$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa File: 56EE653C493411EF859C1D49C4F9AE02.roa (raw, json) Hash identifier: plCjgN7YWhsYH+MwAwVINYh2QSCUYoeRR3x33+0+qnE= Subject key identifier: FF:24:62:52:74:1F:07:A7:39:F3:A2:BA:31:1D:E4:98:EC:FE:4E:62 Certificate issuer: /CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Certificate serial: 34D6 Authority key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa Signing time: Mon 11 Aug 2025 08:12:47 +0000 ROA not before: Mon 11 Aug 2025 08:12:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.35.251.0/24 maxlen: 24 103.195.128.0/24 maxlen: 24 103.195.129.0/24 maxlen: 24 103.195.130.0/24 maxlen: 24 103.212.169.0/24 maxlen: 24 103.212.170.0/24 maxlen: 24 160.202.137.0/24 maxlen: 24 160.202.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 14:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9350, serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Validity Not Before: Aug 11 08:12:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6899a5ff-09aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:06:1c:1c:7d:c1:49:a8:f7:63:88:1e:8d: 22:81:c4:7c:59:d4:45:87:0c:e3:e6:b8:68:68:a8: df:47:6e:83:f3:c5:f4:38:3e:1e:c2:ec:2d:8e:86: 4c:94:36:fe:3a:ad:23:1b:f2:c3:31:c3:de:55:6b: b7:18:e3:6d:52:29:51:ef:2f:93:b7:65:35:4e:6a: b5:fd:36:34:ec:ab:9b:c4:54:09:ea:17:ff:13:60: e0:c4:6c:84:d1:29:61:5a:4c:51:3f:62:82:4a:ab: 53:4f:86:d5:40:f2:26:64:ca:a0:a3:48:dd:43:36: a6:19:77:c7:75:2e:28:d4:12:1b:a6:0d:5b:1d:2b: 45:e3:cf:3b:2a:86:b7:5d:23:61:cf:a8:b8:64:60: 4f:bd:fb:b6:5e:8e:cd:91:c7:7b:6a:ab:c3:c9:82: fd:c2:c5:49:be:80:20:c2:d8:ed:f2:e4:b7:ae:bc: 9d:4e:32:db:81:8b:5f:ae:75:d5:61:e0:f4:1a:51: 89:2d:d9:4f:ac:82:45:4d:cc:97:88:b2:eb:90:22: 0a:65:6d:4b:cf:41:bf:fe:28:ee:37:2a:cd:c1:8c: 41:78:6a:35:00:72:f4:f1:0c:d3:f0:c7:62:72:0b: fa:01:47:99:4e:19:56:52:f0:e8:a4:2e:ce:53:a6: 00:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:24:62:52:74:1F:07:A7:39:F3:A2:BA:31:1D:E4:98:EC:FE:4E:62 X509v3 Authority Key Identifier: keyid:CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.251.0/24 103.195.128.0-103.195.130.255 103.212.169.0-103.212.170.255 160.202.137.0-160.202.138.255 Signature Algorithm: sha256WithRSAEncryption 35:42:57:4c:17:eb:1b:a4:f7:69:d2:26:ce:53:e8:5d:47:f2: d5:f2:af:4c:1c:fc:c3:81:61:24:31:8c:3c:f6:b9:25:42:8c: f4:98:67:25:92:83:d6:22:80:58:49:13:c2:95:44:9a:a1:e6: 46:85:09:6d:b4:29:0f:05:bf:a6:db:ae:77:ef:e9:20:be:97: 6d:e6:7a:c4:57:e8:35:e8:cb:bf:f5:e3:ed:c6:eb:d1:31:63: b5:68:32:40:fe:a9:24:15:90:68:74:46:b8:ab:ac:8c:a1:19: be:00:af:b2:1f:68:3b:21:d4:75:1c:6d:1d:74:4e:0c:c9:7e: 59:58:a3:32:65:10:c8:2d:d6:27:97:e3:51:19:18:9f:e1:ee: 7f:75:df:d8:35:84:7c:13:a2:ab:44:21:8a:a1:bd:77:b4:d4: 9d:1a:ee:e7:0c:d8:87:5a:f7:75:c8:c5:83:b8:2f:00:d7:ce: 11:18:6b:f6:45:05:f7:9a:9b:b4:a7:18:8b:21:b8:ce:c3:d2: 73:45:05:2f:50:76:bb:e6:2f:0c:55:e5:dc:e4:ab:ba:c2:70: 44:06:30:fe:58:a1:08:0c:61:9a:49:c3:5a:e6:64:5c:f8:a5: b3:ff:f4:d6:c6:db:3e:19:d7:76:c7:2a:17:5a:30:3e:0b:b8: a1:23:25:06 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5QUQzOURENUYy REZFNTlERTQwHhcNMjUwODExMDgxMjQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5YTVmZi0wOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5QGHBx9wUmo92OIHo0igcR8WdRFhwzj5rhoaKjfR26D88X0OD4ewuwtjoZM lDb+Oq0jG/LDMcPeVWu3GONtUilR7y+Tt2U1Tmq1/TY07KubxFQJ6hf/E2DgxGyE 0SlhWkxRP2KCSqtTT4bVQPImZMqgo0jdQzamGXfHdS4o1BIbpg1bHStF4887Koa3 XSNhz6i4ZGBPvfu2Xo7Nkcd7aqvDyYL9wsVJvoAgwtjt8uS3rrydTjLbgYtfrnXV YeD0GlGJLdlPrIJFTcyXiLLrkCIKZW1Lz0G//ijuNyrNwYxBeGo1AHL08QzT8Mdi cgv6AUeZThlWUvDopC7OU6YA4wIDAQABo4ICvzCCArswHQYDVR0OBBYEFP8kYlJ0 HwenOfOiujEd5Jjs/k5iMB8GA1UdIwQYMBaAFM9wbYFH13kgfZmvmtOd1fLf5Z3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTM1MC8zOTEzQkNBMDFE ODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1VmWGVTQjltYS1hMDUzVjh0X2xu ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozQnRnVWZYZVNCOW1hLWEwNTNWOHRfbG5lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzNTAvMzkxM0JDQTAxRDg3MTFFMkI0MkIwMkRGMDhCMDJDRDIvNTZFRTY1M0M0 OTM0MTFFRjg1OUMxRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBABnI/swDAMEB2fDgAMEAGfDgjAMAwQAZ9SpAwQAZ9SqMAwD BACgyokDBACgyoowDQYJKoZIhvcNAQELBQADggEBADVCV0wX6xuk92nSJs5T6F1H 8tXyr0wc/MOBYSQxjDz2uSVCjPSYZyWSg9YigFhJE8KVRJqh5kaFCW20KQ8Fv6bb rnfv6SC+l23mesRX6DXoy7/14+3G69ExY7VoMkD+qSQVkGh0RrirrIyhGb4Ar7If aDsh1HUcbR10TgzJfllYozJlEMgt1ieX41EZGJ/h7n9139g1hHwToqtEIYqhvXe0 1J0a7ucM2Ida93XIxYO4LwDXzhEYa/ZFBfeam7SnGIshuM7D0nNFBS9QdrvmLwxV 5dzkq7rCcEQGMP5YoQgMYZpJw1rmZFz4pbP/9NbG2z4Z13bHKhdaMD4LuKEjJQY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:31 2025 by rpki-client