$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E879EE7C144111EFB247B936C4F9AE02.roa File: E879EE7C144111EFB247B936C4F9AE02.roa (raw, json) Hash identifier: kWS/r/1uvE2uh33BQhnK7TE/fxU21h0Qyka9IpjmAOo= Subject key identifier: 33:15:90:C4:73:D1:88:1A:B8:F0:BC:F8:D1:B0:E0:EC:BF:09:66:2E Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 035A Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E879EE7C144111EFB247B936C4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:08 +0000 ROA not before: Wed 03 Sep 2025 03:20:08 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134450 IP address blocks: 45.125.246.0/24 maxlen: 24 103.239.213.0/24 maxlen: 24 103.241.52.0/22 maxlen: 22 202.94.174.0/24 maxlen: 24 2402:bd80::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:08 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7b3e8-fdbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ee:26:0c:93:db:84:af:b0:90:f8:36:44:39: 93:45:e5:4f:a1:17:36:60:78:4f:30:c6:e2:31:e5: e1:01:41:1f:1b:ac:c9:46:b7:2a:03:58:bc:f5:64: a1:71:4b:cc:57:6d:2a:f7:8c:2b:fa:f1:0f:c2:0f: 86:95:81:88:c5:e2:dd:8a:63:1c:bd:cd:48:1b:7b: 64:20:e7:36:95:52:41:d8:c0:a6:c4:9a:7a:18:95: ee:be:a3:67:ca:2f:15:a9:ea:e0:8d:5d:e8:6d:09: 7a:87:af:86:3b:a3:60:93:8c:47:f7:89:6e:0c:01: fa:25:b5:22:0b:a8:34:e7:e1:96:13:5a:98:78:ba: 5b:f8:8e:1f:f7:87:ff:54:1d:a4:6a:60:6d:72:40: 48:fb:f0:7d:ca:85:f2:a0:86:a3:63:de:bd:bc:c3: a2:ff:93:64:4d:f3:5d:b5:f7:99:cc:e8:9c:b1:1e: c5:bd:00:21:72:7f:ae:6a:99:4a:d4:30:21:48:dc: c0:86:56:d3:32:e7:ee:be:d5:91:58:4a:19:c1:1b: cd:e9:2c:17:db:e0:1b:81:e4:fb:62:0d:be:88:cd: 88:e0:2e:73:0a:99:05:b5:05:f8:c9:b8:e6:90:09: 53:1a:5b:72:1f:a6:b0:21:0f:63:33:86:70:c6:38: 5d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:15:90:C4:73:D1:88:1A:B8:F0:BC:F8:D1:B0:E0:EC:BF:09:66:2E X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/E879EE7C144111EFB247B936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.246.0/24 103.239.213.0/24 103.241.52.0/22 202.94.174.0/24 IPv6: 2402:bd80::/30 Signature Algorithm: sha256WithRSAEncryption 7f:10:5e:f9:b2:a2:48:24:13:df:d5:53:fa:35:11:17:b5:5d: 68:f7:cf:f3:13:32:88:c3:88:c9:d0:f7:6b:32:4b:2b:54:ad: 99:14:5c:43:38:0f:7c:3b:8b:05:05:7b:4e:fb:67:16:f8:8d: 06:e3:cc:be:f0:aa:95:35:86:a9:63:1c:57:f0:13:81:4d:e3: 8f:6f:a2:59:83:aa:c2:0d:79:7e:ee:23:29:79:c8:41:98:ff: c6:0c:0e:2b:75:72:ee:ac:9a:01:ba:84:5f:b2:b3:20:e0:f7: da:bf:10:b6:ce:00:1f:ad:27:52:b0:d4:83:22:ac:14:bf:c2: 23:68:23:90:23:8c:2a:b2:4d:c1:17:7e:e3:c6:ba:39:ba:95: b6:78:18:2c:99:28:b7:ad:6e:14:c2:ce:e3:6c:f1:e5:b5:bb: ba:8c:21:f2:5e:9e:66:40:b8:b0:f3:93:65:66:3d:1d:92:92: d9:3d:5b:48:81:62:c8:c5:41:7b:0b:f7:77:37:a7:22:e5:33: 71:02:f4:f3:03:08:d9:74:ba:55:cd:e0:11:5e:13:41:91:b2: bc:52:b4:96:6e:91:be:1e:9a:98:79:19:5a:97:76:dd:bd:30: a9:1e:a0:d1:60:e6:ab:91:c9:54:01:5e:0e:e5:37:81:9f:85: 4a:b6:41:01 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDA4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjNlOC1mZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4u4mDJPbhK+wkPg2RDmTReVPoRc2YHhPMMbiMeXhAUEfG6zJRrcqA1i89WSh cUvMV20q94wr+vEPwg+GlYGIxeLdimMcvc1IG3tkIOc2lVJB2MCmxJp6GJXuvqNn yi8VqergjV3obQl6h6+GO6Ngk4xH94luDAH6JbUiC6g05+GWE1qYeLpb+I4f94f/ VB2kamBtckBI+/B9yoXyoIajY969vMOi/5NkTfNdtfeZzOicsR7FvQAhcn+uaplK 1DAhSNzAhlbTMufuvtWRWEoZwRvN6SwX2+AbgeT7Yg2+iM2I4C5zCpkFtQX4ybjm kAlTGltyH6awIQ9jM4ZwxjhdJwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFDMVkMRz 0YgauPC8+NGw4Oy/CWYuMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRTg3OUVFN0Mx NDQxMTFFRkIyNDdCOTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAAtffYDBABn79UDBAJn8TQDBADKXq4wDQQCAAIwBwMFAiQC vYAwDQYJKoZIhvcNAQELBQADggEBAH8QXvmyokgkE9/VU/o1ERe1XWj3z/MTMojD iMnQ92sySytUrZkUXEM4D3w7iwUFe077Zxb4jQbjzL7wqpU1hqljHFfwE4FN449v olmDqsINeX7uIyl5yEGY/8YMDit1cu6smgG6hF+ysyDg99q/ELbOAB+tJ1Kw1IMi rBS/wiNoI5AjjCqyTcEXfuPGujm6lbZ4GCyZKLetbhTCzuNs8eW1u7qMIfJenmZA uLDzk2VmPR2Sktk9W0iBYsjFQXsL93c3pyLlM3EC9PMDCNl0ulXN4BFeE0GRsrxS tJZukb4emph5GVqXdt29MKkeoNFg5quRyVQBXg7lN4GfhUq2QQE= -----END CERTIFICATE-----Generated at Wed Sep 10 07:11:53 2025 by rpki-client