$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/C5E7AA2289A011F08D995D74C4F9AE02.roa File: C5E7AA2289A011F08D995D74C4F9AE02.roa (raw, json) Hash identifier: jS53WXHjCoys1e1t5l2xcO16jh1u3l1FTq8ZOUzIH88= Subject key identifier: 2F:36:46:79:DB:7E:6B:ED:3D:37:61:30:F9:5B:44:62:4D:89:A4:EF Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 0897 Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/C5E7AA2289A011F08D995D74C4F9AE02.roa Signing time: Thu 04 Sep 2025 15:06:46 +0000 ROA not before: Thu 04 Sep 2025 15:06:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 206300 IP address blocks: 103.193.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2199 (0x897) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Sep 4 15:06:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b9ab05-7013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:af:a1:26:6c:fb:78:20:0d:f2:18:25:99: 2f:ca:c5:6f:b2:dc:81:1d:9c:ef:3b:34:e6:00:7f: 03:f2:d0:64:a1:8e:bc:c1:6b:f5:cc:7c:c2:53:3b: d0:cb:27:c7:90:76:57:cc:0e:23:ae:a4:ea:43:62: ef:a7:eb:84:a3:b9:53:ff:2c:db:77:f5:e7:b2:be: cf:4b:fb:10:17:e6:3b:d2:46:90:3f:00:8b:a1:46: b0:0d:94:78:26:85:31:21:32:59:22:e1:94:d9:28: 6c:d7:39:63:53:87:9d:8f:7f:94:f7:69:8b:dd:e6: f8:43:33:20:33:32:a7:00:ba:4b:13:40:f2:6d:69: 9e:9b:fc:a6:bb:cd:ee:10:20:b0:ca:ef:87:7b:fd: 63:84:e3:75:61:b1:a9:61:b5:6a:dd:c0:17:0f:99: 18:a1:00:c3:01:ca:6a:f1:8d:3e:43:31:eb:66:90: bf:68:a6:2b:95:f7:ed:09:65:fe:8f:4f:d0:4e:27: 26:6f:d9:db:b9:05:1a:ea:f3:ce:4f:af:2e:a2:32: 0d:25:c7:48:f6:d9:2c:c7:cd:5b:0e:bd:79:c6:a4: dc:2c:3d:ac:29:66:ab:e8:71:1a:0e:b3:b9:89:de: 3e:4f:d3:30:b2:72:51:21:b0:63:02:f6:5b:c2:3d: 3b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:36:46:79:DB:7E:6B:ED:3D:37:61:30:F9:5B:44:62:4D:89:A4:EF X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/C5E7AA2289A011F08D995D74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.172.0/23 Signature Algorithm: sha256WithRSAEncryption b2:88:83:23:0e:e6:a3:23:d0:39:cb:1c:c4:ad:f5:d3:05:67: 53:e1:80:6b:00:e9:cf:57:b1:4e:34:78:81:87:b7:c4:64:9e: d5:76:26:3d:bd:2f:63:2c:23:b1:10:cb:c8:76:36:5c:8f:92: 41:54:d8:ce:8a:a9:a1:48:89:18:5e:99:09:a8:e7:ee:f5:e3: be:8f:ec:41:c5:52:48:82:d2:07:98:21:6b:cd:6f:6a:bf:01: 61:f4:fa:07:5b:0c:6e:2e:4c:24:b9:ac:c4:fe:e9:fb:4b:a2: f5:d2:11:6e:c7:2c:aa:9b:39:7b:db:be:e7:1f:cc:1a:d6:b1: aa:57:fd:8e:9c:b9:f7:93:90:ba:7e:28:d1:76:96:b5:75:30: 00:49:f2:a1:51:14:ac:86:9c:2b:22:44:98:ed:a9:fb:0c:d4: b5:21:39:1f:7f:30:58:1a:5a:20:e5:bf:24:5a:2a:ef:53:6c: d4:57:62:49:13:53:b4:ea:c5:f9:18:72:e3:22:47:88:58:f7: ec:dc:0d:5a:e3:a5:1f:7e:81:b5:22:fd:a0:c2:13:93:ab:a1: 33:49:0d:50:a1:f0:cb:39:fb:91:1c:37:bb:df:79:68:13:ec: ae:96:a4:01:23:c4:77:a2:a3:0b:5c:4c:91:11:33:e3:cb:ef: 38:a6:3a:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUwOTA0MTUwNjQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5YWIwNS03MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTyvoSZs+3ggDfIYJZkvysVvstyBHZzvOzTmAH8D8tBkoY68wWv1zHzCUzvQ yyfHkHZXzA4jrqTqQ2Lvp+uEo7lT/yzbd/Xnsr7PS/sQF+Y70kaQPwCLoUawDZR4 JoUxITJZIuGU2Shs1zljU4edj3+U92mL3eb4QzMgMzKnALpLE0DybWmem/ymu83u ECCwyu+He/1jhON1YbGpYbVq3cAXD5kYoQDDAcpq8Y0+QzHrZpC/aKYrlfftCWX+ j0/QTicmb9nbuQUa6vPOT68uojINJcdI9tksx81bDr15xqTcLD2sKWar6HEaDrO5 id4+T9MwsnJRIbBjAvZbwj077wIDAQABo4IClTCCApEwHQYDVR0OBBYEFC82Rnnb fmvtPTdhMPlbRGJNiaTvMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ4MzQvNTFCRURGQzRDQzhEMTFFQUFGRkVEQjM2QzRGOUFFMDIvQzVFN0FBMjI4 OUEwMTFGMDhEOTk1RDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnwawwDQYJKoZIhvcNAQELBQADggEBALKIgyMO5qMj0DnL HMSt9dMFZ1PhgGsA6c9XsU40eIGHt8RkntV2Jj29L2MsI7EQy8h2NlyPkkFU2M6K qaFIiRhemQmo5+71476P7EHFUkiC0geYIWvNb2q/AWH0+gdbDG4uTCS5rMT+6ftL ovXSEW7HLKqbOXvbvucfzBrWsapX/Y6cufeTkLp+KNF2lrV1MABJ8qFRFKyGnCsi RJjtqfsM1LUhOR9/MFgaWiDlvyRaKu9TbNRXYkkTU7TqxfkYcuMiR4hY9+zcDVrj pR9+gbUi/aDCE5OroTNJDVCh8Ms5+5EcN7vfeWgT7K6WpAEjxHeiowtcTJERM+PL 7zimOsc= -----END CERTIFICATE-----Generated at Mon Sep 8 10:46:51 2025 by rpki-client