$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/5B213DB20F8D11EBACF1BE19C4F9AE02.roa File: 5B213DB20F8D11EBACF1BE19C4F9AE02.roa (raw, json) Hash identifier: FR2j5cdA1il7bWue4siZvyTa/nS4sn/xHWVg4a7OgZI= Subject key identifier: 2E:E7:77:5B:C5:8A:0E:CD:AC:B2:87:AC:2D:EA:30:4E:00:CC:DC:F0 Certificate issuer: /CN=A91CB3A5/serialNumber=C1E90B5D11D901B0D04A34260800D4E29F1C62AC Certificate serial: 07C4 Authority key identifier: C1:E9:0B:5D:11:D9:01:B0:D0:4A:34:26:08:00:D4:E2:9F:1C:62:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wekLXRHZAbDQSjQmCADU4p8cYqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/5B213DB20F8D11EBACF1BE19C4F9AE02.roa Signing time: Tue 02 Sep 2025 21:41:44 +0000 ROA not before: Tue 02 Sep 2025 21:41:44 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139603 IP address blocks: 103.142.74.0/23 maxlen: 23 103.142.74.0/24 maxlen: 24 103.142.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/wekLXRHZAbDQSjQmCADU4p8cYqw.crl rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/wekLXRHZAbDQSjQmCADU4p8cYqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wekLXRHZAbDQSjQmCADU4p8cYqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3A5, serialNumber=C1E90B5D11D901B0D04A34260800D4E29F1C62AC Validity Not Before: Sep 2 21:41:44 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b76498-5c49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:27:33:fa:25:1f:46:27:36:cc:33:83:26:07: 6e:e0:af:f1:e8:cc:ac:fc:28:90:84:9c:da:1c:63: 21:12:c0:9e:69:91:d0:d8:aa:3d:c5:86:37:1f:94: c1:07:22:19:bb:bf:17:01:b8:c3:bd:0b:ae:69:f6: 2b:d4:0b:b3:3b:97:26:64:ed:cd:db:04:ef:c5:4c: 31:4e:21:be:92:ec:1c:86:1f:d9:65:79:f7:69:ee: e2:b8:96:86:57:c2:9a:c2:70:13:9e:b4:02:41:41: e3:5c:07:ed:ad:85:2d:c6:ef:d5:c9:42:82:e2:e9: 00:21:c9:44:ab:84:14:14:f1:c9:ea:8c:1c:a6:51: 97:94:28:97:05:bd:09:13:12:c7:18:a8:9a:51:d4: 20:e6:52:8f:31:e5:31:37:20:e9:f7:58:23:fb:11: d4:7e:34:4f:59:1f:f5:79:cf:83:47:28:f4:a6:44: e9:3f:e8:f6:9d:40:9f:2c:14:e4:cd:3d:5f:7b:a5: e0:23:01:7b:fa:82:1c:6b:29:69:bb:ad:d7:19:97: 86:61:f6:f4:57:83:77:6a:17:7d:e6:65:a7:e6:e9: 1d:e1:99:89:7e:66:06:db:4a:6d:e2:22:1f:0a:5d: 16:9d:95:f6:e9:9f:2c:52:eb:7c:e7:c4:0e:02:e9: 78:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E7:77:5B:C5:8A:0E:CD:AC:B2:87:AC:2D:EA:30:4E:00:CC:DC:F0 X509v3 Authority Key Identifier: keyid:C1:E9:0B:5D:11:D9:01:B0:D0:4A:34:26:08:00:D4:E2:9F:1C:62:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/wekLXRHZAbDQSjQmCADU4p8cYqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wekLXRHZAbDQSjQmCADU4p8cYqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/5B213DB20F8D11EBACF1BE19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.74.