$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/F5AA194CB2C911EF91AE9209C4F9AE02.roa File: F5AA194CB2C911EF91AE9209C4F9AE02.roa (raw, json) Hash identifier: JgtSSjMUVF5aYkq/I11EUTsQN2v/Rr6UwtvaYKzNVvk= Subject key identifier: E3:AC:97:70:E0:0F:C8:F1:CB:5A:15:D8:08:DE:F1:FC:C6:43:30:DB Certificate issuer: /CN=A91EE099/serialNumber=F9AA636B5C3E30C7A0BA9743015B5B12104CB7A8 Certificate serial: 0198 Authority key identifier: F9:AA:63:6B:5C:3E:30:C7:A0:BA:97:43:01:5B:5B:12:10:4C:B7:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/F5AA194CB2C911EF91AE9209C4F9AE02.roa Signing time: Sat 23 Aug 2025 04:09:10 +0000 ROA not before: Sat 23 Aug 2025 04:09:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 13378 IP address blocks: 103.245.24.0/23 maxlen: 24 2001:df2:c240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.crl rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE099, serialNumber=F9AA636B5C3E30C7A0BA9743015B5B12104CB7A8 Validity Not Before: Aug 23 04:09:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a93ee5-975a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:43:c3:8e:5e:98:11:6c:31:02:49:79:66:1a: 4f:7b:14:b5:52:eb:4d:66:14:3b:8c:44:8c:72:e8: 98:e7:c3:48:e6:39:cb:e6:bd:cb:d7:48:2f:c8:a9: e3:a2:26:d2:af:a3:ed:6b:da:01:eb:1a:9e:31:8c: 1e:6d:88:95:68:0f:2e:63:b1:98:d2:86:d7:d5:bc: 9c:de:e7:62:d1:b2:0c:ff:68:a8:e0:3f:d9:80:cb: 4c:80:45:1b:a9:e2:6f:90:86:a8:4c:6d:e3:44:49: 6a:ba:f9:2e:24:fa:c1:1b:fc:6d:0d:c2:38:b5:a0: cb:db:25:80:50:1f:34:99:24:29:0d:95:77:43:e0: 3d:23:cd:08:7a:82:25:6a:40:de:b6:1e:42:30:7c: 4d:3a:01:c2:91:bd:31:e1:47:d0:24:f9:c5:f8:f2: 21:d8:aa:99:c5:ee:94:5f:0a:10:7c:54:d2:94:e8: 8d:8c:1d:29:2b:97:ec:ec:51:15:76:c4:b6:0b:04: 1c:2e:f6:91:4f:39:79:4d:7e:34:bc:85:4c:a6:b2: 48:75:b9:f4:92:ab:4f:c8:28:1a:e2:a3:84:62:d3: 35:9c:d1:58:29:f2:d0:1f:72:5f:d3:64:f4:86:49: 0c:ef:1e:c8:d3:d3:cc:00:98:df:47:49:93:99:62: 1f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AC:97:70:E0:0F:C8:F1:CB:5A:15:D8:08:DE:F1:FC:C6:43:30:DB X509v3 Authority Key Identifier: keyid:F9:AA:63:6B:5C:3E:30:C7:A0:BA:97:43:01:5B:5B:12:10:4C:B7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/F5AA194CB2C911EF91AE9209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.24.0/23 IPv6: 2001:df2:c240::/48 Signature Algorithm: sha256WithRSAEncryption 15:c8:ef:d6:95:93:ed:8e:fd:9e:30:6f:54:1e:80:25:c2:35: