$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa File: 0EB22CD66BBE11EDBF717818C4F9AE02.roa (raw, json) Hash identifier: gFLbFRy/ivjEl0Dcp/t/VXs92pwAJ2tSip4UwHoVC3M= Subject key identifier: 75:1A:FF:AB:51:5D:F6:F6:E1:72:62:B6:1A:E0:31:26:F5:42:AC:17 Certificate issuer: /CN=A91DF3CA/serialNumber=BB93256E607D42EB6E3420DCC7137F20B84D0C8A Certificate serial: 1800 Authority key identifier: BB:93:25:6E:60:7D:42:EB:6E:34:20:DC:C7:13:7F:20:B8:4D:0C:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa Signing time: Wed 20 Aug 2025 16:54:57 +0000 ROA not before: Wed 20 Aug 2025 16:54:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132018 IP address blocks: 103.21.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.crl rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6144 (0x1800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF3CA, serialNumber=BB93256E607D42EB6E3420DCC7137F20B84D0C8A Validity Not Before: Aug 20 16:54:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a5fde1-926b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:fe:8b:16:cf:76:c9:41:f0:23:e3:22:9d: ba:11:39:f9:36:6c:c8:69:b9:e0:b1:da:12:4b:6b: 90:ee:d5:68:c5:d9:b0:c2:52:7b:5e:b9:92:a3:48: 08:ad:33:da:19:bb:32:f6:9f:ee:7c:0e:b2:ea:d3: 09:23:35:97:cf:ef:9e:b8:f9:d5:9b:43:f9:5d:3b: 3d:22:dc:e1:fa:05:51:27:f7:74:00:d8:6b:c0:f4: 91:ad:fe:88:83:0d:8d:47:68:e8:39:8a:7a:d8:08: 5d:fb:7b:35:02:be:44:23:73:b4:a2:4e:60:d3:37: bb:18:7d:7e:fa:03:82:b6:b5:f7:bd:38:71:b0:cd: 55:ba:10:cf:0d:b7:a5:ee:9d:3a:e0:fb:41:d9:4e: 61:21:c8:97:43:20:89:44:57:c2:61:19:cf:75:ec: 97:7c:f6:11:2f:3d:26:28:fc:fc:55:a8:b5:47:56: 29:e6:de:99:2c:0d:1c:5e:cc:01:5b:59:ee:1f:f8: 34:eb:47:ad:1b:ca:e8:11:3d:69:5c:24:35:2a:d1: 76:25:05:b7:7a:37:16:5c:e1:2d:f2:84:98:1e:d9: c4:b9:f9:9e:be:8e:92:d1:ac:79:8f:d3:f1:f1:83: 08:65:ca:fd:d7:1c:d4:8f:7b:7b:36:67:26:de:4b: f2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:1A:FF:AB:51:5D:F6:F6:E1:72:62:B6:1A:E0:31:26:F5:42:AC:17 X509v3 Authority Key Identifier: keyid:BB:93:25:6E:60:7D:42:EB:6E:34:20:DC:C7:13:7F:20:B8:4D:0C:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.192.0/24 Signature Algorithm: sha256WithRSAEncryption 23:db:5c:c4:4a:02:7f:65:55:57:bf:89:ee:72:58:f5:09:f7: d2:5f:9b:fe:c7:9e:a3:86:07:43:7b:1b:c9:da:c7:f5:e3:bf: e9:c9:48:6b:df:ca:b2:85:07:48:29:e1:cc:e3:26:04:71:0e: a4:ee:8e:ae:b0:b8:10:b1:4d:ae:ae:31:b8:4f:21:43:a6:27: e8:ab:e9:12:37:85:c1:dc:61:b8:2b:f8:b7:b3:64:f0:b3:ff: c5:b0:07:f5:47:d1:d0:c3:b8:c5:dc:f1:48:d8:d2:ea:d8:69: 09:94:13:ca:8e:5e:93:26:db:c2:e6:40:d9:77:4c:89:b6:81: d9:d3:6a:9b:dc:d7:02:d5:94:d4:d8:53:dd:25:96:04:18:9f: af:58:ee:74:67:f4:64:47:3b:0d:aa:25:8b:89:23:c0:7c:55: 6b:67:bb:cc:49:51:cf:9c:54:da:06:9e:8e:8d:13:88:ad:c1: 46:24:40:6b:dc:9e:1e:7a:30:22:07:16:7b:ca:14:c0:7e:85: 41:cc:06:0b:00:6c:6f:4c:56:67:c6:29:90:6d:1b:34:d4:91: 5f:c8:af:4a:e7:82:3c:f0:0f:c0:00:c9:49:d7:c9:29:9b:60: 7f:9a:a1:44:60:72:38:c0:c2:ea:27:61:e8:7d:b2:b1:b1:32: e5:a4:2c:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYzQ0ExMTAvBgNVBAUTKEJCOTMyNTZFNjA3RDQyRUI2RTM0MjBEQ0M3MTM3RjIw Qjg0RDBDOEEwHhcNMjUwODIwMTY1NDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1ZmRlMS05MjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmj+ixbPdslB8CPjIp26ETn5NmzIabngsdoSS2uQ7tVoxdmwwlJ7XrmSo0gI rTPaGbsy9p/ufA6y6tMJIzWXz++euPnVm0P5XTs9Itzh+gVRJ/d0ANhrwPSRrf6I gw2NR2joOYp62Ahd+3s1Ar5EI3O0ok5g0ze7GH1++gOCtrX3vThxsM1VuhDPDbel 7p064PtB2U5hIciXQyCJRFfCYRnPdeyXfPYRLz0mKPz8Vai1R1Yp5t6ZLA0cXswB W1nuH/g060etG8roET1pXCQ1KtF2JQW3ejcWXOEt8oSYHtnEufmevo6S0ax5j9Px 8YMIZcr91xzUj3t7Nmcm3kvyMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHUa/6tR Xfb24XJithrgMSb1QqwXMB8GA1UdIwQYMBaAFLuTJW5gfULrbjQg3McTfyC4TQyK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjNDQS9FRjRGOTM3Q0Mz QTQxMUU3OTdCQkYxNUVDNEY5QUUwMi91NU1sYm1COVF1dHVOQ0RjeHhOX0lMaE5E SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1TWxibUI5UXV0dU5DRGN4eE5fSUxoTkRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYzQ0EvRUY0RjkzN0NDM0E0MTFFNzk3QkJGMTVFQzRGOUFFMDIvMEVCMjJDRDY2 QkJFMTFFREJGNzE3ODE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFcAwDQYJKoZIhvcNAQELBQADggEBACPbXMRKAn9lVVe/ ie5yWPUJ99Jfm/7HnqOGB0N7G8nax/Xjv+nJSGvfyrKFB0gp4czjJgRxDqTujq6w uBCxTa6uMbhPIUOmJ+ir6RI3hcHcYbgr+LezZPCz/8WwB/VH0dDDuMXc8UjY0urY aQmUE8qOXpMm28LmQNl3TIm2gdnTapvc1wLVlNTYU90llgQYn69Y7nRn9GRHOw2q JYuJI8B8VWtnu8xJUc+cVNoGno6NE4itwUYkQGvcnh56MCIHFnvKFMB+hUHMBgsA bG9MVmfGKZBtGzTUkV/Ir0rngjzwD8AAyUnXySmbYH+aoURgcjjAwuonYeh9srGx MuWkLHI= -----END CERTIFICATE-----Generated at Fri Aug 22 18:32:36 2025 by rpki-client