$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/8EFCF04C41B811F090AB3A2EC4F9AE02.roa File: 8EFCF04C41B811F090AB3A2EC4F9AE02.roa (raw, json) Hash identifier: NJb7fbLMu5qVuetYwV/WSEDtWyBY5QSeAuqQ8b9b+dY= Subject key identifier: C9:06:3E:48:9F:D8:C1:7A:29:F0:37:97:61:9F:20:5D:81:E1:96:D2 Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Certificate serial: 03F4 Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/8EFCF04C41B811F090AB3A2EC4F9AE02.roa Signing time: Mon 25 Aug 2025 07:53:32 +0000 ROA not before: Mon 25 Aug 2025 07:53:32 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149304 IP address blocks: 103.151.5.0/24 maxlen: 24 103.151.228.0/24 maxlen: 24 103.151.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDCF1, serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Validity Not Before: Aug 25 07:53:32 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68ac167c-b8f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b3:26:38:fb:f6:85:18:06:38:1e:39:d3:ee: 4d:7e:05:8c:b9:f1:6f:a6:61:20:2e:5f:48:e0:f0: 55:20:10:f8:6e:41:d6:10:41:1d:bf:08:02:ea:e2: 3b:0f:87:d5:da:38:58:9c:6a:d0:e6:6f:6f:2b:30: 75:91:fa:b8:38:a3:88:e9:9b:62:eb:42:26:20:bd: 7f:5e:ff:28:bd:fd:9a:1b:79:84:ea:b9:95:47:29: 06:6d:0f:41:1c:14:e8:c4:75:cc:18:08:76:f9:f1: ac:c2:97:30:8a:8f:54:1d:8b:ef:a7:6b:4e:e2:36: 9c:4b:36:4c:c8:61:1f:59:84:35:f5:45:3d:7f:75: 7a:b5:0d:d1:65:6c:50:be:1a:e5:28:74:09:f5:46: 64:4b:20:7d:3f:f3:a2:a3:d7:2c:67:28:e1:e5:b8: 8e:17:6c:5a:45:75:9d:95:0c:df:d2:6b:e8:d5:4b: 44:bf:6f:88:0f:a8:92:61:a5:2b:b7:a7:b5:9e:05: 0f:94:da:af:c8:cd:df:5b:87:6d:e7:e1:6e:8c:fa: 78:23:d1:b0:cb:00:87:61:7c:10:3e:87:ba:8a:6b: b4:c4:c3:22:8b:43:da:f6:67:4a:97:1c:3d:91:7a: a2:05:ab:4c:db:2e:73:c2:ad:89:e2:17:69:ce:f5: 13:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:06:3E:48:9F:D8:C1:7A:29:F0:37:97:61:9F:20:5D:81:E1:96:D2 X509v3 Authority Key Identifier: keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/8EFCF04C41B811F090AB3A2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.5.0/24 103.151.228.0/23 Signature Algorithm: sha256WithRSAEncryption b1:e3:da:97:00:cf:fc:f4:5a:e0:b6:07:a9:59:87:a6:ca:aa: 7c:cf:9e:2e:fb:b0:ed:11:f3:cd:70:a0:d2:6d:d1:53:16:9a: a8:18:12:05:bb:eb:27:0d:35:9c:74:46:4a:57:b8:82:91:95: 2d:43:4b:31:b0:bd:a8:b9:c9:4f:ad:0d:7a:3a:b2:50:12:45: dd:cc:1b:3c:0a:01:11:02:d7:2e:9c:04:e1:23:64:9b:de:3c: fa:4a:52:b2:82:95:9a:2d:35:ce:8b:ab:39:4b:ed:df:de:ef: de:75:ee:a8:a4:17:a4:2e:e9:c9:d8:23:d6:8a:00:e2:72:50: d4:d4:82:5a:55:51:c4:18:04:00:29:34:e9:b4:08:9c:ff:ba: 4b:13:c2:c2:df:b6:f7:65:0c:45:78:46:99:38:eb:0c:b8:f3: 8d:bb:b4:bc:f1:9f:b7:c5:68:50:44:be:8d:c4:8b:c2:20:2d: 1c:a5:45:77:55:3b:4e:22:dc:f5:f7:17:34:aa:f0:20:ee:23: 15:fe:12:e4:d8:f0:cb:29:45:50:5f:b9:93:d8:02:07:14:a5: e1:ff:a7:3b:01:9d:8c:50:b2:02:f3:9e:5c:ba:42:cc:33:65: d6:47:2b:f9:a0:10:27:d6:6b:54:e1:ea:eb:c4:ad:b8:02:a1: cc:16:e2:61 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC NDc1QzdCOUEwHhcNMjUwODI1MDc1MzMyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFjMTY3Yy1iOGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbMmOPv2hRgGOB450+5NfgWMufFvpmEgLl9I4PBVIBD4bkHWEEEdvwgC6uI7 D4fV2jhYnGrQ5m9vKzB1kfq4OKOI6Zti60ImIL1/Xv8ovf2aG3mE6rmVRykGbQ9B HBToxHXMGAh2+fGswpcwio9UHYvvp2tO4jacSzZMyGEfWYQ19UU9f3V6tQ3RZWxQ vhrlKHQJ9UZkSyB9P/Oio9csZyjh5biOF2xaRXWdlQzf0mvo1UtEv2+ID6iSYaUr t6e1ngUPlNqvyM3fW4dt5+FujPp4I9GwywCHYXwQPoe6imu0xMMii0Pa9mdKlxw9 kXqiBatM2y5zwq2J4hdpzvUTfwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMkGPkif 2MF6KfA3l2GfIF2B4ZbSMB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4 M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvOEVGQ0YwNEM0 MUI4MTFGMDkwQUIzQTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnlwUDBAFnl+QwDQYJKoZIhvcNAQELBQADggEBALHj2pcA z/z0WuC2B6lZh6bKqnzPni77sO0R881woNJt0VMWmqgYEgW76ycNNZx0RkpXuIKR lS1DSzGwvai5yU+tDXo6slASRd3MGzwKAREC1y6cBOEjZJvePPpKUrKClZotNc6L qzlL7d/e79517qikF6Qu6cnYI9aKAOJyUNTUglpVUcQYBAApNOm0CJz/uksTwsLf tvdlDEV4Rpk46wy48427tLzxn7fFaFBEvo3Ei8IgLRylRXdVO04i3PX3FzSq8CDu IxX+EuTY8MspRVBfuZPYAgcUpeH/pzsBnYxQsgLznly6QswzZdZHK/mgECfWa1Th 6uvErbgCocwW4mE= -----END CERTIFICATE-----Generated at Mon Sep 8 10:27:51 2025 by rpki-client