$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/E3AAE94243B511EB8DA3F473C4F9AE02.roa File: E3AAE94243B511EB8DA3F473C4F9AE02.roa (raw, json) Hash identifier: TVq9O75Mk8dBtHdZIdf95FNbNlO+Xgr7jZqSFhUdSlc= Subject key identifier: F4:27:42:89:EE:62:00:5E:93:8F:77:8C:53:F6:D4:FE:6A:D5:C5:28 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 0819 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/E3AAE94243B511EB8DA3F473C4F9AE02.roa Signing time: Tue 02 Sep 2025 21:42:10 +0000 ROA not before: Tue 02 Sep 2025 21:42:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138655 IP address blocks: 110.93.226.0/24 maxlen: 24 110.93.227.0/24 maxlen: 24 119.63.138.0/24 maxlen: 24 119.63.139.0/24 maxlen: 24 221.132.118.0/24 maxlen: 24 221.132.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2073 (0x819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Sep 2 21:42:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b764b2-4350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3c:09:1e:64:f7:b9:53:77:0c:c0:80:10:81: 32:9f:7e:f3:78:d5:8a:81:47:3d:e0:0b:60:85:6d: 4c:b1:2d:d0:dd:ea:4e:b7:b0:10:7a:a4:48:75:8a: 09:f6:c0:c0:96:25:0d:47:d7:3b:59:a9:ed:5b:7d: 28:ce:e5:d8:97:f1:38:47:77:b6:bc:b2:e2:9a:ad: 55:b6:3e:6f:b2:70:f7:9a:35:7e:de:aa:f6:d3:b4: ac:22:56:77:8e:56:69:4e:fb:5f:c3:d1:bb:e8:7f: 7f:ae:cb:6f:e9:81:e8:84:82:45:4d:02:d2:9c:90: 90:dc:4b:2b:e0:a8:50:dd:b5:cd:92:37:57:0d:7e: d4:2f:86:02:a9:9f:f3:21:c5:af:2d:4a:4a:c2:69: 3c:d8:81:98:62:30:3f:ff:0b:b3:b0:13:20:20:3c: fc:9a:21:5d:f3:09:e4:e8:53:47:86:38:7f:8f:7e: 54:12:82:5b:35:31:36:b3:85:b7:bf:2b:45:18:88: d0:0d:af:a1:44:70:7f:db:95:65:ee:40:f1:f9:05: f9:9d:2f:29:c5:2a:c2:f0:45:bd:b0:ca:98:39:22: 74:89:af:0c:a6:69:4d:e3:60:4d:24:c9:f2:09:b2: a2:cc:1d:aa:92:12:8e:7a:3f:f5:d1:79:3f:89:a3: 28:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:27:42:89:EE:62:00:5E:93:8F:77:8C:53:F6:D4:FE:6A:D5:C5:28 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/E3AAE94243B511EB8DA3F473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.93.226.0/23 119.63.138.0/23 221.132.118.0/23 Signature Algorithm: sha256WithRSAEncryption 55:1e:f4:5a:73:93:b6:36:94:5b:70:c5:55:22:9a:dd:57:55: 17:8c:eb:6a:9f:fc:cd:9e:5b:b4:d0:55:29:ed:dd:7d:62:72: 31:47:3b:4a:a1:cb:a9:ff:14:99:98:37:4e:a5:a9:38:75:c9: ae:65:e7:d9:2a:77:b5:ed:54:6f:e0:2a:67:c3:41:85:86:c4: 11:83:96:e2:fb:07:85:64:e8:a8:42:98:62:aa:ba:c2:a5:6a: df:fe:c7:23:74:aa:7b:22:69:78:43:bb:28:df:7b:71:07:5c: ad:b7:8a:f9:c6:5c:c9:1b:57:2a:9b:91:23:9f:a9:b1:64:16: ec:8b:25:cd:ca:cd:d4:db:8f:73:2f:a3:41:10:14:ca:44:7b: 3d:d5:88:91:e7:78:23:80:64:99:cc:89:45:cf:d1:b7:be:85: cf:87:31:b7:cd:17:95:10:02:97:47:f8:d8:29:9b:9b:36:a9: b1:4c:9e:9d:c7:6c:83:96:c1:4e:e5:db:aa:3d:b4:e3:c1:1c: f9:c1:78:75:ad:9f:f8:91:02:4c:c4:1d:7f:ff:66:be:ed:e1: 0d:09:e7:4d:63:7d:55:b4:8f:58:63:55:5e:b4:e9:25:ec:9a: 7e:3c:2f:16:54:9f:9a:bd:26:0b:58:47:f9:d1:e3:14:d4:ef: 35:de:d6:5f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjUwOTAyMjE0MjEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NjRiMi00MzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjwJHmT3uVN3DMCAEIEyn37zeNWKgUc94AtghW1MsS3Q3epOt7AQeqRIdYoJ 9sDAliUNR9c7WantW30ozuXYl/E4R3e2vLLimq1Vtj5vsnD3mjV+3qr207SsIlZ3 jlZpTvtfw9G76H9/rstv6YHohIJFTQLSnJCQ3Esr4KhQ3bXNkjdXDX7UL4YCqZ/z IcWvLUpKwmk82IGYYjA//wuzsBMgIDz8miFd8wnk6FNHhjh/j35UEoJbNTE2s4W3 vytFGIjQDa+hRHB/25Vl7kDx+QX5nS8pxSrC8EW9sMqYOSJ0ia8MpmlN42BNJMny CbKizB2qkhKOej/10Xk/iaMoOwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPQnQonu YgBek493jFP21P5q1cUoMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyMEIvQkE3MUI2NDgxMjAzMTFFQkJBQTE5NDE0QzRGOUFFMDIvRTNBQUU5NDI0 M0I1MTFFQjhEQTNGNDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFuXeIDBAF3P4oDBAHdhHYwDQYJKoZIhvcNAQELBQADggEB AFUe9Fpzk7Y2lFtwxVUimt1XVReM62qf/M2eW7TQVSnt3X1icjFHO0qhy6n/FJmY N06lqTh1ya5l59kqd7XtVG/gKmfDQYWGxBGDluL7B4Vk6KhCmGKqusKlat/+xyN0 qnsiaXhDuyjfe3EHXK23ivnGXMkbVyqbkSOfqbFkFuyLJc3KzdTbj3Mvo0EQFMpE ez3ViJHneCOAZJnMiUXP0be+hc+HMbfNF5UQApdH+Ngpm5s2qbFMnp3HbIOWwU7l 26o9tOPBHPnBeHWtn/iRAkzEHX//Zr7t4Q0J501jfVW0j1hjVV606SXsmn48LxZU n5q9JgtYR/nR4xTU7zXe1l8= -----END CERTIFICATE-----Generated at Sat Sep 6 23:10:57 2025 by rpki-client