$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/E0342C7AACF811EDA84F9711C4F9AE02.roa File: E0342C7AACF811EDA84F9711C4F9AE02.roa (raw, json) Hash identifier: JW9VEUpPQX6Yip1p8OuIfJey2xwoc83kLB7ewV443Q0= Subject key identifier: 6F:2F:A2:AA:32:95:87:F0:7D:DF:82:87:18:62:1E:8E:B0:61:41:A8 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3628 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/E0342C7AACF811EDA84F9711C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:22 +0000 ROA not before: Tue 02 Sep 2025 15:01:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149485 IP address blocks: 103.230.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13864 (0x3628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706c1-86dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2e:67:1d:9f:21:e7:51:ac:08:42:b3:7a:97: 08:a6:86:44:77:26:8b:cf:1d:df:4f:4d:16:7a:8c: 38:9b:3e:f7:d4:db:eb:71:76:90:63:e0:fc:69:af: f7:95:61:f1:40:18:56:46:8e:ef:bd:cf:36:22:02: f2:11:62:fa:d5:b8:8c:9e:ae:0f:08:f5:67:ae:0e: f1:d2:e9:d8:1a:b4:82:9f:9b:1b:01:50:1f:89:bb: 99:d3:cf:73:85:d6:eb:67:1e:74:8a:8e:09:aa:3a: af:70:e9:e9:d7:96:60:c2:3c:a4:64:11:57:bb:da: 43:b1:9f:be:7e:ff:0e:44:c1:7e:85:be:4b:5b:96: 8f:c2:9a:2a:64:8e:b1:fc:2b:65:04:cb:62:85:b2: 3a:40:ff:90:72:f6:f1:86:ab:ae:af:69:68:f7:4a: 3a:c8:92:1c:55:25:8a:73:eb:ce:7c:04:e7:30:c0: 3d:b8:2c:57:d1:a9:b0:f9:ef:48:39:43:3d:50:d8: de:80:d7:f4:4a:55:74:7a:d3:91:4d:cc:82:a6:00: 8d:79:bc:d6:7c:33:1e:75:47:13:12:91:40:0e:37: 18:8d:49:8f:5d:7a:e7:ed:d4:54:36:4c:6f:7c:b1: 4b:cc:d8:fe:d1:18:47:ae:1c:f7:d6:0f:87:a4:b6: aa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:2F:A2:AA:32:95:87:F0:7D:DF:82:87:18:62:1E:8E:B0:61:41:A8 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/E0342C7AACF811EDA84F9711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.68.0/24 Signature Algorithm: sha256WithRSAEncryption 93:99:ef:76:b1:9b:a0:50:41:ca:9a:20:d9:f0:dd:a4:a4:11: 5a:dc:c4:83:2f:f7:b8:19:13:af:3e:35:4e:73:99:a5:26:4c: 52:6b:ff:cc:92:24:33:ce:3a:e3:bb:f5:1e:ff:4e:b1:b4:2d: f4:9f:4c:ea:68:17:be:ca:8c:d7:16:b9:d2:c7:4f:25:f0:39: 42:c8:d8:d6:f7:39:d7:9e:6b:74:36:ab:75:a6:a6:dc:01:e2: 9a:a1:28:b0:0c:ae:12:77:b9:bc:f7:72:b5:6d:bb:7f:98:f1: 0b:70:56:77:67:a0:24:79:05:b3:22:f9:21:8c:13:ed:e8:65: 72:e6:4a:ba:6c:c1:f9:25:4d:92:31:a8:12:e8:f2:bb:62:94: 4c:28:fe:8a:5c:e4:4e:a6:89:a0:f3:12:13:19:86:db:39:f0: f1:0c:79:f0:f0:21:f2:d1:8e:0b:4c:21:07:4e:cb:33:58:06: 08:c9:5e:ce:b5:1b:c4:74:53:75:c4:6e:1f:4c:06:0f:c0:5e: 1e:1d:69:b3:2b:0a:fa:3a:03:8b:bb:b3:47:12:d4:45:c5:5c: 55:77:b8:ef:0f:0c:91:35:5a:16:65:d3:d8:fc:ee:8c:97:e4: 96:9e:c3:3f:b5:1a:01:8d:28:df:73:ca:53:0e:68:24:5b:bf: 1c:7f:73:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjMS04NmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0S5nHZ8h51GsCEKzepcIpoZEdyaLzx3fT00Weow4mz731NvrcXaQY+D8aa/3 lWHxQBhWRo7vvc82IgLyEWL61biMnq4PCPVnrg7x0unYGrSCn5sbAVAfibuZ089z hdbrZx50io4JqjqvcOnp15ZgwjykZBFXu9pDsZ++fv8ORMF+hb5LW5aPwpoqZI6x /CtlBMtihbI6QP+Qcvbxhquur2lo90o6yJIcVSWKc+vOfATnMMA9uCxX0amw+e9I OUM9UNjegNf0SlV0etORTcyCpgCNebzWfDMedUcTEpFADjcYjUmPXXrn7dRUNkxv fLFLzNj+0RhHrhz31g+HpLaqjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG8voqoy lYfwfd+ChxhiHo6wYUGoMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvRTAzNDJDN0FB Q0Y4MTFFREE4NEY5NzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5kQwDQYJKoZIhvcNAQELBQADggEBAJOZ73axm6BQQcqa INnw3aSkEVrcxIMv97gZE68+NU5zmaUmTFJr/8ySJDPOOuO79R7/TrG0LfSfTOpo F77KjNcWudLHTyXwOULI2Nb3Odeea3Q2q3WmptwB4pqhKLAMrhJ3ubz3crVtu3+Y 8QtwVndnoCR5BbMi+SGME+3oZXLmSrpswfklTZIxqBLo8rtilEwo/opc5E6miaDz EhMZhts58PEMefDwIfLRjgtMIQdOyzNYBgjJXs61G8R0U3XEbh9MBg/AXh4dabMr Cvo6A4u7s0cS1EXFXFV3uO8PDJE1WhZl09j87oyX5Jaewz+1GgGNKN9zylMOaCRb vxx/c+I= -----END CERTIFICATE-----Generated at Sun Sep 7 16:18:26 2025 by rpki-client