cc:6b:4c:d6:fe:08:dc:9b:c2:73:81:a3:7a:40:89:91:30:e3: d2:10:b6:b7:82:44:00:79:cd:57:18:cc:7a:2f:3d:89:44:b0: 0e:d0:d3:9c:51:c3:5e:d1:89:5f:89:e5:7d:ba:3e:a5:8c:2c: f0:28:23:b1:90:0d:4d:6d:0d:4b:92:ea:33:c9:25:a9:19:fa: 66:5f:e9:97:66:b8:1f:a0:da:ce:7c:df:e8:e9:98:da:18:cd: cc:ec:1c:9f:7b:95:b8:74:be:4b:97:7c:25:5c:3e:9f:95:f7: 5b:40:50:ba:b8:f3:fb:10:a5:17:5b:81:9c:f3:e5:23:ff:f8: 9f:f9:cf:36:92:a0:12:6e:58:07:72:47:cb:6f:a2:2b:db:d5: 24:92:51:f5:c5:69:01:8a:a6:9b:e7:5f:c3:3a:8e:49:49:f7: 20:2c:b9:e8:7e:1c:d7:f5:3b:f2:5c:7e:90:e0:ca:74:44:0c: c4:ad:ff:87:1b:24:3d:48:b3:0c:50:01:f5:90:4e:07:b2:19: 4e:6c:8e:2c:36:c6:c5:d1:a5:b3:7a:2d:e2:e2:0d:f8:a9:60: 4c:c8:b7:69:06:4d:60:74:bc:4b:b5:fa:c7:72:0a:0d:7b:e4: 2d:e9:c8:c2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwOTkxMTAvBgNVBAUTKEY5QUE2MzZCNUMzRTMwQzdBMEJBOTc0MzAxNUI1QjEy MTA0Q0I3QTgwHhcNMjUwODIzMDQwOTEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5M2VlNS05NzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokPDjl6YEWwxAkl5ZhpPexS1UutNZhQ7jESMcuiY58NI5jnL5r3L10gvyKnj oibSr6Pta9oB6xqeMYwebYiVaA8uY7GY0obX1byc3udi0bIM/2io4D/ZgMtMgEUb qeJvkIaoTG3jRElquvkuJPrBG/xtDcI4taDL2yWAUB80mSQpDZV3Q+A9I80IeoIl akDeth5CMHxNOgHCkb0x4UfQJPnF+PIh2KqZxe6UXwoQfFTSlOiNjB0pK5fs7FEV dsS2CwQcLvaRTzl5TX40vIVMprJIdbn0kqtPyCga4qOEYtM1nNFYKfLQH3Jf02T0 hkkM7x7I09PMAJjfR0mTmWIf8wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOOsl3Dg D8jxy1oV2Aje8fzGQzDbMB8GA1UdIwQYMBaAFPmqY2tcPjDHoLqXQwFbWxIQTLeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTA5OS8wMjIxRDdDRTJG NjcxMUVFODI0QURDNTlDNEY5QUUwMi8tYXBqYTF3LU1NZWd1cGREQVZ0YkVoQk10 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1hcGphMXctTU1lZ3VwZERBVnRiRWhCTXQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwOTkvMDIyMUQ3Q0UyRjY3MTFFRTgyNEFEQzU5QzRGOUFFMDIvRjVBQTE5NENC MkM5MTFFRjkxQUU5MjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn9RgwDwQCAAIwCQMHACABDfLCQDANBgkqhkiG9w0BAQsF AAOCAQEAFcjv1pWT7Y79njBvVB6AJcI1zGtM1v4I3JvCc4GjekCJkTDj0hC2t4JE AHnNVxjMei89iUSwDtDTnFHDXtGJX4nlfbo+pYws8CgjsZANTW0NS5LqM8klqRn6 Zl/pl2a4H6Daznzf6OmY2hjNzOwcn3uVuHS+S5d8JVw+n5X3W0BQurjz+xClF1uB nPPlI//4n/nPNpKgEm5YB3JHy2+iK9vVJJJR9cVpAYqmm+dfwzqOSUn3ICy56H4c 1/U78lx+kODKdEQMxK3/hxskPUizDFAB9ZBOB7IZTmyOLDbGxdGls3ot4uIN+Klg TMi3aQZNYHS8S7X6x3IKDXvkLenIwg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:15:14 2025 by rpki-client