROA not before: Sat 30 Aug 2025 18:08:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24433 IP address blocks: 203.15.122.0/24 maxlen: 24 203.27.220.0/23 maxlen: 24 2405:140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3715 (0xe83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Validity Not Before: Aug 30 18:08:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b33e1c-62f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9d:e5:8c:4e:59:21:c3:9c:fb:1a:f1:0b:0f: 0a:82:8e:46:5d:b3:67:ce:d1:84:53:ea:b9:9c:04: c1:2b:cc:ab:c6:af:28:bc:9e:7d:cb:c4:1c:b8:ed: e2:66:c3:67:eb:41:01:8a:ac:65:c4:cc:1b:fe:26: 0d:a3:fc:60:c2:ad:28:5f:7f:58:8a:26:4c:ff:47: 7e:0b:2a:39:b6:65:3d:fe:34:ae:93:66:f6:a2:85: 8a:2b:4c:fa:60:55:a1:4c:87:07:ab:2e:3a:2f:46: 1b:3a:f6:c0:93:62:ce:e2:31:ba:67:b0:c6:bd:b0: ef:ef:a6:87:c5:11:95:f0:8b:3b:86:b7:67:c5:50: 35:65:15:23:53:46:ba:0a:6b:89:9b:71:32:29:ec: c2:39:2e:20:0e:fa:d0:8e:9d:f3:01:5c:5b:da:56: f4:35:5c:01:8b:1d:f8:e4:29:24:7e:17:eb:c5:46: 34:7a:c4:90:da:b8:ed:1f:9a:cc:38:b1:b0:74:f4: b6:43:9d:82:94:c9:46:99:e1:26:bd:a3:e6:15:3a: e7:50:32:ec:71:09:5c:87:97:d6:1b:66:54:46:21: bc:33:36:d2:00:18:ab:df:cd:e8:27:83:18:6b:cc: 4b:eb:13:88:6b:ee:0c:23:84:bf:df:47:e9:a1:39: e9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F9:D9:32:AA:7D:B0:53:CE:26:4D:CB:2A:75:20:EB:7A:38:F7:45 X509v3 Authority Key Identifier: keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.15.122.0/24 203.27.220.0/23 IPv6: 2405:140::/32 Signature Algorithm: sha256WithRSAEncryption 47:d9:31:aa:9f:ae:d1:cb:dd:ff:46:94:d2:8c:d9:b0:74:f3: 1c:45:d2:20:70:81:05:75:c4:3c:9e:61:50:cf:12:e1:51:3e: 54:4d:6b:a8:30:0d:4e:cb:f2:ce:30:cd:2d:ff:33:69:59:2c: 3b:73:e2:f0:d3:ab:b3:f9:19:0f:00:8f:3f:3c:6c:5c:26:e2: 55:c4:8d:ad:ae:45:62:4b:d0:5f:da:76:d7:77:82:ea:9c:19: b6:66:2c:a4:dd:8e:07:bb:2b:41:6a:ad:80:97:85:46:fc:fc: f8:a5:55:ce:41:63:2b:12:58:0c:11:04:ea:2e:36:ee:92:43: ce:2c:9f:22:c8:29:34:22:5d:a5:ca:ae:3d:8f:fe:28:3e:02: 94:6b:8f:48:62:0a:ae:44:0f:dd:c0:9f:e2:83:48:a1:82:fc: ef:43:d3:d0:04:b4:38:13:07:64:e7:98:7d:f5:e6:db:23:bc: 8b:98:06:07:7d:ee:07:aa:59:b4:46:b1:3d:4b:20:10:6a:cc: e8:df:16:79:4b:4a:e7:a2:d0:7d:7c:f2:db:35:fc:e0:a9:90: d1:b1:d3:70:84:1c:c5:4c:84:2b:65:81:b5:bb:18:0b:03:a5: 04:ef:18:90:11:8e:66:6f:4f:df:5d:ec:88:a1:40:c0:ff:95: 8a:61:7b:95 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDUzODI2NDJFQkQ3OTlBMEY4Mjg2RDA2NTQ4MjlFRDc2 ODQzMEY5RTQwHhcNMjUwODMwMTgwODI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzM2UxYy02MmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4J3ljE5ZIcOc+xrxCw8Kgo5GXbNnztGEU+q5nATBK8yrxq8ovJ59y8QcuO3i ZsNn60EBiqxlxMwb/iYNo/xgwq0oX39YiiZM/0d+Cyo5tmU9/jSuk2b2ooWKK0z6 YFWhTIcHqy46L0YbOvbAk2LO4jG6Z7DGvbDv76aHxRGV8Is7hrdnxVA1ZRUjU0a6 CmuJm3EyKezCOS4gDvrQjp3zAVxb2lb0NVwBix345CkkfhfrxUY0esSQ2rjtH5rM OLGwdPS2Q52ClMlGmeEmvaPmFTrnUDLscQlch5fWG2ZURiG8MzbSABir383oJ4MY a8xL6xOIa+4MI4S/30fpoTnpgQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCn52TKq fbBTziZNyyp1IOt6OPdFMB8GA1UdIwQYMBaAFFOCZC69eZoPgobQZUgp7XaEMPnk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yQ0Q0NUZCQTlF MjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1nLUNodEJsU0NudGRvUXct ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0SmtMcjE1bWctQ2h0QmxTQ250ZG9Rdy1lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4NTYvMkNENDVGQkE5RTI0MTFFOUIxNDNCRTcxQzRGOUFFMDIvMzUwNzExRkE4 ODEyMTFFRTk3MTBGOTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBADLD3oDBAHLG9wwDQQCAAIwBwMFACQFAUAwDQYJKoZIhvcN AQELBQADggEBAEfZMaqfrtHL3f9GlNKM2bB08xxF0iBwgQV1xDyeYVDPEuFRPlRN a6gwDU7L8s4wzS3/M2lZLDtz4vDTq7P5GQ8Ajz88bFwm4lXEja2uRWJL0F/adtd3 guqcGbZmLKTdjge7K0FqrYCXhUb8/PilVc5BYysSWAwRBOouNu6SQ84snyLIKTQi XaXKrj2P/ig+ApRrj0hiCq5ED93An+KDSKGC/O9D09AEtDgTB2TnmH315tsjvIuY Bgd97geqWbRGsT1LIBBqzOjfFnlLSuei0H188ts1/OCpkNGx03CEHMVMhCtlgbW7 GAsDpQTvGJARjmZvT99d7IihQMD/lYphe5U= -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:47 2025 by rpki-client