$ rpki-client -vvf rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/A63F9024AB6B11EDA5C53A0AC4F9AE02.roa File: A63F9024AB6B11EDA5C53A0AC4F9AE02.roa (raw, json) Hash identifier: 86MzttNM09a7Pbj7fiElhdTAIgqK4eCRkFOM21wDde0= Subject key identifier: 99:A8:02:9D:31:E0:B3:F8:A1:5B:AC:CA:BD:5F:E1:04:A0:B5:D8:5D Certificate issuer: /CN=A91933FE/serialNumber=B551A160D3BEDCA562E9DDFDE40933724B69B900 Certificate serial: 01E6 Authority key identifier: B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/A63F9024AB6B11EDA5C53A0AC4F9AE02.roa Signing time: Fri 29 Aug 2025 03:20:28 +0000 ROA not before: Fri 29 Aug 2025 03:20:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9311 IP address blocks: 103.234.44.0/24 maxlen: 24 103.234.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.crl rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91933FE, serialNumber=B551A160D3BEDCA562E9DDFDE40933724B69B900 Validity Not Before: Aug 29 03:20:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b11c7c-f91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e5:7b:f4:ac:64:59:74:51:42:e4:97:8f:c6: 09:f0:8b:3a:dd:41:6b:84:68:85:38:be:2d:00:de: 87:8e:08:87:4c:aa:11:b3:ac:a6:de:b7:5e:3a:85: 64:19:55:bd:c4:9b:06:d3:a5:34:fa:9c:86:85:0a: fe:6c:e6:d5:b3:a3:08:94:cc:7a:31:92:07:32:48: bd:49:46:b0:de:1c:fc:27:0a:04:3e:2b:60:20:3e: 22:f1:f6:5c:66:84:2d:1f:01:c4:d8:23:96:60:dd: 5e:7a:5f:22:7a:4c:32:4d:41:37:64:c9:a7:79:e4: 65:93:1d:f2:e1:4e:f4:54:ed:f8:6a:2b:67:c6:d3: 4e:65:18:2c:66:d8:77:ba:02:cf:e1:30:9e:5a:27: c0:c4:7d:41:78:24:30:95:5e:28:32:30:09:d7:09: a1:cd:f7:ff:57:bf:37:4e:40:6d:d5:77:5a:b1:ec: 94:00:cc:9c:9c:9d:7f:c0:6b:6f:37:34:31:ad:8d: c4:37:95:99:58:9e:55:3d:48:46:27:fa:cd:d9:84: ff:f8:27:60:0c:77:03:f9:44:04:31:01:3b:08:e0: 11:e2:87:3e:87:c9:ba:55:3e:e0:3e:8b:3e:c0:9f: d6:f1:52:da:b3:d1:93:79:6a:d0:63:fd:86:a2:2d: 11:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A8:02:9D:31:E0:B3:F8:A1:5B:AC:CA:BD:5F:E1:04:A0:B5:D8:5D X509v3 Authority Key Identifier: keyid:B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/A63F9024AB6B11EDA5C53A0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.44.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:4f:5c:7a:d0:02:aa:eb:a9:75:03:0d:64:51:8c:c3:58:09: c5:7c:ee:f2:28:b2:08:59:18:0a:6c:ae:27:f1:27:72:0f:87: d9:50:b9:b5:e1:fd:00:dd:15:c9:c5:1b:37:98:5f:13:22:f7: ef:6b:52:19:7b:53:25:ae:74:be:d9:0d:aa:7b:28:e1:13:aa: 83:3b:9a:f3:90:11:6f:02:7d:3c:ec:03:ee:c5:c2:79:71:1f: 5f:0f:2f:4a:64:6f:a2:c5:d7:e6:92:a2:95:f5:44:c1:dd:d2: db:1b:d3:a9:d6:51:99:b3:14:bb:ca:df:fb:b0:91:5a:7b:a8: 5c:c2:d8:d8:12:95:0d:c1:e0:16:75:bd:3e:a3:61:00:b5:06: 26:46:2c:69:1c:8c:af:69:c9:05:a3:56:c0:10:1a:6e:cb:97: 6c:50:06:60:3c:25:80:49:2d:45:9c:cc:a1:0b:1d:1b:20:5f: 98:2e:53:bd:3b:32:bc:29:c4:e3:41:00:cf:4a:e7:96:a6:ce: a9:de:2c:09:da:f5:42:2c:3e:5d:43:79:02:b9:68:98:f6:7d: 81:d4:6d:a8:67:96:de:24:3c:e1:34:61:f1:d6:92:11:2c:52: 4c:e3:7d:3e:e4:15:6a:21:55:28:eb:5f:cc:f7:9e:79:1d:a2: da:2b:a4:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzRkUxMTAvBgNVBAUTKEI1NTFBMTYwRDNCRURDQTU2MkU5RERGREU0MDkzMzcy NEI2OUI5MDAwHhcNMjUwODI5MDMyMDI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMWM3Yy1mOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOV79KxkWXRRQuSXj8YJ8Is63UFrhGiFOL4tAN6HjgiHTKoRs6ym3rdeOoVk GVW9xJsG06U0+pyGhQr+bObVs6MIlMx6MZIHMki9SUaw3hz8JwoEPitgID4i8fZc ZoQtHwHE2COWYN1eel8iekwyTUE3ZMmneeRlkx3y4U70VO34aitnxtNOZRgsZth3 ugLP4TCeWifAxH1BeCQwlV4oMjAJ1wmhzff/V783TkBt1XdaseyUAMycnJ1/wGtv NzQxrY3EN5WZWJ5VPUhGJ/rN2YT/+CdgDHcD+UQEMQE7COAR4oc+h8m6VT7gPos+ wJ/W8VLas9GTeWrQY/2Goi0RuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJmoAp0x 4LP4oVusyr1f4QSgtdhdMB8GA1UdIwQYMBaAFLVRoWDTvtylYund/eQJM3JLabkA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzNGRS9EMzFBNjc3QUFC NjgxMUVEQTVDQTVCMDlDNEY5QUUwMi90VkdoWU5PLTNLVmk2ZDM5NUFremNrdHB1 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RWR2hZTk8tM0tWaTZkMzk1QWt6Y2t0cHVRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzRkUvRDMxQTY3N0FBQjY4MTFFREE1Q0E1QjA5QzRGOUFFMDIvQTYzRjkwMjRB QjZCMTFFREE1QzUzQTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn6iwwDQYJKoZIhvcNAQELBQADggEBADtPXHrQAqrrqXUD DWRRjMNYCcV87vIosghZGApsrifxJ3IPh9lQubXh/QDdFcnFGzeYXxMi9+9rUhl7 UyWudL7ZDap7KOETqoM7mvOQEW8CfTzsA+7FwnlxH18PL0pkb6LF1+aSopX1RMHd 0tsb06nWUZmzFLvK3/uwkVp7qFzC2NgSlQ3B4BZ1vT6jYQC1BiZGLGkcjK9pyQWj VsAQGm7Ll2xQBmA8JYBJLUWczKELHRsgX5guU707MrwpxONBAM9K55amzqneLAna 9UIsPl1DeQK5aJj2fYHUbahnlt4kPOE0YfHWkhEsUkzjfT7kFWohVSjrX8z3nnkd otorpIo= -----END CERTIFICATE-----Generated at Sat Sep 6 13:37:30 2025 by rpki-client