$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/E10FA0FCB52611EEB3487B5BC4F9AE02.roa File: E10FA0FCB52611EEB3487B5BC4F9AE02.roa (raw, json) Hash identifier: ohFbFlY5GdHO0sok1ss9rmMPw9mFXb448pHih68yHjg= Subject key identifier: F4:9E:A9:27:8E:A1:AC:A7:E7:A7:EB:80:79:6A:A9:19:09:A1:45:17 Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 124D Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/E10FA0FCB52611EEB3487B5BC4F9AE02.roa Signing time: Mon 01 Sep 2025 07:27:19 +0000 ROA not before: Mon 01 Sep 2025 07:27:19 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 400618 IP address blocks: 103.200.114.0/23 maxlen: 24 124.108.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 17:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4685 (0x124d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73, serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Validity Not Before: Sep 1 07:27:19 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68b54ad7-b125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ba:b6:1c:4a:f1:bf:0f:6a:f6:ce:67:85:64: 5d:88:cd:20:ea:d5:88:d3:95:dc:d4:51:68:0e:b8: 5c:d3:7e:26:f3:b9:23:79:3d:58:26:99:f7:3c:e6: 50:9c:b7:64:a8:5a:9b:d6:b3:ac:08:b8:43:ec:54: d5:22:e7:ba:1e:74:55:65:d4:fb:1f:80:24:ad:9d: c5:61:bc:22:b4:c7:c1:59:a1:b5:a8:a8:cc:22:5a: 89:3a:32:fa:92:bc:e1:ae:ae:28:7b:8c:2c:8c:25: 6b:75:45:0a:04:86:93:67:59:02:ca:f6:db:bc:ad: 66:59:0b:02:57:96:15:7c:fb:55:dc:3f:1f:85:79: 72:ba:d8:3a:77:7e:f8:35:f7:ce:b2:a1:a0:b4:13: 6d:8b:29:d6:5f:5a:0b:01:a3:e8:22:11:87:f5:2c: 7e:2f:3f:cf:32:7a:bd:7f:13:3e:73:e2:7d:32:a7: 4d:1a:1f:f6:57:10:2f:28:4d:90:b1:eb:09:cf:8f: 5a:c5:fb:68:14:5a:cb:79:96:af:ea:27:44:73:27: 1d:88:82:37:cc:8e:99:88:fd:0c:9e:0e:65:a6:3d: cb:f8:3b:68:bd:e0:97:c4:cb:9d:c7:71:b2:b2:8e: d5:03:12:ab:10:98:a4:fe:5e:e0:da:c8:74:da:f0: f1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9E:A9:27:8E:A1:AC:A7:E7:A7:EB:80:79:6A:A9:19:09:A1:45:17 X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/E10FA0FCB52611EEB3487B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.114.0/23 124.108.22.0/23 Signature Algorithm: sha256WithRSAEncryption 44:f4:48:95:ca:13:46:49:00:9d:61:97:41:6f:e8:71:17:15: 44:50:f6:50:62:ae:9f:59:71:1c:ab:ab:c9:5f:df:c1:85:5a: 5c:d4:ed:10:9d:9b:05:74:94:75:7a:56:b8:e7:16:c4:32:8e: ae:93:e9:f7:3b:26:13:1c:14:48:f0:bd:0c:2b:3b:68:d7:13: bd:d1:57:48:b3:a6:56:d2:d9:ca:92:2c:20:24:4a:3f:03:78: d1:34:8b:7a:2a:c5:8c:a7:e1:e9:aa:7a:13:d7:ba:19:85:2d: 25:95:f6:e0:9f:92:c0:66:d2:7f:e1:d3:5e:12:92:2f:f2:ba: c9:e4:5a:99:2d:10:cb:9d:2c:c9:09:f6:96:1c:fc:62:c7:ce: d5:3d:79:41:0c:17:3c:c0:35:b6:5d:b3:94:c6:9e:29:13:e7: de:1e:36:5f:2d:24:31:39:b9:21:ed:9b:46:bc:27:80:52:36: ac:7e:f1:3e:93:09:3e:26:8c:ef:07:93:57:36:d5:51:d1:3c: ce:53:8b:9d:52:3a:e4:d3:5c:3c:9b:8a:ba:87:2f:53:c0:1d: 33:f0:d4:fa:c3:3c:32:d4:8b:06:ff:2e:b6:a3:14:e0:41:c9: e4:c5:e3:a5:fa:7e:59:d1:fe:92:5d:08:cc:6f:30:84:ae:b6: 63:72:b8:98 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjUwOTAxMDcyNzE5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1NGFkNy1iMTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Lq2HErxvw9q9s5nhWRdiM0g6tWI05Xc1FFoDrhc034m87kjeT1YJpn3POZQ nLdkqFqb1rOsCLhD7FTVIue6HnRVZdT7H4AkrZ3FYbwitMfBWaG1qKjMIlqJOjL6 krzhrq4oe4wsjCVrdUUKBIaTZ1kCyvbbvK1mWQsCV5YVfPtV3D8fhXlyutg6d374 NffOsqGgtBNtiynWX1oLAaPoIhGH9Sx+Lz/PMnq9fxM+c+J9MqdNGh/2VxAvKE2Q sesJz49axftoFFrLeZav6idEcycdiII3zI6ZiP0Mng5lpj3L+DtoveCXxMudx3Gy so7VAxKrEJik/l7g2sh02vDxawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPSeqSeO oayn56frgHlqqRkJoUUXMB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvRTEwRkEwRkNC NTI2MTFFRUIzNDg3QjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnyHIDBAF8bBYwDQYJKoZIhvcNAQELBQADggEBAET0SJXK E0ZJAJ1hl0Fv6HEXFURQ9lBirp9ZcRyrq8lf38GFWlzU7RCdmwV0lHV6VrjnFsQy jq6T6fc7JhMcFEjwvQwrO2jXE73RV0izplbS2cqSLCAkSj8DeNE0i3oqxYyn4emq ehPXuhmFLSWV9uCfksBm0n/h014Ski/yusnkWpktEMudLMkJ9pYc/GLHztU9eUEM FzzANbZds5TGnikT594eNl8tJDE5uSHtm0a8J4BSNqx+8T6TCT4mjO8Hk1c21VHR PM5Ti51SOuTTXDybirqHL1PAHTPw1PrDPDLUiwb/LrajFOBByeTF46X6flnR/pJd CMxvMISutmNyuJg= -----END CERTIFICATE-----Generated at Sat Sep 6 11:44:23 2025 by rpki-client