$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa File: 91A286509F0811ECAE659F82C4F9AE02.roa (raw, json) Hash identifier: rChmwH90SUuXyk+7yFwvc60l13VLAAHmVFzSZ22IXbo= Subject key identifier: A6:EB:27:AB:CD:FB:F7:64:E1:95:0C:33:AD:34:91:BB:12:DD:14:32 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 0439 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:45:37 +0000 ROA not before: Wed 03 Sep 2025 00:45:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136038 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Sep 3 00:45:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b78fb1-c627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d4:d3:d8:2c:d0:f7:1f:c1:61:9d:58:1e:80: 5a:88:6a:74:f9:3c:8a:67:b2:3c:b8:d9:9c:d9:72: f2:72:f4:2f:53:b7:b3:71:c4:dd:95:e0:b7:78:4f: 9c:e7:1b:99:80:74:6e:21:6e:74:67:f7:bf:77:cc: 2e:d9:9f:98:99:31:92:8b:fb:54:e9:15:ed:3c:34: 91:02:4a:78:75:27:10:83:ad:e0:6e:36:01:ee:67: 52:20:a6:68:97:07:a5:8e:7d:b0:c4:a7:c7:58:85: 5d:21:36:4e:44:a9:4b:fe:0d:2b:62:aa:a2:b3:09: ff:79:c3:a5:8f:54:79:04:d4:07:1a:7b:42:fc:01: 2d:fb:02:66:69:99:c4:c7:87:81:84:2d:2a:f9:d6: df:cc:a3:e3:dd:6b:40:cf:0a:b2:2b:20:67:7f:86: 9f:dd:dc:31:4f:33:07:17:db:a3:4d:91:00:bf:7c: 35:67:91:a1:a6:ba:92:09:49:80:91:24:b1:70:12: a6:d6:07:cf:0c:09:b9:ac:87:e8:c9:d3:c2:c7:de: d0:9b:2a:68:b3:6f:99:1c:88:e5:39:81:d7:40:50: 78:15:2a:33:98:68:aa:4a:af:a3:d4:e7:68:1a:5c: fe:e8:d0:fc:51:ba:a0:31:4e:c2:60:19:cf:d2:03: f6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:EB:27:AB:CD:FB:F7:64:E1:95:0C:33:AD:34:91:BB:12:DD:14:32 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption 1e:b4:b3:a7:c1:dd:21:fa:a5:e4:0b:26:52:04:3e:9f:98:f8: d1:19:d7:f5:c5:e0:7e:d4:ca:2f:d8:a6:11:6b:e5:d8:77:12: db:00:c0:df:78:c3:60:44:cb:d8:e2:67:58:90:a1:f5:f9:3b: 8a:c3:59:65:0a:fa:eb:63:84:bd:2e:37:ba:7c:cb:7d:d3:02: 0e:2f:79:86:51:ac:2c:58:b6:e6:b6:8f:57:04:69:18:4c:6e: 24:f0:a5:13:17:ff:ba:14:94:3d:79:8e:e6:ec:72:cd:ee:b9: 82:cc:b9:fd:e5:8b:76:99:63:eb:18:ec:de:42:83:4b:bc:e9: 3e:a0:0b:29:3f:e5:97:6b:01:9e:da:fb:be:ea:6a:50:48:ac: 72:47:d8:a6:00:a6:a2:a5:4a:16:af:6e:8f:e3:26:6f:db:78: ba:bd:35:e9:74:af:4e:4a:cf:86:8a:53:b0:c7:69:f1:91:f4: 2b:28:df:92:42:80:07:c1:12:7e:ca:b2:98:87:75:06:b1:8d: 58:c4:04:a3:85:8c:5e:ee:ae:64:e1:34:69:17:e2:4a:d1:e5: 90:20:d2:76:a0:de:46:9f:c0:53:f1:19:e6:4f:87:fb:80:96: ef:3e:b9:e9:fd:7f:e1:3f:7b:79:01:cb:12:ef:0d:7e:f2:67: 15:78:7c:fb -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUwOTAzMDA0NTM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3OGZiMS1jNjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtTT2CzQ9x/BYZ1YHoBaiGp0+TyKZ7I8uNmc2XLycvQvU7ezccTdleC3eE+c 5xuZgHRuIW50Z/e/d8wu2Z+YmTGSi/tU6RXtPDSRAkp4dScQg63gbjYB7mdSIKZo lweljn2wxKfHWIVdITZORKlL/g0rYqqiswn/ecOlj1R5BNQHGntC/AEt+wJmaZnE x4eBhC0q+dbfzKPj3WtAzwqyKyBnf4af3dwxTzMHF9ujTZEAv3w1Z5GhprqSCUmA kSSxcBKm1gfPDAm5rIfoydPCx97Qmypos2+ZHIjlOYHXQFB4FSozmGiqSq+j1Odo Glz+6ND8UbqgMU7CYBnP0gP2owIDAQABo4ICozCCAp8wHQYDVR0OBBYEFKbrJ6vN +/dk4ZUMM600kbsS3RQyMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOTFBMjg2NTA5 RjA4MTFFQ0FFNjU5RjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnW9kwDAMEBGdj0AMEAGdj0jANBgkqhkiG9w0BAQsFAAOC AQEAHrSzp8HdIfql5AsmUgQ+n5j40RnX9cXgftTKL9imEWvl2HcS2wDA33jDYETL 2OJnWJCh9fk7isNZZQr662OEvS43unzLfdMCDi95hlGsLFi25raPVwRpGExuJPCl Exf/uhSUPXmO5uxyze65gsy5/eWLdplj6xjs3kKDS7zpPqALKT/ll2sBntr7vupq UEisckfYpgCmoqVKFq9uj+Mmb9t4ur016XSvTkrPhopTsMdp8ZH0KyjfkkKAB8ES fsqymId1BrGNWMQEo4WMXu6uZOE0aRfiStHlkCDSdqDeRp/AU/EZ5k+H+4CW7z65 6f1/4T97eQHLEu8NfvJnFXh8+w== -----END CERTIFICATE-----Generated at Sat Sep 6 14:24:23 2025 by rpki-client