$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9F2/0C781FD07D8A11F0AAFBA181C4F9AE02/D57991447D8E11F09BE2EB75C4F9AE02.roa File: D57991447D8E11F09BE2EB75C4F9AE02.roa (raw, json) Hash identifier: au2fE5QZV4wi2bNW1k3MSZSx8H26Znmq3AG3Io7itYQ= Subject key identifier: 8F:68:FA:8C:15:8E:E2:A1:12:4C:50:79:76:30:29:87:98:5B:A1:79 Certificate issuer: /CN=A91BA9F2/serialNumber=EF0225F91CFE467F13BD91E6C9A1B9DFA73BB1EC Certificate serial: 03 Authority key identifier: EF:02:25:F9:1C:FE:46:7F:13:BD:91:E6:C9:A1:B9:DF:A7:3B:B1:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7wIl-Rz-Rn8TvZHmyaG536c7sew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9F2/0C781FD07D8A11F0AAFBA181C4F9AE02/D57991447D8E11F09BE2EB75C4F9AE02.roa Signing time: Wed 20 Aug 2025 06:28:07 +0000 ROA not before: Wed 20 Aug 2025 06:28:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24323 IP address blocks: 203.190.254.0/23 maxlen: 23 203.190.254.0/24 maxlen: 24 203.190.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9F2/0C781FD07D8A11F0AAFBA181C4F9AE02/7wIl-Rz-Rn8TvZHmyaG536c7sew.crl rsync://rpki.apnic.net/member_repository/A91BA9F2/0C781FD07D8A11F0AAFBA181C4F9AE02/7wIl-Rz-Rn8TvZHmyaG536c7sew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7wIl-Rz-Rn8TvZHmyaG536c7sew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 08:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9F2, serialNumber=EF0225F91CFE467F13BD91E6C9A1B9DFA73BB1EC Validity Not Before: Aug 20 06:28:07 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a56af7-7a30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:68:70:b1:b5:79:c8:a4:f4:3c:d8:d2:fd:cf: 0d:5c:bb:71:fa:39:ca:9b:25:29:7d:44:a3:0f:8d: 16:3b:90:77:5b:64:7e:c0:b1:d4:d2:1f:b5:ba:6a: 24:f7:b6:4b:77:29:f5:93:f8:17:69:d8:27:65:ba: b3:c2:6a:da:b2:8f:8f:ac:05:83:82:b5:c5:ce:d6: c4:85:27:8d:5f:74:98:72:85:65:c1:ba:2f:14:88: ee:11:4e:53:bb:fc:fe:4f:06:92:69:c9:77:21:0c: 8b:eb:3e:34:a7:5f:ba:99:6b:29:7c:36:b5:ba:1f: 60:15:5a:d6:25:36:66:30:3b:8f:a2:ca:b5:7c:80: 48:4f:df:44:71:c8:03:14:07:07:ef:a6:97:93:7d: d4:cf:f4:66:36:4b:f7:91:5f:0f:57:a4:d4:b4:e4: 67:6c:5c:9c:3c:1b:8a:23:4f:b8:b5:b9:73:8b:41: f1:ee:bf:5f:c1:4f:fb:0d:f7:c6:43:0e:0a:4e:ab: 47:f3:c6:d8:4f:c0:0d:38:79:aa:a9:c6:a6:d7:65: e8:0d:29:75:60:27:b8:83:a6:0e:a7:07:58:ca:53: f2:ec:3d:98:ca:4e:2d:8a:2f:3a:08:dd:87:f7:f9: f2:f8:44:3b:b4:57:c3:35:55:b0:d8:67:23:c0:af: 33:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:68:FA:8C:15:8E:E2:A1:12:4C:50:79:76:30:29:87:98:5B:A1:79 X509v3 Authority Key Identifier: