$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa File: 5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa (raw, json) Hash identifier: Ds7R3+sBBZEG01JWJaEnAvs9QgVWz9hGRIlkayRqHKg= Subject key identifier: 05:FF:2F:33:7F:DD:48:03:0F:BC:5D:C6:5C:64:2C:59:FC:C4:B3:FF Certificate issuer: /CN=A91EE8AC/serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Certificate serial: 0111 Authority key identifier: BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa Signing time: Thu 21 Aug 2025 02:40:29 +0000 ROA not before: Thu 21 Aug 2025 02:40:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140607 IP address blocks: 103.189.194.0/24 maxlen: 24 103.189.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Validity Not Before: Aug 21 02:40:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a6871d-846e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:30:1a:24:77:30:3c:60:f7:51:f3:ec:90:ac: ab:b3:0b:d2:6e:31:06:4e:74:55:8d:20:63:63:b3: 43:51:ef:49:b6:26:83:cb:3f:aa:52:42:ec:c3:32: 3c:f2:6f:73:5f:10:70:5e:6d:ed:08:98:4e:e1:46: 0c:19:c1:55:6b:19:16:fd:f0:a2:ef:3c:5e:ac:70: e2:8b:cb:5c:6a:20:a5:2e:5b:48:0d:9c:ed:cc:c3: b0:2e:b2:f0:9c:76:63:14:29:65:c2:24:c3:87:ee: 1a:5d:e6:c1:ef:7e:8c:4c:06:1d:95:74:3b:06:41: 3b:5d:46:91:06:62:e2:3a:df:39:93:4d:1c:d1:c8: 7a:d8:aa:56:67:da:bc:c5:57:20:d4:7c:76:1a:0d: a8:ca:52:c4:34:5c:52:1a:fd:0f:43:67:25:5d:cd: a0:77:6b:e4:e5:0b:dc:69:0b:70:d7:ea:b1:22:d6: 1c:ba:ff:fe:c9:5c:cd:39:44:7d:34:73:68:e0:13: e3:5f:cf:56:56:c5:dd:ed:07:9b:0e:11:8c:af:0e: db:e6:a4:1d:b6:e0:ea:d4:f0:8d:87:52:78:f1:c0: a9:9b:63:61:cd:c3:e0:4e:e8:40:80:84:37:4b:53: 41:cb:a3:e5:1f:6b:59:d4:b7:08:b4:9a:38:eb:3b: 5b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FF:2F:33:7F:DD:48:03:0F:BC:5D:C6:5C:64:2C:59:FC:C4:B3:FF X509v3 Authority Key Identifier: keyid:BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.194.0/23 Signature Algorithm: sha256WithRSAEncryption 60:e5:94:71:23:48:ff:4e:d5:bb:52:5a:d8:9b:18:8b:8a:c9: 2a:34:6f:ec:49:d9:1f:6c:9e:da:46:f4:03:4b:6d:e4:d9:42: 98:81:2f:77:89:9d:1b:86:2a:cb:dd:4f:1d:e3:06:f1:fe:c9: 3a:90:9a:98:ff:5d:8a:02:a5:05:e4:d2:fc:20:25:e8:39:8c: 46:27:5e:53:82:dd:32:09:ec:c9:9a:dc:43:16:5c:24:69:63: 9b:61:e1:bf:d9:3e:a0:82:3a:2c:c1:e7:ba:96:5e:3a:c9:69: 4b:27:f7:68:de:f5:fd:bc:cc:81:f7:5d:02:3a:20:45:bc:8a: 3b:74:2f:16:50:8d:af:76:56:8e:b7:80:52:97:e9:2b:5f:32: 14:7e:d5:ca:6c:7d:7a:7b:0d:aa:41:6f:64:3f:cd:53:28:f6: 8e:f6:a3:c8:d5:c9:0e:63:cf:c0:d2:6d:96:4c:30:89:5d:c9: 8b:70:5d:e5:4b:51:34:04:d3:3b:67:69:f3:b4:0b:bd:58:49: 00:4f:5e:4f:6d:0a:3e:7b:19:9a:7f:14:5e:1f:53:8c:f5:c2: 0e:e4:0d:b2:f4:f7:f1:08:cf:95:3f:32:a8:98:e0:0c:c7:97: ea:13:19:03:52:d6:cb:e2:55:2e:17:36:9c:a0:50:75:77:8c: e9:bc:41:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKEJFRjMyMUIwM0Q4MjQ1REU3N0VDODBERDAzMzFCRkJB OEQwODU5RDgwHhcNMjUwODIxMDI0MDI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2ODcxZC04NDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTAaJHcwPGD3UfPskKyrswvSbjEGTnRVjSBjY7NDUe9JtiaDyz+qUkLswzI8 8m9zXxBwXm3tCJhO4UYMGcFVaxkW/fCi7zxerHDii8tcaiClLltIDZztzMOwLrLw nHZjFCllwiTDh+4aXebB736MTAYdlXQ7BkE7XUaRBmLiOt85k00c0ch62KpWZ9q8 xVcg1Hx2Gg2oylLENFxSGv0PQ2clXc2gd2vk5QvcaQtw1+qxItYcuv/+yVzNOUR9 NHNo4BPjX89WVsXd7QebDhGMrw7b5qQdtuDq1PCNh1J48cCpm2NhzcPgTuhAgIQ3 S1NBy6PlH2tZ1LcItJo46ztblwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAX/LzN/ 3UgDD7xdxlxkLFn8xLP/MB8GA1UdIwQYMBaAFL7zIbA9gkXed+yA3QMxv7qNCFnY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1JkNTM3SURkQXpHX3VvMElX ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z2TWhzRDJDUmQ1MzdJRGRBekdfdW8wSVdkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUU4QUMvNTAzOEVDOEM3REVCMTFFREE3Q0E0QTdFQzRGOUFFMDIvNUYzQzBGMjZF QUVGMTFFRThDQ0RCMzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvcIwDQYJKoZIhvcNAQELBQADggEBAGDllHEjSP9O1btS WtibGIuKySo0b+xJ2R9sntpG9ANLbeTZQpiBL3eJnRuGKsvdTx3jBvH+yTqQmpj/ XYoCpQXk0vwgJeg5jEYnXlOC3TIJ7Mma3EMWXCRpY5th4b/ZPqCCOizB57qWXjrJ aUsn92je9f28zIH3XQI6IEW8ijt0LxZQja92Vo63gFKX6StfMhR+1cpsfXp7DapB b2Q/zVMo9o72o8jVyQ5jz8DSbZZMMIldyYtwXeVLUTQE0ztnafO0C71YSQBPXk9t Cj57GZp/FF4fU4z1wg7kDbL09/EIz5U/MqiY4AzHl+oTGQNS1sviVS4XNpygUHV3 jOm8QWI= -----END CERTIFICATE-----Generated at Sun Aug 24 00:32:43 2025 by rpki-client