$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/2BFBE7E687EF11F0BA5DF073C4F9AE02.roa File: 2BFBE7E687EF11F0BA5DF073C4F9AE02.roa (raw, json) Hash identifier: odtdAeT3uybzWOWQg7rEN3DZC1Lg8w9hAFA2d8d7ZGI= Subject key identifier: 45:AE:78:D0:7C:03:05:C1:84:B3:84:BC:BE:F3:4A:BA:55:B4:7B:E0 Certificate issuer: /CN=A91C4614/serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8 Certificate serial: 0CE3 Authority key identifier: 49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/2BFBE7E687EF11F0BA5DF073C4F9AE02.roa Signing time: Tue 02 Sep 2025 11:22:56 +0000 ROA not before: Tue 02 Sep 2025 11:22:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137842 IP address blocks: 103.115.156.0/24 maxlen: 24 103.115.157.0/24 maxlen: 24 2402:ea40::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.crl rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 18:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3299 (0xce3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4614, serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8 Validity Not Before: Sep 2 11:22:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68b6d38f-48b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dd:9c:7c:fa:b9:07:be:19:57:2f:05:d6:d0: 3a:33:40:5c:86:6b:75:e9:21:7e:3b:55:03:cd:ae: 16:b4:76:84:72:83:0b:b7:90:79:e9:e2:c7:92:73: 36:55:08:c0:8c:88:eb:4a:c2:b8:fa:ba:9d:02:7a: f9:2e:f8:0d:5d:9d:41:d1:17:bc:ef:50:5f:99:50: 32:2b:b7:b0:0c:10:c6:8d:eb:d6:28:11:a6:a4:23: 6d:eb:2b:41:23:d8:22:64:57:bb:b4:3b:5f:06:48: ce:35:d5:a0:26:5c:2d:b5:60:7a:2a:ba:95:20:ca: 95:bc:75:34:ef:fd:29:b7:e5:c7:9b:8d:7e:34:f7: 67:36:57:64:8a:60:05:cb:10:d1:c0:b9:6b:d5:4f: af:86:97:72:00:d9:9c:82:56:18:9e:93:25:eb:15: 7c:71:71:92:ed:45:77:94:89:0d:31:60:fc:33:73: 27:3c:f3:b6:9c:2f:08:82:91:e0:af:1a:32:3c:37: 58:75:19:08:7d:06:2f:87:7d:be:21:57:bb:55:dd: f7:0e:77:64:ec:dd:6d:88:23:4f:a6:11:42:21:4e: 49:c6:24:20:b9:31:8a:da:0c:0d:c7:a9:9e:1b:9d: 8f:a5:92:0b:67:0e:86:55:7d:bb:d4:dc:8d:61:61: ed:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AE:78:D0:7C:03:05:C1:84:B3:84:BC:BE:F3:4A:BA:55:B4:7B:E0 X509v3 Authority Key Identifier: keyid:49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/2BFBE7E687EF11F0BA5DF073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.156.0/23 IPv6: 2402:ea40::/32 Signature Algorithm: sha256WithRSAEncryption 77:6d:9d:7c:ab:5a:9f:f2:43:a1:0c:1c:69:9c:5b:30:51:8d: 1b:2e:29:d0:31:e5:73:e5:83:f5:ac:eb:32:44:16:f6:59:03: 28:40:98:fb:e9:2e:bf:47:a5:23:08:58:fc:c9:25:19:bc:5e: 22:c1:de:ec:ae:77:b5:5e:bd:9a:1a:81:af:06:a7:e9:1d:2a: 59:be:54:7c:6c:7f:1a:8d:a1:b3:3b:01:d5:08:24:f0:61:66: 22:d5:09:84:03:05:cd:bc:6b:85:af:e2:0d:22:b2:58:d6:6c: 76:78:b0:e8:f3:59:01:08:67:37:37:d2:e4:d9:c9:d9:bf:22: 68:46:ff:72:53:14:09:16:64:65:ad:64:0c:fb:d4:31:94:cd: 15:f3:ab:21:30:a9:8f:b9:e2:8a:94:6e:da:0e:c9:90:96:99: 4b:83:c2:de:24:7b:a6:4a:bc:51:11:79:f5:49:90:b1:12:40: bb:cd:7e:ed:cb:88:3a:3a:d4:1a:19:65:04:9d:96:00:57:89: 7d:65:2f:22:4b:14:7c:3e:37:6e:40:97:f8:ab:8b:e0:53:78: 3c:40:10:64:dd:18:57:fb:53:06:37:56:9c:ca:59:0b:19:76: 5e:11:3b:2e:16:19:aa:83:4d:b3:b6:36:67:f5:a5:b7:a1:4c: c5:26:e4:b1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ2MTQxMTAvBgNVBAUTKDQ5NEQ3NzFFNTExRTEyMDA1M0JCMDlCMUYyNzRCRDhG NTlENzNBQTgwHhcNMjUwOTAyMTEyMjU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI2ZDM4Zi00OGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvt2cfPq5B74ZVy8F1tA6M0Bchmt16SF+O1UDza4WtHaEcoMLt5B56eLHknM2 VQjAjIjrSsK4+rqdAnr5LvgNXZ1B0Re871BfmVAyK7ewDBDGjevWKBGmpCNt6ytB I9giZFe7tDtfBkjONdWgJlwttWB6KrqVIMqVvHU07/0pt+XHm41+NPdnNldkimAF yxDRwLlr1U+vhpdyANmcglYYnpMl6xV8cXGS7UV3lIkNMWD8M3MnPPO2nC8IgpHg rxoyPDdYdRkIfQYvh32+IVe7Vd33Dndk7N1tiCNPphFCIU5JxiQguTGK2gwNx6me G52PpZILZw6GVX271NyNYWHtbQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEWueNB8 AwXBhLOEvL7zSrpVtHvgMB8GA1UdIwQYMBaAFElNdx5RHhIAU7sJsfJ0vY9Z1zqo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDYxNC8xQzk0ODk5QUY0 RjAxMUU5QUMyMDJCMURDNEY5QUUwMi9TVTEzSGxFZUVnQlR1d214OG5TOWoxblhP cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVMTNIbEVlRWdCVHV3bXg4blM5ajFuWE9xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQ2MTQvMUM5NDg5OUFGNEYwMTFFOUFDMjAyQjFEQzRGOUFFMDIvMkJGQkU3RTY4 N0VGMTFGMEJBNURGMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnc5wwDQQCAAIwBwMFACQC6kAwDQYJKoZIhvcNAQELBQAD ggEBAHdtnXyrWp/yQ6EMHGmcWzBRjRsuKdAx5XPlg/Ws6zJEFvZZAyhAmPvpLr9H pSMIWPzJJRm8XiLB3uyud7VevZoaga8Gp+kdKlm+VHxsfxqNobM7AdUIJPBhZiLV CYQDBc28a4Wv4g0isljWbHZ4sOjzWQEIZzc30uTZydm/ImhG/3JTFAkWZGWtZAz7 1DGUzRXzqyEwqY+54oqUbtoOyZCWmUuDwt4ke6ZKvFERefVJkLESQLvNfu3LiDo6 1BoZZQSdlgBXiX1lLyJLFHw+N25Al/iri+BTeDxAEGTdGFf7UwY3VpzKWQsZdl4R Oy4WGaqDTbO2Nmf1pbehTMUm5LE= -----END CERTIFICATE-----Generated at Thu Sep 11 23:36:36 2025 by rpki-client