$ rpki-client -vvf rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/E0A9637E41FA11ECB2D7F760C4F9AE02.roa File: E0A9637E41FA11ECB2D7F760C4F9AE02.roa (raw, json) Hash identifier: syoIEmBkPUbXHyU102SwHVQfhD/obq6DIZMw3IYU94w= Subject key identifier: EA:03:53:7C:57:9A:04:5D:65:12:33:B8:33:31:67:7F:7B:78:AA:10 Certificate issuer: /CN=A91552E3/serialNumber=2CFA4D8F4410A951AA164E554C65805D8CF8895C Certificate serial: 0623 Authority key identifier: 2C:FA:4D:8F:44:10:A9:51:AA:16:4E:55:4C:65:80:5D:8C:F8:89:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPpNj0QQqVGqFk5VTGWAXYz4iVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/E0A9637E41FA11ECB2D7F760C4F9AE02.roa Signing time: Sat 26 Apr 2025 22:32:22 +0000 ROA not before: Sat 26 Apr 2025 22:32:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141778 IP address blocks: 103.163.238.0/24 maxlen: 24 103.163.238.0/26 maxlen: 26 103.163.239.0/24 maxlen: 24 2001:df6:2d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/LPpNj0QQqVGqFk5VTGWAXYz4iVw.crl rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/LPpNj0QQqVGqFk5VTGWAXYz4iVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPpNj0QQqVGqFk5VTGWAXYz4iVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1571 (0x623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91552E3, serialNumber=2CFA4D8F4410A951AA164E554C65805D8CF8895C Validity Not Before: Apr 26 22:32:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680d5ef5-c189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fc:50:77:79:7a:65:41:e8:20:a0:4c:9b:ca: d4:6c:76:fe:05:87:dc:bd:7a:da:be:c4:48:5a:a2: 8c:d4:a1:1a:3e:36:08:27:ab:a8:f6:72:5d:25:62: a2:d4:a1:e0:09:72:30:a2:5e:e2:89:a2:92:fa:cf: e4:76:bf:75:82:b0:25:a8:9d:9e:f7:98:84:fe:ed: b0:fe:9d:7e:b4:ae:b9:04:2c:3d:d4:b9:71:18:ba: 6b:8c:a0:aa:4f:60:7c:83:6f:5e:ce:f2:37:b5:85: 3c:44:17:82:1c:4d:3c:35:0f:5c:0a:87:00:eb:6d: bf:0a:e6:c3:87:9f:d8:b3:80:15:82:9a:15:b8:f2: 2b:3d:61:29:d6:a7:2c:2c:1d:2a:77:cb:38:d7:8e: 80:ec:73:78:90:aa:07:a1:1b:2f:a9:41:0a:de:7e: b1:bd:c9:ae:2a:5f:06:b6:c2:3c:f2:44:32:1a:b9: 30:0b:2c:5f:7e:63:85:18:0b:16:0e:52:aa:cc:e0: c3:8a:b5:0d:69:ac:68:c5:be:f4:c6:3e:f1:06:6b: 4b:6e:ca:ea:b4:ac:2e:3d:e9:ee:9f:62:97:60:2c: 78:8f:f5:c3:15:9b:22:4b:32:27:0e:e4:56:da:d9: ed:2e:72:07:6d:38:5f:b7:c9:23:af:a9:41:cc:f1: 12:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:03:53:7C:57:9A:04:5D:65:12:33:B8:33:31:67:7F:7B:78:AA:10 X509v3 Authority Key Identifier: keyid:2C:FA:4D:8F:44:10:A9:51:AA:16:4E:55:4C:65:80:5D:8C:F8:89:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/LPpNj0QQqVGqFk5VTGWAXYz4iVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPpNj0QQqVGqFk5VTGWAXYz4iVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/E0A9637E41FA11ECB2D7F760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.238.0/23 