$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/3B6578C47F4211F084F6C541C4F9AE02.roa File: 3B6578C47F4211F084F6C541C4F9AE02.roa (raw, json) Hash identifier: B4BkdpTo1qZHacqSMnVvogHOqStnqdG0ex859T6dd8w= Subject key identifier: 43:31:EF:DE:8F:EF:EC:D7:7F:D5:B3:E4:4C:DC:2B:12:58:CA:B1:3D Certificate issuer: /CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Certificate serial: 021C Authority key identifier: 02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/3B6578C47F4211F084F6C541C4F9AE02.roa Signing time: Fri 22 Aug 2025 10:24:49 +0000 ROA not before: Fri 22 Aug 2025 10:24:49 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38264 IP address blocks: 103.52.34.0/24 maxlen: 24 103.52.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0848, serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Validity Not Before: Aug 22 10:24:49 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68a84571-8c3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:22:3e:cf:bf:a6:c2:c6:d8:4f:5b:b6:6d:dc: a7:74:3d:28:21:f9:21:b6:86:77:6c:dd:15:d6:35: 38:d5:28:50:f0:cc:c7:a5:73:42:e2:fd:36:01:26: 30:f6:a5:f9:62:57:cc:8f:dc:bf:7f:4f:a8:c2:f8: 58:2e:7a:c9:f4:8c:2b:6b:b1:68:fc:9e:2a:ff:bc: 36:40:58:92:7a:0c:96:92:50:06:6b:61:0e:8c:ca: bf:1b:46:b2:70:38:5d:11:37:e5:1c:55:30:ea:91: e7:bd:11:5c:90:9c:b0:2d:80:a0:49:65:a1:8a:41: a0:10:2f:39:07:f2:f7:eb:59:8d:3b:4b:c7:d1:ae: fd:94:28:2b:e4:59:91:fd:fe:d5:04:fd:b6:52:da: 4e:10:a9:c3:24:39:78:9c:77:fb:04:c6:18:d6:0d: 21:04:d9:4b:59:57:f7:11:87:bc:15:b3:0e:04:37: 23:7a:90:ef:1d:0d:78:aa:92:dd:75:ca:d2:91:ac: d2:c8:3d:c0:14:e1:d8:a0:79:e3:e7:01:5b:e7:8b: 5a:22:20:6f:3b:2a:ad:90:22:fd:ae:a8:f5:07:97: df:ab:80:4d:c3:74:f1:fc:29:1b:c8:5d:71:4a:40: ab:6c:7c:2d:ae:f1:c0:d4:63:51:fe:14:37:db:09: fb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:31:EF:DE:8F:EF:EC:D7:7F:D5:B3:E4:4C:DC:2B:12:58:CA:B1:3D X509v3 Authority Key Identifier: keyid:02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/3B6578C47F4211F084F6C541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.34.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:2c:ec:57:68:87:73:95:aa:9c:b1:1c:2a:17:54:ec:8f:c2: 6d:57:fe:99:5d:a9:5a:fe:0d:14:d3:39:71:6a:49:85:fa:f8: ec:bb:7d:a0:5e:03:fb:32:30:aa:6d:ea:03:85:9f:92:bb:a1: b6:ba:5c:42:dd:bd:15:c3:12:fb:e1:bb:93:c8:72:52:cf:b5: 74:f6:7a:2e:21:17:4a:b8:a9:eb:ff:ba:bb:20:d0:ab:c9:65: 2d:2c:57:b1:15:2b:6f:cb:02:eb:81:3b:2d:0f:27:19:86:eb: 5e:e8:93:6c:25:2f:e3:c5:24:d8:5e:21:79:66:65:0b:0e:fa: 1d:07:e8:01:05:ad:b9:f0:14:aa:f7:dc:d8:c3:29:64:be:32: 58:4f:5f:f8:46:39:5d:f6:1b:36:31:62:bc:79:4d:2d:81:e8: f7:a2:dd:19:25:86:7c:f8:dd:e6:08:b7:83:d7:89:61:f0:12: c9:98:39:97:96:e9:df:aa:62:6f:0e:e6:73:95:70:d6:15:fb: b9:56:62:db:a2:43:b9:c3:a1:ea:d9:88:1f:4a:6e:af:fd:c9: 90:dd:63:3b:94:73:a4:4a:dc:1d:de:de:99:a3:ca:7c:6a:16: 4b:23:15:fd:01:53:a6:eb:54:3a:e3:2d:94:40:6c:29:c2:ed: bf:8f:4e:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4NDgxMTAvBgNVBAUTKDAyNDIyOUM4MUFDMzUzNUEyMUQ2MEUyREMzMkE5Qjg4 QkQ2QUQ4MUYwHhcNMjUwODIyMTAyNDQ5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4NDU3MS04YzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCI+z7+mwsbYT1u2bdyndD0oIfkhtoZ3bN0V1jU41ShQ8MzHpXNC4v02ASYw 9qX5YlfMj9y/f0+owvhYLnrJ9Iwra7Fo/J4q/7w2QFiSegyWklAGa2EOjMq/G0ay cDhdETflHFUw6pHnvRFckJywLYCgSWWhikGgEC85B/L361mNO0vH0a79lCgr5FmR /f7VBP22UtpOEKnDJDl4nHf7BMYY1g0hBNlLWVf3EYe8FbMOBDcjepDvHQ14qpLd dcrSkazSyD3AFOHYoHnj5wFb54taIiBvOyqtkCL9rqj1B5ffq4BNw3Tx/CkbyF1x SkCrbHwtrvHA1GNR/hQ32wn7vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEMx796P 7+zXf9Wz5EzcKxJYyrE9MB8GA1UdIwQYMBaAFAJCKcgaw1NaIdYOLcMqm4i9atgf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDg0OC82NEQ4QjFERTc3 RTQxMUVEOTdGNTkzNERDNEY5QUUwMi9Ba0lweUJyRFUxb2gxZzR0d3lxYmlMMXEy QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FrSXB5QnJEVTFvaDFnNHR3eXFiaUwxcTJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4NDgvNjREOEIxREU3N0U0MTFFRDk3RjU5MzREQzRGOUFFMDIvM0I2NTc4QzQ3 RjQyMTFGMDg0RjZDNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnNCIwDQYJKoZIhvcNAQELBQADggEBAF4s7Fdoh3OVqpyx HCoXVOyPwm1X/pldqVr+DRTTOXFqSYX6+Oy7faBeA/syMKpt6gOFn5K7oba6XELd vRXDEvvhu5PIclLPtXT2ei4hF0q4qev/ursg0KvJZS0sV7EVK2/LAuuBOy0PJxmG 617ok2wlL+PFJNheIXlmZQsO+h0H6AEFrbnwFKr33NjDKWS+MlhPX/hGOV32GzYx Yrx5TS2B6Pei3Rklhnz43eYIt4PXiWHwEsmYOZeW6d+qYm8O5nOVcNYV+7lWYtui Q7nDoerZiB9Kbq/9yZDdYzuUc6RK3B3e3pmjynxqFksjFf0BU6brVDrjLZRAbCnC 7b+PTj0= -----END CERTIFICATE-----Generated at Wed Nov 5 04:23:22 2025 by rpki-client