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:9c:8b:59:d7:5e:27:be:15:b2:41:fb:fe:48:fc:7e:7c:7e: b3:c6:b8:93:fd:6a:e3:d7:b9:af:cb:ce:3a:95:1d:31:80:81: e3:80:b9:4e:2f:1c:ed:58:7f:06:a3:f3:00:57:7b:35:da:03: 23:f2:73:11:ec:c9:72:8d:2e:cb:75:aa:1f:6b:fe:aa:66:66: 8b:6c:07:2c:00:21:17:4f:58:3e:da:92:38:4b:48:01:ad:85: 48:9d:81:fd:50:d7:bf:0a:50:c2:f0:65:b0:04:92:d9:4b:bd: 6e:4b:5f:d5:87:aa:84:7e:bb:88:d6:b9:79:55:6c:04:28:87: bb:a0:1b:10:f2:a2:bd:06:98:1a:13:7b:58:72:d9:89:e0:95: d0:16:06:d4:b4:1d:77:e4:10:f9:66:42:82:d6:db:80:3e:ec: 5c:67:d3:87:13:5e:03:33:83:dc:dd:e3:fb:c2:a7:96:88:0b: 7f:7f:c4:94:14:85:c4:9b:0a:36:f4:32:d6:cb:a1:e6:ce:1f: ad:a1:0a:bd:3f:55:ab:ea:91:49:9b:bd:67:0a:c1:86:58:5a: 50:8c:d6:98:a0:23:80:f0:7a:cd:22:74:ce:9c:4b:f3:97:fe: f9:85:26:db:2f:f1:4c:54:78:d0:5e:b0:a4:e4:69:f2:ce:8e: 39:5b:c7:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzQTUxMTAvBgNVBAUTKEMxRTkwQjVEMTFEOTAxQjBEMDRBMzQyNjA4MDBENEUy OUYxQzYyQUMwHhcNMjUwOTAyMjE0MTQ0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NjQ5OC01YzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyycz+iUfRic2zDODJgdu4K/x6Mys/CiQhJzaHGMhEsCeaZHQ2Ko9xYY3H5TB ByIZu78XAbjDvQuuafYr1AuzO5cmZO3N2wTvxUwxTiG+kuwchh/ZZXn3ae7iuJaG V8KawnATnrQCQUHjXAftrYUtxu/VyUKC4ukAIclEq4QUFPHJ6owcplGXlCiXBb0J ExLHGKiaUdQg5lKPMeUxNyDp91gj+xHUfjRPWR/1ec+DRyj0pkTpP+j2nUCfLBTk zT1fe6XgIwF7+oIcaylpu63XGZeGYfb0V4N3ahd95mWn5ukd4ZmJfmYG20pt4iIf Cl0WnZX26Z8sUut858QOAul4owIDAQABo4IClTCCApEwHQYDVR0OBBYEFC7nd1vF ig7NrLKHrC3qME4AzNzwMB8GA1UdIwQYMBaAFMHpC10R2QGw0Eo0JggA1OKfHGKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNBNS80NDU5ODQzODBD NkIxMUVCQjMyRDg0MThDNEY5QUUwMi93ZWtMWFJIWkFiRFFTalFtQ0FEVTRwOGNZ cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dla0xYUkhaQWJEUVNqUW1DQURVNHA4Y1lxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IzQTUvNDQ1OTg0MzgwQzZCMTFFQkIzMkQ4NDE4QzRGOUFFMDIvNUIyMTNEQjIw RjhEMTFFQkFDRjFCRTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjkowDQYJKoZIhvcNAQELBQADggEBAC6ci1nXXie+FbJB +/5I/H58frPGuJP9auPXua/LzjqVHTGAgeOAuU4vHO1Yfwaj8wBXezXaAyPycxHs yXKNLst1qh9r/qpmZotsBywAIRdPWD7akjhLSAGthUidgf1Q178KUMLwZbAEktlL vW5LX9WHqoR+u4jWuXlVbAQoh7ugGxDyor0GmBoTe1hy2YngldAWBtS0HXfkEPlm QoLW24A+7Fxn04cTXgMzg9zd4/vCp5aIC39/xJQUhcSbCjb0MtbLoebOH62hCr0/ VavqkUmbvWcKwYZYWlCM1pigI4Dwes0idM6cS/OX/vmFJtsv8UxUeNBesKTkafLO jjlbx0A= -----END CERTIFICATE-----Generated at Wed Sep 10 11:18:31 2025 by rpki-client