$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa File: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (raw, json) Hash identifier: TeJpD3Jj2YvGpGUMH39dSWrHPG/q0+u5tAy2AR+WaQQ= Subject key identifier: BB:A4:2A:B1:EC:5A:6F:5C:DD:67:BC:BD:28:C7:CC:96:03:20:BB:8F Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 0639 Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa Signing time: Thu 25 Sep 2025 04:34:40 +0000 ROA not before: Thu 25 Sep 2025 04:34:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134143 IP address blocks: 14.102.164.0/22 maxlen: 24 45.248.196.0/22 maxlen: 24 103.4.55.0/24 maxlen: 24 103.55.92.0/24 maxlen: 24 103.55.93.0/24 maxlen: 24 103.55.94.0/24 maxlen: 24 103.55.95.0/24 maxlen: 24 103.133.52.0/22 maxlen: 24 103.217.164.0/22 maxlen: 24 103.228.104.0/22 maxlen: 24 2405:e180::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 00:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1593 (0x639) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578, serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: Sep 25 04:34:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68d4c660-76bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7e:c8:eb:31:28:25:d0:87:21:6b:9e:0a:04: 22:7e:5b:39:01:0b:f1:c6:74:18:1e:ed:a6:78:30: 87:74:19:31:17:be:8d:22:fd:8d:d0:2c:b9:0b:c7: da:27:46:44:15:57:77:fe:43:4e:30:57:22:59:9b: 30:80:61:3e:7e:af:5b:bc:83:14:86:21:e9:23:38: 9c:4b:01:b1:67:3b:61:d4:4c:83:d5:4f:62:19:a4: 46:15:b3:a4:08:5f:df:16:48:87:66:32:64:e5:50: 2b:da:87:db:d3:50:41:2c:5e:a8:4f:0f:f3:a5:99: 0f:16:37:7e:cf:ab:3d:36:87:b8:cd:04:89:a9:61: 1d:5c:ab:b9:2e:c1:7a:47:04:68:27:fc:11:d1:93: 33:da:5b:db:90:01:bb:84:e7:3f:ef:f2:44:50:12: 42:c4:23:08:23:8c:3a:4b:a7:29:21:cc:e9:01:52: e9:54:40:4f:44:6e:f3:28:9c:0f:81:33:b0:a9:a9: 24:0e:f9:b1:47:5e:73:dc:40:56:36:72:62:59:2f: a1:22:3a:9c:ac:db:36:14:8f:54:72:e8:b8:81:9f: 14:a4:38:47:1c:6d:c1:68:5d:12:7d:4d:4e:28:5a: 44:b7:73:f6:d9:dd:89:1b:07:37:1f:bb:32:d7:2f: ac:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A4:2A:B1:EC:5A:6F:5C:DD:67:BC:BD:28:C7:CC:96:03:20:BB:8F X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.102.164.0/22 45.248.196.0/22 103.4.55.0/24 103.55.92.0/22 103.133.52.0/22 103.217.164.0/22 103.228.104.0/22 IPv6: 2405:e180::/32 Signature Algorithm: sha256WithRSAEncryption 8e:bf:2c:c1:8c:24:e1:f1:0a:62:3f:a2:e7:92:be:1d:ac:41: a5:fa:41:66:a2:e4:81:d8:c0:46:c7:a4:dc:7c:1e:84:a8:f5: 7c:2d:fb:df:5c:0b:d3:38:44:61:76:b3:41:83:f3:a7:e8:a3: 44:bd:1c:19:63:58:34:3a:f6:b5:45:12:65:d8:15:8c:16:69: c5:54:49:e8:d3:50:7b:73:3c:5c:2d:69:84:9a:2f:91:0d:40: 63:73:2d:25:d9:fd:0f:6f:91:fa:ab:ad:1e:fa:97:88:10:b9: 10:de:65:cb:30:86:1a:b9:c8:1b:a1:15:73:f3:cf:48:6f:f6: a2:1c:8a:18:54:d2:8e:86:a6:44:b0:b1:94:ed:67:82:a5:e7: ce:9d:06:5b:1d:8c:88:61:b0:00:bf:0c:a8:3a:8f:b4:99:80: 41:e6:d1:f1:ff:13:3d:6a:4d:ff:72:ff:24:cb:97:a8:22:33: 3b:04:58:5b:ad:1d:c7:1d:5a:fb:97:91:52:80:ff:08:4b:fd: d9:40:a5:a2:cc:5b:99:2e:bb:ed:72:d8:00:b5:3f:7e:0c:22: 5c:57:28:81:5f:57:3b:07:e8:b5:7e:b6:a2:8b:9c:93:19:59: a2:0f:e4:83:c0:0f:67:62:21:c6:27:4d:10:5d:2b:50:ce:14: 7c:b4:94:72 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICBjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjUwOTI1MDQzNDQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YzY2MC03NmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyH7I6zEoJdCHIWueCgQifls5AQvxxnQYHu2meDCHdBkxF76NIv2N0Cy5C8fa J0ZEFVd3/kNOMFciWZswgGE+fq9bvIMUhiHpIzicSwGxZzth1EyD1U9iGaRGFbOk CF/fFkiHZjJk5VAr2ofb01BBLF6oTw/zpZkPFjd+z6s9Noe4zQSJqWEdXKu5LsF6 RwRoJ/wR0ZMz2lvbkAG7hOc/7/JEUBJCxCMII4w6S6cpIczpAVLpVEBPRG7zKJwP gTOwqakkDvmxR15z3EBWNnJiWS+hIjqcrNs2FI9Ucui4gZ8UpDhHHG3BaF0SfU1O KFpEt3P22d2JGwc3H7sy1y+stwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFLukKrHs Wm9c3We8vSjHzJYDILuPMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc1NzgvRDNDMDE5MENCQjlEMTFFQjg0RjczQjNBQzRGOUFFMDIvRTg1NDJERUE2 Qjg4MTFFQ0FDNzMxQjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIOZqQDBAIt+MQDBABnBDcDBAJnN1wDBAJnhTQDBAJn2aQD BAJn5GgwDQQCAAIwBwMFACQF4YAwDQYJKoZIhvcNAQELBQADggEBAI6/LMGMJOHx CmI/oueSvh2sQaX6QWai5IHYwEbHpNx8HoSo9Xwt+99cC9M4RGF2s0GD86foo0S9 HBljWDQ69rVFEmXYFYwWacVUSejTUHtzPFwtaYSaL5ENQGNzLSXZ/Q9vkfqrrR76 l4gQuRDeZcswhhq5yBuhFXPzz0hv9qIcihhU0o6GpkSwsZTtZ4Kl586dBlsdjIhh sAC/DKg6j7SZgEHm0fH/Ez1qTf9y/yTLl6giMzsEWFutHccdWvuXkVKA/whL/dlA paLMW5kuu+1y2AC1P34MIlxXKIFfVzsH6LV+tqKLnJMZWaIP5IPAD2diIcYnTRBd K1DOFHy0lHI= -----END CERTIFICATE-----Generated at Sun Oct 26 03:34:59 2025 by rpki-client