$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa File: 5D001D76932811E8BC93865BC4F9AE02.roa (raw, json) Hash identifier: pHntxFpGcz85fh4g8wJJV0K9ZMyE2AlZpDPCheVdfGE= Subject key identifier: 10:48:FF:17:6D:F7:E9:EA:09:FE:C4:85:47:83:F9:8D:19:34:01:59 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3635 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:32 +0000 ROA not before: Tue 02 Sep 2025 15:01:32 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45887 IP address blocks: 103.68.121.0/24 maxlen: 24 103.68.122.0/24 maxlen: 24 103.68.123.0/24 maxlen: 24 103.206.30.0/23 maxlen: 23 103.230.71.0/24 maxlen: 24 117.121.240.0/24 maxlen: 24 117.121.241.0/24 maxlen: 24 117.121.242.0/24 maxlen: 24 182.54.232.0/24 maxlen: 24 2403:cc00:8000::/36 maxlen: 36 2403:cc00:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13877 (0x3635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:32 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706cc-8479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:6f:6b:3f:64:7e:73:2f:db:1b:4d:2a:ec: 99:69:43:19:6e:b3:cf:de:f3:3b:33:1f:0f:d5:c2: e2:e7:e3:ce:b4:42:06:b0:8f:2c:73:9a:4c:dc:22: 94:6f:3b:cb:85:45:df:af:d3:5f:e6:1c:62:b6:81: 5f:ea:ce:28:22:3b:a2:dc:0d:7b:22:a5:38:d0:14: 4b:e7:55:b7:05:30:d1:47:ff:83:2e:33:74:f0:23: da:38:57:97:3c:7a:71:e4:32:c6:1a:90:2d:55:fb: 47:22:30:bc:00:17:e3:d3:31:af:a0:ff:a9:c8:68: 93:ac:60:b6:e8:b7:66:2e:14:8a:3a:fe:a1:10:32: e0:74:5c:38:ba:4a:68:dc:b5:da:e7:95:86:7c:97: 3a:7e:3c:3d:49:ca:41:47:e5:81:b4:62:8a:26:34: 18:4f:99:ad:c7:1e:49:e1:6c:dd:60:a9:da:0e:96: ec:d1:3c:e4:99:80:fd:bc:d4:3c:d0:c3:0c:a8:50: 74:1b:05:f7:5d:02:23:be:5b:88:89:38:df:5d:e5: 21:bf:02:b2:ed:65:b8:e2:b0:cf:db:19:b2:12:c1: 85:77:7f:e6:be:e5:cb:c5:37:62:69:e0:33:6f:9a: 41:d1:c0:a5:38:56:80:7d:6a:75:a5:40:9d:3e:e2: bc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:48:FF:17:6D:F7:E9:EA:09:FE:C4:85:47:83:F9:8D:19:34:01:59 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.121.0-103.68.123.255 103.206.30.0/23 103.230.71.0/24 117.121.240.0-117.121.242.255 182.54.232.0/24 IPv6: 2403:cc00:8000::/36 2403:cc00:a000::/36 Signature Algorithm: sha256WithRSAEncryption 56:85:67:68:34:14:48:25:2f:bf:78:0a:68:71:9e:b0:cf:33: 7a:ce:d7:1f:dd:df:bf:f5:5b:7a:9b:00:0e:4c:db:b0:10:7e: 25:1d:c6:64:56:aa:7b:0d:00:6c:81:a5:78:99:1b:65:6b:8f: 87:71:4a:dd:31:d4:7a:e4:c4:2f:2c:c1:86:23:ae:bb:fd:ab: 77:b9:ef:bd:9a:79:ab:47:26:c4:be:54:70:d1:ed:4d:3e:2c: ac:5e:33:88:a5:03:3a:9b:c0:74:71:96:81:6d:76:df:87:c7: 9e:cc:9b:85:28:94:fe:da:3b:16:c8:91:44:42:ba:7d:97:12: 85:7b:7d:3f:06:85:3d:ad:53:e4:64:47:26:69:14:05:93:19: b6:26:34:de:12:e7:09:c6:89:4b:1a:81:5a:6b:30:ff:4b:50: 39:0d:ad:46:bd:28:86:b3:20:7f:97:4f:82:bd:9c:bc:10:f5: 35:6b:2f:92:88:b1:9b:b3:3b:cf:a6:e7:b5:9b:b2:c1:c9:2f: 4e:6d:79:86:22:45:ae:a4:ef:dd:8c:cd:e9:2a:43:6e:38:00: 6c:06:9d:d7:71:cf:ba:43:75:1f:90:3d:52:6a:ea:c9:2f:a7: 0b:fd:7d:97:4a:88:03:1c:35:7a:2b:47:78:d0:dd:d8:42:44: 4e:4b:b0:9c -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICNjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTMyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjYy04NDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz9vaz9kfnMv2xtNKuyZaUMZbrPP3vM7Mx8P1cLi5+POtEIGsI8sc5pM3CKU bzvLhUXfr9Nf5hxitoFf6s4oIjui3A17IqU40BRL51W3BTDRR/+DLjN08CPaOFeX PHpx5DLGGpAtVftHIjC8ABfj0zGvoP+pyGiTrGC26LdmLhSKOv6hEDLgdFw4ukpo 3LXa55WGfJc6fjw9ScpBR+WBtGKKJjQYT5mtxx5J4WzdYKnaDpbs0TzkmYD9vNQ8 0MMMqFB0GwX3XQIjvluIiTjfXeUhvwKy7WW44rDP2xmyEsGFd3/mvuXLxTdiaeAz b5pB0cClOFaAfWp1pUCdPuK8NwIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFBBI/xdt 9+nqCf7EhUeD+Y0ZNAFZMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNUQwMDFENzY5 MzI4MTFFOEJDOTM4NjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMDQEAgABMC4wDAMEAGdEeQMEAmdEeAMEAWfOHgMEAGfmRzAMAwQEdXnwAwQA dXnyAwQAtjboMBYEAgACMBADBgQkA8wAgAMGBCQDzACgMA0GCSqGSIb3DQEBCwUA A4IBAQBWhWdoNBRIJS+/eApocZ6wzzN6ztcf3d+/9Vt6mwAOTNuwEH4lHcZkVqp7 DQBsgaV4mRtla4+HcUrdMdR65MQvLMGGI667/at3ue+9mnmrRybEvlRw0e1NPiys XjOIpQM6m8B0cZaBbXbfh8eezJuFKJT+2jsWyJFEQrp9lxKFe30/BoU9rVPkZEcm aRQFkxm2JjTeEucJxolLGoFaazD/S1A5Da1GvSiGsyB/l0+CvZy8EPU1ay+SiLGb szvPpue1m7LByS9ObXmGIkWupO/djM3pKkNuOABsBp3Xcc+6Q3UfkD1SaurJL6cL /X2XSogDHDV6K0d40N3YQkROS7Cc -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:17 2025 by rpki-client