keyid:EF:02:25:F9:1C:FE:46:7F:13:BD:91:E6:C9:A1:B9:DF:A7:3B:B1:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9F2/0C781FD07D8A11F0AAFBA181C4F9AE02/7wIl-Rz-Rn8TvZHmyaG536c7sew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7wIl-Rz-Rn8TvZHmyaG536c7sew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9F2/0C781FD07D8A11F0AAFBA181C4F9AE02/D57991447D8E11F09BE2EB75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.190.254.0/23 Signature Algorithm: sha256WithRSAEncryption 91:f8:0d:89:f7:6f:25:1d:20:b5:36:16:17:43:b0:98:19:bd: ca:68:99:27:26:3f:65:0b:c1:c1:48:a8:3b:13:0e:2a:e7:6b: 83:bf:38:64:fd:ca:d8:58:7a:65:b5:0b:16:01:61:a6:6b:d6: 62:6c:f9:f2:8f:67:14:aa:7c:7e:30:de:4f:21:e4:17:d0:51: 73:67:be:21:39:f1:75:d1:89:51:4a:dc:c0:af:0e:a8:e1:87: 75:52:37:db:fb:1c:35:d9:70:8d:a2:ad:88:52:9c:10:c7:3e: 1a:c8:1f:97:4a:cd:77:6e:e6:38:79:27:19:eb:77:98:d1:f3: bb:46:bb:df:a5:23:66:1a:56:ac:89:94:af:12:88:39:b9:41: a9:52:54:bd:41:22:cc:e7:2f:d4:73:75:22:cf:d2:2c:f4:9e: ea:9a:8e:6c:ee:cc:19:2f:63:15:ef:20:ed:89:a2:cf:05:7a: 8b:7e:6e:af:7b:97:36:0b:f5:47:41:26:1c:f4:5e:e7:82:d0: d6:6c:ae:c8:55:bd:81:c0:86:9c:19:0a:3a:21:ea:dd:58:59: e5:7a:97:1f:eb:7d:a3:ba:95:a8:af:1c:df:0d:fc:21:49:08: b8:3f:cf:72:ae:aa:6f:b6:fc:fe:b1:95:86:75:25:0e:cd:3a: 26:fc:26:4d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTlGMjExMC8GA1UEBRMoRUYwMjI1RjkxQ0ZFNDY3RjEzQkQ5MUU2QzlBMUI5REZB NzNCQjFFQzAeFw0yNTA4MjAwNjI4MDdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTU2YWY3LTdhMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkaHCxtXnIpPQ82NL9zw1cu3H6OcqbJSl9RKMPjRY7kHdbZH7AsdTSH7W6aiT3 tkt3KfWT+Bdp2CdlurPCatqyj4+sBYOCtcXO1sSFJ41fdJhyhWXBui8UiO4RTlO7 /P5PBpJpyXchDIvrPjSnX7qZayl8NrW6H2AVWtYlNmYwO4+iyrV8gEhP30RxyAMU BwfvppeTfdTP9GY2S/eRXw9XpNS05GdsXJw8G4ojT7i1uXOLQfHuv1/BT/sN98ZD DgpOq0fzxthPwA04eaqpxqbXZegNKXVgJ7iDpg6nB1jKU/LsPZjKTi2KLzoI3Yf3 +fL4RDu0V8M1VbDYZyPArzOvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUj2j6jBWO 4qESTFB5djAph5hboXkwHwYDVR0jBBgwFoAU7wIl+Rz+Rn8TvZHmyaG536c7seww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOUYyLzBDNzgxRkQwN0Q4 QTExRjBBQUZCQTE4MUM0RjlBRTAyLzd3SWwtUnotUm44VHZaSG15YUc1MzZjN3Nl dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN3dJbC1Sei1SbjhUdlpIbXlhRzUzNmM3c2V3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTlGMi8wQzc4MUZEMDdEOEExMUYwQUFGQkExODFDNEY5QUUwMi9ENTc5OTE0NDdE OEUxMUYwOUJFMkVCNzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcu+/jANBgkqhkiG9w0BAQsFAAOCAQEAkfgNifdvJR0gtTYW F0OwmBm9ymiZJyY/ZQvBwUioOxMOKudrg784ZP3K2Fh6ZbULFgFhpmvWYmz58o9n FKp8fjDeTyHkF9BRc2e+ITnxddGJUUrcwK8OqOGHdVI32/scNdlwjaKtiFKcEMc+ Gsgfl0rNd27mOHknGet3mNHzu0a736UjZhpWrImUrxKIOblBqVJUvUEizOcv1HN1 Is/SLPSe6pqObO7MGS9jFe8g7YmizwV6i35ur3uXNgv1R0EmHPRe54LQ1myuyFW9 gcCGnBkKOiHq3VhZ5XqXH+t9o7qVqK8c3w38IUkIuD/Pcq6qb7b8/rGVhnUlDs06 JvwmTQ== -----END CERTIFICATE-----Generated at Fri Aug 22 18:58:44 2025 by rpki-client