$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/2A0F594C07B911F0B93D3034C4F9AE02.roa File: 2A0F594C07B911F0B93D3034C4F9AE02.roa (raw, json) Hash identifier: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ= Subject key identifier: 8A:AA:B4:E3:9C:F8:73:CB:E5:5C:5F:81:ED:B4:6E:E6:76:00:99:8B Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 4D Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/2A0F594C07B911F0B93D3034C4F9AE02.roa Signing time: Thu 07 Aug 2025 08:11:43 +0000 ROA not before: Thu 07 Aug 2025 08:11:43 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45150 IP address blocks: 103.246.48.0/23 maxlen: 23 103.246.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Aug 7 08:11:43 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68945fbe-06e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2c:43:48:91:f8:60:80:57:93:bf:1c:c7:19: bc:79:52:cd:b6:61:90:16:8f:01:e1:a8:bf:96:5d: c7:fc:27:4b:99:11:3c:5f:31:fa:06:e3:fd:9d:78: 0b:f3:2f:12:33:6f:fa:4f:dc:14:63:29:0f:a4:79: b1:aa:1c:14:bc:63:b8:e8:fa:76:64:94:97:87:cc: e3:b9:5d:5c:4f:5a:49:86:50:a6:b9:b8:23:3f:77: 54:29:16:ba:8a:af:69:2b:c3:98:22:88:d9:86:b7: c0:77:79:2e:b8:e4:a6:91:83:53:e8:c1:2d:54:3b: cb:92:08:b4:f3:5b:0c:7d:da:df:41:90:0b:ec:e7: 0e:64:6a:76:c1:83:3d:ba:9b:30:89:8b:6e:3c:fd: 07:ea:69:7c:0f:67:60:0e:69:f2:14:2b:45:a8:97: 87:9a:7e:32:6c:a8:c9:05:f5:e4:0c:91:06:fa:ad: 7f:e1:9f:7b:00:42:81:e1:e5:36:bd:38:ed:62:10: c7:a9:0a:54:b9:86:8c:cb:51:74:be:14:e2:26:19: ed:a8:95:38:c3:53:1b:b7:70:99:1a:97:8e:43:1b: 11:1e:1a:51:fd:a1:73:ad:40:61:8b:9a:d3:cd:e9: 32:79:3d:b5:a3:95:02:b8:12:23:bc:69:ef:67:25: fb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:AA:B4:E3:9C:F8:73:CB:E5:5C:5F:81:ED:B4:6E:E6:76:00:99:8B X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/2A0F594C07B911F0B93D3034C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.48.0/23 Signature Algorithm: sha256WithRSAEncryption 25:03:8c:be:96:55:26:80:9f:87:c4:b0:6c:2d:ce:9b:af:5b: 0a:b0:92:57:a7:ee:34:ee:1e:1b:3e:01:21:fa:6e:df:50:a3: 1e:ca:0b:21:66:b7:c4:c9:ed:0d:95:ed:f0:01:4f:b2:fb:68: 38:2d:85:bc:4b:4b:50:28:69:3f:0a:f0:e0:a3:1e:ff:d1:1e: 54:1d:7f:82:e2:5b:bc:c1:02:59:27:29:df:c0:92:12:23:b3: 41:2f:f3:0a:56:9a:b0:43:5f:c3:cc:03:de:c9:49:4d:b7:b5: 9d:2d:6f:ac:63:fe:cb:82:d6:38:67:df:8f:41:6f:07:bb:95: 11:37:34:43:b1:84:a5:d9:79:ab:73:2e:9d:0d:9b:9b:76:d1: 9c:50:73:97:33:d8:99:b8:17:23:d3:ea:b2:d1:e0:f6:5d:5e: 6f:77:d0:20:e3:63:5f:c3:93:8d:d1:c1:72:74:75:a7:47:62: 28:8c:85:31:33:b7:2b:2e:52:2c:c9:bd:2e:0e:79:7e:42:12: 68:cc:98:18:16:3c:d2:33:51:56:ea:0f:89:e9:df:1d:02:c7: d7:ea:24:eb:37:79:39:90:cb:82:ae:31:6c:60:9b:d5:59:63: 69:56:7b:f9:74:86:3d:ae:f0:e5:1b:57:98:31:d2:49:90:2e: aa:c8:3b:c9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTA4MDcwODExNDNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTQ1ZmJlLTA2ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChLENIkfhggFeTvxzHGbx5Us22YZAWjwHhqL+WXcf8J0uZETxfMfoG4/2deAvz LxIzb/pP3BRjKQ+kebGqHBS8Y7jo+nZklJeHzOO5XVxPWkmGUKa5uCM/d1QpFrqK r2krw5giiNmGt8B3eS645KaRg1PowS1UO8uSCLTzWwx92t9BkAvs5w5kanbBgz26 mzCJi248/QfqaXwPZ2AOafIUK0Wol4eafjJsqMkF9eQMkQb6rX/hn3sAQoHh5Ta9 OO1iEMepClS5hozLUXS+FOImGe2olTjDUxu3cJkal45DGxEeGlH9oXOtQGGLmtPN 6TJ5PbWjlQK4EiO8ae9nJfuZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUiqq045z4 c8vlXF+B7bRu5nYAmYswHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZEOC8zMkRBQjI5MjA3QUYxMUYwOTYwNkU1MzRDNEY5QUUwMi8yQTBGNTk0QzA3 QjkxMUYwQjkzRDMwMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf2MDANBgkqhkiG9w0BAQsFAAOCAQEAJQOMvpZVJoCfh8Sw bC3Om69bCrCSV6fuNO4eGz4BIfpu31CjHsoLIWa3xMntDZXt8AFPsvtoOC2FvEtL UChpPwrw4KMe/9EeVB1/guJbvMECWScp38CSEiOzQS/zClaasENfw8wD3slJTbe1 nS1vrGP+y4LWOGffj0FvB7uVETc0Q7GEpdl5q3MunQ2bm3bRnFBzlzPYmbgXI9Pq stHg9l1eb3fQIONjX8OTjdHBcnR1p0diKIyFMTO3Ky5SLMm9Lg55fkISaMyYGBY8 0jNRVuoPienfHQLH1+ok6zd5OZDLgq4xbGCb1VljaVZ7+XSGPa7w5RtXmDHSSZAu qsg7yQ== -----END CERTIFICATE-----Generated at Sun Aug 10 05:44:43 2025 by rpki-client