$ rpki-client -vvf rpki.apnic.net/member_repository/A91D624F/0B913B0EB46F11EAA7FC8A09C4F9AE02/E43DC97CB46F11EA889ACA09C4F9AE02.roa File: E43DC97CB46F11EA889ACA09C4F9AE02.roa (raw, json) Hash identifier: D7lMNLpl3a55d9FcjuAmjfTmqkh4ktfxiUbFr9P5BYA= Subject key identifier: B9:F3:B8:F8:D6:84:46:6B:E6:2E:48:E4:9F:CE:8C:6D:DC:F5:57:95 Certificate issuer: /CN=A91D624F/serialNumber=CF3B13D3B498123895467FBF8AE4EDBFE3C93D78 Certificate serial: 08DD Authority key identifier: CF:3B:13:D3:B4:98:12:38:95:46:7F:BF:8A:E4:ED:BF:E3:C9:3D:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zzsT07SYEjiVRn-_iuTtv-PJPXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D624F/0B913B0EB46F11EAA7FC8A09C4F9AE02/E43DC97CB46F11EA889ACA09C4F9AE02.roa Signing time: Mon 14 Jul 2025 21:01:14 +0000 ROA not before: Mon 14 Jul 2025 21:01:14 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136749 IP address blocks: 103.95.32.0/22 maxlen: 24 2401:5640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D624F/0B913B0EB46F11EAA7FC8A09C4F9AE02/zzsT07SYEjiVRn-_iuTtv-PJPXg.crl rsync://rpki.apnic.net/member_repository/A91D624F/0B913B0EB46F11EAA7FC8A09C4F9AE02/zzsT07SYEjiVRn-_iuTtv-PJPXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zzsT07SYEjiVRn-_iuTtv-PJPXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2269 (0x8dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D624F, serialNumber=CF3B13D3B498123895467FBF8AE4EDBFE3C93D78 Validity Not Before: Jul 14 21:01:14 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68757019-beac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9b:d8:9f:63:6c:f8:cb:dd:3f:bf:32:2f:54: c6:ca:9d:63:81:4c:9e:bf:82:b7:0f:86:98:e2:f8: 58:d7:6a:20:9a:61:d0:4b:64:78:4a:8d:cb:c7:65: 48:7c:4f:be:c3:2c:1e:9f:02:93:21:03:e1:3e:2d: 2b:3e:ed:56:27:fb:28:0f:ec:e4:4a:86:d0:7d:fa: 68:26:3d:45:3e:9a:5d:9f:0c:60:65:29:cb:58:9a: 8b:2e:73:64:d8:b3:1c:a2:59:a9:3b:6b:21:58:88: 0a:46:b5:07:c5:20:c9:a0:20:cc:24:d5:9b:e8:04: 13:51:1e:76:ad:05:ef:d2:72:0e:ce:ca:b0:f0:d8: 58:db:21:cf:97:bb:84:66:2c:e1:6f:ac:8f:66:18: 92:3d:43:28:56:31:57:c5:5f:ea:c0:11:d4:35:cc: 60:2e:33:fa:8f:97:0e:f5:3a:3b:6f:c8:94:74:78: 06:44:8b:3d:67:e7:81:3b:41:e6:45:35:22:3b:94: 64:d0:11:35:0c:87:51:6e:48:d2:ea:b8:4f:b3:78: b9:fd:be:57:88:1f:73:64:7b:4d:ca:0f:1e:61:13: 5d:03:6b:be:7b:26:f5:9a:7a:3d:91:ab:5f:53:11: 60:7c:2b:13:30:02:b3:ed:aa:2f:1b:45:45:f6:90: e4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F3:B8:F8:D6:84:46:6B:E6:2E:48:E4:9F:CE:8C:6D:DC:F5:57:95 X509v3 Authority Key Identifier: