$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa File: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (raw, json) Hash identifier: yqFSXrSreAwWsxKHKKypXy96bJWuk7Ta+8Svfir1RMk= Subject key identifier: C3:74:96:26:C9:A3:FE:65:D7:DB:6E:8B:98:7C:DE:C2:A8:B2:11:3A Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C04 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa Signing time: Tue 16 Sep 2025 18:58:59 +0000 ROA not before: Tue 16 Sep 2025 18:58:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136905 IP address blocks: 103.98.128.0/24 maxlen: 24 103.98.129.0/24 maxlen: 24 103.98.130.0/24 maxlen: 24 103.98.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3076 (0xc04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Sep 16 18:58:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c9b373-647e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2b:b1:29:b1:b7:70:84:a4:04:0d:c3:e0:a6: 80:26:00:e5:7a:dc:73:50:1e:cc:0d:33:99:e5:c5: 0f:f4:2a:7a:76:77:53:34:b4:a1:e6:87:65:f1:52: 39:ae:6e:d9:11:0f:e0:f0:45:50:a4:66:ba:b6:bd: 1b:03:5b:23:26:1d:6e:2c:fd:e5:a5:14:84:d7:9f: 8d:d1:35:11:11:3e:dd:a0:8b:3d:91:e3:d4:a5:96: 26:de:27:94:95:49:3f:c5:dd:21:08:84:a3:52:c2: 9b:f6:69:00:9a:20:74:b7:fe:78:c4:42:c0:fd:31: 2a:49:3b:41:72:da:7f:f9:23:19:5f:e6:f2:b4:d8: a3:43:f9:07:14:ff:65:2c:11:01:a4:0f:d6:f6:9a: 0d:b1:ce:2d:73:f5:c5:a5:a2:d7:6e:fe:4d:30:34: f0:27:1d:5d:17:07:ef:33:e7:1b:c1:9c:83:4b:3a: 9e:4d:7e:64:8c:82:ef:2d:75:d7:5a:83:42:6a:f2: 17:ee:49:77:07:25:bf:a5:f0:e9:68:6f:de:4f:40: e1:29:43:ab:15:21:61:d7:ab:13:83:9e:34:fb:f0: 95:07:c3:ce:0b:6a:21:02:dd:89:b8:84:27:ff:76: 50:97:01:8d:e7:16:56:f6:92:7e:9f:0d:89:09:6a: 1c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:74:96:26:C9:A3:FE:65:D7:DB:6E:8B:98:7C:DE:C2:A8:B2:11:3A X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.128.0/22 Signature Algorithm: sha256WithRSAEncryption 10:6f:97:72:b3:66:cd:49:0f:97:2a:6e:77:1b:ea:51:70:d9: d7:4e:04:81:5f:c7:05:01:0c:6c:4b:17:22:6a:fc:4f:f4:e6: 69:8d:ad:4c:aa:30:2f:6c:7c:db:67:df:aa:0f:c9:7b:b1:f7: d1:c2:a1:fa:05:10:27:71:08:14:1d:e9:d3:23:6d:94:5e:30: f2:a1:92:9a:c1:63:6c:aa:43:38:e4:fc:25:da:8f:2f:42:64: d6:38:ec:1f:1f:c3:30:1a:a1:84:0c:a1:53:2e:96:50:9a:32: 86:0b:55:37:48:04:e0:7d:74:db:61:19:24:bb:17:bb:16:ee: a1:1d:fc:ae:ea:ab:6e:19:bb:4e:ef:fb:fc:60:d4:36:13:5a: 60:8f:85:21:01:fa:6f:5c:89:11:b0:6e:d7:c2:31:1b:0d:d4: 93:61:0c:38:87:ee:c1:7e:88:4f:79:cb:c8:d1:5c:72:dc:c0: 23:14:7e:3d:10:c6:7b:b5:60:a8:42:62:ff:ce:17:4d:66:af: 9c:c1:3b:d5:ff:bc:c2:4b:cc:a8:20:30:10:d0:39:c9:b5:fd: 73:db:28:a7:7c:86:e8:f4:53:ed:05:e8:6d:25:9e:ff:e6:d5: 35:7b:24:2d:1a:fc:a2:4a:ff:c1:6e:b7:d0:a6:83:ad:18:c9: 1d:b1:09:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUwOTE2MTg1ODU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5YjM3My02NDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSuxKbG3cISkBA3D4KaAJgDletxzUB7MDTOZ5cUP9Cp6dndTNLSh5odl8VI5 rm7ZEQ/g8EVQpGa6tr0bA1sjJh1uLP3lpRSE15+N0TURET7doIs9kePUpZYm3ieU lUk/xd0hCISjUsKb9mkAmiB0t/54xELA/TEqSTtBctp/+SMZX+bytNijQ/kHFP9l LBEBpA/W9poNsc4tc/XFpaLXbv5NMDTwJx1dFwfvM+cbwZyDSzqeTX5kjILvLXXX WoNCavIX7kl3ByW/pfDpaG/eT0DhKUOrFSFh16sTg540+/CVB8POC2ohAt2JuIQn /3ZQlwGN5xZW9pJ+nw2JCWocZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMN0libJ o/5l19tui5h83sKoshE6MB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZBMTUvNzAxRjUzRDIxRDg3MTFFQUE4MTY5QjZDQzRGOUFFMDIvRTVDOUIwNTQx QjNFMTFFQkJDNTcwNjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYoAwDQYJKoZIhvcNAQELBQADggEBABBvl3KzZs1JD5cq bncb6lFw2ddOBIFfxwUBDGxLFyJq/E/05mmNrUyqMC9sfNtn36oPyXux99HCofoF ECdxCBQd6dMjbZReMPKhkprBY2yqQzjk/CXajy9CZNY47B8fwzAaoYQMoVMullCa MoYLVTdIBOB9dNthGSS7F7sW7qEd/K7qq24Zu07v+/xg1DYTWmCPhSEB+m9ciRGw btfCMRsN1JNhDDiH7sF+iE95y8jRXHLcwCMUfj0Qxnu1YKhCYv/OF01mr5zBO9X/ vMJLzKggMBDQOcm1/XPbKKd8huj0U+0F6G0lnv/m1TV7JC0a/KJK/8Fut9Cmg60Y yR2xCeg= -----END CERTIFICATE-----Generated at Fri Sep 19 01:27:46 2025 by rpki-client