$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa File: 182057F63ACE11EC8987F871C4F9AE02.roa (raw, json) Hash identifier: yv4yXxdZSOzS3VJoLoyhG//bnrtF6VAnh10WOZtqxtY= Subject key identifier: 47:91:69:49:50:80:DC:71:93:43:15:5D:EE:A7:82:F4:54:A7:DC:97 Certificate issuer: /CN=A91AB740/serialNumber=58A99587D5638D8688C25890C7841F3251B496D7 Certificate serial: 06E5 Authority key identifier: 58:A9:95:87:D5:63:8D:86:88:C2:58:90:C7:84:1F:32:51:B4:96:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa Signing time: Thu 14 Aug 2025 15:52:59 +0000 ROA not before: Thu 14 Aug 2025 15:52:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58926 IP address blocks: 103.248.236.0/22 maxlen: 22 103.248.236.0/22 maxlen: 24 103.248.236.0/23 maxlen: 23 103.248.236.0/24 maxlen: 24 103.248.237.0/24 maxlen: 24 103.248.238.0/23 maxlen: 23 103.248.238.0/24 maxlen: 24 103.248.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.crl rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB740, serialNumber=58A99587D5638D8688C25890C7841F3251B496D7 Validity Not Before: Aug 14 15:52:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689e065b-07fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bc:44:8e:25:11:74:ff:4e:ad:b6:fb:08:53: ff:f2:e1:b8:df:40:51:48:44:19:4a:bd:7e:98:9c: 58:11:ae:01:fb:ce:1b:e5:4d:40:11:02:f4:23:08: 1f:4d:d9:af:d3:0f:a4:ca:bb:d8:5c:72:53:a6:86: 0b:19:50:50:ef:98:ec:4f:87:24:8f:c9:d9:94:93: b7:03:b2:d5:fe:9b:89:cf:00:e5:32:e7:5e:57:95: cf:26:b4:6f:76:a0:7e:8c:40:99:76:a0:64:c3:ae: 02:30:71:89:88:05:05:71:b3:b9:70:f3:42:ba:c4: d2:b0:1f:fd:ed:40:b8:e9:74:9e:cc:54:ad:4f:f0: 07:6b:36:98:b4:36:44:a2:2c:55:06:06:d1:18:0f: 8d:4a:01:0a:cf:5b:d2:7e:c2:4b:dc:97:fb:5e:05: 49:b7:92:e8:ee:1c:8f:95:1b:43:2b:03:2a:22:8e: 57:d7:a0:87:85:16:5f:9b:0d:a7:f2:ff:0d:1a:fd: 40:d6:2a:f2:67:74:28:a8:1b:39:10:dd:ef:e6:46: 59:cf:bf:6c:61:8f:11:e9:c8:00:a7:6d:08:0a:b7: dd:62:29:8c:eb:7a:d2:66:73:3a:0d:63:3a:cd:cb: 1a:cf:7c:ea:dc:0a:3e:37:42:61:00:f2:5d:85:c5: 49:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:91:69:49:50:80:DC:71:93:43:15:5D:EE:A7:82:F4:54:A7:DC:97 X509v3 Authority Key Identifier: keyid:58:A9:95:87:D5:63:8D:86:88:C2:58:90:C7:84:1F:32:51:B4:96:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.236.0/22 Signature Algorithm: sha256WithRSAEncryption 69:26:ad:79:1a:2e:f4:d4:ff:95:d7:98:c8:16:46:dd:97:db: 