$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/97DFFA2AD39E11EF9395C676C4F9AE02.roa File: 97DFFA2AD39E11EF9395C676C4F9AE02.roa (raw, json) Hash identifier: P6z1l/i5fCMa+njXzS/IVZH5AnBAQ64cA+kn7DDOLo0= Subject key identifier: 8C:DE:23:6B:9C:AA:F3:60:96:88:52:D0:30:22:CE:75:2C:DF:18:2A Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3637 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/97DFFA2AD39E11EF9395C676C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:33 +0000 ROA not before: Tue 02 Sep 2025 15:01:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 61317 IP address blocks: 103.230.68.0/23 maxlen: 23 103.230.70.0/24 maxlen: 24 117.121.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13879 (0x3637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706cd-8841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:82:27:14:c0:bf:97:6e:0e:f4:52:87:22:71: 67:6a:d2:ca:a5:89:7a:1f:26:34:5f:25:df:15:fb: 4f:3b:a8:3a:34:8a:c8:61:0e:1f:db:f8:39:4d:28: 87:84:85:d8:6f:b9:97:f9:3f:cf:9b:17:dd:74:6c: 77:6d:fb:1b:4b:d0:fd:3b:a2:ab:a7:dd:39:7e:62: 02:9c:d3:2a:69:04:69:87:e4:d5:ee:a5:a6:6a:c8: 54:f6:7a:04:4f:02:c5:4d:92:47:1a:cf:af:e7:5a: e0:b5:3d:fb:d8:34:8a:a4:48:03:73:83:d7:fe:98: 25:69:79:8f:0d:31:fd:f8:76:b4:99:12:bb:f6:3d: d1:ce:35:ed:8b:f7:27:b7:8f:46:95:6b:10:8a:1d: 3f:e7:d1:14:5b:cb:b3:00:ab:b3:4d:32:06:48:e5: 4f:97:8e:a2:58:b6:b7:2c:27:72:2a:b0:5e:27:03: 3e:a0:96:4c:5c:57:71:a8:f0:8b:39:63:87:65:4e: ca:8a:60:a5:e4:b9:d4:27:49:c2:15:c3:95:c2:a0: ce:4f:fe:70:97:25:93:ea:94:4b:3b:b0:68:8f:f7: f3:ab:be:c9:74:4d:86:e3:58:73:17:ee:f2:11:bc: 1a:e1:17:13:58:73:d0:be:c6:7e:30:ca:e1:97:20: 15:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DE:23:6B:9C:AA:F3:60:96:88:52:D0:30:22:CE:75:2C:DF:18:2A X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/97DFFA2AD39E11EF9395C676C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.68.0-103.230.70.255 117.121.247.0/24 Signature Algorithm: sha256WithRSAEncryption 68:2d:fb:78:53:04:cd:53:70:df:43:3a:93:c5:fb:05:d6:93: 6a:70:80:9b:52:5d:b5:be:f7:2f:83:9e:a3:aa:08:e6:95:69: 62:97:3a:5b:37:6b:ef:d0:30:32:e8:d7:09:b4:44:26:ef:57: 2e:a8:37:c7:cb:d3:94:9f:af:6d:3b:f9:ef:e5:8e:22:df:e6: 92:b2:70:66:47:6c:50:d6:71:e5:f5:b4:ce:72:cd:7a:de:c3: 6f:65:68:f6:cd:00:95:49:8a:55:35:25:a5:04:71:87:60:db: 7b:0c:06:61:84:f7:ba:f0:24:d2:53:95:c3:b6:07:75:5a:d2: ba:39:33:a6:93:08:95:47:37:1b:82:2c:cf:69:2f:40:20:26: 7a:26:f7:7e:d8:e3:9b:9a:3d:a5:bd:4f:4e:df:7c:25:d1:66: 53:73:0f:c7:f2:29:77:38:3d:ce:27:64:eb:d5:cd:32:91:ea: e4:ce:b1:49:35:30:6a:09:93:b6:6c:94:cc:f4:50:f9:c2:05: 2d:73:ba:4c:d9:86:ef:e3:d7:e9:68:82:d7:5b:17:89:97:8e: d2:cd:1a:30:f2:f5:d4:ad:72:2a:e6:07:95:86:30:b1:b5:d7: eb:9e:f4:f4:12:39:bb:5b:31:ec:2e:00:50:3a:09:22:f8:76: 84:c9:84:1c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjZC04ODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IInFMC/l24O9FKHInFnatLKpYl6HyY0XyXfFftPO6g6NIrIYQ4f2/g5TSiH hIXYb7mX+T/PmxfddGx3bfsbS9D9O6Krp905fmICnNMqaQRph+TV7qWmashU9noE TwLFTZJHGs+v51rgtT372DSKpEgDc4PX/pglaXmPDTH9+Ha0mRK79j3RzjXti/cn t49GlWsQih0/59EUW8uzAKuzTTIGSOVPl46iWLa3LCdyKrBeJwM+oJZMXFdxqPCL OWOHZU7KimCl5LnUJ0nCFcOVwqDOT/5wlyWT6pRLO7Boj/fzq77JdE2G41hzF+7y Ebwa4RcTWHPQvsZ+MMrhlyAV1wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFIzeI2uc qvNglohS0DAiznUs3xgqMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvOTdERkZBMkFE MzlFMTFFRjkzOTVDNjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAmfmRAMEAGfmRgMEAHV59zANBgkqhkiG9w0BAQsFAAOC AQEAaC37eFMEzVNw30M6k8X7BdaTanCAm1Jdtb73L4Oeo6oI5pVpYpc6Wzdr79Aw MujXCbREJu9XLqg3x8vTlJ+vbTv57+WOIt/mkrJwZkdsUNZx5fW0znLNet7Db2Vo 9s0AlUmKVTUlpQRxh2DbewwGYYT3uvAk0lOVw7YHdVrSujkzppMIlUc3G4Isz2kv QCAmeib3ftjjm5o9pb1PTt98JdFmU3MPx/Ipdzg9zidk69XNMpHq5M6xSTUwagmT tmyUzPRQ+cIFLXO6TNmG7+PX6WiC11sXiZeO0s0aMPL11K1yKuYHlYYwsbXX6570 9BI5u1sx7C4AUDoJIvh2hMmEHA== -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:23 2025 by rpki-client