$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa File: FDC6A888AEB111EE9A78E132C4F9AE02.roa (raw, json) Hash identifier: pHPkNw6sk+jwMGQiwSPICHgSAbGU9rT4WcKSGwmaJf8= Subject key identifier: 9D:A5:7C:B9:4E:49:BD:8B:4B:9C:EC:1C:67:CE:0B:89:A2:1C:86:CB Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 035D Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:11 +0000 ROA not before: Wed 03 Sep 2025 03:20:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 146943 IP address blocks: 103.101.58.0/24 maxlen: 24 103.101.59.0/24 maxlen: 24 103.205.142.0/24 maxlen: 24 103.205.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 861 (0x35d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7b3ea-41de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:66:33:b9:8a:8b:14:4a:96:99:3a:03:50:40: 3c:f5:ea:50:13:4d:f1:d3:4d:34:11:e4:28:41:d5: 78:19:3e:cb:21:f7:a0:20:09:2f:e2:94:85:3b:cf: c5:f8:f5:9b:8e:f6:76:9c:4c:4a:29:c9:66:b7:97: 41:1a:82:b0:63:c6:09:9a:10:a9:1b:ca:5f:6b:40: 0d:4a:83:3f:31:45:b5:33:f0:80:17:3c:60:77:44: 02:67:aa:28:2b:cf:15:6e:e2:59:db:7b:64:1a:23: 71:76:30:68:38:16:b5:d4:c8:d6:12:ec:cd:a1:86: 78:1a:26:74:49:34:47:eb:67:e6:9b:17:4f:69:75: 51:85:ca:73:a3:95:bc:5c:8e:4e:1d:bf:c0:1b:6a: 9c:9d:20:ba:96:98:07:d8:80:b0:a8:da:32:7f:49: b0:64:cd:25:f4:04:1c:09:5c:72:d3:f9:8d:b9:c5: 6d:e0:7b:2c:fd:b8:a8:45:58:67:15:2d:0e:3f:a3: 59:98:e9:a1:09:47:24:0f:48:9d:83:28:72:36:05: 47:58:e9:e3:35:63:7d:48:60:f5:c1:82:73:d3:31: 42:4f:7e:f8:b4:51:9b:78:5a:27:f4:98:0a:96:57: eb:e2:ad:89:1c:62:23:44:a3:1c:00:f7:e6:f2:6e: 5a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A5:7C:B9:4E:49:BD:8B:4B:9C:EC:1C:67:CE:0B:89:A2:1C:86:CB X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.58.0/23 103.205.142.0/23 Signature Algorithm: sha256WithRSAEncryption 78:97:ad:e9:ac:13:e2:60:26:1a:99:38:a6:4d:2d:13:44:72: f0:79:2a:50:7c:7e:d1:53:9e:70:13:b7:f1:f9:ac:30:99:ab: 09:57:1d:8e:8a:bb:c5:ff:28:0a:f8:6e:f4:52:01:bb:a1:21: 98:ca:a1:29:ec:d4:ed:61:b3:51:6f:44:4e:50:e8:85:45:56: 45:ee:9e:e9:a0:05:af:7c:f8:e8:72:71:63:30:3c:70:1d:bc: 1b:f8:d2:5a:77:3c:67:c5:36:91:e6:9b:ec:b2:2d:99:da:f5: c1:e2:78:38:50:32:5b:66:02:14:e3:32:48:80:28:c7:5d:d2: 97:79:b0:13:0e:44:bc:80:2b:92:27:05:a6:ce:14:e8:ef:ed: 71:8a:67:31:2e:bd:00:cd:95:93:68:fc:f3:57:8e:70:42:f6: 12:10:33:56:29:94:f3:76:d2:42:e7:0b:2e:1f:9b:b3:7e:ba: ac:f1:5e:90:1a:88:a6:9f:41:93:ef:ba:b9:e0:f6:85:9c:75: 2f:c0:ca:09:4d:0d:46:fc:07:5c:a0:f7:08:a9:45:1a:69:5a: 75:ce:cd:52:83:c3:ae:a7:1b:14:cd:a9:1b:94:ec:b2:33:c9: aa:2f:d8:8f:96:86:16:9a:27:9f:70:3f:b2:28:63:7e:35:8b: b4:4f:59:20 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjNlYS00MWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2YzuYqLFEqWmToDUEA89epQE03x0000EeQoQdV4GT7LIfegIAkv4pSFO8/F +PWbjvZ2nExKKclmt5dBGoKwY8YJmhCpG8pfa0ANSoM/MUW1M/CAFzxgd0QCZ6oo K88VbuJZ23tkGiNxdjBoOBa11MjWEuzNoYZ4GiZ0STRH62fmmxdPaXVRhcpzo5W8 XI5OHb/AG2qcnSC6lpgH2ICwqNoyf0mwZM0l9AQcCVxy0/mNucVt4Hss/bioRVhn FS0OP6NZmOmhCUckD0idgyhyNgVHWOnjNWN9SGD1wYJz0zFCT374tFGbeFon9JgK llfr4q2JHGIjRKMcAPfm8m5aZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ2lfLlO Sb2LS5zsHGfOC4miHIbLMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkRDNkE4ODhB RUIxMTFFRTlBNzhFMTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnZToDBAFnzY4wDQYJKoZIhvcNAQELBQADggEBAHiXrems E+JgJhqZOKZNLRNEcvB5KlB8ftFTnnATt/H5rDCZqwlXHY6Ku8X/KAr4bvRSAbuh IZjKoSns1O1hs1FvRE5Q6IVFVkXunumgBa98+OhycWMwPHAdvBv40lp3PGfFNpHm m+yyLZna9cHieDhQMltmAhTjMkiAKMdd0pd5sBMORLyAK5InBabOFOjv7XGKZzEu vQDNlZNo/PNXjnBC9hIQM1YplPN20kLnCy4fm7N+uqzxXpAaiKafQZPvurng9oWc dS/AyglNDUb8B1yg9wipRRppWnXOzVKDw66nGxTNqRuU7LIzyaov2I+WhhaaJ59w P7IoY341i7RPWSA= -----END CERTIFICATE-----Generated at Wed Sep 10 07:11:54 2025 by rpki-client