$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/14172F4C264311EEB0342B45C4F9AE02.roa File: 14172F4C264311EEB0342B45C4F9AE02.roa (raw, json) Hash identifier: hGiilfSQIcgKH4NIdZJeXzdl+FpDj03CR4zzG/JcbXg= Subject key identifier: 5E:4F:1A:26:C0:FD:4F:81:5A:19:BD:C3:9F:96:37:41:D4:B2:51:DF Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0506 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/14172F4C264311EEB0342B45C4F9AE02.roa Signing time: Tue 09 Sep 2025 00:05:29 +0000 ROA not before: Tue 09 Sep 2025 00:05:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 3356 IP address blocks: 103.70.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Sep 9 00:05:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bf6f48-3b4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5f:a8:95:97:21:cb:52:d6:45:d0:73:63:b4: 95:9f:bf:a6:d2:47:e4:7b:78:e6:e5:c2:26:3d:02: 6b:44:75:85:67:47:df:3e:fc:c0:0a:a1:b6:06:de: 55:ea:4f:9a:5a:be:f4:d9:d2:f4:54:04:12:bc:4a: a7:3f:ba:13:92:bf:13:a4:44:dd:2a:a2:83:5a:dc: 0f:20:7b:a4:fa:16:66:ed:3c:0b:34:c4:a7:47:4d: 1f:ab:8d:ed:a8:2d:8a:fc:cf:cb:c3:17:97:11:24: e1:e0:15:e2:d3:f0:9f:81:75:c5:6e:c7:18:0b:07: d0:b0:ff:5a:14:ff:3a:eb:34:4e:98:e3:1a:dd:ce: fd:28:9c:f4:e1:8f:75:72:29:56:0b:59:16:2d:ed: 7e:a1:86:38:4e:5f:e2:75:54:ad:7a:5f:75:df:c6: fe:0d:ed:11:1f:e7:93:5f:ed:97:04:08:60:a8:c1: 4c:62:41:79:74:6f:f4:d9:15:51:46:1b:62:14:5e: 29:3f:20:de:10:38:4b:42:ab:25:70:9a:be:ce:c2: d7:ec:a7:dc:3e:88:e6:7d:b8:3a:47:66:0e:be:8f: c5:97:55:ff:9e:b2:7e:ed:aa:2f:06:ba:94:7f:c6: 9d:eb:ae:2a:88:6e:52:9d:f0:cf:24:1a:cb:c8:2b: 8e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4F:1A:26:C0:FD:4F:81:5A:19:BD:C3:9F:96:37:41:D4:B2:51:DF X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/14172F4C264311EEB0342B45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.51.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:34:8b:2e:18:39:7c:1c:a9:e1:15:f1:40:c7:03:2f:91:0b: 67:a7:64:8c:22:4d:54:c5:e4:8e:ea:ee:fc:29:7a:5a:fd:b8: 3a:ea:c7:0b:fe:4f:95:79:21:fc:59:30:6c:90:19:3f:00:8f: 0a:ca:f7:8f:8c:db:df:05:c5:8e:c1:36:c2:9a:85:b6:78:e4: 7d:a3:55:22:f4:d1:4a:11:94:73:13:82:5f:df:14:90:b3:0c: de:d6:b3:e5:fc:8d:ea:94:d4:f4:55:43:6a:32:7d:f1:3d:d0: 88:31:51:40:f5:a9:13:03:b4:b4:00:05:db:7d:c2:af:98:8d: 49:4d:ec:d1:2e:b8:15:63:60:92:b4:f7:b3:02:fd:63:ee:2c: 02:c6:79:1d:11:e3:28:c7:f0:bb:0d:1c:9e:78:5e:65:80:2b: 2a:16:f6:6f:bf:ec:6a:78:16:32:aa:a9:83:3f:15:61:f0:57: 08:63:72:b2:e8:93:8e:95:dd:a5:88:e6:22:41:39:53:79:b8: d4:f6:a1:2e:76:a7:7c:bb:38:83:1c:64:f9:e2:ea:96:fe:3f: 55:d9:67:66:17:d2:a1:cb:29:61:e5:ed:26:53:6f:09:5a:28: 36:30:29:3f:97:08:cb:9e:3c:c7:ac:e6:5a:64:d1:92:4f:a6: f3:f5:e0:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwOTA5MDAwNTI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmNmY0OC0zYjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnl+olZchy1LWRdBzY7SVn7+m0kfke3jm5cImPQJrRHWFZ0ffPvzACqG2Bt5V 6k+aWr702dL0VAQSvEqnP7oTkr8TpETdKqKDWtwPIHuk+hZm7TwLNMSnR00fq43t qC2K/M/LwxeXESTh4BXi0/CfgXXFbscYCwfQsP9aFP866zROmOMa3c79KJz04Y91 cilWC1kWLe1+oYY4Tl/idVStel9138b+De0RH+eTX+2XBAhgqMFMYkF5dG/02RVR RhtiFF4pPyDeEDhLQqslcJq+zsLX7KfcPojmfbg6R2YOvo/Fl1X/nrJ+7aovBrqU f8ad664qiG5SnfDPJBrLyCuOoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF5PGibA /U+BWhm9w5+WN0HUslHfMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvMTQxNzJGNEMy NjQzMTFFRUIwMzQyQjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRjMwDQYJKoZIhvcNAQELBQADggEBAGw0iy4YOXwcqeEV 8UDHAy+RC2enZIwiTVTF5I7q7vwpelr9uDrqxwv+T5V5IfxZMGyQGT8AjwrK94+M 298FxY7BNsKahbZ45H2jVSL00UoRlHMTgl/fFJCzDN7Ws+X8jeqU1PRVQ2oyffE9 0IgxUUD1qRMDtLQABdt9wq+YjUlN7NEuuBVjYJK097MC/WPuLALGeR0R4yjH8LsN HJ54XmWAKyoW9m+/7Gp4FjKqqYM/FWHwVwhjcrLok46V3aWI5iJBOVN5uNT2oS52 p3y7OIMcZPni6pb+P1XZZ2YX0qHLKWHl7SZTbwlaKDYwKT+XCMuePMes5lpk0ZJP pvP14Fc= -----END CERTIFICATE-----Generated at Wed Sep 10 12:01:39 2025 by rpki-client