$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa File: 94C13908C4AF11EDBCC55111C4F9AE02.roa (raw, json) Hash identifier: rRStCv6LwOYU9m23O/Ra+02r0H7+4ZuKu4MCypTDG7U= Subject key identifier: D5:84:45:D1:D0:E9:02:5C:25:D1:64:73:75:30:30:18:45:9E:86:57 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0360 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:14 +0000 ROA not before: Wed 03 Sep 2025 03:20:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 39486 IP address blocks: 43.228.237.0/24 maxlen: 24 103.109.244.0/24 maxlen: 24 103.192.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:14 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7b3ed-8a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d4:c5:da:be:19:6e:3f:f4:39:aa:16:79:de: 48:e3:5b:d2:ea:b9:0a:0f:18:34:2d:47:b5:34:74: 0a:07:b9:b7:d8:9b:b7:da:99:d3:fe:ae:9e:fd:7a: 27:9b:23:9f:dc:ad:95:4f:8e:b9:ca:36:64:7c:e1: b7:67:58:af:0c:78:9c:05:d8:b3:bf:46:37:b0:86: 81:b6:f7:86:72:72:b5:7b:2a:39:64:f4:82:d8:9f: 62:65:48:40:ce:cc:e0:43:bc:58:0f:9b:1f:9f:06: 75:4f:72:dc:fe:30:1e:4d:27:49:d4:3a:47:d0:d1: 86:5e:4a:d8:81:b5:10:f4:c3:c0:24:38:69:77:68: e5:54:d4:64:99:8d:0c:b4:6f:1f:f5:d4:fd:8b:dc: 5c:ed:59:c7:2d:05:b5:83:5e:b6:40:52:f2:cb:6e: 5d:5b:07:59:54:e6:d1:c9:df:36:92:ce:dd:b8:db: f1:3c:d6:5a:70:0b:bc:ed:1a:a9:00:cc:df:61:64: 77:02:f8:33:74:f3:c5:4d:4e:b3:07:a7:41:f8:5c: d5:f2:76:8f:41:a9:d1:e6:f8:30:ed:1c:43:56:68: 95:15:2b:4b:ba:b8:78:82:c9:cb:57:ae:c5:89:64: 52:65:74:8f:a8:2e:54:0f:6f:be:e5:c6:7c:50:1c: 6d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:84:45:D1:D0:E9:02:5C:25:D1:64:73:75:30:30:18:45:9E:86:57 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.237.0/24 103.109.244.0/24 103.192.205.0/24 Signature Algorithm: sha256WithRSAEncryption 27:8b:c0:d3:6b:92:87:4f:a7:7f:c0:dc:8d:8e:20:b9:6f:5b: 87:f7:23:fb:00:45:07:88:aa:99:29:54:65:a7:92:5c:8f:d3: 32:46:24:4e:43:56:b6:7a:38:de:76:db:69:09:33:58:1a:91: 06:94:9f:29:12:eb:09:ae:91:44:3e:e7:03:f4:d3:df:23:05: ea:e7:55:94:2d:89:91:11:d7:94:f9:13:48:b9:93:43:70:dd: c4:87:c8:a8:69:80:97:df:cb:00:73:1f:e5:f1:e6:c6:bc:d6: 9f:16:e6:1e:ff:45:20:8f:90:21:9a:69:d4:49:63:55:8b:3e: 14:a2:09:1c:9c:e7:74:e8:07:73:6e:ba:ae:48:8c:c4:92:a6: 60:f7:0e:ab:5c:55:96:e5:2b:20:c3:a0:04:6d:db:71:cc:54: 63:e1:c2:b1:bc:3f:d8:fd:72:a0:f2:ce:4d:bb:55:d0:f2:75: 53:8b:ef:a5:a6:e8:b4:54:4e:bb:48:f5:d5:dd:9c:c6:ef:83: 27:d7:fc:33:ed:07:cd:93:f8:16:87:26:95:b5:92:24:6b:bb: 66:d0:5f:4c:36:e6:73:f7:1d:42:44:f9:d5:97:c4:a9:88:61: ef:1c:93:f1:f6:43:7e:76:87:df:25:d0:1e:51:9d:f5:6d:56: 95:64:59:ea -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjNlZC04YTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NTF2r4Zbj/0OaoWed5I41vS6rkKDxg0LUe1NHQKB7m32Ju32pnT/q6e/Xon myOf3K2VT465yjZkfOG3Z1ivDHicBdizv0Y3sIaBtveGcnK1eyo5ZPSC2J9iZUhA zszgQ7xYD5sfnwZ1T3Lc/jAeTSdJ1DpH0NGGXkrYgbUQ9MPAJDhpd2jlVNRkmY0M tG8f9dT9i9xc7VnHLQW1g162QFLyy25dWwdZVObRyd82ks7duNvxPNZacAu87Rqp AMzfYWR3AvgzdPPFTU6zB6dB+FzV8naPQanR5vgw7RxDVmiVFStLurh4gsnLV67F iWRSZXSPqC5UD2++5cZ8UBxtswIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNWERdHQ 6QJcJdFkc3UwMBhFnoZXMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTRDMTM5MDhD NEFGMTFFREJDQzU1MTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr5O0DBABnbfQDBABnwM0wDQYJKoZIhvcNAQELBQADggEB ACeLwNNrkodPp3/A3I2OILlvW4f3I/sARQeIqpkpVGWnklyP0zJGJE5DVrZ6ON52 22kJM1gakQaUnykS6wmukUQ+5wP0098jBernVZQtiZER15T5E0i5k0Nw3cSHyKhp gJffywBzH+Xx5sa81p8W5h7/RSCPkCGaadRJY1WLPhSiCRyc53ToB3Nuuq5IjMSS pmD3DqtcVZblKyDDoARt23HMVGPhwrG8P9j9cqDyzk27VdDydVOL76Wm6LRUTrtI 9dXdnMbvgyfX/DPtB82T+BaHJpW1kiRru2bQX0w25nP3HUJE+dWXxKmIYe8ck/H2 Q352h98l0B5RnfVtVpVkWeo= -----END CERTIFICATE-----Generated at Wed Sep 10 07:11:56 2025 by rpki-client