$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/09534036847011F0A17FCE63C4F9AE02.roa File: 09534036847011F0A17FCE63C4F9AE02.roa (raw, json) Hash identifier: PdJl8I+ys5mY6W97HjsxfAl70ScWMMUlyRe/qkuqiA0= Subject key identifier: 6B:6B:04:C0:6D:54:60:58:BA:4D:82:D7:09:5C:D9:D2:0A:3C:1B:4C Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0B76 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/09534036847011F0A17FCE63C4F9AE02.roa Signing time: Fri 29 Aug 2025 00:35:18 +0000 ROA not before: Fri 29 Aug 2025 00:35:18 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 142622 IP address blocks: 103.244.220.0/24 maxlen: 24 103.244.222.0/24 maxlen: 24 103.244.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:20:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2934 (0xb76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Aug 29 00:35:18 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68b0f5c5-4a05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e5:89:74:e1:c6:04:a3:e9:56:43:a6:0d:f4: 90:d9:26:09:8b:22:83:41:48:d0:82:35:47:38:31: 9e:2f:84:40:21:47:3b:a2:99:b6:be:51:2d:39:17: 7b:4b:67:a4:32:13:40:73:4a:d8:aa:b8:f6:0c:2a: b4:29:de:eb:37:e3:fd:0c:11:0d:2c:1c:0b:e4:ed: 25:73:68:0d:0d:46:f1:7f:7e:85:c0:ef:20:d8:48: a2:f2:b6:e5:c4:98:f7:b1:69:c2:cb:f7:d8:a6:8a: c5:29:ab:f3:8a:9a:88:90:96:f1:55:42:26:62:5e: 0e:3c:ef:dc:ae:09:e3:6f:eb:bd:24:2c:19:c7:5c: d7:c9:f0:a6:46:00:3c:0a:59:04:dc:d9:38:8e:4d: 55:ee:9c:cb:80:14:34:1d:61:59:43:90:99:d7:32: ea:5f:d4:3e:bd:73:b0:96:5d:5f:fa:32:c4:24:b2: 80:0e:f3:1d:b4:8b:d6:0f:3e:dc:0f:94:db:02:1c: e2:91:4f:87:72:69:44:78:a7:7a:d8:1a:46:f6:17: 33:a3:35:af:1f:fd:1c:32:03:4e:b8:e5:4d:be:61: a2:fe:a5:29:76:3f:f9:49:bc:3d:11:a3:ac:5c:0e: 50:46:75:05:df:fc:5c:33:82:1a:ee:d1:50:00:ac: 52:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6B:04:C0:6D:54:60:58:BA:4D:82:D7:09:5C:D9:D2:0A:3C:1B:4C X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/09534036847011F0A17FCE63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.220.0/24 103.244.222.0/23 Signature Algorithm: sha256WithRSAEncryption 93:35:3a:70:29:aa:fe:34:40:c4:c6:dd:64:f1:d5:70:11:d3: f3:55:4c:30:64:a3:77:32:f4:5b:66:24:b4:f4:6e:bf:8c:71: 75:f3:5b:1f:3c:b3:6e:a9:7f:f3:a6:21:fe:c2:68:55:b2:f8: 71:dc:9c:e8:2f:7d:e2:79:ed:9f:18:29:ed:90:2f:53:fb:7f: 48:3d:94:d4:b1:22:d1:dd:00:14:0c:01:78:04:40:6e:a1:d3: 27:7f:51:84:c6:95:18:26:f2:9b:cd:a1:bd:1e:64:5a:3a:27: 8a:d6:81:ce:63:4b:a6:e0:dc:37:51:f1:f4:5f:11:ce:45:ac: 02:a6:35:d5:c6:63:b4:7d:57:31:33:24:4e:f5:6e:0a:a1:03: c0:d8:63:31:92:7f:e7:e6:9b:3c:48:c5:13:b7:c5:f6:64:ce: 11:66:c3:11:a9:ca:11:6a:84:9a:b3:3b:54:43:11:88:99:0d: 59:c8:95:48:0b:96:6f:2d:ce:02:c4:b6:75:6f:31:96:2f:73: 1a:9c:42:65:06:c5:90:28:e5:e2:d8:b7:42:dc:67:db:e2:8c: c7:2f:c4:6c:0d:ef:3b:c4:d9:6b:5a:f1:c6:7f:bf:a1:88:8d: 0d:ec:dc:29:a6:c7:ac:a4:83:ef:e1:fe:d3:03:3f:49:b8:54: 5b:da:b5:46 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUwODI5MDAzNTE4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwZjVjNS00YTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreWJdOHGBKPpVkOmDfSQ2SYJiyKDQUjQgjVHODGeL4RAIUc7opm2vlEtORd7 S2ekMhNAc0rYqrj2DCq0Kd7rN+P9DBENLBwL5O0lc2gNDUbxf36FwO8g2Eii8rbl xJj3sWnCy/fYporFKavzipqIkJbxVUImYl4OPO/crgnjb+u9JCwZx1zXyfCmRgA8 ClkE3Nk4jk1V7pzLgBQ0HWFZQ5CZ1zLqX9Q+vXOwll1f+jLEJLKADvMdtIvWDz7c D5TbAhzikU+HcmlEeKd62BpG9hczozWvH/0cMgNOuOVNvmGi/qUpdj/5Sbw9EaOs XA5QRnUF3/xcM4Ia7tFQAKxSaQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGtrBMBt VGBYuk2C1wlc2dIKPBtMMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvMDk1MzQwMzY4 NDcwMTFGMEExN0ZDRTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn9NwDBAFn9N4wDQYJKoZIhvcNAQELBQADggEBAJM1OnAp qv40QMTG3WTx1XAR0/NVTDBko3cy9FtmJLT0br+McXXzWx88s26pf/OmIf7CaFWy +HHcnOgvfeJ57Z8YKe2QL1P7f0g9lNSxItHdABQMAXgEQG6h0yd/UYTGlRgm8pvN ob0eZFo6J4rWgc5jS6bg3DdR8fRfEc5FrAKmNdXGY7R9VzEzJE71bgqhA8DYYzGS f+fmmzxIxRO3xfZkzhFmwxGpyhFqhJqzO1RDEYiZDVnIlUgLlm8tzgLEtnVvMZYv cxqcQmUGxZAo5eLYt0LcZ9vijMcvxGwN7zvE2Wta8cZ/v6GIjQ3s3Cmmx6ykg+/h /tMDP0m4VFvatUY= -----END CERTIFICATE-----Generated at Mon Sep 8 01:10:56 2025 by rpki-client