keyid:CF:3B:13:D3:B4:98:12:38:95:46:7F:BF:8A:E4:ED:BF:E3:C9:3D:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D624F/0B913B0EB46F11EAA7FC8A09C4F9AE02/zzsT07SYEjiVRn-_iuTtv-PJPXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zzsT07SYEjiVRn-_iuTtv-PJPXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D624F/0B913B0EB46F11EAA7FC8A09C4F9AE02/E43DC97CB46F11EA889ACA09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.32.0/22 IPv6: 2401:5640::/32 Signature Algorithm: sha256WithRSAEncryption 35:37:07:b2:32:19:df:33:31:da:ea:35:8f:92:ff:6b:c4:a7: 71:43:46:8f:b9:04:c5:7c:17:47:92:4b:62:92:52:3c:ba:09: 43:23:8e:d6:5c:90:b2:ac:05:f0:1f:94:28:c5:45:a0:b7:2f: 0c:c7:c7:ae:50:30:b2:9a:b7:f8:c9:44:64:9b:09:b4:00:2b: 11:a7:4a:9d:be:85:98:7f:de:3d:48:f1:8b:88:01:95:53:7a: 8c:5f:c8:83:66:fd:d5:7c:22:d9:8d:52:bc:5a:34:ed:85:74: 2a:a9:fb:ed:1b:5d:40:0e:94:eb:44:03:b8:1b:63:2a:c8:74: ae:82:d6:21:47:19:6a:d0:1d:ac:4e:24:56:ff:ae:26:ec:af: a1:d8:74:17:d5:29:a2:a6:90:56:60:0d:95:b9:85:a0:e8:d0: ef:90:4b:7a:f9:0d:3f:0b:5d:3c:5d:e8:f8:dc:74:da:15:f7: e4:c6:1d:2e:c0:c5:82:a2:6a:e2:1b:ad:f4:47:9b:7c:67:ec: e5:00:83:80:9e:83:b7:98:1d:69:a6:a1:0e:1f:1c:2c:90:ee: 5d:01:42:4a:c0:08:0b:46:50:18:a6:e5:dd:30:c0:81:03:02: 39:c1:61:c3:aa:8f:a8:21:a2:bc:c3:e3:ba:67:99:19:ab:d4: 8d:5d:f8:17 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYyNEYxMTAvBgNVBAUTKENGM0IxM0QzQjQ5ODEyMzg5NTQ2N0ZCRjhBRTRFREJG RTNDOTNENzgwHhcNMjUwNzE0MjEwMTE0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1NzAxOS1iZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45vYn2Ns+MvdP78yL1TGyp1jgUyev4K3D4aY4vhY12ogmmHQS2R4So3Lx2VI fE++wywenwKTIQPhPi0rPu1WJ/soD+zkSobQffpoJj1FPppdnwxgZSnLWJqLLnNk 2LMcolmpO2shWIgKRrUHxSDJoCDMJNWb6AQTUR52rQXv0nIOzsqw8NhY2yHPl7uE Zizhb6yPZhiSPUMoVjFXxV/qwBHUNcxgLjP6j5cO9To7b8iUdHgGRIs9Z+eBO0Hm RTUiO5Rk0BE1DIdRbkjS6rhPs3i5/b5XiB9zZHtNyg8eYRNdA2u+eyb1mno9katf UxFgfCsTMAKz7aovG0VF9pDkfQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLnzuPjW hEZr5i5I5J/OjG3c9VeVMB8GA1UdIwQYMBaAFM87E9O0mBI4lUZ/v4rk7b/jyT14 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjI0Ri8wQjkxM0IwRUI0 NkYxMUVBQTdGQzhBMDlDNEY5QUUwMi96enNUMDdTWUVqaVZSbi1faXVUdHYtUEpQ WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p6c1QwN1NZRWppVlJuLV9pdVR0di1QSlBYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYyNEYvMEI5MTNCMEVCNDZGMTFFQUE3RkM4QTA5QzRGOUFFMDIvRTQzREM5N0NC NDZGMTFFQTg4OUFDQTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnXyAwDQQCAAIwBwMFACQBVkAwDQYJKoZIhvcNAQELBQAD ggEBADU3B7IyGd8zMdrqNY+S/2vEp3FDRo+5BMV8F0eSS2KSUjy6CUMjjtZckLKs BfAflCjFRaC3LwzHx65QMLKat/jJRGSbCbQAKxGnSp2+hZh/3j1I8YuIAZVTeoxf yINm/dV8ItmNUrxaNO2FdCqp++0bXUAOlOtEA7gbYyrIdK6C1iFHGWrQHaxOJFb/ ribsr6HYdBfVKaKmkFZgDZW5haDo0O+QS3r5DT8LXTxd6PjcdNoV9+TGHS7AxYKi auIbrfRHm3xn7OUAg4Ceg7eYHWmmoQ4fHCyQ7l0BQkrACAtGUBim5d0wwIEDAjnB YcOqj6ghorzD47pnmRmr1I1d+Bc= -----END CERTIFICATE-----Generated at Fri Aug 22 18:56:30 2025 by rpki-client