$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E6D6D72E1B3E11EBBC57067AC4F9AE02.roa File: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (raw, json) Hash identifier: 8S+9u5NejOEqjzyGww6nqkHBEMgMZJI4JwQwHM3xtzk= Subject key identifier: F8:F0:B3:9D:27:31:BA:88:E0:C4:C3:9E:D3:EB:9C:FB:BE:43:31:DF Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C05 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E6D6D72E1B3E11EBBC57067AC4F9AE02.roa Signing time: Tue 16 Sep 2025 18:59:00 +0000 ROA not before: Tue 16 Sep 2025 18:59:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58504 IP address blocks: 103.98.128.0/23 maxlen: 24 103.98.130.0/24 maxlen: 24 103.98.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3077 (0xc05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Sep 16 18:59:00 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c9b374-093d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8e:1d:08:24:12:2f:ac:a0:13:da:73:f7:81: 13:44:92:48:f1:2e:35:70:b5:c1:74:0c:84:3b:18: c0:d5:99:20:38:4b:8e:b0:57:cb:6a:b9:d8:a9:86: b0:05:f6:76:c9:62:32:43:67:a6:62:1d:b7:a3:f5: aa:8e:5c:69:fa:bd:8d:02:58:ab:e2:d9:0d:11:89: eb:ba:c6:7a:7a:3a:02:0e:c3:55:c6:da:7b:37:60: 0d:3a:88:5a:25:2d:8d:7d:0a:d6:9e:53:77:f9:32: 87:8a:bb:c4:52:d2:19:89:aa:4e:89:b1:d6:a5:ac: 62:d7:93:8b:05:cb:38:4e:4d:19:6b:71:09:68:15: 11:74:a4:ef:f3:c5:62:8a:70:79:4c:36:1c:c4:b8: 71:de:76:0e:c1:1c:de:59:ac:85:54:7e:6c:fd:5a: fe:3e:84:95:15:1a:74:9a:0e:6a:d7:9a:d5:2d:a7: 09:46:84:fe:07:97:3e:5e:9a:0d:69:98:c5:e8:2d: cf:4c:01:19:d4:37:26:d2:24:7a:17:ee:14:c7:86: b1:6b:10:2f:a8:72:5c:34:56:1b:98:8c:d5:f5:8b: 29:22:0d:82:b9:3a:9d:ed:c8:2a:65:8d:99:a3:36: 4d:34:7c:29:15:fc:42:db:f3:d2:a9:20:c3:b0:2a: 93:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F0:B3:9D:27:31:BA:88:E0:C4:C3:9E:D3:EB:9C:FB:BE:43:31:DF X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E6D6D72E1B3E11EBBC57067AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.128.0/22 Signature Algorithm: sha256WithRSAEncryption 57:69:f7:ed:ef:50:0e:a9:bd:cb:2e:dd:f8:b8:0a:64:68:1c: d6:aa:2c:fe:21:81:bb:1d:79:1e:0f:42:cf:51:2d:5d:7f:53: 31:88:28:2f:6d:2a:87:9f:e9:0d:cd:ab:b7:7e:56:67:3c:88: 24:75:14:6f:aa:9c:78:46:a7:27:8d:19:48:2e:f2:74:a6:87: fc:4d:75:73:c4:99:fd:c6:24:cd:46:fb:b9:20:e4:4b:31:f0: c8:e2:5a:73:06:d7:8f:03:77:be:1b:57:b8:f0:c9:82:80:c9: c2:1e:eb:81:c5:aa:6a:3c:d6:3f:f0:72:ec:cb:42:27:63:b8: b1:a2:15:ea:8a:71:25:ab:46:d0:16:9d:06:70:61:a6:8f:56: 78:0c:ab:e2:7c:ce:ba:b0:75:33:79:e3:91:56:ab:65:f2:b5: 02:6d:e7:b6:26:8b:ff:c8:fd:09:76:9b:d1:20:e1:c7:4e:d0: 44:68:ff:29:e4:98:3a:64:91:24:5a:61:4a:92:c5:f1:1d:b2: f1:be:76:a7:0f:48:1f:8f:45:e6:86:dd:96:a6:9d:87:60:da: 16:98:a3:8a:97:81:fb:e1:88:3f:27:74:eb:ab:48:ad:d4:8e: 73:a5:1d:55:70:21:a9:b1:38:bb:32:d3:5a:5d:fe:6a:6c:5f: 8c:bd:da:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUwOTE2MTg1OTAwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5YjM3NC0wOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7I4dCCQSL6ygE9pz94ETRJJI8S41cLXBdAyEOxjA1ZkgOEuOsFfLarnYqYaw BfZ2yWIyQ2emYh23o/Wqjlxp+r2NAlir4tkNEYnrusZ6ejoCDsNVxtp7N2ANOoha JS2NfQrWnlN3+TKHirvEUtIZiapOibHWpaxi15OLBcs4Tk0Za3EJaBURdKTv88Vi inB5TDYcxLhx3nYOwRzeWayFVH5s/Vr+PoSVFRp0mg5q15rVLacJRoT+B5c+XpoN aZjF6C3PTAEZ1Dcm0iR6F+4Ux4axaxAvqHJcNFYbmIzV9YspIg2CuTqd7cgqZY2Z ozZNNHwpFfxC2/PSqSDDsCqTwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPjws50n MbqI4MTDntPrnPu+QzHfMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZBMTUvNzAxRjUzRDIxRDg3MTFFQUE4MTY5QjZDQzRGOUFFMDIvRTZENkQ3MkUx QjNFMTFFQkJDNTcwNjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYoAwDQYJKoZIhvcNAQELBQADggEBAFdp9+3vUA6pvcsu 3fi4CmRoHNaqLP4hgbsdeR4PQs9RLV1/UzGIKC9tKoef6Q3Nq7d+Vmc8iCR1FG+q nHhGpyeNGUgu8nSmh/xNdXPEmf3GJM1G+7kg5Esx8MjiWnMG148Dd74bV7jwyYKA ycIe64HFqmo81j/wcuzLQidjuLGiFeqKcSWrRtAWnQZwYaaPVngMq+J8zrqwdTN5 45FWq2XytQJt57Ymi//I/Ql2m9Eg4cdO0ERo/ynkmDpkkSRaYUqSxfEdsvG+dqcP SB+PReaG3ZamnYdg2haYo4qXgfvhiD8ndOurSK3UjnOlHVVwIamxOLsy01pd/mps X4y92oQ= -----END CERTIFICATE-----Generated at Thu Sep 18 20:51:18 2025 by rpki-client