$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/399EDDAA823F11F0895C5843C4F9AE02.roa File: 399EDDAA823F11F0895C5843C4F9AE02.roa (raw, json) Hash identifier: hcq6yF1A8/hzZcpFY0/jqdnjGI3YJGg87B872b9SYdE= Subject key identifier: F2:55:7C:56:9F:43:F3:BB:3B:5B:FC:D4:25:FA:74:B9:D8:D3:72:17 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 0698 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/399EDDAA823F11F0895C5843C4F9AE02.roa Signing time: Tue 26 Aug 2025 05:40:51 +0000 ROA not before: Tue 26 Aug 2025 05:40:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 13335 IP address blocks: 103.198.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 22:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Aug 26 05:40:51 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68ad48e3-f26c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:30:38:2f:4c:7a:1c:46:de:98:bf:fb:a1:f2: 7f:f6:60:0b:e7:dd:a6:a2:5c:80:04:e9:09:22:5d: 9b:97:b7:26:60:61:63:33:08:1e:8c:92:41:d9:6c: c5:ae:15:7e:4a:b0:59:03:2d:ab:16:f4:b6:6b:a8: da:0a:df:06:3a:2d:8e:bc:2a:75:84:f5:4a:b5:81: dc:5d:e6:c0:88:52:e7:0a:42:f8:19:1d:13:b3:3f: 25:ce:08:89:33:66:89:2d:70:fa:0d:cd:f1:92:80: e5:85:88:83:52:15:a8:67:a3:46:61:80:7e:c7:65: dd:1f:d0:13:c2:03:c6:be:02:27:5c:71:34:08:60: 4e:40:e0:b5:75:28:a4:31:21:11:04:c9:c1:53:d3: 59:7d:70:73:6e:de:8f:f9:9e:65:c7:d9:36:66:07: 2f:32:22:04:ab:ea:cd:21:c4:d5:35:80:9a:c6:c4: 59:4d:42:0a:9a:68:76:65:0c:57:43:1e:c5:9a:2f: ca:47:b4:91:b0:87:c8:4a:09:f8:29:24:23:11:bd: 8f:f5:23:10:30:e3:8e:3b:54:29:56:09:c7:e0:6f: 1f:a7:de:94:df:0e:31:38:b3:3a:4c:44:d7:12:07: 13:03:23:c0:b3:23:39:81:36:7d:12:32:f9:e9:2a: 85:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:55:7C:56:9F:43:F3:BB:3B:5B:FC:D4:25:FA:74:B9:D8:D3:72:17 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/399EDDAA823F11F0895C5843C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.92.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:b2:63:86:96:dd:cb:3b:c5:3c:31:7b:42:ec:5c:30:44:5f: ad:f1:59:26:1d:18:da:8e:d3:62:43:72:08:6e:af:cf:73:87: cc:02:66:cd:3c:de:7b:87:8a:6c:ab:b5:06:62:47:d4:b4:a5: 59:ed:ed:a4:6b:ed:aa:e4:db:49:73:de:82:28:e9:78:25:a2: 54:2b:01:ae:e8:2d:05:d6:82:38:a1:ad:02:8f:e1:39:10:f5: 0e:2c:02:4a:b3:4d:9a:92:f9:43:0d:80:29:1d:4a:ba:72:cb: a1:9b:d5:3d:9b:38:7e:5a:7c:13:6c:e3:3a:76:a9:34:f5:6c: 2f:66:d7:dd:7f:62:fe:d9:9e:b4:ee:c8:bd:16:b4:d9:96:18: 83:30:a4:4d:72:b6:85:a8:4f:61:ac:24:98:af:f3:bc:e1:a5: 21:99:c5:f1:b9:a1:a4:7e:44:4e:48:a3:4a:7e:4a:6e:a5:08: 5a:ee:fb:c6:f3:8e:8a:ab:71:72:d2:59:b5:11:47:82:eb:bd: ad:21:66:8a:b4:d0:99:98:14:12:4d:e4:4b:6b:37:b3:b4:c8: f9:be:38:f4:0c:e4:19:2c:64:eb:38:91:aa:c9:b7:dc:94:11: eb:c9:22:2d:91:ed:03:21:71:37:7c:5d:e3:bc:07:32:a3:58: 45:23:76:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUwODI2MDU0MDUxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkNDhlMy1mMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzA4L0x6HEbemL/7ofJ/9mAL592molyABOkJIl2bl7cmYGFjMwgejJJB2WzF rhV+SrBZAy2rFvS2a6jaCt8GOi2OvCp1hPVKtYHcXebAiFLnCkL4GR0Tsz8lzgiJ M2aJLXD6Dc3xkoDlhYiDUhWoZ6NGYYB+x2XdH9ATwgPGvgInXHE0CGBOQOC1dSik MSERBMnBU9NZfXBzbt6P+Z5lx9k2ZgcvMiIEq+rNIcTVNYCaxsRZTUIKmmh2ZQxX Qx7Fmi/KR7SRsIfISgn4KSQjEb2P9SMQMOOOO1QpVgnH4G8fp96U3w4xOLM6TETX EgcTAyPAsyM5gTZ9EjL56SqFMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPJVfFaf Q/O7O1v81CX6dLnY03IXMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0QjcvRTE4MENFN0E4NTFFMTFFQjg0MTlCMzI3QzRGOUFFMDIvMzk5RUREQUE4 MjNGMTFGMDg5NUM1ODQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxlwwDQYJKoZIhvcNAQELBQADggEBAA6yY4aW3cs7xTwx e0LsXDBEX63xWSYdGNqO02JDcghur89zh8wCZs083nuHimyrtQZiR9S0pVnt7aRr 7ark20lz3oIo6XglolQrAa7oLQXWgjihrQKP4TkQ9Q4sAkqzTZqS+UMNgCkdSrpy y6Gb1T2bOH5afBNs4zp2qTT1bC9m191/Yv7ZnrTuyL0WtNmWGIMwpE1ytoWoT2Gs JJiv87zhpSGZxfG5oaR+RE5Io0p+Sm6lCFru+8bzjoqrcXLSWbURR4Lrva0hZoq0 0JmYFBJN5EtrN7O0yPm+OPQM5BksZOs4karJt9yUEevJIi2R7QMhcTd8XeO8BzKj WEUjdlA= -----END CERTIFICATE-----Generated at Wed Sep 3 13:53:28 2025 by rpki-client