$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/3A5B01A0CA8F11EAA35BF958C4F9AE02.roa File: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (raw, json) Hash identifier: 1N0QMhN8bev3U7bduyRkYXLSMRn8SE8/x15vjryS7dU= Subject key identifier: F7:F4:53:F9:80:CA:DC:06:83:EF:1C:83:36:34:30:31:AF:87:37:A6 Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 087D Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/3A5B01A0CA8F11EAA35BF958C4F9AE02.roa Signing time: Sun 24 Aug 2025 21:00:38 +0000 ROA not before: Sun 24 Aug 2025 21:00:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140923 IP address blocks: 103.153.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 21:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A, serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Aug 24 21:00:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ab7d76-dd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2f:10:1c:df:d0:2c:12:da:5c:59:f7:2b:35: ff:e7:35:c6:96:69:fa:1b:9d:73:68:04:5d:bf:c5: ed:c2:e6:09:c8:47:4e:bd:7b:ca:67:cf:a8:73:ee: 9d:99:54:9e:60:b1:37:16:b3:6e:e2:cd:e6:d0:c5: bd:10:34:c2:3e:6e:ae:8f:a3:47:d2:86:90:c4:d9: c8:1c:a8:3b:99:7e:32:fb:8f:9a:7b:89:c4:00:7c: 4b:c3:6e:47:c8:00:36:65:87:33:db:70:0f:a5:45: 19:d1:eb:61:29:59:80:ee:ef:52:06:6c:cf:8b:47: 61:21:d8:c9:23:78:75:94:0e:ed:40:03:f7:cf:4c: 3d:b9:41:fe:c6:cd:60:77:2a:16:ba:3f:27:ce:75: 8b:80:64:97:7f:b5:e4:e3:26:b6:be:25:94:5f:42: fd:36:c4:31:6f:2b:88:60:14:f4:30:63:28:39:f5: a8:6a:18:f4:81:1c:e1:eb:e8:d1:15:22:6d:aa:e4: 6a:26:c8:56:f4:12:f0:e9:37:ca:98:b1:2e:b1:9a: ed:89:ce:38:17:47:5e:6c:72:2c:1b:51:86:39:13: c7:fa:8c:01:87:f6:2f:84:f3:20:1b:00:9a:bf:0a: f6:08:28:8b:0b:a0:16:c8:f7:2d:b2:9b:d1:4e:d6: b3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F4:53:F9:80:CA:DC:06:83:EF:1C:83:36:34:30:31:AF:87:37:A6 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/3A5B01A0CA8F11EAA35BF958C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.130.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:41:b3:b9:c7:53:25:86:c0:9d:be:b2:38:34:13:83:e5:8c: 53:df:6b:eb:48:40:82:6e:38:88:4e:d8:d2:0b:ba:d0:1c:15: 2c:3b:90:43:07:e1:9f:c5:66:be:8e:19:6f:f8:b7:e5:40:5a: 74:da:73:ea:87:89:5c:fc:dc:e0:49:19:78:8e:dc:a1:fe:c1: 7e:25:a7:6f:58:6b:84:7a:ff:b3:83:fb:8e:7a:63:02:2e:20: df:88:f1:fb:97:ed:0e:30:2a:0f:7d:a1:af:a1:77:85:5e:28: 37:90:b7:13:b7:e7:25:01:14:c4:e8:80:70:b2:d8:1a:af:5d: a4:20:90:72:1f:5b:9a:fe:48:a8:e0:e9:20:13:04:b9:dc:55: 5c:6e:a0:fd:24:9b:5c:fd:35:fb:e1:e3:96:2c:8a:58:56:bb: b1:e5:35:70:33:0f:c3:6e:1e:33:d8:3a:34:ed:ac:29:b7:fd: 75:0b:82:03:f2:9a:46:fa:50:ea:ed:25:01:9e:20:0b:b7:be: 59:bf:e6:71:c4:d3:1c:3e:1b:d1:22:1d:55:f5:6d:b6:be:21: eb:f3:41:69:5b:e3:d8:b4:37:43:0b:e5:f3:22:9b:c0:c2:10: 31:03:e3:70:62:6d:3a:66:31:37:95:70:6d:98:54:95:41:02: 0d:b2:9f:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjUwODI0MjEwMDM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFiN2Q3Ni1kZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApC8QHN/QLBLaXFn3KzX/5zXGlmn6G51zaARdv8XtwuYJyEdOvXvKZ8+oc+6d mVSeYLE3FrNu4s3m0MW9EDTCPm6uj6NH0oaQxNnIHKg7mX4y+4+ae4nEAHxLw25H yAA2ZYcz23APpUUZ0ethKVmA7u9SBmzPi0dhIdjJI3h1lA7tQAP3z0w9uUH+xs1g dyoWuj8nznWLgGSXf7Xk4ya2viWUX0L9NsQxbyuIYBT0MGMoOfWoahj0gRzh6+jR FSJtquRqJshW9BLw6TfKmLEusZrtic44F0debHIsG1GGORPH+owBh/YvhPMgGwCa vwr2CCiLC6AWyPctspvRTtaz9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPf0U/mA ytwGg+8cgzY0MDGvhzemMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNDOUEvQTFENjFEM0FDQThEMTFFQUJFNUJCNjU2QzRGOUFFMDIvM0E1QjAxQTBD QThGMTFFQUEzNUJGOTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmYIwDQYJKoZIhvcNAQELBQADggEBAGtBs7nHUyWGwJ2+ sjg0E4PljFPfa+tIQIJuOIhO2NILutAcFSw7kEMH4Z/FZr6OGW/4t+VAWnTac+qH iVz83OBJGXiO3KH+wX4lp29Ya4R6/7OD+456YwIuIN+I8fuX7Q4wKg99oa+hd4Ve KDeQtxO35yUBFMTogHCy2BqvXaQgkHIfW5r+SKjg6SATBLncVVxuoP0km1z9Nfvh 45YsilhWu7HlNXAzD8NuHjPYOjTtrCm3/XULggPymkb6UOrtJQGeIAu3vlm/5nHE 0xw+G9EiHVX1bba+IevzQWlb49i0N0ML5fMim8DCEDED43BibTpmMTeVcG2YVJVB Ag2yn+E= -----END CERTIFICATE-----Generated at Mon Aug 25 06:30:22 2025 by rpki-client