$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/240EF95E896311F0B911053BC4F9AE02.roa File: 240EF95E896311F0B911053BC4F9AE02.roa (raw, json) Hash identifier: l/wARrq1lISnaNIca31Ucy5U5vcCEK4kZC3D4iFHaJ4= Subject key identifier: A9:A5:66:44:C8:5F:91:15:8C:C2:CA:59:03:E2:27:46:A3:5A:E0:E1 Certificate issuer: /CN=A91CB2E2/serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Certificate serial: 02 Authority key identifier: DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/240EF95E896311F0B911053BC4F9AE02.roa Signing time: Thu 04 Sep 2025 07:45:35 +0000 ROA not before: Thu 04 Sep 2025 07:45:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134070 IP address blocks: 103.51.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB2E2, serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Validity Not Before: Sep 4 07:45:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68b9439f-6af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:1d:ed:27:68:62:24:cc:0c:4b:69:a6:58: fb:e4:a7:57:37:fc:eb:72:77:9b:57:8e:69:50:89: 66:d6:2b:a2:d5:cc:9a:7c:fb:a4:e4:78:e0:86:e5: db:3e:94:42:83:4e:fd:ad:92:0b:51:0a:48:6f:49: d1:ff:97:53:cc:c3:fe:50:e5:81:d0:9e:aa:bd:9a: 7a:fe:67:ed:0b:35:bc:ee:80:50:30:3f:51:64:24: 2f:9f:88:a9:10:ca:d9:7e:42:f8:71:9c:94:1c:7a: 53:a4:7b:0e:e4:86:42:c9:8e:f6:d4:a2:78:b6:e9: ed:53:4c:95:0f:ce:19:8a:af:72:3e:89:43:d0:84: b1:3f:d7:2f:69:35:1b:77:c0:89:2c:d3:df:4b:a1: b6:54:56:de:4a:60:ae:3b:d9:b9:c6:60:e6:de:c4: 17:f7:f2:c2:49:bd:76:a2:ed:17:2f:59:30:da:17: 1d:59:16:8a:47:2e:7f:86:6f:2f:2f:18:2b:9b:df: db:fd:5e:94:98:ea:41:c4:1f:28:df:bb:8f:9b:b6: 17:db:1d:62:f9:21:75:70:c4:ea:72:a1:a9:5d:a6: 0d:03:27:c0:c9:e2:76:16:6e:9b:8f:99:58:89:47: 63:33:99:27:1d:46:0c:1c:6c:51:f8:26:1b:89:57: 02:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A5:66:44:C8:5F:91:15:8C:C2:CA:59:03:E2:27:46:A3:5A:E0:E1 X509v3 Authority Key Identifier: keyid:DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/240EF95E896311F0B911053BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.40.0/24 Signature Algorithm: sha256WithRSAEncryption 69:37:ff:98:94:70:ce:e2:8c:e2:76:01:bd:22:8d:73:4e:f9: 99:7e:38:44:b5:14:7f:c2:b8:df:a2:bf:9e:c2:7a:67:54:0d: 78:ce:4d:e8:f5:8f:ff:f5:76:56:3a:96:7a:c4:63:b9:77:02: 10:67:63:3b:80:1a:ae:dc:6d:c0:4d:b2:ae:ab:a1:21:a4:e7: 2d:a2:55:ce:50:f0:4b:0a:c9:4f:2f:5a:92:1f:62:43:74:26: 45:73:7d:7d:c6:29:8d:dd:29:d5:4c:e4:57:cd:32:09:7a:e7: 24:cf:a9:a9:b6:f9:c6:b4:d3:42:6d:66:0d:3e:6d:14:32:e0: 96:78:07:de:22:f0:f6:b9:90:41:96:a8:d5:e9:2b:56:e0:80: bb:26:a5:1f:bc:ee:fa:1d:61:3e:60:6a:cf:9a:39:0b:64:c1: 79:7d:58:7d:36:ca:b3:ac:b2:74:a8:7a:d5:39:38:e4:38:8b: 23:81:c8:23:af:f4:47:13:e7:46:0b:6e:80:03:c5:b7:b3:4d: c8:5e:e8:e3:a3:74:76:69:f6:67:0c:40:b2:9d:60:a2:58:a2: 87:47:e9:ed:30:f5:e8:1a:97:d6:3a:bd:a6:ae:7d:c9:8c:2c: 15:2f:bc:98:03:cf:ed:b4:bb:55:f6:c1:cf:2c:02:64:31:a4: 2b:ae:b9:7c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjJFMjExMC8GA1UEBRMoREREQ0M0MEFERTY3N0YyM0Y4QTc5QkE0MTY4RUY2RjZC RUYwNjVDNzAeFw0yNTA5MDQwNzQ1MzVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Yjk0MzlmLTZhZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDChR3tJ2hiJMwMS2mmWPvkp1c3/Otyd5tXjmlQiWbWK6LVzJp8+6TkeOCG5ds+ lEKDTv2tkgtRCkhvSdH/l1PMw/5Q5YHQnqq9mnr+Z+0LNbzugFAwP1FkJC+fiKkQ ytl+QvhxnJQcelOkew7khkLJjvbUoni26e1TTJUPzhmKr3I+iUPQhLE/1y9pNRt3 wIks099LobZUVt5KYK472bnGYObexBf38sJJvXai7RcvWTDaFx1ZFopHLn+Gby8v GCub39v9XpSY6kHEHyjfu4+bthfbHWL5IXVwxOpyoaldpg0DJ8DJ4nYWbpuPmViJ R2MzmScdRgwcbFH4JhuJVwIVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqaVmRMhf kRWMwspZA+InRqNa4OEwHwYDVR0jBBgwFoAU3dzECt5nfyP4p5ukFo729r7wZccw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMkUyLzQxMUM2M0IwODk1 OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQNHA1dWtGbzcyOXI3d1pj Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2R6RUN0NW5meVA0cDV1a0ZvNzI5cjd3WmNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjJFMi80MTFDNjNCMDg5NTkxMUYwQkE2NTM0NURDNEY5QUUwMi8yNDBFRjk1RTg5 NjMxMUYwQjkxMTA1M0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGczKDANBgkqhkiG9w0BAQsFAAOCAQEAaTf/mJRwzuKM4nYB vSKNc075mX44RLUUf8K436K/nsJ6Z1QNeM5N6PWP//V2VjqWesRjuXcCEGdjO4Aa rtxtwE2yrquhIaTnLaJVzlDwSwrJTy9akh9iQ3QmRXN9fcYpjd0p1UzkV80yCXrn JM+pqbb5xrTTQm1mDT5tFDLglngH3iLw9rmQQZao1ekrVuCAuyalH7zu+h1hPmBq z5o5C2TBeX1YfTbKs6yydKh61Tk45DiLI4HII6/0RxPnRgtugAPFt7NNyF7o46N0 dmn2ZwxAsp1goliih0fp7TD16BqX1jq9pq59yYwsFS+8mAPP7bS7VfbBzywCZDGk K665fA== -----END CERTIFICATE-----Generated at Fri Sep 19 04:01:46 2025 by rpki-client