$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa File: B502B0AE799311EE87452E15C4F9AE02.roa (raw, json) Hash identifier: Af+2fxsg1OVRliv2YbtkhhRaDDPkEDX9Fcaj9HwzrTs= Subject key identifier: B2:8A:E9:CA:B2:17:FD:E1:BC:E8:D7:9F:29:CA:72:5F:0D:35:3B:17 Certificate issuer: /CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Certificate serial: 02B4 Authority key identifier: 8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa Signing time: Sun 07 Sep 2025 02:08:12 +0000 ROA not before: Sun 07 Sep 2025 02:08:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24499 IP address blocks: 103.154.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA8E8, serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Validity Not Before: Sep 7 02:08:12 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bce90c-f783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:90:d0:15:dd:96:01:95:fc:56:59:f8:c4:08: 11:74:2d:3a:fe:87:82:c0:0a:82:0a:60:93:f2:59: b1:17:76:a9:a6:58:46:08:69:d4:f8:dd:17:9d:6b: aa:8c:f4:04:f6:1f:f3:44:43:05:8d:d5:a0:0b:cc: a6:11:12:24:33:e2:fe:ec:6b:86:5d:8c:64:fe:92: c8:a5:2a:d2:45:3a:02:79:18:68:82:54:b9:b2:ae: 7b:a6:4f:b9:15:9e:0f:d6:88:28:a8:b0:d2:d0:db: 32:c4:e9:79:63:2a:ff:39:01:da:2a:2b:05:c9:33: 8b:df:0d:ef:cd:a3:8e:b6:ad:46:c9:cd:bf:ec:26: 17:cc:8e:aa:65:2b:ed:cd:63:f2:30:07:32:ad:d2: 09:6d:3f:18:51:6e:b6:bb:51:0b:2b:29:ee:a2:3a: a9:cc:d3:f4:c9:b0:64:76:4d:03:33:ba:11:40:03: a4:d7:b8:de:e5:dd:77:d7:2d:92:7d:4d:3c:26:ff: 93:d1:79:58:a8:25:61:0a:00:be:c3:a1:06:74:60: 44:44:06:a6:3b:14:08:19:04:93:9b:50:7c:3a:8f: 68:b6:38:bd:e5:4b:9f:d3:e6:d9:4c:d7:1b:ba:d3: 63:3f:d2:7d:f5:91:ac:9e:2b:ec:f6:d3:92:7b:8f: fa:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8A:E9:CA:B2:17:FD:E1:BC:E8:D7:9F:29:CA:72:5F:0D:35:3B:17 X509v3 Authority Key Identifier: keyid:8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.64.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:8a:c4:94:11:78:7d:f7:b9:d3:f9:e5:ce:bd:69:04:bc:0a: 6f:be:bb:f2:dc:cb:09:09:bf:2e:06:ce:1d:7b:99:71:68:c2: 5e:1d:c5:3a:8e:41:7e:89:6c:98:bb:89:e4:46:98:74:5c:99: 9b:ca:80:ec:21:b5:55:d8:43:df:ff:4d:43:99:b3:29:8b:22: 6f:62:51:99:e6:28:7d:d2:7c:c0:da:97:bf:e0:6a:41:91:6c: 17:7e:0c:c3:4e:22:15:b5:5b:14:37:2d:9f:f6:2a:7e:fd:66: 8b:34:a1:23:23:8d:30:bf:5b:b9:0d:aa:6f:38:e4:63:4a:e5: fd:97:bf:ef:0a:2d:c6:ae:6e:db:57:e0:d7:cf:a4:7d:bd:5b: f6:9a:ef:c0:80:d4:fa:b9:6c:6c:a2:b8:bd:18:51:4a:c7:d3: 58:81:82:c5:f9:85:a3:a4:40:d9:f2:41:4e:08:76:aa:d7:68: 70:35:74:37:49:c2:71:80:60:2e:5a:06:bc:76:eb:21:3f:3c: 1c:df:4a:90:48:26:17:e7:5c:05:6d:42:b5:61:d8:fc:0d:2e: a5:76:8f:a4:23:c2:46:00:46:4a:9f:df:5f:c0:0d:b9:74:83: 98:2a:c5:76:5d:5b:39:7e:fb:72:40:ee:b1:f3:de:62:19:b5: 82:59:1d:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4RTgxMTAvBgNVBAUTKDhEQTE5RkNFMEVGQUUwMjJCQkE4RjhFMEMxMjM3QkVE QkVCRTNFRjMwHhcNMjUwOTA3MDIwODEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJjZTkwYy1mNzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZDQFd2WAZX8Vln4xAgRdC06/oeCwAqCCmCT8lmxF3applhGCGnU+N0XnWuq jPQE9h/zREMFjdWgC8ymERIkM+L+7GuGXYxk/pLIpSrSRToCeRhoglS5sq57pk+5 FZ4P1ogoqLDS0NsyxOl5Yyr/OQHaKisFyTOL3w3vzaOOtq1Gyc2/7CYXzI6qZSvt zWPyMAcyrdIJbT8YUW62u1ELKynuojqpzNP0ybBkdk0DM7oRQAOk17je5d131y2S fU08Jv+T0XlYqCVhCgC+w6EGdGBERAamOxQIGQSTm1B8Oo9otji95Uuf0+bZTNcb utNjP9J99ZGsnivs9tOSe4/6JwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLKK6cqy F/3hvOjXnynKcl8NNTsXMB8GA1UdIwQYMBaAFI2hn84O+uAiu6j44MEje+2+vj7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQThFOC85MDM5NzgzMDEw RDkxMUVEODBCODBEMjlDNEY5QUUwMi9qYUdmemc3NjRDSzdxUGpnd1NONzdiNi1Q dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2phR2Z6Zzc2NENLN3FQamd3U043N2I2LVB2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4RTgvOTAzOTc4MzAxMEQ5MTFFRDgwQjgwRDI5QzRGOUFFMDIvQjUwMkIwQUU3 OTkzMTFFRTg3NDUyRTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmkAwDQYJKoZIhvcNAQELBQADggEBAC+KxJQReH33udP5 5c69aQS8Cm++u/LcywkJvy4Gzh17mXFowl4dxTqOQX6JbJi7ieRGmHRcmZvKgOwh tVXYQ9//TUOZsymLIm9iUZnmKH3SfMDal7/gakGRbBd+DMNOIhW1WxQ3LZ/2Kn79 Zos0oSMjjTC/W7kNqm845GNK5f2Xv+8KLcaubttX4NfPpH29W/aa78CA1Pq5bGyi uL0YUUrH01iBgsX5haOkQNnyQU4IdqrXaHA1dDdJwnGAYC5aBrx26yE/PBzfSpBI JhfnXAVtQrVh2PwNLqV2j6QjwkYARkqf31/ADbl0g5gqxXZdWzl++3JA7rHz3mIZ tYJZHY0= -----END CERTIFICATE-----Generated at Tue Sep 9 18:45:46 2025 by rpki-client