$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FECE3C3C855711EF8E79C52BC4F9AE02.roa File: FECE3C3C855711EF8E79C52BC4F9AE02.roa (raw, json) Hash identifier: LLSWtZdvzPT4rXQVRRto3DLsyoR671syCJPRSB+ppjE= Subject key identifier: 3B:AD:78:B2:7B:43:9F:AA:FC:5E:E5:28:5D:5D:10:D6:5B:12:40:56 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0362 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FECE3C3C855711EF8E79C52BC4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:15 +0000 ROA not before: Wed 03 Sep 2025 03:20:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 8708 IP address blocks: 103.243.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 3 03:20:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7b3ef-bc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:0d:03:eb:ba:47:32:36:b7:fb:2c:db:c1:c9: ed:cf:51:2a:4e:07:55:7e:bd:ad:e7:b6:0d:db:95: ef:25:93:52:67:93:71:35:9f:32:48:8d:7b:05:1d: ea:d0:1f:12:b9:8b:f6:14:f1:54:37:16:03:79:6f: 3e:a8:24:a1:b3:2e:23:aa:1c:c0:cb:10:cd:c6:a3: 91:97:7b:e6:0d:93:5b:4f:44:6b:d0:6e:74:22:43: 90:34:e8:8b:26:04:ae:41:59:d0:a9:4b:f8:59:c0: 22:1d:5a:2a:d5:14:e0:5b:0f:92:65:74:46:d1:8e: 07:10:4e:38:03:5f:54:e6:72:21:f0:59:95:b7:34: 7b:2e:af:78:04:c7:4f:c3:2e:68:5f:e0:b5:cb:93: fb:e9:8b:a4:25:11:d4:e6:80:83:06:52:ce:80:c8: 9f:94:ac:a2:bc:76:2f:7a:f6:19:4e:b6:e2:f5:1e: 43:09:7a:50:f2:a9:c1:97:ba:4d:93:ff:bb:b6:82: 43:6c:b2:ab:77:c3:e4:62:89:c0:45:4e:8c:84:af: 76:a7:34:62:6a:d7:8a:eb:63:ba:2c:07:d0:a6:9d: 99:41:80:5c:93:69:15:0e:f0:dc:dc:17:d2:65:b1: 46:e0:c3:3c:33:08:a5:f1:cb:7e:f7:9f:c5:04:75: 84:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AD:78:B2:7B:43:9F:AA:FC:5E:E5:28:5D:5D:10:D6:5B:12:40:56 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FECE3C3C855711EF8E79C52BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.144.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:e3:c5:1e:e2:88:0d:97:ca:e5:5d:6a:9f:aa:36:0a:8d:92: 70:25:2e:8e:dc:38:ba:ae:a3:3e:52:d3:86:e2:4f:3a:08:86: fa:e7:23:4b:90:eb:54:6a:1b:f3:79:cd:a3:69:96:87:e9:46: 7f:c9:87:b8:32:c7:6c:a1:bd:34:87:a6:c8:f7:c9:7e:fe:1d: 50:e9:bc:b7:99:22:7f:77:5a:11:01:e0:c8:4c:2b:36:66:fc: fc:51:5e:7e:31:72:0d:fa:fb:9d:1c:8c:88:c1:6c:08:15:0a: 84:c5:17:02:c9:28:29:bf:3a:bb:78:fa:77:42:1f:2c:d9:29: 30:a1:d7:1e:b0:63:83:98:31:d2:2b:ac:d6:b7:c9:ee:42:03: a1:a8:52:03:a2:68:86:c0:87:20:ec:92:bb:73:2b:30:ea:70: 5b:9c:b3:c9:e9:d9:0b:2f:df:ba:ad:9a:9c:b3:6a:8a:51:65: 6b:d1:6a:ed:e7:ea:db:a5:7b:03:29:93:e8:5a:80:1c:1d:2e: 33:52:79:4c:9d:4d:ae:cd:74:33:06:bd:61:ac:ad:34:4c:5a: 1e:c3:17:e7:6e:ee:3e:90:c8:18:20:d6:c4:e6:cf:4a:d3:ce: a5:8d:8f:49:0d:44:06:98:60:be:fa:9b:f8:6f:d2:c1:05:64: e6:ee:2e:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwOTAzMDMyMDE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjNlZi1iYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9A0D67pHMja3+yzbwcntz1EqTgdVfr2t57YN25XvJZNSZ5NxNZ8ySI17BR3q 0B8SuYv2FPFUNxYDeW8+qCShsy4jqhzAyxDNxqORl3vmDZNbT0Rr0G50IkOQNOiL JgSuQVnQqUv4WcAiHVoq1RTgWw+SZXRG0Y4HEE44A19U5nIh8FmVtzR7Lq94BMdP wy5oX+C1y5P76YukJRHU5oCDBlLOgMiflKyivHYvevYZTrbi9R5DCXpQ8qnBl7pN k/+7toJDbLKrd8PkYonARU6MhK92pzRiateK62O6LAfQpp2ZQYBck2kVDvDc3BfS ZbFG4MM8Mwil8ct+95/FBHWEUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDuteLJ7 Q5+q/F7lKF1dENZbEkBWMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkVDRTNDM0M4 NTU3MTFFRjhFNzlDNTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn85AwDQYJKoZIhvcNAQELBQADggEBAFvjxR7iiA2XyuVd ap+qNgqNknAlLo7cOLquoz5S04biTzoIhvrnI0uQ61RqG/N5zaNplofpRn/Jh7gy x2yhvTSHpsj3yX7+HVDpvLeZIn93WhEB4MhMKzZm/PxRXn4xcg36+50cjIjBbAgV CoTFFwLJKCm/Ort4+ndCHyzZKTCh1x6wY4OYMdIrrNa3ye5CA6GoUgOiaIbAhyDs krtzKzDqcFucs8np2Qsv37qtmpyzaopRZWvRau3n6tulewMpk+hagBwdLjNSeUyd Ta7NdDMGvWGsrTRMWh7DF+du7j6QyBgg1sTmz0rTzqWNj0kNRAaYYL76m/hv0sEF ZObuLn0= -----END CERTIFICATE-----Generated at Wed Sep 10 00:15:46 2025 by rpki-client