$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa File: E352E0A2896F11E7BBF2923CC4F9AE02.roa (raw, json) Hash identifier: bpwG3qWkZqt3c9e2parZM85DcFLWLncfBgOv3ugwly0= Subject key identifier: 62:82:36:91:71:9F:F7:23:E5:1E:D4:02:86:88:1D:26:57:EF:FB:0B Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1FA2 Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa Signing time: Fri 08 Aug 2025 16:23:57 +0000 ROA not before: Fri 08 Aug 2025 16:23:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38719 IP address blocks: 103.68.164.0/22 maxlen: 22 103.68.164.0/24 maxlen: 24 103.68.165.0/24 maxlen: 24 103.68.166.0/24 maxlen: 24 103.68.167.0/24 maxlen: 24 2400:8240::/32 maxlen: 32 2400:8240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8098 (0x1fa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Aug 8 16:23:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6896249d-a4f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3e:00:01:e0:15:4b:a4:06:f8:0e:97:b8:53: 80:1e:14:3f:c3:e8:14:f1:27:95:80:af:56:d2:dd: 55:ae:c4:01:dc:1f:4c:b8:4d:75:a4:17:54:40:31: 5e:3e:56:d6:a0:9b:d5:dd:f2:a5:9c:30:02:5c:fd: 8a:fc:1d:50:9b:ff:02:ae:4f:97:85:d6:36:57:1e: b4:05:a5:97:6a:06:f7:9d:cc:3a:d0:84:65:a0:d7: f4:a1:12:59:b0:bd:c3:af:c1:57:64:6d:3d:7c:f8: c4:3b:65:3b:57:6f:bf:9e:3f:03:29:f3:7d:fc:29: 5c:87:9d:bd:da:c8:38:d1:06:38:a5:67:e9:a9:21: b8:1e:8f:3f:1d:58:68:41:56:07:e8:96:8f:5b:f6: bb:9a:dc:9d:ba:65:a1:07:41:ee:eb:3d:bb:73:9e: 33:7f:ff:b4:12:6a:68:db:16:89:c2:af:12:f1:e9: 36:71:c6:42:9f:df:32:56:fc:f3:56:a8:e5:66:60: 06:57:f2:a9:60:4c:6f:98:c5:7e:2b:39:06:11:75: 9d:0f:d4:52:14:23:29:95:2e:04:1d:e1:9f:0f:01: d4:b9:5a:d0:49:c4:b9:7e:62:7f:05:90:06:c3:54: 61:5a:76:ab:46:59:cd:06:df:4a:e0:b0:79:1f:24: 9a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:82:36:91:71:9F:F7:23:E5:1E:D4:02:86:88:1D:26:57:EF:FB:0B X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.164.0/22 IPv6: 2400:8240::/32 Signature Algorithm: sha256WithRSAEncryption 2d:13:eb:0c:57:14:a5:6c:ce:0d:b5:3b:31:42:78:9a:27:ad: fb:f8:53:57:d5:12:6a:9d:46:9a:64:37:40:f5:da:b3:52:bc: d5:4b:0f:ba:7f:64:f6:1e:f0:2a:58:99:d9:b3:6b:ff:0f:17: 3f:a1:90:be:4f:cd:48:e9:78:6d:a7:0a:73:58:f6:83:bc:2b: 5a:e8:43:fe:f5:75:f9:b8:8c:70:7c:e6:1b:6e:58:9f:c0:0e: dd:27:3e:10:4a:c1:f5:43:fb:4f:c2:51:f6:8d:0f:4f:43:d0: d0:c2:f0:4d:46:c9:a9:ab:18:d6:29:6c:08:5f:50:43:31:5c: 56:6c:85:23:ac:54:75:14:23:5c:56:99:0b:b0:ec:71:f9:b7: d2:19:b0:9d:8b:ab:6f:56:7d:16:c0:65:db:20:7c:99:80:ce: 45:ea:f1:6e:04:b1:4e:eb:f6:f3:51:14:c9:47:a1:74:e0:50: 39:1b:81:a2:57:30:f9:85:e8:72:be:f1:da:8e:13:00:f7:cf: 92:b0:8f:a3:7a:4d:1a:12:aa:9e:df:6a:c6:b7:72:30:38:42: 95:b8:88:8d:2f:ea:81:ca:d6:c7:26:57:48:42:2e:a6:7f:0c: de:53:89:4e:77:4d:27:10:49:d3:ce:46:08:42:be:82:ec:a6: 68:9e:5d:07 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUwODA4MTYyMzU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MjQ5ZC1hNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj4AAeAVS6QG+A6XuFOAHhQ/w+gU8SeVgK9W0t1VrsQB3B9MuE11pBdUQDFe PlbWoJvV3fKlnDACXP2K/B1Qm/8Crk+XhdY2Vx60BaWXagb3ncw60IRloNf0oRJZ sL3Dr8FXZG09fPjEO2U7V2+/nj8DKfN9/Clch5292sg40QY4pWfpqSG4Ho8/HVho QVYH6JaPW/a7mtydumWhB0Hu6z27c54zf/+0Empo2xaJwq8S8ek2ccZCn98yVvzz VqjlZmAGV/KpYExvmMV+KzkGEXWdD9RSFCMplS4EHeGfDwHUuVrQScS5fmJ/BZAG w1RhWnarRlnNBt9K4LB5HySanwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGKCNpFx n/cj5R7UAoaIHSZX7/sLMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI0MEIvNUI3MzZEOTI0MzMzMTFFNjk1OUE3ODE1QzRGOUFFMDIvRTM1MkUwQTI4 OTZGMTFFN0JCRjI5MjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnRKQwDQQCAAIwBwMFACQAgkAwDQYJKoZIhvcNAQELBQAD ggEBAC0T6wxXFKVszg21OzFCeJonrfv4U1fVEmqdRppkN0D12rNSvNVLD7p/ZPYe 8CpYmdmza/8PFz+hkL5PzUjpeG2nCnNY9oO8K1roQ/71dfm4jHB85htuWJ/ADt0n PhBKwfVD+0/CUfaND09D0NDC8E1GyamrGNYpbAhfUEMxXFZshSOsVHUUI1xWmQuw 7HH5t9IZsJ2Lq29WfRbAZdsgfJmAzkXq8W4EsU7r9vNRFMlHoXTgUDkbgaJXMPmF 6HK+8dqOEwD3z5Kwj6N6TRoSqp7fasa3cjA4QpW4iI0v6oHK1scmV0hCLqZ/DN5T iU53TScQSdPORghCvoLspmieXQc= -----END CERTIFICATE-----Generated at Mon Nov 3 03:32:18 2025 by rpki-client