$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa File: 88F562E83DAD11EFAA46E417C4F9AE02.roa (raw, json) Hash identifier: n9WiQjAGu9O9bLeoq38kpAQ+Tw7nAmw19T1TLy6Ivwo= Subject key identifier: 07:E8:ED:D5:D5:82:AA:E2:0F:1F:B6:39:CE:1F:5F:3E:DA:BF:C4:EE Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: CD Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa Signing time: Tue 29 Jul 2025 06:42:20 +0000 ROA not before: Tue 29 Jul 2025 06:42:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137209 IP address blocks: 103.104.232.0/22 maxlen: 22 2402:1dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Jul 29 06:42:20 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68886d4c-c1c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7f:2d:8e:17:07:86:e3:a8:81:69:47:d7:84: aa:eb:c0:16:f7:e8:70:7f:e9:d9:ce:00:90:32:ca: a7:5a:7d:eb:bc:49:c5:70:29:cf:31:2a:f5:33:43: b4:e0:78:39:59:3f:d4:fc:5b:c5:0a:fb:07:da:dc: 7b:ff:aa:3f:f9:b8:3d:7d:39:eb:0d:e3:d3:61:5c: d6:ef:b3:63:2e:f7:a6:fc:77:64:ee:d9:8a:86:46: b5:6c:98:5a:8f:a3:8d:33:c3:63:79:26:1a:7f:0c: 1c:fd:45:ae:b3:a3:bd:94:ad:a7:9b:a7:ae:ff:bf: fe:d3:2c:70:01:8d:da:43:b6:59:19:2a:c6:f8:3b: a2:1e:35:3c:de:1f:31:b1:76:5f:a1:3d:0c:86:93: 02:8f:b2:d1:ff:dc:8d:07:d7:60:34:e2:09:a0:92: 7a:09:da:c7:41:d9:ae:b0:c9:df:d9:ff:b2:bf:26: 57:8b:73:83:1e:6e:d2:9d:8c:b9:5b:4d:70:10:f4: 92:a8:71:d3:f6:b8:9e:d4:ad:58:f3:3b:9a:5c:d1: fe:26:89:1d:5b:58:7a:4a:27:70:81:34:90:da:9f: 0a:ab:7b:16:e4:7e:ca:64:5a:77:26:2b:49:18:3b: 9a:10:9b:e9:c3:a9:e2:4b:96:fa:17:38:b4:5d:c2: 0d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E8:ED:D5:D5:82:AA:E2:0F:1F:B6:39:CE:1F:5F:3E:DA:BF:C4:EE X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.232.0/22 IPv6: 2402:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 59:58:03:cd:66:82:02:9b:8d:22:8f:a7:9e:46:f1:33:1d:58: f8:9a:f0:6a:56:65:04:07:f5:b8:77:49:5f:7a:33:84:2a:31: 9a:80:45:09:0c:a3:0c:94:a8:7b:0e:3c:4a:2d:ad:45:e0:38: 4e:28:e3:fb:20:d0:78:a5:a5:f9:9a:4c:c9:18:93:ac:3f:05: 65:ab:35:cc:64:84:6d:52:4b:b3:cb:e9:be:d2:d6:88:94:da: d6:79:f7:74:5c:32:6e:1a:b6:57:19:a2:cc:92:8f:7a:ad:e3: af:7d:c2:73:19:47:b1:ae:44:2c:a9:03:8e:42:33:c3:d3:c8: ac:be:a9:fe:1e:2c:86:a8:3b:d4:13:8b:26:fa:c1:5c:39:94: d0:8f:f8:da:29:2a:9f:1c:8f:88:d1:08:e9:77:d8:37:97:9d: 36:ec:3a:05:48:f3:0d:0e:c1:94:41:67:db:b0:3d:a3:4e:22: 8b:1d:b6:2e:96:3c:d7:60:5b:d5:25:fd:0e:f8:fd:c5:be:e8: f1:bd:c5:f6:33:d7:5f:0a:60:e0:8b:bb:10:9e:7d:28:66:01: f6:90:74:df:4a:63:86:4b:8e:dd:03:91:35:a5:86:7d:a7:b9: 54:b7:f6:79:ca:db:c4:4f:28:47:65:d6:9e:3c:b5:a4:b0:77: b0:bb:a8:15 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUwNzI5MDY0MjIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg4NmQ0Yy1jMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuX8tjhcHhuOogWlH14Sq68AW9+hwf+nZzgCQMsqnWn3rvEnFcCnPMSr1M0O0 4Hg5WT/U/FvFCvsH2tx7/6o/+bg9fTnrDePTYVzW77NjLvem/Hdk7tmKhka1bJha j6ONM8NjeSYafwwc/UWus6O9lK2nm6eu/7/+0yxwAY3aQ7ZZGSrG+DuiHjU83h8x sXZfoT0MhpMCj7LR/9yNB9dgNOIJoJJ6CdrHQdmusMnf2f+yvyZXi3ODHm7SnYy5 W01wEPSSqHHT9rie1K1Y8zuaXNH+JokdW1h6SidwgTSQ2p8Kq3sW5H7KZFp3JitJ GDuaEJvpw6niS5b6Fzi0XcIN+wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAfo7dXV gqriDx+2Oc4fXz7av8TuMB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE2MTgvNTU3RUFCM0MzQUJFMTFFRjg2MTlEMjIwQzRGOUFFMDIvODhGNTYyRTgz REFEMTFFRkFBNDZFNDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnaOgwDQQCAAIwBwMFACQCHcAwDQYJKoZIhvcNAQELBQAD ggEBAFlYA81mggKbjSKPp55G8TMdWPia8GpWZQQH9bh3SV96M4QqMZqARQkMowyU qHsOPEotrUXgOE4o4/sg0HilpfmaTMkYk6w/BWWrNcxkhG1SS7PL6b7S1oiU2tZ5 93RcMm4atlcZosySj3qt4699wnMZR7GuRCypA45CM8PTyKy+qf4eLIaoO9QTiyb6 wVw5lNCP+NopKp8cj4jRCOl32DeXnTbsOgVI8w0OwZRBZ9uwPaNOIosdti6WPNdg W9Ul/Q74/cW+6PG9xfYz118KYOCLuxCefShmAfaQdN9KY4ZLjt0DkTWlhn2nuVS3 9nnK28RPKEdl1p48taSwd7C7qBU= -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:52 2025 by rpki-client