$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/CA1A46101A5B11EE89B07267C4F9AE02.roa File: CA1A46101A5B11EE89B07267C4F9AE02.roa (raw, json) Hash identifier: AmuwqsBSe7hIWLuijSaz8cznV1ExxkSwedidAfhqBys= Subject key identifier: 26:7E:AA:92:6F:C7:C5:7B:4C:FD:C1:D3:7B:7F:35:4F:7B:4B:82:7E Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 035F Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/CA1A46101A5B11EE89B07267C4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:13 +0000 ROA not before: Wed 03 Sep 2025 03:20:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 207990 IP address blocks: 103.109.80.0/23 maxlen: 24 103.192.206.0/24 maxlen: 24 103.194.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 863 (0x35f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7b3ec-d9c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:aa:6e:1c:5b:a0:02:a1:80:6c:3d:9f:dd:5a: ff:a6:41:a1:ef:4e:88:64:74:6e:d7:f1:20:24:43: a5:64:88:6c:35:d4:44:7c:63:a1:d5:9f:a0:5c:da: eb:97:7e:44:25:0a:d5:b4:ed:b3:f8:20:f7:e5:9b: 50:ab:22:b6:7e:6f:34:5d:be:e0:bd:3b:26:a9:c4: ec:75:81:5b:d6:80:23:da:c5:1b:2f:6f:de:34:78: a6:ee:6a:1a:64:27:8a:6d:31:f9:49:81:9b:7e:82: 5c:d5:52:d4:39:70:35:9d:a0:53:19:04:b7:b1:a5: f7:b6:09:79:43:1b:0f:91:8c:02:cc:ee:45:3e:73: d4:60:15:53:12:66:05:30:37:de:bf:e9:c0:48:f4: cd:a6:da:f4:80:24:4a:07:73:fc:02:8a:a8:86:13: b6:56:5e:e8:f3:d6:ba:3c:1a:c9:04:33:e0:eb:3b: 71:db:50:94:b0:9e:56:9b:8c:b5:5e:48:2a:ce:63: 05:c5:05:3a:92:c1:9f:bf:9b:32:8b:31:42:71:19: 8f:59:16:44:68:fb:5e:a7:f6:fa:75:85:38:e1:4f: 58:19:5d:32:0c:6e:cb:3f:9c:25:e8:16:78:be:7c: b6:6d:80:34:e1:d9:12:41:85:fa:eb:fc:89:a5:bd: 0c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7E:AA:92:6F:C7:C5:7B:4C:FD:C1:D3:7B:7F:35:4F:7B:4B:82:7E X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/CA1A46101A5B11EE89B07267C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.80.0/23 103.192.206.0/24 103.194.114.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:1b:2a:7e:65:b9:bc:67:d2:00:00:76:c1:9b:25:76:8c:86: 26:74:95:aa:b6:c2:45:77:a0:eb:a1:aa:55:e0:b6:3e:09:8d: a9:7c:a3:42:df:83:dd:df:39:9f:4f:99:e3:73:46:53:04:10: 35:11:57:74:c9:69:6c:53:d7:ea:86:b8:90:27:66:df:b2:cf: a2:e3:66:1d:69:ef:d5:93:e0:a3:ca:76:e0:1f:0b:d5:4c:b4: a3:db:9f:3b:eb:da:0e:16:83:02:f9:22:2f:cc:28:62:e0:75: e6:68:ce:d0:74:44:47:d2:4a:fc:c7:9c:a3:eb:79:10:04:24: 59:1c:ad:e3:29:af:3b:b3:6b:c7:66:93:d3:9e:ff:d4:86:ad: de:df:2f:e3:e6:98:16:55:43:d2:2d:12:e0:cf:69:b3:3a:6c: b0:56:95:08:0a:37:b6:ab:3f:61:1a:d1:ad:42:64:c7:ad:7c: 24:8a:0b:6c:9c:80:ec:e6:43:6a:3c:e8:fb:e9:2d:b8:61:bb: 9e:3d:54:af:b0:c8:55:18:85:d6:a3:e8:d0:18:b5:a7:4b:ab: ca:34:d1:c7:08:c2:13:74:08:2b:eb:12:51:5c:44:2e:89:82: 8a:c6:10:a2:33:54:66:0e:ec:15:b2:dd:a9:53:7d:32:b5:b3: 75:bf:39:1a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDEzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjNlYy1kOWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1apuHFugAqGAbD2f3Vr/pkGh706IZHRu1/EgJEOlZIhsNdREfGOh1Z+gXNrr l35EJQrVtO2z+CD35ZtQqyK2fm80Xb7gvTsmqcTsdYFb1oAj2sUbL2/eNHim7moa ZCeKbTH5SYGbfoJc1VLUOXA1naBTGQS3saX3tgl5QxsPkYwCzO5FPnPUYBVTEmYF MDfev+nASPTNptr0gCRKB3P8AoqohhO2Vl7o89a6PBrJBDPg6ztx21CUsJ5Wm4y1 XkgqzmMFxQU6ksGfv5syizFCcRmPWRZEaPtep/b6dYU44U9YGV0yDG7LP5wl6BZ4 vny2bYA04dkSQYX66/yJpb0MQQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCZ+qpJv x8V7TP3B03t/NU97S4J+MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvQ0ExQTQ2MTAx QTVCMTFFRTg5QjA3MjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnbVADBABnwM4DBABnwnIwDQYJKoZIhvcNAQELBQADggEB AD0bKn5lubxn0gAAdsGbJXaMhiZ0laq2wkV3oOuhqlXgtj4Jjal8o0Lfg93fOZ9P meNzRlMEEDURV3TJaWxT1+qGuJAnZt+yz6LjZh1p79WT4KPKduAfC9VMtKPbnzvr 2g4WgwL5Ii/MKGLgdeZoztB0REfSSvzHnKPreRAEJFkcreMprzuza8dmk9Oe/9SG rd7fL+PmmBZVQ9ItEuDPabM6bLBWlQgKN7arP2Ea0a1CZMetfCSKC2ycgOzmQ2o8 6PvpLbhhu549VK+wyFUYhdaj6NAYtadLq8o00ccIwhN0CCvrElFcRC6JgorGEKIz VGYO7BWy3alTfTK1s3W/ORo= -----END CERTIFICATE-----Generated at Mon Sep 8 13:49:00 2025 by rpki-client