$ rpki-client -vvf rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/378FB0D25B9211EEB8E7453DC4F9AE02.roa File: 378FB0D25B9211EEB8E7453DC4F9AE02.roa (raw, json) Hash identifier: +vXql9o+JG8jXikaEwvUdgbDzT28NGoMtEaj6InzCZo= Subject key identifier: D7:9D:A2:EE:3F:85:5F:7E:50:ED:91:27:A9:9C:02:FA:3D:20:24:42 Certificate issuer: /CN=A91C08EE/serialNumber=158B96664FB1C9AEEEB3D28707F877FE237B02DC Certificate serial: 024A Authority key identifier: 15:8B:96:66:4F:B1:C9:AE:EE:B3:D2:87:07:F8:77:FE:23:7B:02:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/378FB0D25B9211EEB8E7453DC4F9AE02.roa Signing time: Fri 29 Aug 2025 02:49:51 +0000 ROA not before: Fri 29 Aug 2025 02:49:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131275 IP address blocks: 103.203.88.0/24 maxlen: 24 103.203.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FYuWZk-xya7us9KHB_h3_iN7Atw.crl rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FYuWZk-xya7us9KHB_h3_iN7Atw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C08EE, serialNumber=158B96664FB1C9AEEEB3D28707F877FE237B02DC Validity Not Before: Aug 29 02:49:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b1154e-c2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:bf:9d:bf:86:5d:c9:c9:73:8a:82:ca:68: 57:13:58:15:ae:33:a6:c3:12:fb:9d:b2:c1:51:82: 0e:4f:32:83:8d:ae:a8:7c:1b:a0:c7:b8:88:fa:c3: 1e:cc:38:5b:37:22:23:c6:15:7a:e0:5b:be:c2:9a: c2:e3:fd:f1:05:ee:47:45:f8:8c:93:5d:91:da:78: 10:f8:8a:7b:7c:d4:85:a2:8e:92:98:f6:9c:8d:70: 18:30:1a:fb:6c:bf:0e:db:f1:3c:43:ae:d9:b9:ed: 2c:59:02:3a:f1:cb:28:f5:bb:f8:f2:48:a4:59:f4: 21:6d:16:fc:54:81:c2:4d:60:f1:96:85:ee:4b:4b: 2d:ea:dd:0d:2c:5e:7d:ac:ce:24:6a:44:16:0b:9c: bd:2b:95:4d:e2:5c:81:c7:dc:04:e6:35:2c:1d:53: 69:69:e3:21:31:af:2f:13:88:be:ff:14:e2:cd:67: a2:c6:ee:16:e6:f9:08:4f:7a:8b:06:db:51:e8:14: 9a:46:16:35:b2:30:0d:fb:2a:ea:9a:74:77:80:1f: 6f:8c:a4:d2:5d:bd:93:95:93:52:41:01:11:5a:81: cd:88:1e:d6:22:71:02:5f:ac:4c:9f:e2:29:7e:e0: 41:0d:f3:4b:98:1a:7b:36:7c:bc:e8:3b:e9:4f:77: 57:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9D:A2:EE:3F:85:5F:7E:50:ED:91:27:A9:9C:02:FA:3D:20:24:42 X509v3 Authority Key Identifier: keyid:15:8B:96:66:4F:B1:C9:AE:EE:B3:D2:87:07:F8:77:FE:23:7B:02:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FYuWZk-xya7us9KHB_h3_iN7Atw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/378FB0D25B9211EEB8E7453DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.88.0/23 