$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/7148438E5DC211EE954BE21DC4F9AE02.roa File: 7148438E5DC211EE954BE21DC4F9AE02.roa (raw, json) Hash identifier: y4oU/tmfDIcfKqPlw3m/SWCw2QZiYO8Vo2XRM+uGFBo= Subject key identifier: 0F:67:E8:28:84:B2:5F:62:E6:24:46:06:65:BC:6F:07:71:E7:86:BD Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 0170 Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/7148438E5DC211EE954BE21DC4F9AE02.roa Signing time: Wed 03 Sep 2025 04:23:41 +0000 ROA not before: Wed 03 Sep 2025 04:23:41 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151660 IP address blocks: 103.252.194.0/23 maxlen: 24 2401:2520::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Sep 3 04:23:41 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7c2cc-aaa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e9:d0:e5:7c:1b:e5:29:5b:f8:f4:e1:15:18: b2:63:83:de:cf:c9:a8:27:d1:e9:6f:2f:6c:36:34: 40:4e:91:aa:51:43:f7:2c:87:15:35:27:2a:57:5a: 5b:c5:64:62:cd:44:a5:99:23:bb:d1:36:99:8c:50: 6f:32:e2:72:f1:4d:59:5e:9d:87:12:a1:ee:0d:26: 98:38:b2:bf:f5:f3:c1:b6:3d:d8:92:17:8f:a6:02: 5c:09:cf:75:93:40:ec:1e:08:49:c0:0c:3a:78:e1: 19:da:46:19:8c:ab:3c:fe:f8:12:7b:4f:d7:43:38: 71:0c:71:d3:a6:66:39:ed:92:84:c3:86:ce:1c:da: 13:01:8a:62:e9:a1:32:7f:e3:7b:d7:97:3b:c3:84: 81:cb:ab:9c:84:26:5b:87:5c:67:75:77:f7:ec:c0: d1:ec:1c:52:94:eb:70:dc:25:ee:8d:80:4d:6e:b7: dd:e8:db:2f:87:ce:14:cd:8c:12:2c:cd:d3:ef:c2: ac:e2:aa:0f:97:31:1b:0c:1a:96:1d:2e:cd:e5:cf: 27:1e:e5:cf:73:7d:40:09:00:cb:bc:75:55:1b:11: 57:1f:6e:55:cb:4c:f6:03:35:74:0d:dc:65:25:79: 8a:43:00:9c:a1:2d:aa:a5:dc:ca:0b:85:bb:69:8f: 53:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:67:E8:28:84:B2:5F:62:E6:24:46:06:65:BC:6F:07:71:E7:86:BD X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/7148438E5DC211EE954BE21DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.194.0/23 IPv6: 2401:2520::/32 Signature Algorithm: sha256WithRSAEncryption a1:04:3c:8e:ae:82:93:f9:15:6a:30:86:91:63:c8:6e:e0:e4: ae:57:42:14:bf:9a:53:8b:55:a2:1a:79:0c:ce:fe:b8:60:35: b9:1c:b6:d7:c8:01:94:e0:04:fa:1d:67:e4:ca:24:07:a5:97: 3d:74:83:d4:9f:b7:7d:0a:aa:d0:88:9e:24:40:9a:9e:63:db: 9d:06:86:96:22:32:6c:71:38:2c:6f:01:49:bb:b3:2a:54:5b: 71:99:65:65:85:02:82:4a:19:2f:85:fc:31:80:a1:45:62:41: e5:3e:69:86:94:f1:9a:c2:82:31:81:3c:d5:32:4d:1e:3b:bd: d6:b4:5f:6b:47:f6:0a:94:fa:93:ca:3c:a8:68:2e:d7:b5:4d: af:eb:0d:13:ec:20:f7:6a:2e:c7:6c:52:23:26:f7:1d:e8:1c: 55:b6:85:94:5b:ac:af:1b:a4:12:3b:52:4f:dd:03:02:73:65: 9b:64:0b:c5:59:ae:70:b2:a0:1e:dd:7d:19:c7:00:c8:62:38: 73:66:b0:c2:14:29:7b:ff:cd:47:ec:bb:2b:66:11:8e:1a:be: 58:da:22:70:80:56:b5:05:82:e4:ea:72:15:15:9b:bf:76:c5: d8:78:9c:64:ec:42:c5:17:6a:59:02:11:9e:f1:4f:3d:6b:f9: e5:cf:89:06 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwOTAzMDQyMzQxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YzJjYy1hYWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyunQ5Xwb5Slb+PThFRiyY4Pez8moJ9Hpby9sNjRATpGqUUP3LIcVNScqV1pb xWRizUSlmSO70TaZjFBvMuJy8U1ZXp2HEqHuDSaYOLK/9fPBtj3YkhePpgJcCc91 k0DsHghJwAw6eOEZ2kYZjKs8/vgSe0/XQzhxDHHTpmY57ZKEw4bOHNoTAYpi6aEy f+N715c7w4SBy6uchCZbh1xndXf37MDR7BxSlOtw3CXujYBNbrfd6Nsvh84UzYwS LM3T78Ks4qoPlzEbDBqWHS7N5c8nHuXPc31ACQDLvHVVGxFXH25Vy0z2AzV0Ddxl JXmKQwCcoS2qpdzKC4W7aY9TvQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFA9n6CiE sl9i5iRGBmW8bwdx54a9MB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNGM0MvOTU1MTNCQTY1REMxMTFFRTk4OTQ5OTFDQzRGOUFFMDIvNzE0ODQzOEU1 REMyMTFFRTk1NEJFMjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn/MIwDQQCAAIwBwMFACQBJSAwDQYJKoZIhvcNAQELBQAD ggEBAKEEPI6ugpP5FWowhpFjyG7g5K5XQhS/mlOLVaIaeQzO/rhgNbkcttfIAZTg BPodZ+TKJAellz10g9Sft30KqtCIniRAmp5j250GhpYiMmxxOCxvAUm7sypUW3GZ ZWWFAoJKGS+F/DGAoUViQeU+aYaU8ZrCgjGBPNUyTR47vda0X2tH9gqU+pPKPKho Lte1Ta/rDRPsIPdqLsdsUiMm9x3oHFW2hZRbrK8bpBI7Uk/dAwJzZZtkC8VZrnCy oB7dfRnHAMhiOHNmsMIUKXv/zUfsuytmEY4avljaInCAVrUFguTqchUVm792xdh4 nGTsQsUXalkCEZ7xTz1r+eXPiQY= -----END CERTIFICATE-----Generated at Fri Sep 19 04:20:08 2025 by rpki-client