$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/AC8A67CA100311F085EE3D29C4F9AE02.roa File: AC8A67CA100311F085EE3D29C4F9AE02.roa (raw, json) Hash identifier: T/rcx/oBePx/fFY5liuYl1FWNJgd5CikRWxOV60Eb+s= Subject key identifier: 09:B7:8A:68:78:C0:98:A3:EC:4C:53:DD:98:4A:29:78:6D:2E:59:59 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3633 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/AC8A67CA100311F085EE3D29C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:30 +0000 ROA not before: Tue 02 Sep 2025 15:01:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 396356 IP address blocks: 103.68.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13875 (0x3633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706ca-999b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:67:67:d3:b2:7e:8f:11:07:7a:9e:b5:ac:39: 11:82:1f:c8:97:47:0c:28:ca:63:4e:2e:90:90:f8: 02:18:57:42:05:10:2a:a2:da:94:23:47:b2:95:43: ad:62:82:c5:b7:92:53:fc:15:c6:49:c0:73:e6:47: 0b:cd:6f:1e:23:8d:a9:67:27:99:87:92:c1:26:2c: dd:99:05:f8:1c:de:13:67:a1:06:8c:7c:0b:b0:52: f4:b0:3b:7e:a0:29:c2:89:6d:99:df:e6:28:3d:c1: 86:a9:a6:ce:39:5a:18:a5:7e:48:14:20:8d:3c:62: 4b:9b:1c:f6:8d:b4:bf:a0:61:ec:5e:f2:61:7e:3b: 03:cf:76:dc:74:f5:50:3d:71:dd:03:e1:f0:bd:1b: 19:75:33:46:21:cf:6d:c8:65:78:c0:e1:c9:46:98: bd:b6:e1:08:3e:e0:19:b3:ff:ec:06:de:56:12:ca: 2a:f2:39:d8:13:c1:54:58:0b:ab:0a:4d:6f:57:a6: fb:62:5b:d1:32:75:e5:f4:4f:9c:73:42:6e:02:cd: be:f8:e8:6a:08:77:2d:bd:61:41:39:31:63:f7:ea: 8f:e5:ac:41:3c:d7:14:6d:1c:07:b5:36:8f:30:0d: fd:ac:77:e3:3b:a3:79:a8:2d:cf:a4:39:55:22:51: b8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B7:8A:68:78:C0:98:A3:EC:4C:53:DD:98:4A:29:78:6D:2E:59:59 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/AC8A67CA100311F085EE3D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.120.0/24 Signature Algorithm: sha256WithRSAEncryption 11:ae:1a:50:62:cd:e4:84:ad:fb:69:fc:f8:a2:07:e2:a6:8d: e3:c3:ca:eb:b0:35:4c:f7:46:9a:b5:f2:1c:d8:47:18:59:0b: 63:2a:4d:2e:25:4f:a9:cd:2e:bb:c0:1d:e3:78:b6:5e:5d:fd: 8d:fc:85:8d:92:00:32:63:92:30:bb:fc:61:3b:3b:2a:79:64: d3:bd:aa:1d:a8:53:80:ac:82:9d:df:2c:4d:c4:34:23:0b:c9: d0:c2:95:5a:1e:b9:19:71:f8:73:37:2f:82:9a:fd:c7:b9:df: 48:1b:4d:51:15:b0:a9:23:83:22:9c:63:91:5b:f0:99:5b:10: 0e:77:87:59:06:15:c5:db:47:f7:ee:a2:40:66:c6:0c:78:58: ce:e5:bc:9d:80:b5:b5:9d:41:76:8c:99:b3:8c:ba:c4:42:22: e2:47:62:28:57:fe:61:0c:9e:7d:78:a1:18:cc:8b:7a:fa:d5: 87:32:1e:79:0f:0e:ea:69:25:30:a8:c3:40:a1:04:1c:1d:2c: f7:88:4a:3e:6b:89:ce:ff:18:a2:d0:8c:1a:40:39:e4:3e:da: 44:85:b3:a7:d2:97:f7:6a:ab:4e:16:5a:5b:51:f5:d4:ac:a6: e6:0f:37:8a:55:17:d3:00:b5:8c:0f:9d:b5:c9:b0:b9:d5:3b: 28:5e:55:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjYS05OTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWdn07J+jxEHep61rDkRgh/Il0cMKMpjTi6QkPgCGFdCBRAqotqUI0eylUOt YoLFt5JT/BXGScBz5kcLzW8eI42pZyeZh5LBJizdmQX4HN4TZ6EGjHwLsFL0sDt+ oCnCiW2Z3+YoPcGGqabOOVoYpX5IFCCNPGJLmxz2jbS/oGHsXvJhfjsDz3bcdPVQ PXHdA+HwvRsZdTNGIc9tyGV4wOHJRpi9tuEIPuAZs//sBt5WEsoq8jnYE8FUWAur Ck1vV6b7YlvRMnXl9E+cc0JuAs2++OhqCHctvWFBOTFj9+qP5axBPNcUbRwHtTaP MA39rHfjO6N5qC3PpDlVIlG4owIDAQABo4IClTCCApEwHQYDVR0OBBYEFAm3imh4 wJij7ExT3ZhKKXhtLllZMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvQUM4QTY3Q0Ex MDAzMTFGMDg1RUUzRDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRHgwDQYJKoZIhvcNAQELBQADggEBABGuGlBizeSErftp /PiiB+KmjePDyuuwNUz3Rpq18hzYRxhZC2MqTS4lT6nNLrvAHeN4tl5d/Y38hY2S ADJjkjC7/GE7Oyp5ZNO9qh2oU4Csgp3fLE3ENCMLydDClVoeuRlx+HM3L4Ka/ce5 30gbTVEVsKkjgyKcY5Fb8JlbEA53h1kGFcXbR/fuokBmxgx4WM7lvJ2AtbWdQXaM mbOMusRCIuJHYihX/mEMnn14oRjMi3r61YcyHnkPDuppJTCow0ChBBwdLPeISj5r ic7/GKLQjBpAOeQ+2kSFs6fSl/dqq04WWltR9dSspuYPN4pVF9MAtYwPnbXJsLnV OyheVTw= -----END CERTIFICATE-----Generated at Sun Sep 7 16:18:28 2025 by rpki-client