$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/A1C11FC2D18411EFBBD4971AC4F9AE02.roa File: A1C11FC2D18411EFBBD4971AC4F9AE02.roa (raw, json) Hash identifier: qWTJIAG3h3YNb68+lXJuiAothAh37XoAXq3h1gsegjM= Subject key identifier: A4:5A:9E:77:9C:31:C6:05:21:4B:4F:20:70:D5:2A:4B:21:9A:B4:A9 Certificate issuer: /CN=A91E3B1D/serialNumber=5A99B0276719D3A83770FAAE14D7575CC666488D Certificate serial: 0309 Authority key identifier: 5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/A1C11FC2D18411EFBBD4971AC4F9AE02.roa Signing time: Sat 05 Jul 2025 02:09:24 +0000 ROA not before: Sat 05 Jul 2025 02:09:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140228 IP address blocks: 103.189.4.0/23 maxlen: 23 103.189.4.0/24 maxlen: 24 103.189.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B1D, serialNumber=5A99B0276719D3A83770FAAE14D7575CC666488D Validity Not Before: Jul 5 02:09:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68688954-8f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:5a:e0:ba:d4:3e:1a:a3:42:76:0e:a8:42: 64:fe:57:99:b1:9c:28:24:f6:11:9b:ed:92:c9:95: 11:55:d8:5b:3a:91:3a:1b:0f:22:38:c5:50:29:ac: 64:a0:6c:ce:0f:3a:19:4c:de:58:2c:c6:4b:26:9a: 13:eb:1a:27:5b:85:6c:22:c5:13:80:88:42:f1:e2: 5c:41:ba:95:ba:58:fa:d0:ca:ec:df:f5:6c:dd:8f: f9:f7:df:ce:44:da:5d:54:ca:15:f0:4f:fa:78:28: 8e:a3:37:0c:3b:0b:8d:fc:7e:05:4e:4f:70:7f:fb: 15:8b:d0:63:2e:e9:91:56:50:68:f4:b6:0e:0f:da: c1:f1:bb:9c:73:22:61:6a:ef:6e:b8:78:7c:d6:1c: f9:71:80:1b:c2:65:36:f1:e3:9f:43:92:2d:6f:a7: 68:57:3e:d7:ee:d1:1a:2d:42:d9:59:1d:76:73:42: b7:22:c9:ad:49:46:ae:6d:f5:1e:ed:74:4f:40:38: 03:fb:13:57:59:44:e8:5c:f3:77:4d:ed:4f:81:59: ac:bb:8c:94:3e:16:7f:0b:62:b0:82:32:93:8a:03: d7:92:ee:9d:07:16:c6:89:68:24:3b:30:08:24:db: e1:37:34:58:cc:42:00:d1:38:28:3e:4b:91:c0:8d: a8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5A:9E:77:9C:31:C6:05:21:4B:4F:20:70:D5:2A:4B:21:9A:B4:A9 X509v3 Authority Key Identifier: keyid:5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/A1C11FC2D18411EFBBD4971AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.4.0/23 Signature Algorithm: sha256WithRSAEncryption a6:0a:d5:a6:f9:1b:5f:d8:72:d1:05:b1:33:ba:dd:07:ff:7a: e8:1a:84:ec:f2:f5:4d:d0:91:dc:bf:10:d0:31:c3:dc:4b:cc: be:66:7f:bc:e6:58:8c:bc:bc:c2:7a:c5:66:6b:7b:af:01:eb: e0:b0:38:8c:10:47:70:ee:17:0d:e0:db:c0:05:92:61:45:b8: 68:e1:ad:50:ea:f3:ad:b5:e3:fb:5f:8c:26:d5:91:63:10:9e: 0b:af:b8:a3:0a:dd:65:75:c6:6c:04:c3:3a:08:23:97:d0:77: d5:94:64:11:a7:8a:92:fe:72:2f:d7:c8:95:11:95:23:77:0e: 31:37:f1:51:da:65:4f:68:d9:0d:af:ef:f5:ac:75:94:65:51: 55:a9:6f:7d:3d:6b:f1:36:34:7d:23:6e:9a:63:0e:c8:16:79: ec:93:36:54:c9:1e:fd:41:c3:c7:96:b9:cb:f8:1c:0f:fe:00: 85:78:61:a7:4e:43:c6:f3:bb:6b:32:09:e3:ef:a7:0d:38:0a: ab:59:c2:c9:92:2e:41:91:04:82:22:88:a3:79:66:1d:25:33: f7:39:ec:3c:af:6c:c4:8a:52:bc:3e:e0:ae:e2:1f:84:ef:00: 37:37:3e:df:27:94:5a:f6:52:fe:b3:60:1f:3d:5b:2e:02:ec: 73:39:9b:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMUQxMTAvBgNVBAUTKDVBOTlCMDI3NjcxOUQzQTgzNzcwRkFBRTE0RDc1NzVD QzY2NjQ4OEQwHhcNMjUwNzA1MDIwOTI0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4ODk1NC04ZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu99a4LrUPhqjQnYOqEJk/leZsZwoJPYRm+2SyZURVdhbOpE6Gw8iOMVQKaxk oGzODzoZTN5YLMZLJpoT6xonW4VsIsUTgIhC8eJcQbqVulj60Mrs3/Vs3Y/599/O RNpdVMoV8E/6eCiOozcMOwuN/H4FTk9wf/sVi9BjLumRVlBo9LYOD9rB8buccyJh au9uuHh81hz5cYAbwmU28eOfQ5Itb6doVz7X7tEaLULZWR12c0K3IsmtSUaubfUe 7XRPQDgD+xNXWUToXPN3Te1PgVmsu4yUPhZ/C2KwgjKTigPXku6dBxbGiWgkOzAI JNvhNzRYzEIA0TgoPkuRwI2o3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKRannec McYFIUtPIHDVKkshmrSpMB8GA1UdIwQYMBaAFFqZsCdnGdOoN3D6rhTXV1zGZkiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IxRC9CQTY0RDA2NkUz MzcxMUVDOTczMEVCM0RDNEY5QUUwMi9XcG13SjJjWjA2ZzNjUHF1Rk5kWFhNWm1T STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwbXdKMmNaMDZnM2NQcXVGTmRYWE1abVNJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCMUQvQkE2NEQwNjZFMzM3MTFFQzk3MzBFQjNEQzRGOUFFMDIvQTFDMTFGQzJE MTg0MTFFRkJCRDQ5NzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvQQwDQYJKoZIhvcNAQELBQADggEBAKYK1ab5G1/YctEF sTO63Qf/eugahOzy9U3Qkdy/ENAxw9xLzL5mf7zmWIy8vMJ6xWZre68B6+CwOIwQ R3DuFw3g28AFkmFFuGjhrVDq86214/tfjCbVkWMQnguvuKMK3WV1xmwEwzoII5fQ d9WUZBGnipL+ci/XyJURlSN3DjE38VHaZU9o2Q2v7/WsdZRlUVWpb309a/E2NH0j bppjDsgWeeyTNlTJHv1Bw8eWucv4HA/+AIV4YadOQ8bzu2syCePvpw04CqtZwsmS LkGRBIIiiKN5Zh0lM/c57DyvbMSKUrw+4K7iH4TvADc3Pt8nlFr2Uv6zYB89Wy4C 7HM5mws= -----END CERTIFICATE-----Generated at Sun Jul 20 07:40:41 2025 by rpki-client