Signature Algorithm: sha256WithRSAEncryption 36:94:60:77:4a:ef:88:84:94:1f:5a:f2:c1:23:97:5f:e8:4e: 48:60:9e:f1:d1:97:61:ee:b0:bd:ab:d2:92:82:96:1c:0e:53: d5:1b:9a:8f:35:8a:dd:08:8f:e4:40:af:fc:0b:ca:d7:cc:1f: 04:26:b9:bc:e4:d9:0a:7f:35:ed:84:7e:65:5b:a7:d7:53:10: 3a:26:8b:98:26:75:e7:22:bb:7d:0c:90:78:b6:50:16:ca:89: 4f:24:ff:e6:02:33:f0:22:8f:3e:5c:34:5d:a0:78:a0:f7:12: b9:60:ac:5c:e0:64:a7:b4:3b:8b:d1:90:07:fb:76:b3:6a:09: 42:70:ed:9f:83:d9:a1:2d:34:e4:0b:13:d4:50:ba:74:87:f7: 5c:a6:1e:30:26:39:7b:1c:a1:e4:f1:f4:97:3d:b6:be:9d:11: 59:d8:d7:73:78:8d:c4:35:6c:a8:b1:92:76:17:c1:5a:6b:4d: 73:49:09:a1:82:8f:6f:89:8a:09:c1:4b:9d:7e:55:45:25:64: 8d:38:07:67:87:fa:d4:86:a9:82:99:72:68:63:71:9d:23:af: b6:a5:20:f5:9b:48:00:b0:89:8f:16:4b:95:57:71:7e:c9:25: 41:80:fd:65:0c:b0:c6:d9:e9:d6:ee:a4:b0:98:ef:bb:34:4a: 16:9e:77:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA4RUUxMTAvBgNVBAUTKDE1OEI5NjY2NEZCMUM5QUVFRUIzRDI4NzA3Rjg3N0ZF MjM3QjAyREMwHhcNMjUwODI5MDI0OTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMTU0ZS1jMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3K/nb+GXcnJc4qCymhXE1gVrjOmwxL7nbLBUYIOTzKDja6ofBugx7iI+sMe zDhbNyIjxhV64Fu+wprC4/3xBe5HRfiMk12R2ngQ+Ip7fNSFoo6SmPacjXAYMBr7 bL8O2/E8Q67Zue0sWQI68cso9bv48kikWfQhbRb8VIHCTWDxloXuS0st6t0NLF59 rM4kakQWC5y9K5VN4lyBx9wE5jUsHVNpaeMhMa8vE4i+/xTizWeixu4W5vkIT3qL BttR6BSaRhY1sjAN+yrqmnR3gB9vjKTSXb2TlZNSQQERWoHNiB7WInECX6xMn+Ip fuBBDfNLmBp7Nny86DvpT3dXdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNedou4/ hV9+UO2RJ6mcAvo9ICRCMB8GA1UdIwQYMBaAFBWLlmZPscmu7rPShwf4d/4jewLc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDhFRS81M0M2NzhENjQz MDAxMUVEODQwQjMzNTdDNEY5QUUwMi9GWXVXWmsteHlhN3VzOUtIQl9oM19pTjdB dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZZdVdaay14eWE3dXM5S0hCX2gzX2lON0F0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzA4RUUvNTNDNjc4RDY0MzAwMTFFRDg0MEIzMzU3QzRGOUFFMDIvMzc4RkIwRDI1 QjkyMTFFRUI4RTc0NTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFny1gwDQYJKoZIhvcNAQELBQADggEBADaUYHdK74iElB9a 8sEjl1/oTkhgnvHRl2HusL2r0pKClhwOU9Ubmo81it0Ij+RAr/wLytfMHwQmubzk 2Qp/Ne2EfmVbp9dTEDomi5gmdeciu30MkHi2UBbKiU8k/+YCM/Aijz5cNF2geKD3 ErlgrFzgZKe0O4vRkAf7drNqCUJw7Z+D2aEtNOQLE9RQunSH91ymHjAmOXscoeTx 9Jc9tr6dEVnY13N4jcQ1bKixknYXwVprTXNJCaGCj2+JignBS51+VUUlZI04B2eH +tSGqYKZcmhjcZ0jr7alIPWbSACwiY8WS5VXcX7JJUGA/WUMsMbZ6dbupLCY77s0 Shaedzc= -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:08 2025 by rpki-client