$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/E20C4942DC7D11EDA2F7B651C4F9AE02.roa File: E20C4942DC7D11EDA2F7B651C4F9AE02.roa (raw, json) Hash identifier: zk34LWbv4bQiMskRqGHmUZeHGe9ThXpt5J1yxmeAi1g= Subject key identifier: 62:B7:C6:BD:E5:F6:0C:C4:9D:4D:D6:61:95:CA:DB:03:77:B5:47:A4 Certificate issuer: /CN=A91DD42F/serialNumber=87A55061B75F1DC2C5C5BB87D2898E83307D870F Certificate serial: 0782 Authority key identifier: 87:A5:50:61:B7:5F:1D:C2:C5:C5:BB:87:D2:89:8E:83:30:7D:87:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6VQYbdfHcLFxbuH0omOgzB9hw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/E20C4942DC7D11EDA2F7B651C4F9AE02.roa Signing time: Tue 26 Aug 2025 22:02:13 +0000 ROA not before: Tue 26 Aug 2025 22:02:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 59381 IP address blocks: 103.235.176.0/22 maxlen: 22 103.235.176.0/24 maxlen: 24 103.235.177.0/24 maxlen: 24 103.235.178.0/24 maxlen: 24 103.235.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/h6VQYbdfHcLFxbuH0omOgzB9hw8.crl rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/h6VQYbdfHcLFxbuH0omOgzB9hw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6VQYbdfHcLFxbuH0omOgzB9hw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD42F, serialNumber=87A55061B75F1DC2C5C5BB87D2898E83307D870F Validity Not Before: Aug 26 22:02:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae2ee5-f5c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:29:2f:5a:22:15:82:e8:6a:b0:90:c7:4f:78: cc:b0:e4:4e:b4:7f:18:34:45:91:41:de:89:10:1a: 70:0e:9a:2a:1b:b4:f3:b4:fe:2d:32:98:15:85:e6: b7:6d:17:de:cd:d9:e8:03:b5:22:e8:f3:97:35:a4: 0d:f6:73:16:79:5a:a4:fa:73:5a:ee:9e:93:0a:1f: b8:9b:e3:a6:3b:55:2b:47:28:3a:1d:02:e6:50:5d: dd:f8:2e:62:62:a4:b7:31:7b:64:db:a3:bf:04:37: 3e:2c:18:c5:2b:26:6c:92:7e:06:73:e4:a7:dc:d6: 0e:2b:b2:89:0b:26:e6:42:4f:f2:36:d2:87:61:58: 99:6f:bc:30:70:f7:11:a9:b1:d8:36:b6:4d:44:45: 86:d9:60:f3:c1:f0:e4:e5:44:74:ba:99:e1:d5:b6: e8:7e:8d:c0:6c:3c:22:6f:6c:f0:b5:52:0c:d1:e2: 77:f4:72:d1:1f:09:c1:53:a7:73:29:11:03:ed:da: f6:43:fd:ae:aa:9b:dd:e6:54:c0:bc:fb:0c:6d:0a: f1:8b:7e:57:26:ba:b3:d3:e3:44:b2:63:ba:c4:1b: 01:25:ea:08:5d:2e:89:23:09:ce:5e:36:14:e4:a3: a5:21:87:e4:fb:41:06:94:27:26:df:e9:0e:dc:24: 29:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B7:C6:BD:E5:F6:0C:C4:9D:4D:D6:61:95:CA:DB:03:77:B5:47:A4 X509v3 Authority Key Identifier: keyid:87:A5:50:61:B7:5F:1D:C2:C5:C5:BB:87:D2:89:8E:83:30:7D:87:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/h6VQYbdfHcLFxbuH0omOgzB9hw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6VQYbdfHcLFxbuH0omOgzB9hw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/E20C4942DC7D11EDA2F7B651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.176.