$ rpki-client -vvf rpki.apnic.net/member_repository/A91F98B5/96D8238AEC0011EF8B5D172DC4F9AE02/E7A90E38824011F0B9DA0749C4F9AE02.roa File: E7A90E38824011F0B9DA0749C4F9AE02.roa (raw, json) Hash identifier: QOE6RaPByip2qWXTpgbOiN0duUqz1Bsz81bUndnwZ7Y= Subject key identifier: EC:F5:1D:8A:1F:53:87:27:43:0D:87:33:3F:83:15:95:2F:0D:67:A3 Certificate issuer: /CN=A91F98B5/serialNumber=CDBFA0A6D061E1FE7034B40F2EE2E4B53DE8FDE1 Certificate serial: 64 Authority key identifier: CD:BF:A0:A6:D0:61:E1:FE:70:34:B4:0F:2E:E2:E4:B5:3D:E8:FD:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zb-gptBh4f5wNLQPLuLktT3o_eE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F98B5/96D8238AEC0011EF8B5D172DC4F9AE02/E7A90E38824011F0B9DA0749C4F9AE02.roa Signing time: Tue 26 Aug 2025 05:52:52 +0000 ROA not before: Tue 26 Aug 2025 05:52:52 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 8075 IP address blocks: 103.254.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F98B5/96D8238AEC0011EF8B5D172DC4F9AE02/zb-gptBh4f5wNLQPLuLktT3o_eE.crl rsync://rpki.apnic.net/member_repository/A91F98B5/96D8238AEC0011EF8B5D172DC4F9AE02/zb-gptBh4f5wNLQPLuLktT3o_eE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zb-gptBh4f5wNLQPLuLktT3o_eE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F98B5, serialNumber=CDBFA0A6D061E1FE7034B40F2EE2E4B53DE8FDE1 Validity Not Before: Aug 26 05:52:52 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68ad4bb4-df0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cb:af:0a:1a:d4:66:ba:5a:89:07:a5:5c:23: 65:3d:7b:b7:40:11:06:f4:47:40:e6:69:81:64:23: eb:fe:4e:0f:0e:b5:d6:66:cf:5e:72:d5:20:4f:96: ef:89:b8:82:dc:3e:e1:15:14:ea:ba:97:2e:e2:e7: 30:cc:0d:72:ce:54:27:21:47:ed:bf:d0:52:97:d8: 94:2c:d0:fb:02:e3:01:86:d6:50:f8:26:d8:25:14: ae:5e:9e:f8:56:cb:87:47:c9:ef:7f:24:5d:b5:39: 03:5e:4a:8f:26:ae:e9:ba:eb:08:eb:40:58:d9:5f: 23:fc:99:7a:7b:44:22:b1:ad:bc:86:82:f5:d7:3b: eb:50:e3:c6:bb:bd:4b:7e:38:08:6e:99:25:23:45: a5:da:68:a7:25:85:ba:db:d3:1f:40:9b:95:25:53: a0:17:32:9b:53:fd:16:0a:ac:12:01:ad:e5:a1:17: 74:fb:aa:32:0d:84:7e:c7:65:44:d0:b7:75:15:31: a6:98:16:6f:9e:ca:55:ed:7e:67:c6:49:6e:96:a0: ce:7e:6b:71:f2:b2:83:e7:00:80:22:1a:37:97:59: 87:71:ac:89:39:0e:c6:7b:a4:f7:62:37:27:78:c5: da:22:a7:b3:83:41:c4:68:7f:ab:d7:17:90:6c:56: 98:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F5:1D:8A:1F:53:87:27:43:0D:87:33:3F:83:15:95:2F:0D:67:A3 X509v3 Authority Key Identifier: keyid:CD:BF:A0:A6:D0:61:E1:FE:70:34:B4:0F:2E:E2:E4:B5:3D:E8:FD:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F98B5/96D8238AEC0011EF8B5D172DC4F9AE02/zb-gptBh4f5wNLQPLuLktT3o_eE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zb-gptBh4f5wNLQPLuLktT3o_eE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F98B5/96D8238AEC0011EF8B5D172DC4F9AE02/E7A90E38824011F0B9DA0749C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.7.0/24 