$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa File: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: 0rs0STSm9B6q1ImRupSPhNQw8yrXD67mSzQRxhTWeyM= Subject key identifier: AA:FF:8E:C5:45:70:01:66:05:1F:CB:65:C1:1D:2E:57:71:B9:91:1D Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0503 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa Signing time: Tue 09 Sep 2025 00:05:26 +0000 ROA not before: Tue 09 Sep 2025 00:05:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.70.49.0/24 maxlen: 24 103.70.51.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1283 (0x503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Sep 9 00:05:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bf6f46-cd85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:30:b1:bd:a7:8b:23:68:c3:76:52:93:09:d0: 2b:be:31:6d:22:ef:0c:a7:46:80:6f:29:97:99:1c: ea:4d:8f:e6:34:b1:35:c4:11:ab:0e:76:f5:f7:65: f6:72:2a:0a:9c:41:e3:23:c6:e0:7d:b4:b0:37:fe: 8d:8b:bf:be:74:bd:44:b6:20:4a:e9:7e:68:6a:0c: 19:fa:45:51:a4:bb:81:42:4c:ac:72:9b:48:07:e3: cb:1b:48:b3:d0:de:a4:34:9e:61:84:bc:b2:11:33: f8:1c:e5:9a:a3:01:a8:e5:17:1e:72:b8:4f:76:1c: de:90:00:ea:79:6c:b7:f7:bc:59:ca:be:55:8c:3a: 5a:ec:c8:ba:5e:21:1b:92:d3:1f:86:86:4f:ac:4b: 49:9c:89:35:bd:d1:30:93:08:77:5e:7d:22:b5:bc: 6d:7b:ba:a0:bb:56:d3:21:67:2f:a5:16:8c:ef:03: 54:4a:e4:65:a7:e2:fd:8c:8b:bc:2c:51:ef:ca:f0: b8:01:52:e3:f9:32:c2:ae:c7:1b:cc:f0:82:1e:59: a0:4b:41:9d:38:2e:f4:d0:1a:89:cd:8d:0f:a2:a9: ea:39:53:89:5d:a4:94:97:04:e3:f6:0f:8b:75:de: 32:50:75:97:ca:7c:52:d6:59:f7:1c:69:87:b0:ac: ad:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FF:8E:C5:45:70:01:66:05:1F:CB:65:C1:1D:2E:57:71:B9:91:1D X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 103.70.51.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 65:bd:5c:67:a4:16:ae:ad:1e:64:f4:57:5c:1b:f1:92:18:a7: 6a:b4:69:38:55:2b:cd:29:d3:6b:d6:c7:14:dc:3c:43:0a:62: 98:fa:ff:22:dc:bf:8b:f0:d3:a6:d7:dd:9c:de:1d:2f:ac:64: 8b:4b:2e:1c:a9:bc:0b:1d:3f:95:ea:ba:36:08:a8:94:24:e1: 8c:56:d8:d8:88:a5:07:ee:90:bb:f7:25:21:36:1f:cd:08:64: 81:d2:6f:54:c7:8e:da:37:0c:f4:34:b5:64:ce:b3:b1:fb:9f: 49:f6:eb:5a:71:cf:4b:94:86:9d:49:ac:65:de:2b:40:6d:90: 03:b8:b2:e7:ab:51:2c:6f:2c:bb:b2:85:fa:9e:b9:c7:b2:0d: c4:e7:01:c0:63:d5:b8:62:5f:22:5d:8e:41:40:8b:f1:ae:ad: 15:92:63:85:bd:61:e7:0b:e3:2d:81:61:17:2a:cd:6c:8a:ce: 1b:ab:a0:8a:48:2b:78:7e:24:e7:ec:4a:9a:bc:20:f9:0a:58: 22:e4:29:7c:4e:64:83:58:c1:8a:5d:65:10:7a:b4:51:ef:a5: 5b:d0:d0:b7:9b:3e:e4:c8:e4:64:b8:20:f7:4a:d0:cb:e3:6b: a9:5a:8a:9f:8f:d7:43:47:56:f0:f5:39:07:43:db:0d:10:ac: 4a:49:54:0d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwOTA5MDAwNTI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmNmY0Ni1jZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jCxvaeLI2jDdlKTCdArvjFtIu8Mp0aAbymXmRzqTY/mNLE1xBGrDnb192X2 cioKnEHjI8bgfbSwN/6Ni7++dL1EtiBK6X5oagwZ+kVRpLuBQkyscptIB+PLG0iz 0N6kNJ5hhLyyETP4HOWaowGo5RcecrhPdhzekADqeWy397xZyr5VjDpa7Mi6XiEb ktMfhoZPrEtJnIk1vdEwkwh3Xn0itbxte7qgu1bTIWcvpRaM7wNUSuRlp+L9jIu8 LFHvyvC4AVLj+TLCrscbzPCCHlmgS0GdOC700BqJzY0PoqnqOVOJXaSUlwTj9g+L dd4yUHWXynxS1ln3HGmHsKytHQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKr/jsVF cAFmBR/LZcEdLldxuZEdMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUVGQTNERDAy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjEDBABnRjMDBAC2NocwDQYJKoZIhvcNAQELBQADggEB AGW9XGekFq6tHmT0V1wb8ZIYp2q0aThVK80p02vWxxTcPEMKYpj6/yLcv4vw06bX 3ZzeHS+sZItLLhypvAsdP5XqujYIqJQk4YxW2NiIpQfukLv3JSE2H80IZIHSb1TH jto3DPQ0tWTOs7H7n0n261pxz0uUhp1JrGXeK0BtkAO4suerUSxvLLuyhfqeucey DcTnAcBj1bhiXyJdjkFAi/GurRWSY4W9YecL4y2BYRcqzWyKzhuroIpIK3h+JOfs Spq8IPkKWCLkKXxOZINYwYpdZRB6tFHvpVvQ0LebPuTI5GS4IPdK0Mvja6laip+P 10NHVvD1OQdD2w0QrEpJVA0= -----END CERTIFICATE-----Generated at Wed Sep 10 12:00:06 2025 by rpki-client