$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/A5FE56B2596B11F0AF4BB31EC4F9AE02.roa File: A5FE56B2596B11F0AF4BB31EC4F9AE02.roa (raw, json) Hash identifier: zMHgm7bt75/SBr1Sd5c0nMj65bhLa3dcrx/80ou+gP8= Subject key identifier: 29:98:8D:5F:BC:77:D6:BC:90:92:31:57:27:9B:F8:0A:41:4D:82:E0 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0B51 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/A5FE56B2596B11F0AF4BB31EC4F9AE02.roa Signing time: Sat 05 Jul 2025 06:45:33 +0000 ROA not before: Sat 05 Jul 2025 06:45:33 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 401783 IP address blocks: 103.249.184.0/24 maxlen: 24 103.249.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2897 (0xb51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Jul 5 06:45:33 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6868ca0d-b112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:84:44:fc:67:89:e4:73:00:6f:a1:55:45:6e: b7:df:1c:0d:b0:14:a5:96:f6:d0:fc:97:48:0b:29: 77:d0:b6:be:74:bb:6d:b4:1d:c6:d5:17:4d:f7:96: 6e:88:f7:08:51:27:25:29:94:1d:e4:25:aa:03:ab: 38:cb:5c:03:00:5a:be:36:b2:15:86:0d:24:4e:e0: 6b:0a:9d:83:d3:93:0d:53:83:c0:f0:aa:f6:86:b2: c8:49:26:71:76:29:5c:36:a8:47:97:d8:07:a8:b5: 94:59:b6:b4:c4:95:4b:34:f1:e1:88:2d:aa:fc:51: a1:18:ae:19:56:75:72:be:af:6e:5d:ab:a7:e4:aa: 28:3d:d7:6d:fa:b2:18:c9:ef:26:1c:75:c2:38:6f: a4:b8:3a:ea:19:41:92:03:9d:b0:cb:fb:db:f9:13: 2e:22:e0:4f:5c:79:ae:4f:08:3e:28:d7:ea:df:f2: 38:f9:09:48:5d:6d:36:f2:fa:41:4c:0b:f7:80:77: b3:3b:0b:6e:9f:36:42:a6:09:c4:e8:27:9f:aa:b7: a8:17:d2:8e:cd:af:75:45:85:9f:24:22:c1:ef:ac: ac:6f:46:af:94:9e:4e:93:6a:ff:88:a4:17:0a:7e: f0:76:4a:9c:ae:2b:75:5f:a4:2e:85:ed:8b:fe:af: 86:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:98:8D:5F:BC:77:D6:BC:90:92:31:57:27:9B:F8:0A:41:4D:82:E0 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/A5FE56B2596B11F0AF4BB31EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.184.0/23 Signature Algorithm: sha256WithRSAEncryption 99:e8:85:98:17:ba:2f:3e:8b:4f:1f:68:d7:03:7f:ab:50:48: 25:04:4b:50:2e:46:6a:3e:cf:61:7c:60:ce:db:d0:59:96:31: 11:85:20:35:ba:0b:4d:ac:27:82:73:ad:cf:97:0a:83:20:0c: c8:5a:47:bb:92:1a:80:81:ae:c2:5d:b0:68:89:6e:49:d1:99: 58:54:5d:56:fb:8b:1e:ad:b8:30:cc:a3:ab:2f:ee:18:8a:86: 7c:43:d4:1c:12:c2:64:8c:d7:f7:44:07:73:ce:02:f3:74:02: 0a:6d:1b:e8:7f:42:44:3d:d2:28:77:4e:90:65:99:5a:6c:1e: b7:1f:d5:3d:5c:04:38:5e:d1:71:69:8a:da:fc:a5:d9:92:10: e5:4a:d7:f4:6a:2a:32:e2:4d:c4:0f:86:42:b8:34:52:59:6c: d2:62:cd:66:73:e9:1d:af:fc:c2:d5:3c:55:88:ef:d6:85:b4: aa:93:82:55:e8:94:44:b3:15:15:7f:26:ff:83:25:0a:3f:19: ed:da:31:d9:15:18:b0:bc:fd:47:63:4c:79:d2:7a:cd:a2:f1: c4:bf:a9:ad:81:21:bc:5d:80:5e:6e:79:f7:3e:e7:78:b4:2c: 7d:8b:86:cb:9b:f8:a6:9f:39:92:b1:8f:70:92:02:7c:95:99: 1b:f6:66:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUwNzA1MDY0NTMzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4Y2EwZC1iMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYRE/GeJ5HMAb6FVRW633xwNsBSllvbQ/JdICyl30La+dLtttB3G1RdN95Zu iPcIUSclKZQd5CWqA6s4y1wDAFq+NrIVhg0kTuBrCp2D05MNU4PA8Kr2hrLISSZx dilcNqhHl9gHqLWUWba0xJVLNPHhiC2q/FGhGK4ZVnVyvq9uXaun5KooPddt+rIY ye8mHHXCOG+kuDrqGUGSA52wy/vb+RMuIuBPXHmuTwg+KNfq3/I4+QlIXW028vpB TAv3gHezOwtunzZCpgnE6CefqreoF9KOza91RYWfJCLB76ysb0avlJ5Ok2r/iKQX Cn7wdkqcrit1X6Quhe2L/q+GSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCmYjV+8 d9a8kJIxVyeb+ApBTYLgMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvQTVGRTU2QjI1 OTZCMTFGMEFGNEJCMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn+bgwDQYJKoZIhvcNAQELBQADggEBAJnohZgXui8+i08f aNcDf6tQSCUES1AuRmo+z2F8YM7b0FmWMRGFIDW6C02sJ4Jzrc+XCoMgDMhaR7uS GoCBrsJdsGiJbknRmVhUXVb7ix6tuDDMo6sv7hiKhnxD1BwSwmSM1/dEB3POAvN0 AgptG+h/QkQ90ih3TpBlmVpsHrcf1T1cBDhe0XFpitr8pdmSEOVK1/RqKjLiTcQP hkK4NFJZbNJizWZz6R2v/MLVPFWI79aFtKqTglXolESzFRV/Jv+DJQo/Ge3aMdkV GLC8/UdjTHnSes2i8cS/qa2BIbxdgF5uefc+53i0LH2Lhsub+KafOZKxj3CSAnyV mRv2ZiY= -----END CERTIFICATE-----Generated at Sun Jul 20 07:42:53 2025 by rpki-client