$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa File: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (raw, json) Hash identifier: 2BRZTVSl8BpcjXe5d2W/ue5qmKPhQHNXNMprHWOL7Cw= Subject key identifier: 4C:B4:50:E7:AD:32:B6:44:54:2A:1A:87:EE:67:8A:5E:DB:92:FC:D3 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0358 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:01 +0000 ROA not before: Wed 03 Sep 2025 03:20:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132335 IP address blocks: 45.252.190.0/24 maxlen: 24 103.205.140.0/24 maxlen: 24 103.205.141.0/24 maxlen: 24 103.205.142.0/24 maxlen: 24 103.205.143.0/24 maxlen: 24 103.217.220.0/24 maxlen: 24 103.217.221.0/24 maxlen: 24 103.217.222.0/24 maxlen: 24 103.217.223.0/24 maxlen: 24 103.227.1.0/24 maxlen: 24 103.247.19.0/24 maxlen: 24 202.94.172.0/24 maxlen: 24 202.94.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 856 (0x358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7b3e1-48e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f6:d0:5e:ed:7a:b3:61:27:ed:5f:a5:0c:c3: 17:46:4d:ca:bf:52:93:86:ef:d2:e6:9f:5e:3f:25: dd:e8:2b:bf:22:29:4e:d8:80:e1:3a:c8:ac:fa:31: 68:b0:65:40:55:2c:6e:a9:8c:dd:58:70:93:65:02: 04:f3:1e:55:26:0b:09:9d:3e:9d:72:62:ba:57:b7: f6:93:57:72:45:e3:10:67:87:9d:b7:41:69:a0:53: 52:01:8d:c0:c4:9d:ac:4c:81:1c:9f:ab:c2:d2:3d: a0:bf:f3:d0:e6:52:30:60:56:83:d5:80:3c:6d:52: d9:79:53:ff:87:98:b7:75:32:e1:e6:5a:5b:2d:40: aa:18:e8:4d:ef:1a:e7:a6:87:72:db:56:b0:71:2f: fa:a1:a4:34:30:1f:f5:69:ed:e8:6f:38:75:b0:5d: ec:ba:7c:73:73:00:95:2f:4f:9b:b5:e3:7f:bd:9e: e2:81:bb:41:3c:6a:e9:d3:81:22:ef:3c:d6:95:1e: b5:bf:1d:41:a9:04:88:62:00:a5:8d:d8:06:ae:11: f4:f0:bd:3b:e1:71:f8:f8:c6:14:54:31:08:f5:0b: 19:52:9b:6c:f4:1d:b7:dd:94:a8:6f:45:30:ce:df: d6:35:b7:2c:cb:31:d0:91:d5:a4:a3:73:1c:c1:32: 45:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B4:50:E7:AD:32:B6:44:54:2A:1A:87:EE:67:8A:5E:DB:92:FC:D3 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.252.190.0/24 103.205.140.0/22 103.217.220.0/22 103.227.1.0/24 103.247.19.0/24 202.94.172.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:cc:c5:1e:4d:17:9b:92:41:59:37:e2:a7:c5:8f:36:aa:1c: 70:0d:5f:ff:7a:64:af:7c:4d:9f:df:2f:da:26:52:1f:bc:e0: 8b:6e:38:fd:15:c5:57:1b:d3:72:0f:74:4f:ad:51:90:ce:98: 25:f4:2f:82:17:07:f7:c7:36:93:ff:e2:19:11:0d:62:2d:34: 1d:46:e6:17:52:d4:8b:6b:1e:60:7b:4e:e5:05:35:4e:9e:c0: bd:d9:e0:b4:df:db:93:35:1e:33:15:15:13:f1:1f:cf:bc:79: 30:ae:b3:ad:b5:56:71:05:f7:03:09:92:9e:f0:4d:3b:67:61: 08:0b:fc:8b:3e:98:cc:b5:d8:a4:f7:15:8c:a7:53:b7:28:9f: 62:04:d6:5a:f6:c6:46:29:91:4e:90:96:e2:c1:2a:bb:57:9a: e9:4b:4f:93:ce:8d:09:51:21:cb:49:41:95:11:06:2f:47:9e: 23:28:ee:75:01:10:48:90:d1:18:4c:1a:e5:b3:39:9e:97:17: 3a:ae:25:62:5c:a2:9f:0e:0f:b4:8e:fd:98:73:6e:8b:7d:b9: 7c:62:00:48:16:4a:10:a5:a5:11:1d:41:71:1d:db:98:6f:7b: c9:09:ce:3b:f5:ad:de:96:08:1f:73:aa:a2:4f:85:c7:b0:63: 4d:0c:42:58 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICA1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjNlMS00OGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfbQXu16s2En7V+lDMMXRk3Kv1KThu/S5p9ePyXd6Cu/IilO2IDhOsis+jFo sGVAVSxuqYzdWHCTZQIE8x5VJgsJnT6dcmK6V7f2k1dyReMQZ4edt0FpoFNSAY3A xJ2sTIEcn6vC0j2gv/PQ5lIwYFaD1YA8bVLZeVP/h5i3dTLh5lpbLUCqGOhN7xrn pody21awcS/6oaQ0MB/1ae3obzh1sF3sunxzcwCVL0+bteN/vZ7igbtBPGrp04Ei 7zzWlR61vx1BqQSIYgCljdgGrhH08L074XH4+MYUVDEI9QsZUpts9B233ZSob0Uw zt/WNbcsyzHQkdWko3McwTJFhwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFEy0UOet MrZEVCoah+5nil7bkvzTMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTA2NDdGMkVB MTRBMTFFRDhGRkJBNjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAAt/L4DBAJnzYwDBAJn2dwDBABn4wEDBABn9xMDBAHKXqww DQYJKoZIhvcNAQELBQADggEBADvMxR5NF5uSQVk34qfFjzaqHHANX/96ZK98TZ/f L9omUh+84ItuOP0VxVcb03IPdE+tUZDOmCX0L4IXB/fHNpP/4hkRDWItNB1G5hdS 1ItrHmB7TuUFNU6ewL3Z4LTf25M1HjMVFRPxH8+8eTCus621VnEF9wMJkp7wTTtn YQgL/Is+mMy12KT3FYynU7con2IE1lr2xkYpkU6QluLBKrtXmulLT5POjQlRIctJ QZURBi9HniMo7nUBEEiQ0RhMGuWzOZ6XFzquJWJcop8OD7SO/Zhzbot9uXxiAEgW ShClpREdQXEd25hve8kJzjv1rd6WCB9zqqJPhcewY00MQlg= -----END CERTIFICATE-----Generated at Wed Sep 10 07:07:12 2025 by rpki-client