$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/0294E1EADB0D11EE88489759C4F9AE02.roa File: 0294E1EADB0D11EE88489759C4F9AE02.roa (raw, json) Hash identifier: tApFNOXuMAds2oEW8JJnzjsR+WARBMQp8+3UH7PmGVY= Subject key identifier: 17:D5:A1:7F:BE:95:EE:FB:B6:51:38:06:C2:01:A8:07:D6:CC:40:10 Certificate issuer: /CN=A91EEE06/serialNumber=5073951E5C1582693A87072EE548C65485B05A2C Certificate serial: 04AF Authority key identifier: 50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/0294E1EADB0D11EE88489759C4F9AE02.roa Signing time: Sun 31 Aug 2025 01:17:50 +0000 ROA not before: Sun 31 Aug 2025 01:17:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 152151 IP address blocks: 103.152.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE06, serialNumber=5073951E5C1582693A87072EE548C65485B05A2C Validity Not Before: Aug 31 01:17:50 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b3a2be-2711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:88:fd:bc:cf:2d:8c:f6:56:61:40:d6:cf:21: cc:04:75:5d:b8:9b:47:f4:f6:9a:7a:4f:48:d7:01: 5f:2d:46:7b:a5:ee:06:9e:ca:3c:5b:b3:c8:36:41: 06:a7:1c:00:83:e6:cd:91:66:03:ec:8f:9c:d2:cf: 0b:e5:10:93:2f:f2:55:d6:a1:c2:30:66:17:d1:24: 30:2c:4c:de:63:32:d1:02:df:1b:d4:5d:08:f7:1e: b9:1a:37:4f:33:b5:51:a8:d2:06:27:2d:c5:e8:97: 0b:f9:e4:2e:95:60:b8:d6:41:ab:4e:ff:07:e2:a5: e8:bd:73:05:44:7b:c0:d6:ff:65:f9:e4:be:3c:88: 1a:ec:6a:a9:61:8c:f0:17:bb:d6:d7:4f:5b:5a:f5: 25:45:6d:6e:be:d3:57:d1:54:96:b4:50:12:94:99: 2f:20:e6:f3:6e:04:9a:97:83:f6:dc:c0:2d:bb:05: 70:61:9d:16:e8:1f:4d:94:e9:c1:52:f7:75:8b:9c: 06:8d:af:12:8f:99:02:88:7e:11:7c:11:36:a2:f6: cf:1d:c7:8f:bd:c1:35:11:02:62:42:42:af:28:0e: b6:28:ed:ef:7a:92:e6:71:bf:1d:c0:42:a8:72:f9: e1:5a:84:92:f9:47:38:b3:4a:a1:2e:7d:8e:d2:1c: ba:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D5:A1:7F:BE:95:EE:FB:B6:51:38:06:C2:01:A8:07:D6:CC:40:10 X509v3 Authority Key Identifier: keyid:50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/0294E1EADB0D11EE88489759C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.117.0/24 Signature Algorithm: sha256WithRSAEncryption 69:fb:1a:41:49:02:0e:50:3b:d8:12:f5:7c:71:ec:57:44:32: 1a:19:f8:28:ac:29:f6:60:9d:d3:d7:25:e6:fc:5c:a9:be:31: 9a:2a:30:91:94:6d:8f:65:df:19:1a:5e:a9:94:0d:5f:16:9d: e6:6d:6d:a9:a8:06:2d:42:63:4f:5b:68:cc:02:70:e4:89:b3: 24:bc:cf:a3:28:6c:70:af:71:c5:68:e8:b0:20:90:f7:f7:03: 39:26:0f:30:b6:e0:75:6f:40:d2:2b:8b:4a:7d:67:15:69:bc: c4:69:57:53:9c:95:41:c4:1b:56:17:b3:c2:f4:7b:0d:64:a7: 33:ac:7d:9e:2f:b0:59:4b:10:b0:f1:54:eb:d7:f7:45:cd:b9: ae:5d:73:ed:2d:92:f3:d7:da:d7:f6:7e:32:b6:67:71:7a:97: 11:a5:38:95:47:57:75:51:cd:6c:f5:17:af:6c:a3:e4:ae:e5: 05:04:ef:50:fb:ce:55:d1:a0:e0:40:58:0d:66:b2:fc:69:92: 53:a8:49:ca:58:5c:d2:9a:95:5e:9f:b9:00:a1:dc:cc:fd:d5: b3:14:e9:f3:92:1e:71:e8:3b:3f:69:d6:14:fb:f4:3c:42:66: 82:09:51:fa:a3:2e:23:19:ff:96:ae:56:d7:75:0f:d6:2e:c6: fe:8d:ae:a6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFMDYxMTAvBgNVBAUTKDUwNzM5NTFFNUMxNTgyNjkzQTg3MDcyRUU1NDhDNjU0 ODVCMDVBMkMwHhcNMjUwODMxMDExNzUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzYTJiZS0yNzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIj9vM8tjPZWYUDWzyHMBHVduJtH9Paaek9I1wFfLUZ7pe4Gnso8W7PINkEG pxwAg+bNkWYD7I+c0s8L5RCTL/JV1qHCMGYX0SQwLEzeYzLRAt8b1F0I9x65GjdP M7VRqNIGJy3F6JcL+eQulWC41kGrTv8H4qXovXMFRHvA1v9l+eS+PIga7GqpYYzw F7vW109bWvUlRW1uvtNX0VSWtFASlJkvIObzbgSal4P23MAtuwVwYZ0W6B9NlOnB Uvd1i5wGja8Sj5kCiH4RfBE2ovbPHcePvcE1EQJiQkKvKA62KO3vepLmcb8dwEKo cvnhWoSS+Uc4s0qhLn2O0hy63QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBfVoX++ le77tlE4BsIBqAfWzEAQMB8GA1UdIwQYMBaAFFBzlR5cFYJpOocHLuVIxlSFsFos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUwNi8wNTU5RUVBRTVD QkUxMUVDQjI3M0RDN0NDNEY5QUUwMi9VSE9WSGx3VmdtazZod2N1NVVqR1ZJV3dX aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIT1ZIbHdWZ21rNmh3Y3U1VWpHVklXd1dpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFMDYvMDU1OUVFQUU1Q0JFMTFFQ0IyNzNEQzdDQzRGOUFFMDIvMDI5NEUxRUFE QjBEMTFFRTg4NDg5NzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmHUwDQYJKoZIhvcNAQELBQADggEBAGn7GkFJAg5QO9gS 9Xxx7FdEMhoZ+CisKfZgndPXJeb8XKm+MZoqMJGUbY9l3xkaXqmUDV8WneZtbamo Bi1CY09baMwCcOSJsyS8z6MobHCvccVo6LAgkPf3AzkmDzC24HVvQNIri0p9ZxVp vMRpV1OclUHEG1YXs8L0ew1kpzOsfZ4vsFlLELDxVOvX90XNua5dc+0tkvPX2tf2 fjK2Z3F6lxGlOJVHV3VRzWz1F69so+Su5QUE71D7zlXRoOBAWA1msvxpklOoScpY XNKalV6fuQCh3Mz91bMU6fOSHnHoOz9p1hT79DxCZoIJUfqjLiMZ/5auVtd1D9Yu xv6NrqY= -----END CERTIFICATE-----Generated at Mon Sep 8 06:25:33 2025 by rpki-client