Signature Algorithm: sha256WithRSAEncryption 97:9a:12:d4:f6:61:ec:ae:d1:47:c0:6e:4c:a6:cc:5a:e9:0b: 3a:05:ed:6b:72:4b:a0:b1:4b:34:9e:b2:21:fd:90:21:68:b4: f9:6d:31:d8:6b:72:08:ea:84:04:e7:21:a2:7e:72:79:b4:d9: 5b:ec:5c:c8:2c:fa:72:32:de:05:aa:9d:a5:9c:b8:01:42:3c: d5:29:d4:fb:85:d7:8c:bc:d7:0a:ab:af:8c:7a:9b:ef:1f:72: 20:9e:f3:e1:b3:87:15:05:f3:ab:51:53:21:c4:75:c8:5c:33: 1c:5e:0d:e4:b4:d1:87:c2:c8:a8:79:10:8c:54:eb:0e:fa:ae: f0:5c:30:c1:e4:34:7c:2e:a8:f2:15:bd:29:b4:0e:88:5c:45: 17:4b:52:48:81:ab:89:0f:38:ca:1e:e3:2f:8e:64:00:8a:4b: f4:e0:9d:74:bb:e0:f1:06:72:34:37:79:2c:2b:b5:9c:0a:38: 5e:11:be:bc:7e:d4:0e:1a:35:fa:30:37:24:78:52:1e:14:cb: 5d:a5:b5:c3:05:63:fb:4d:9b:ba:0b:cc:d7:ba:36:e2:6c:a2: 74:ab:2a:05:2f:df:26:a0:93:5d:ac:ab:0d:5b:66:3d:06:10: 7a:04:5e:01:81:07:a8:15:4c:9e:38:d7:ef:43:30:a6:df:47: c5:86:13:09 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OThCNTExMC8GA1UEBRMoQ0RCRkEwQTZEMDYxRTFGRTcwMzRCNDBGMkVFMkU0QjUz REU4RkRFMTAeFw0yNTA4MjYwNTUyNTJaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWQ0YmI0LWRmMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDly68KGtRmulqJB6VcI2U9e7dAEQb0R0DmaYFkI+v+Tg8OtdZmz15y1SBPlu+J uILcPuEVFOq6ly7i5zDMDXLOVCchR+2/0FKX2JQs0PsC4wGG1lD4JtglFK5envhW y4dHye9/JF21OQNeSo8mrum66wjrQFjZXyP8mXp7RCKxrbyGgvXXO+tQ48a7vUt+ OAhumSUjRaXaaKclhbrb0x9Am5UlU6AXMptT/RYKrBIBreWhF3T7qjINhH7HZUTQ t3UVMaaYFm+eylXtfmfGSW6WoM5+a3HysoPnAIAiGjeXWYdxrIk5DsZ7pPdiNyd4 xdoip7ODQcRof6vXF5BsVpjPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU7PUdih9T hydDDYczP4MVlS8NZ6MwHwYDVR0jBBgwFoAUzb+gptBh4f5wNLQPLuLktT3o/eEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5OEI1Lzk2RDgyMzhBRUMw MDExRUY4QjVEMTcyREM0RjlBRTAyL3piLWdwdEJoNGY1d05MUVBMdUxrdFQzb19l RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvemItZ3B0Qmg0ZjV3TkxRUEx1TGt0VDNvX2VFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OThCNS85NkQ4MjM4QUVDMDAxMUVGOEI1RDE3MkRDNEY5QUUwMi9FN0E5MEUzODgy NDAxMUYwQjlEQTA3NDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf+BzANBgkqhkiG9w0BAQsFAAOCAQEAl5oS1PZh7K7RR8Bu TKbMWukLOgXta3JLoLFLNJ6yIf2QIWi0+W0x2GtyCOqEBOchon5yebTZW+xcyCz6 cjLeBaqdpZy4AUI81SnU+4XXjLzXCquvjHqb7x9yIJ7z4bOHFQXzq1FTIcR1yFwz HF4N5LTRh8LIqHkQjFTrDvqu8FwwweQ0fC6o8hW9KbQOiFxFF0tSSIGriQ84yh7j L45kAIpL9OCddLvg8QZyNDd5LCu1nAo4XhG+vH7UDho1+jA3JHhSHhTLXaW1wwVj +02bugvM17o24myidKsqBS/fJqCTXayrDVtmPQYQegReAYEHqBVMnjjX70Mwpt9H xYYTCQ== -----END CERTIFICATE-----Generated at Wed Sep 3 23:56:58 2025 by rpki-client