$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/14E68648B42D11E9A44FF25BC4F9AE02.roa File: 14E68648B42D11E9A44FF25BC4F9AE02.roa (raw, json) Hash identifier: aOcvKXW2OwUSyFzRq5Kiuga5ndEep1PmMp0UDb+8XIg= Subject key identifier: EC:58:89:A9:32:F2:3E:2F:48:9B:13:CB:0A:23:C7:8F:F6:FF:57:75 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0DFE Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/14E68648B42D11E9A44FF25BC4F9AE02.roa Signing time: Mon 14 Jul 2025 18:27:01 +0000 ROA not before: Mon 14 Jul 2025 18:27:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139255 IP address blocks: 103.140.112.0/24 maxlen: 24 103.140.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3582 (0xdfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9, serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: Jul 14 18:27:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68754bf5-e85c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e3:a8:1b:76:91:3d:ef:f3:46:c3:c2:1d:ec: 1c:43:eb:e9:30:54:f0:14:f3:8c:58:66:86:e8:34: 64:c6:71:d1:cd:7b:9b:67:7d:d1:28:d6:f7:52:2d: 4a:23:6b:dc:6e:00:7d:31:e1:a1:8a:e1:2f:9f:10: 9c:1f:35:df:45:ea:1d:3b:ee:8f:ee:28:a7:38:d9: 34:9e:c8:c6:2a:7f:6e:e5:31:44:3d:ea:ca:13:90: 88:de:6a:49:62:5f:aa:31:39:e9:16:26:de:12:0c: 85:6e:9f:42:86:b3:dd:de:f7:84:00:e7:bd:fc:52: 8a:58:7c:37:23:98:f4:27:9b:b7:73:01:44:50:14: d0:db:f2:62:d9:60:90:4c:0c:66:a2:79:07:00:90: ec:dd:f8:3c:94:3c:7a:df:4e:66:2b:c2:29:9d:4b: fb:ba:fc:1e:3d:0b:6a:cf:d4:bc:ac:e6:e2:ed:60: 00:d4:e5:0a:c3:3a:f4:ca:8a:9f:df:6e:6c:8e:f0: d8:3d:82:56:b2:ae:9a:d7:5d:9b:cd:73:18:44:82: 5c:ad:2a:1e:20:45:d9:0a:b6:88:25:89:9e:5c:35: e3:c4:c9:62:cc:e6:93:e3:85:fe:2c:13:6b:a2:8e: 04:d0:2e:57:42:9f:88:5a:d3:ba:96:10:73:29:c9: 4e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:58:89:A9:32:F2:3E:2F:48:9B:13:CB:0A:23:C7:8F:F6:FF:57:75 X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/14E68648B42D11E9A44FF25BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.112.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:30:41:80:33:33:4f:8c:48:1d:5a:e4:72:97:62:48:8e:cc: 2c:2e:b0:59:be:58:16:5e:13:8d:cb:55:88:2c:3c:1d:e7:7f: fd:9b:71:c8:6c:5f:04:86:ff:1d:43:26:23:ab:19:b2:1c:b9: e1:d9:96:82:75:9a:10:b8:14:1f:f4:13:b6:5f:b5:c1:fa:d4: 36:5b:67:c2:88:c7:9f:8c:78:29:7e:6b:02:21:bb:37:dc:bf: 2b:8c:a8:53:4c:60:2d:07:d9:51:03:95:43:f5:1f:0e:48:e5: f3:af:2f:b4:fa:f8:93:ee:75:05:48:1e:36:a5:e2:b1:da:86: 72:5d:0c:75:bc:71:56:64:1c:a6:16:db:2e:39:0d:d8:cf:c9: ea:fb:9d:e7:3f:bb:52:fa:03:57:41:a6:50:ad:7d:66:0c:c7: 6e:c8:fb:7b:be:e6:e6:25:1a:00:0d:76:dd:5f:68:f4:c4:4c: 9d:8b:85:2e:b1:42:25:36:69:cd:c4:c3:c0:a2:f5:fd:e0:fa: 47:64:52:cf:f1:fc:5e:b2:3e:31:3f:e6:34:06:c1:cf:09:28: ed:58:ad:ac:57:42:c3:2f:e3:31:c4:fd:54:76:b1:1e:fd:7c: 0c:2b:9b:f8:5c:bd:e9:34:f9:30:04:7e:a6:09:66:bd:6e:f1: b1:ab:e3:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjUwNzE0MTgyNzAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1NGJmNS1lODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOOoG3aRPe/zRsPCHewcQ+vpMFTwFPOMWGaG6DRkxnHRzXubZ33RKNb3Ui1K I2vcbgB9MeGhiuEvnxCcHzXfReodO+6P7iinONk0nsjGKn9u5TFEPerKE5CI3mpJ Yl+qMTnpFibeEgyFbp9ChrPd3veEAOe9/FKKWHw3I5j0J5u3cwFEUBTQ2/Ji2WCQ TAxmonkHAJDs3fg8lDx6305mK8IpnUv7uvwePQtqz9S8rObi7WAA1OUKwzr0yoqf 325sjvDYPYJWsq6a112bzXMYRIJcrSoeIEXZCraIJYmeXDXjxMlizOaT44X+LBNr oo4E0C5XQp+IWtO6lhBzKclOCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOxYiaky 8j4vSJsTywojx4/2/1d1MB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDkvMUMzREQ5NjZCNDI2MTFFOThERTA4ODRBQzRGOUFFMDIvMTRFNjg2NDhC NDJEMTFFOUE0NEZGMjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjHAwDQYJKoZIhvcNAQELBQADggEBAJ8wQYAzM0+MSB1a 5HKXYkiOzCwusFm+WBZeE43LVYgsPB3nf/2bcchsXwSG/x1DJiOrGbIcueHZloJ1 mhC4FB/0E7ZftcH61DZbZ8KIx5+MeCl+awIhuzfcvyuMqFNMYC0H2VEDlUP1Hw5I 5fOvL7T6+JPudQVIHjal4rHahnJdDHW8cVZkHKYW2y45DdjPyer7nec/u1L6A1dB plCtfWYMx27I+3u+5uYlGgANdt1faPTETJ2LhS6xQiU2ac3Ew8Ci9f3g+kdkUs/x /F6yPjE/5jQGwc8JKO1YraxXQsMv4zHE/VR2sR79fAwrm/hcvek0+TAEfqYJZr1u 8bGr48o= -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:48 2025 by rpki-client