$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/2F581CEA33F311EEABFC7410C4F9AE02.roa File: 2F581CEA33F311EEABFC7410C4F9AE02.roa (raw, json) Hash identifier: weFEOxrVQ1R73fykzCNyC6/gZBqdWvZXSpKP3W9J0hQ= Subject key identifier: A2:28:12:DA:38:99:31:47:D1:29:23:26:5F:1B:8A:D7:F8:B0:70:82 Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 05DA Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/2F581CEA33F311EEABFC7410C4F9AE02.roa Signing time: Thu 10 Jul 2025 23:35:24 +0000 ROA not before: Thu 10 Jul 2025 23:35:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151634 IP address blocks: 103.168.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8, serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Jul 10 23:35:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68704e3c-582f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ba:2b:b3:d9:66:a5:3e:dd:00:7a:c2:ac:fb: 49:9e:fc:ce:fd:3d:3e:ce:6f:3b:2b:c2:45:16:d5: 55:80:3d:be:04:03:6e:7a:bb:45:12:09:1e:23:08: 19:26:c9:57:7b:24:90:9b:58:3f:cf:fa:c6:f7:89: 0f:1e:9a:08:35:e5:9b:78:e4:40:13:21:3f:09:80: 08:fa:fa:82:34:fe:74:2a:d7:ba:75:63:bf:1f:98: be:3e:cc:8a:f2:7b:13:ca:fe:b1:08:a4:7e:39:e5: cf:e1:28:85:6b:d6:e7:b9:8c:73:9b:a6:9f:6f:75: d2:e1:a2:98:bc:53:90:9b:1a:84:e0:16:38:75:54: a2:0f:d9:5a:da:f9:8b:ef:54:c5:73:39:c6:15:b1: 34:60:77:dc:c3:72:bc:a9:6c:ff:63:45:1f:d2:3f: a5:c9:de:e7:98:61:36:b0:45:13:b0:b7:a2:a4:f7: 15:d0:f0:96:9c:86:47:57:f9:ef:39:ef:a1:11:c7: ba:54:ae:7b:61:23:1f:e6:ef:75:49:4b:82:16:a3: c6:67:34:94:f0:55:13:df:f4:b8:7d:bd:1f:3d:c0: 5c:8e:33:a3:bc:39:1e:c9:96:57:6a:c3:b0:66:f8: bf:ae:9c:e1:9c:7a:28:7e:4a:de:33:a7:19:94:3d: d0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:28:12:DA:38:99:31:47:D1:29:23:26:5F:1B:8A:D7:F8:B0:70:82 X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/2F581CEA33F311EEABFC7410C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.43.0/24 Signature Algorithm: sha256WithRSAEncryption 39:05:38:47:c4:29:6b:f2:e5:f8:20:85:f1:d2:6f:db:5f:48: 6d:88:c3:df:f4:17:0b:b3:86:03:91:78:c5:e1:8c:a4:59:20: cb:26:3e:44:ee:b8:ee:18:d4:57:6c:0f:3e:df:81:10:05:07: 04:de:d7:cb:9e:a8:2b:c6:ce:41:c2:4c:e7:47:5c:e5:26:3a: b2:5f:a3:8d:f2:90:94:c4:28:8e:b4:b2:8a:50:1c:a3:4a:91: 05:c8:7d:0e:e8:e0:1b:c1:19:6e:5d:f2:cf:12:37:62:93:3f: ad:5a:f6:93:c4:b2:24:df:c9:11:62:4e:f8:2c:c5:a8:65:78: 5f:6e:f0:e8:b2:ca:21:c3:00:e2:07:78:5f:be:e6:b8:51:f3: 84:bb:08:4e:60:0b:fc:9e:5d:cd:ce:ce:e3:41:43:24:c2:c5: ce:a2:45:0d:a4:fb:39:f8:4f:e6:e7:80:cb:a0:bf:7c:09:33: 19:e5:5c:48:45:37:61:30:5d:e9:b4:fe:66:c3:ea:64:75:d4: 45:86:4c:0f:c5:29:b5:c3:33:d8:ca:e0:07:75:f2:b0:d9:cf: 73:57:22:9c:71:6e:39:b7:e5:18:64:81:4f:b2:fb:4a:cb:f1: 26:f8:0b:9d:07:11:77:0b:d6:e3:e5:b7:2a:a4:5b:87:68:46: a6:55:ed:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjUwNzEwMjMzNTI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwNGUzYy01ODJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7ors9lmpT7dAHrCrPtJnvzO/T0+zm87K8JFFtVVgD2+BANuertFEgkeIwgZ JslXeySQm1g/z/rG94kPHpoINeWbeORAEyE/CYAI+vqCNP50Kte6dWO/H5i+PsyK 8nsTyv6xCKR+OeXP4SiFa9bnuYxzm6afb3XS4aKYvFOQmxqE4BY4dVSiD9la2vmL 71TFcznGFbE0YHfcw3K8qWz/Y0Uf0j+lyd7nmGE2sEUTsLeipPcV0PCWnIZHV/nv Oe+hEce6VK57YSMf5u91SUuCFqPGZzSU8FUT3/S4fb0fPcBcjjOjvDkeyZZXasOw Zvi/rpzhnHoofkreM6cZlD3Q1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKIoEto4 mTFH0SkjJl8bitf4sHCCMB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMkY1ODFDRUEz M0YzMTFFRUFCRkM3NDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqCswDQYJKoZIhvcNAQELBQADggEBADkFOEfEKWvy5fgg hfHSb9tfSG2Iw9/0FwuzhgOReMXhjKRZIMsmPkTuuO4Y1FdsDz7fgRAFBwTe18ue qCvGzkHCTOdHXOUmOrJfo43ykJTEKI60sopQHKNKkQXIfQ7o4BvBGW5d8s8SN2KT P61a9pPEsiTfyRFiTvgsxahleF9u8OiyyiHDAOIHeF++5rhR84S7CE5gC/yeXc3O zuNBQyTCxc6iRQ2k+zn4T+bngMugv3wJMxnlXEhFN2EwXem0/mbD6mR11EWGTA/F KbXDM9jK4Ad18rDZz3NXIpxxbjm35RhkgU+y+0rL8Sb4C50HEXcL1uPltyqkW4do RqZV7Ug= -----END CERTIFICATE-----Generated at Mon Jul 21 07:40:43 2025 by rpki-client