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:ba:63:d3:bb:d5:48:e9:a4:18:de:90:c4:ef:28:c9:53:b9: 0c:0e:66:be:12:3d:64:63:fb:31:73:45:c6:cd:24:cf:ff:56: df:df:d6:36:4c:bd:7b:6c:1d:0b:75:c3:ea:24:c5:46:49:4a: 5c:f7:03:2a:96:52:44:ba:83:34:78:9d:31:aa:38:db:a9:fc: 39:c9:38:72:0b:68:7f:94:ee:52:fd:cb:f7:93:00:0f:b3:9d: f6:a1:82:ce:54:f3:9a:39:3a:82:d1:3c:88:3f:4c:9a:26:3c: f5:8a:2e:eb:45:24:70:a6:a9:f2:d4:d3:02:10:23:80:df:a2: c5:8a:05:8d:65:67:bc:04:b9:50:82:a2:43:54:1b:c7:49:d9: 3b:67:90:c5:43:74:5c:59:48:6a:3b:2c:e3:db:a7:21:25:55: 50:94:34:cb:cd:91:b7:84:8b:ca:80:f8:7b:24:69:ef:cc:8a: 79:05:95:45:47:b3:bd:0e:93:f2:67:31:15:34:94:44:89:da: 15:25:f9:13:d1:ef:ba:c1:12:ce:87:9f:d2:a5:ee:6c:f3:c0: f6:0b:d6:3f:04:f7:3a:bb:07:4f:42:2b:c6:00:14:b5:c0:7f: 0e:36:08:82:54:13:6b:d8:a8:4f:fc:90:6c:07:1c:f9:f9:84: 0d:71:74:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ0MkYxMTAvBgNVBAUTKDg3QTU1MDYxQjc1RjFEQzJDNUM1QkI4N0QyODk4RTgz MzA3RDg3MEYwHhcNMjUwODI2MjIwMjEzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlMmVlNS1mNWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCkvWiIVguhqsJDHT3jMsOROtH8YNEWRQd6JEBpwDpoqG7TztP4tMpgVhea3 bRfezdnoA7Ui6POXNaQN9nMWeVqk+nNa7p6TCh+4m+OmO1UrRyg6HQLmUF3d+C5i YqS3MXtk26O/BDc+LBjFKyZskn4Gc+Sn3NYOK7KJCybmQk/yNtKHYViZb7wwcPcR qbHYNrZNREWG2WDzwfDk5UR0upnh1bbofo3AbDwib2zwtVIM0eJ39HLRHwnBU6dz KRED7dr2Q/2uqpvd5lTAvPsMbQrxi35XJrqz0+NEsmO6xBsBJeoIXS6JIwnOXjYU 5KOlIYfk+0EGlCcm3+kO3CQpgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGK3xr3l 9gzEnU3WYZXK2wN3tUekMB8GA1UdIwQYMBaAFIelUGG3Xx3CxcW7h9KJjoMwfYcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDQyRi9DOEJBMDFCQzJF MkIxMUVCODBFQjcwODBDNEY5QUUwMi9oNlZRWWJkZkhjTEZ4YnVIMG9tT2d6Qjlo dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2VlFZYmRmSGNMRnhidUgwb21PZ3pCOWh3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ0MkYvQzhCQTAxQkMyRTJCMTFFQjgwRUI3MDgwQzRGOUFFMDIvRTIwQzQ5NDJE QzdEMTFFREEyRjdCNjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn67AwDQYJKoZIhvcNAQELBQADggEBACu6Y9O71UjppBje kMTvKMlTuQwOZr4SPWRj+zFzRcbNJM//Vt/f1jZMvXtsHQt1w+okxUZJSlz3AyqW UkS6gzR4nTGqONup/DnJOHILaH+U7lL9y/eTAA+znfahgs5U85o5OoLRPIg/TJom PPWKLutFJHCmqfLU0wIQI4DfosWKBY1lZ7wEuVCCokNUG8dJ2TtnkMVDdFxZSGo7 LOPbpyElVVCUNMvNkbeEi8qA+Hskae/MinkFlUVHs70Ok/JnMRU0lESJ2hUl+RPR 77rBEs6Hn9Kl7mzzwPYL1j8E9zq7B09CK8YAFLXAfw42CIJUE2vYqE/8kGwHHPn5 hA1xdGU= -----END CERTIFICATE-----Generated at Fri Sep 19 05:07:12 2025 by rpki-client