78:2c:8c:13:91:76:99:d2:94:80:be:35:f8:60:ee:f5:59:c7: 59:94:28:d7:ef:2d:f6:2a:ff:7e:f7:ba:cf:e4:66:2d:5b:fe: 9e:2b:f5:57:6b:83:e0:e1:70:62:93:c0:56:e3:8e:51:4e:bc: 74:2b:28:eb:ef:49:e1:52:ad:74:88:c7:5a:fe:9e:41:3d:fe: bb:2b:5c:df:d6:bb:31:11:2e:43:42:82:14:1c:fe:60:81:23: 41:98:8d:91:b8:2d:5f:09:90:74:14:3c:fc:74:cf:70:7b:df: 98:fc:6b:21:14:19:17:70:69:04:bb:b2:45:0e:8f:ab:3e:1b: 69:ab:9a:a0:d9:a6:3f:58:8e:fc:43:1e:52:11:30:05:58:f5: 90:23:67:af:0a:d6:be:9c:4d:57:13:4d:52:3c:da:24:ae:cb: 89:ed:61:15:fc:01:60:8d:2c:2f:ae:35:5d:b0:b7:32:32:9c: 72:49:6f:fa:6c:6f:31:2a:cd:48:c9:43:bb:f1:e9:95:7b:c1: fe:3b:56:66:a0:62:c3:f1:68:71:f2:89:e6:41:9b:8c:72:34: c9:54:52:ae:be:22:45:91:94:8d:fc:7e:17:36:53:b7:6f:46: b4:f1:7d:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NDAxMTAvBgNVBAUTKDU4QTk5NTg3RDU2MzhEODY4OEMyNTg5MEM3ODQxRjMy NTFCNDk2RDcwHhcNMjUwODE0MTU1MjU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMDY1Yi0wN2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrxEjiURdP9Orbb7CFP/8uG430BRSEQZSr1+mJxYEa4B+84b5U1AEQL0Iwgf Tdmv0w+kyrvYXHJTpoYLGVBQ75jsT4ckj8nZlJO3A7LV/puJzwDlMudeV5XPJrRv dqB+jECZdqBkw64CMHGJiAUFcbO5cPNCusTSsB/97UC46XSezFStT/AHazaYtDZE oixVBgbRGA+NSgEKz1vSfsJL3Jf7XgVJt5Lo7hyPlRtDKwMqIo5X16CHhRZfmw2n 8v8NGv1A1iryZ3QoqBs5EN3v5kZZz79sYY8R6cgAp20ICrfdYimM63rSZnM6DWM6 zcsaz3zq3Ao+N0JhAPJdhcVJGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEeRaUlQ gNxxk0MVXe6ngvRUp9yXMB8GA1UdIwQYMBaAFFiplYfVY42GiMJYkMeEHzJRtJbX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0MC82RTVBQzQ1NEZE MkIxMUU0QkI5MzlCNDNDNEY5QUUwMi9XS21WaDlWampZYUl3bGlReDRRZk1sRzBs dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLbVZoOVZqallhSXdsaVF4NFFmTWxHMGx0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI3NDAvNkU1QUM0NTRGRDJCMTFFNEJCOTM5QjQzQzRGOUFFMDIvMTgyMDU3RjYz QUNFMTFFQzg5ODdGODcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn+OwwDQYJKoZIhvcNAQELBQADggEBAGkmrXkaLvTU/5XX mMgWRt2X23gsjBORdpnSlIC+Nfhg7vVZx1mUKNfvLfYq/373us/kZi1b/p4r9Vdr g+DhcGKTwFbjjlFOvHQrKOvvSeFSrXSIx1r+nkE9/rsrXN/WuzERLkNCghQc/mCB I0GYjZG4LV8JkHQUPPx0z3B735j8ayEUGRdwaQS7skUOj6s+G2mrmqDZpj9YjvxD HlIRMAVY9ZAjZ68K1r6cTVcTTVI82iSuy4ntYRX8AWCNLC+uNV2wtzIynHJJb/ps bzEqzUjJQ7vx6ZV7wf47VmagYsPxaHHyieZBm4xyNMlUUq6+IkWRlI38fhc2U7dv RrTxfYI= -----END CERTIFICATE-----Generated at Fri Aug 22 18:55:30 2025 by rpki-client