$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FD124A14CC5811EDBE5D203FC4F9AE02.roa File: FD124A14CC5811EDBE5D203FC4F9AE02.roa (raw, json) Hash identifier: l/w2LsKQqDZ2CCn5jWgOIAF0bJGTxkpNnwUlAl6Xl+Y= Subject key identifier: E7:EF:70:64:19:94:98:74:38:89:B3:86:02:D8:3D:6E:66:84:15:0A Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0361 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FD124A14CC5811EDBE5D203FC4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:14 +0000 ROA not before: Wed 03 Sep 2025 03:20:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63473 IP address blocks: 103.214.22.0/24 maxlen: 24 103.214.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:14 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7b3ee-d5ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:76:ff:4e:e1:70:0a:6a:24:71:d5:42:6d:6d: e1:e6:dc:22:3a:5f:87:99:1a:97:4a:29:29:fb:cb: 92:77:26:df:3d:e6:e6:07:85:23:35:d5:dc:c9:d4: c8:dd:f8:21:88:e8:4d:09:de:05:02:7d:c4:66:7c: 25:11:2f:73:dc:c1:17:a1:78:aa:b3:94:24:8a:55: 87:42:4a:f2:a8:33:1a:75:d6:81:a1:e8:6d:b6:c6: 9f:2f:48:9f:a1:74:2e:31:92:42:c5:ab:ad:6b:c5: b7:0d:84:12:90:20:0a:21:b2:d2:5a:86:49:d3:73: a0:3c:cd:54:f6:79:22:f6:88:e0:7c:1f:a2:fc:f5: 47:df:7d:10:b8:b9:21:11:5c:16:0c:fb:bf:93:3a: 40:a2:17:77:51:23:30:c6:ba:23:2b:3e:d1:ac:f4: d4:9b:29:07:82:db:7c:b7:0c:36:b7:cf:a1:34:cb: 88:f9:0b:47:60:fa:b3:d4:64:97:3e:04:05:c0:0b: 51:fe:3a:dc:71:ce:98:a4:79:53:a0:58:91:66:00: 30:d5:08:75:2c:8d:0d:4b:65:a9:b4:93:b8:28:04: 35:88:c0:6f:c9:79:88:fd:4d:ee:e7:e0:13:72:1e: 4d:4f:c9:1d:52:80:14:41:f1:09:6c:d8:b5:ea:90: 4b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:EF:70:64:19:94:98:74:38:89:B3:86:02:D8:3D:6E:66:84:15:0A X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FD124A14CC5811EDBE5D203FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.22.0/23 Signature Algorithm: sha256WithRSAEncryption 48:33:f5:95:aa:fe:35:66:bb:58:00:2a:62:e9:25:1f:db:54: 37:11:c8:0e:8f:03:fb:d1:b1:12:9f:ec:40:c7:c1:77:22:21: 21:d2:a1:1a:28:32:e7:72:a4:ea:c7:35:90:70:fa:66:cd:04: d8:cf:e2:42:95:cb:f6:ce:a7:2c:d9:84:cc:b8:3b:1b:39:8d: 2b:82:51:b0:f5:37:83:c7:7c:1b:bb:29:38:b2:0b:82:ce:33: 76:fc:e6:e0:57:83:ae:52:42:b5:b5:4a:6d:7a:fc:6c:7a:fb: 31:68:23:6f:dc:30:8d:f6:1e:99:5c:09:62:d9:49:64:b8:95: 55:a8:f3:be:64:99:10:94:95:d8:70:0f:49:cb:27:01:6e:a1: 54:95:08:23:2c:6c:fe:cf:58:cb:e6:41:e6:cc:0e:cf:c8:6a: 63:13:44:c6:90:df:a6:59:72:55:bb:46:a2:e4:de:8b:0a:75: 48:a4:11:ca:b1:6a:38:98:48:10:9b:81:20:a7:61:b5:a8:34: 8d:86:8c:0f:85:0a:88:b4:fd:0b:6f:e1:08:f7:d7:bf:72:53: e9:68:22:b5:91:87:fb:a1:eb:fd:aa:6b:e7:25:aa:da:f8:f8: f2:ff:18:8d:ed:17:7e:17:1b:46:57:34:47:5f:05:c1:d8:e9: 00:b9:da:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjNlZS1kNWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3b/TuFwCmokcdVCbW3h5twiOl+HmRqXSikp+8uSdybfPebmB4UjNdXcydTI 3fghiOhNCd4FAn3EZnwlES9z3MEXoXiqs5QkilWHQkryqDMaddaBoehttsafL0if oXQuMZJCxauta8W3DYQSkCAKIbLSWoZJ03OgPM1U9nki9ojgfB+i/PVH330QuLkh EVwWDPu/kzpAohd3USMwxrojKz7RrPTUmykHgtt8tww2t8+hNMuI+QtHYPqz1GSX PgQFwAtR/jrccc6YpHlToFiRZgAw1Qh1LI0NS2WptJO4KAQ1iMBvyXmI/U3u5+AT ch5NT8kdUoAUQfEJbNi16pBLgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOfvcGQZ lJh0OImzhgLYPW5mhBUKMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkQxMjRBMTRD QzU4MTFFREJFNUQyMDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn1hYwDQYJKoZIhvcNAQELBQADggEBAEgz9ZWq/jVmu1gA KmLpJR/bVDcRyA6PA/vRsRKf7EDHwXciISHSoRooMudypOrHNZBw+mbNBNjP4kKV y/bOpyzZhMy4Oxs5jSuCUbD1N4PHfBu7KTiyC4LOM3b85uBXg65SQrW1Sm16/Gx6 +zFoI2/cMI32HplcCWLZSWS4lVWo875kmRCUldhwD0nLJwFuoVSVCCMsbP7PWMvm QebMDs/IamMTRMaQ36ZZclW7RqLk3osKdUikEcqxajiYSBCbgSCnYbWoNI2GjA+F Coi0/Qtv4Qj3179yU+loIrWRh/uh6/2qa+clqtr4+PL/GI3tF34XG0ZXNEdfBcHY 6QC52sc= -----END CERTIFICATE-----Generated at Wed Sep 10 07:11:54 2025 by rpki-client