$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa File: 5553B5FEE90E11EA998F5735C4F9AE02.roa (raw, json) Hash identifier: 7Y+BMS/66rPoGcFQGfUmmEmIY/lvqgpMP8T/jWrEFog= Subject key identifier: 8B:1F:3C:DA:74:58:B6:FF:2F:64:B2:EB:3E:67:B8:D5:FA:70:F8:0E Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3631 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:28 +0000 ROA not before: Tue 02 Sep 2025 15:01:28 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 3356 IP address blocks: 103.230.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13873 (0x3631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:28 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706c8-c505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:76:84:05:9f:c4:a6:3d:f1:f5:22:29:02:70: 65:df:52:3e:59:bc:89:9f:0d:be:1b:ad:e2:64:95: b6:7e:e6:0b:e1:dc:c7:5e:31:f9:29:e8:e0:88:0f: 71:f3:c8:2c:1c:f4:a6:0c:40:ae:28:17:fe:8b:fe: 48:a3:d7:31:e7:d2:2d:4a:84:24:96:e8:a6:08:5b: 27:89:82:91:85:7b:89:3d:bb:17:b9:cb:dc:85:43: 6c:95:bf:bb:49:ff:0a:de:29:7b:66:32:2a:e0:c4: 59:d7:df:e6:ae:d5:46:d6:37:5e:30:27:c7:58:74: 80:9b:e2:80:4b:c0:55:8e:8c:68:b4:95:b0:05:d8: 4e:93:a1:8a:41:a7:19:b8:99:08:30:31:f3:6d:7a: 43:d0:c9:c4:fa:3e:77:7c:74:4d:e7:c2:f2:76:08: cb:4c:65:61:44:3b:f8:f1:d1:08:d7:6c:fe:db:d4: 9c:73:52:74:96:ab:4d:d6:15:04:b9:4b:26:14:d1: 70:8d:50:05:a6:79:79:81:67:72:9f:3e:4a:60:4e: 7a:c4:d4:5c:c8:20:b8:7f:9f:f0:13:d9:c9:a5:69: f4:33:df:98:54:bd:10:de:da:ee:89:29:7a:a1:60: 23:49:97:78:d9:e0:68:8d:94:18:de:e1:07:ac:bc: 5b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1F:3C:DA:74:58:B6:FF:2F:64:B2:EB:3E:67:B8:D5:FA:70:F8:0E X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.68.0/23 Signature Algorithm: sha256WithRSAEncryption ab:0a:bf:30:cc:ab:f3:c0:1a:b4:d1:c8:27:83:4e:55:43:b4: bb:35:1b:97:90:cc:b7:c3:6c:22:bc:0f:62:54:55:c3:8b:e1: b4:45:05:3a:fb:58:42:a8:1b:d0:37:f5:f6:2a:e1:ce:28:1a: 10:86:cd:a4:77:cd:04:93:0c:d9:df:41:e7:5d:8b:08:2c:7e: 8c:3b:f6:4b:41:56:d3:80:7c:df:ce:f9:63:8b:be:c4:46:31: 54:d1:50:e9:90:4a:9d:7f:c4:76:5c:47:cb:a0:4f:58:08:1c: b9:af:7f:a7:75:7b:bc:80:5d:1f:14:9c:aa:0f:45:c5:b2:45: c8:0c:e3:e7:e2:e5:5e:b2:69:40:d5:41:10:79:2c:a8:eb:59: fe:a6:82:09:e6:61:1a:d8:d9:28:f2:7d:38:2e:16:34:5d:5b: f0:8b:15:0d:ed:02:54:c4:23:06:6b:7e:20:32:6f:7b:7a:53: c4:41:d8:2d:18:a7:67:78:29:1b:41:50:58:d1:da:be:50:37: f1:97:10:21:aa:a1:0d:80:c9:5e:bd:3c:0c:92:18:98:cd:1a: 02:1e:a0:d5:18:6c:f3:c6:78:74:ca:3c:4d:d3:28:34:42:7f: c9:18:e1:2c:bb:8f:db:da:3b:27:80:75:99:a7:8b:ff:4d:7b: 9e:80:53:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTI4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjOC1jNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHaEBZ/Epj3x9SIpAnBl31I+WbyJnw2+G63iZJW2fuYL4dzHXjH5KejgiA9x 88gsHPSmDECuKBf+i/5Io9cx59ItSoQkluimCFsniYKRhXuJPbsXucvchUNslb+7 Sf8K3il7ZjIq4MRZ19/mrtVG1jdeMCfHWHSAm+KAS8BVjoxotJWwBdhOk6GKQacZ uJkIMDHzbXpD0MnE+j53fHRN58LydgjLTGVhRDv48dEI12z+29Scc1J0lqtN1hUE uUsmFNFwjVAFpnl5gWdynz5KYE56xNRcyCC4f5/wE9nJpWn0M9+YVL0Q3truiSl6 oWAjSZd42eBojZQY3uEHrLxbPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIsfPNp0 WLb/L2Sy6z5nuNX6cPgOMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNTU1M0I1RkVF OTBFMTFFQTk5OEY1NzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5kQwDQYJKoZIhvcNAQELBQADggEBAKsKvzDMq/PAGrTR yCeDTlVDtLs1G5eQzLfDbCK8D2JUVcOL4bRFBTr7WEKoG9A39fYq4c4oGhCGzaR3 zQSTDNnfQeddiwgsfow79ktBVtOAfN/O+WOLvsRGMVTRUOmQSp1/xHZcR8ugT1gI HLmvf6d1e7yAXR8UnKoPRcWyRcgM4+fi5V6yaUDVQRB5LKjrWf6mggnmYRrY2Sjy fTguFjRdW/CLFQ3tAlTEIwZrfiAyb3t6U8RB2C0Yp2d4KRtBUFjR2r5QN/GXECGq oQ2AyV69PAySGJjNGgIeoNUYbPPGeHTKPE3TKDRCf8kY4Sy7j9vaOyeAdZmni/9N e56AU+M= -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:14 2025 by rpki-client