$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/EB843B92329A11EE89CD8544C4F9AE02.roa File: EB843B92329A11EE89CD8544C4F9AE02.roa (raw, json) Hash identifier: b5yX1QAOSGwKLnK6fw3PZvYuW4+NY2un1A6EM1jEmyA= Subject key identifier: BB:5A:D0:66:82:33:82:93:77:CA:22:88:DE:30:F8:21:A2:47:BA:29 Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 157F Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/EB843B92329A11EE89CD8544C4F9AE02.roa Signing time: Tue 02 Sep 2025 17:06:00 +0000 ROA not before: Tue 02 Sep 2025 17:06:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151647 IP address blocks: 103.98.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5503 (0x157f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Sep 2 17:06:00 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b723f8-48a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:68:41:9b:cd:bb:ac:a0:d3:52:60:25:c4:7d: 98:e0:1b:a9:bb:1b:85:40:8b:03:ad:2e:54:09:8d: df:8a:5d:7a:b0:b0:1b:7c:5b:bd:33:94:59:8d:4f: a8:2d:3f:82:f4:b7:fa:93:22:bd:db:15:07:bc:90: d8:ae:80:52:c9:87:a6:3b:74:e4:92:38:05:6e:c9: dc:8f:a1:e0:fa:d1:44:97:4f:fb:08:eb:7f:5a:1c: 96:9d:46:6d:52:81:c1:17:05:74:02:dd:ec:1e:ec: e6:12:43:ea:eb:46:1b:b7:2a:22:6f:18:45:8a:05: 33:fb:0b:8c:7c:c7:d3:d4:07:65:b1:41:87:ee:ff: 19:3c:9c:88:d8:90:15:f7:83:c0:43:db:6b:8e:26: a0:47:66:a7:ed:8c:91:f8:b0:4c:c8:6b:27:6f:20: e6:0e:76:63:56:91:61:10:7e:89:b9:8d:a8:d0:01: 3f:61:57:55:8f:30:d0:e4:69:41:21:24:9b:c1:b2: 0d:b8:02:d9:ce:75:b6:34:bf:3c:6d:3f:84:e2:d8: b0:f9:24:c7:2d:e0:5d:dc:52:ab:3b:a8:5e:da:d8: 3c:73:27:d4:b3:8b:66:89:b6:d1:07:76:c4:bb:9d: 1d:11:df:18:65:30:3e:13:57:90:38:1b:45:ca:dd: ca:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5A:D0:66:82:33:82:93:77:CA:22:88:DE:30:F8:21:A2:47:BA:29 X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/EB843B92329A11EE89CD8544C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.52.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:36:c4:1a:35:f8:8a:49:7c:14:88:b4:05:f6:61:f8:5a:40: 84:78:59:14:15:2f:86:87:60:33:b0:10:58:e6:3c:10:1c:dc: 16:84:53:f8:4c:6e:9a:ca:26:ee:83:93:79:9e:f8:a8:26:74: 9e:2f:28:2f:1a:48:ed:35:ae:28:2d:a6:5c:69:99:ef:4d:4e: dc:54:d9:8e:09:1c:41:c6:95:0b:9f:d7:c8:32:bf:ef:6a:8c: dd:00:c7:db:cb:a2:80:b8:12:43:ec:f9:90:08:83:b8:59:00: fe:e6:10:97:84:ae:e8:04:c7:2c:4e:14:1e:b9:ec:bf:bc:32: 70:f3:b2:6e:1a:33:0b:49:c9:0f:ef:1f:12:51:6b:b9:ac:fd: 5f:25:66:28:fa:b3:48:5f:6a:7f:58:f0:1d:fe:9f:c7:c8:be: a0:2f:ab:b4:f4:70:9e:2c:32:24:a4:3b:47:3a:17:21:b2:0b: 99:73:c1:99:40:38:9e:7b:00:17:80:f2:ad:b9:f6:e4:7b:47: 38:09:8a:a2:51:b6:24:92:56:95:54:b6:e1:06:29:6d:04:e4: 43:e0:4b:91:e3:ee:14:bd:29:99:57:c4:de:4e:d3:14:ec:f6: 3c:b1:fa:9a:b0:c7:8f:99:44:23:8e:84:ea:73:69:ab:1b:23: c7:7c:7b:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUwOTAyMTcwNjAwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MjNmOC00OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mhBm827rKDTUmAlxH2Y4BupuxuFQIsDrS5UCY3fil16sLAbfFu9M5RZjU+o LT+C9Lf6kyK92xUHvJDYroBSyYemO3TkkjgFbsncj6Hg+tFEl0/7COt/WhyWnUZt UoHBFwV0At3sHuzmEkPq60YbtyoibxhFigUz+wuMfMfT1AdlsUGH7v8ZPJyI2JAV 94PAQ9trjiagR2an7YyR+LBMyGsnbyDmDnZjVpFhEH6JuY2o0AE/YVdVjzDQ5GlB ISSbwbINuALZznW2NL88bT+E4tiw+STHLeBd3FKrO6he2tg8cyfUs4tmibbRB3bE u50dEd8YZTA+E1eQOBtFyt3K8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLta0GaC M4KTd8oiiN4w+CGiR7opMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI0MzQvRTJDNjI2NzY0MkQzMTFFOEJCREMwOTQxQzRGOUFFMDIvRUI4NDNCOTIz MjlBMTFFRTg5Q0Q4NTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYjQwDQYJKoZIhvcNAQELBQADggEBAG82xBo1+IpJfBSI tAX2YfhaQIR4WRQVL4aHYDOwEFjmPBAc3BaEU/hMbprKJu6Dk3me+KgmdJ4vKC8a SO01rigtplxpme9NTtxU2Y4JHEHGlQuf18gyv+9qjN0Ax9vLooC4EkPs+ZAIg7hZ AP7mEJeErugExyxOFB657L+8MnDzsm4aMwtJyQ/vHxJRa7ms/V8lZij6s0hfan9Y 8B3+n8fIvqAvq7T0cJ4sMiSkO0c6FyGyC5lzwZlAOJ57ABeA8q259uR7RzgJiqJR tiSSVpVUtuEGKW0E5EPgS5Hj7hS9KZlXxN5O0xTs9jyx+pqwx4+ZRCOOhOpzaasb I8d8e4c= -----END CERTIFICATE-----Generated at Tue Sep 9 03:40:14 2025 by rpki-client