IPv6: 2001:df6:2d80::/48 Signature Algorithm: sha256WithRSAEncryption 21:70:6b:96:b4:f3:4b:27:ea:00:3d:de:f1:ba:44:17:8c:8c: 12:9f:65:b1:9c:b3:79:73:25:16:3c:0f:92:c8:a9:58:34:cb: 33:b5:89:7b:8d:d5:11:d2:b4:8b:20:7f:6a:1d:22:31:8e:57: e6:44:1c:85:5e:59:52:e7:0c:26:17:49:c0:2f:ca:92:d4:39: 11:91:e5:3f:2b:c7:04:82:a8:54:67:34:b8:f7:44:f3:4a:9f: d1:72:87:06:5d:36:0f:b6:d2:62:f9:50:b3:ec:94:3b:9c:e5: 12:b7:05:cd:20:26:30:5b:11:9d:b9:d8:2d:6f:25:11:34:02: 56:49:77:0e:24:1a:24:35:52:f3:83:c2:28:bb:54:85:de:09: 7e:3c:19:92:2e:9a:ce:e9:d1:2f:14:40:05:cd:30:ca:49:20: a5:5b:1c:2d:e7:36:85:69:39:e4:fc:37:e4:8a:19:d1:e5:d2: 5f:c6:40:3a:04:49:2f:78:53:b3:21:8e:c3:f4:fe:25:08:89: b2:0b:ab:1a:ec:6f:e4:ea:84:2e:e6:98:16:fa:49:c5:1c:0b: eb:a9:7f:7c:fd:8d:9d:be:94:59:b1:61:2d:f9:ff:7a:a1:be: 9f:d5:85:fd:fd:5d:3f:08:58:b3:b1:a3:fc:74:1c:bf:3f:c0: ee:9b:06:8b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUyRTMxMTAvBgNVBAUTKDJDRkE0RDhGNDQxMEE5NTFBQTE2NEU1NTRDNjU4MDVE OENGODg5NUMwHhcNMjUwNDI2MjIzMjIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkNWVmNS1jMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvxQd3l6ZUHoIKBMm8rUbHb+BYfcvXravsRIWqKM1KEaPjYIJ6uo9nJdJWKi 1KHgCXIwol7iiaKS+s/kdr91grAlqJ2e95iE/u2w/p1+tK65BCw91LlxGLprjKCq T2B8g29ezvI3tYU8RBeCHE08NQ9cCocA622/CubDh5/Ys4AVgpoVuPIrPWEp1qcs LB0qd8s4146A7HN4kKoHoRsvqUEK3n6xvcmuKl8GtsI88kQyGrkwCyxffmOFGAsW DlKqzODDirUNaaxoxb70xj7xBmtLbsrqtKwuPenun2KXYCx4j/XDFZsiSzInDuRW 2tntLnIHbThft8kjr6lBzPESPwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOoDU3xX mgRdZRIzuDMxZ397eKoQMB8GA1UdIwQYMBaAFCz6TY9EEKlRqhZOVUxlgF2M+Ilc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTJFMy8yOTQ1M0I3NEEw NzcxMUVCQThDNEM3NDBDNEY5QUUwMi9MUHBOajBRUXFWR3FGazVWVEdXQVhZejRp VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xQcE5qMFFRcVZHcUZrNVZUR1dBWFl6NGlWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUyRTMvMjk0NTNCNzRBMDc3MTFFQkE4QzRDNzQwQzRGOUFFMDIvRTBBOTYzN0U0 MUZBMTFFQ0IyRDdGNzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno+4wDwQCAAIwCQMHACABDfYtgDANBgkqhkiG9w0BAQsF AAOCAQEAIXBrlrTzSyfqAD3e8bpEF4yMEp9lsZyzeXMlFjwPksipWDTLM7WJe43V EdK0iyB/ah0iMY5X5kQchV5ZUucMJhdJwC/KktQ5EZHlPyvHBIKoVGc0uPdE80qf 0XKHBl02D7bSYvlQs+yUO5zlErcFzSAmMFsRnbnYLW8lETQCVkl3DiQaJDVS84PC KLtUhd4JfjwZki6azunRLxRABc0wykkgpVscLec2hWk55Pw35IoZ0eXSX8ZAOgRJ L3hTsyGOw/T+JQiJsgurGuxv5OqELuaYFvpJxRwL66l/fP2Nnb6UWbFhLfn/eqG+ n9WF/f1dPwhYs7Gj/HQcvz/A7psGiw== -----END CERTIFICATE-----Generated at Wed Nov 5 16:40:50 2025 by rpki-client