$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/9535628E5C0D11EDA7191A0AC4F9AE02.roa File: 9535628E5C0D11EDA7191A0AC4F9AE02.roa (raw, json) Hash identifier: /cbaTktdW8E1yuwyyLv6euCmC3kworQWAZraDFOpKP8= Subject key identifier: 5F:93:15:1F:26:66:CA:6C:4A:95:5B:6F:7E:0B:74:65:29:BF:0F:8F Certificate issuer: /CN=A91ABD25/serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Certificate serial: 021C Authority key identifier: 7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/9535628E5C0D11EDA7191A0AC4F9AE02.roa Signing time: Thu 31 Jul 2025 07:47:09 +0000 ROA not before: Thu 31 Jul 2025 07:47:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136521 IP address blocks: 103.91.185.0/24 maxlen: 24 103.91.185.0/25 maxlen: 25 103.91.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABD25, serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Validity Not Before: Jul 31 07:47:09 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=688b1f7d-8bcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2b:49:cc:77:d0:c8:c3:d3:82:bf:c4:ac:f8: e8:0b:1f:65:ce:b8:8f:9f:a2:d3:98:59:6d:40:b6: d8:63:de:16:72:dd:a6:61:af:93:7a:cf:78:7b:42: 7b:77:63:47:7e:c7:26:1c:8a:4e:30:45:93:30:a1: f1:58:b0:aa:64:09:f9:3a:60:97:56:6a:09:4c:96: a4:2e:c7:fe:4a:8c:33:84:54:79:dd:7c:22:d0:98: 9f:07:8f:4d:f4:1d:23:01:0e:af:d1:87:90:7e:63: d0:cb:00:28:81:84:aa:62:7c:07:c8:d7:2c:93:a9: ce:77:64:91:49:20:2d:a0:57:91:61:68:fd:7e:86: 34:80:01:47:6c:cf:ce:51:bd:59:32:a5:15:4e:73: 32:0d:55:3f:c2:c9:91:2d:9d:18:b2:a8:1a:51:9b: 1e:64:dc:65:4e:82:69:91:da:8d:0c:30:7c:01:83: 2e:7b:dc:d1:0a:11:7c:9a:ff:56:e2:c5:32:6c:0b: d8:85:63:9c:13:22:56:81:76:20:56:11:2d:af:a0: f4:47:cd:17:13:f7:ac:c8:91:f3:2c:be:18:6a:15: 56:c7:3f:31:50:d2:60:f8:a3:2a:5c:58:77:c0:3e: 77:0a:ed:94:6e:91:cc:97:95:c2:ea:69:88:7d:ff: 47:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:93:15:1F:26:66:CA:6C:4A:95:5B:6F:7E:0B:74:65:29:BF:0F:8F X509v3 Authority Key Identifier: keyid:7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/9535628E5C0D11EDA7191A0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.185.0/24 103.91.192.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:4f:98:66:a8:28:0a:7c:80:99:1c:0b:d9:8f:42:f6:47:43: 03:a4:42:a4:03:bf:a1:08:10:1c:46:6c:e3:df:a4:d2:1b:04: 0c:67:6a:f0:80:de:59:42:91:31:e0:57:b4:ea:8a:23:af:15: e8:1b:f9:3d:e6:d2:2c:a6:67:2b:5b:c5:d0:af:26:75:f2:50: 08:45:36:e4:0d:cc:3f:25:2f:c7:29:ac:cb:c9:d1:99:7c:13: bd:54:bc:07:10:f0:e3:23:44:63:77:d4:5f:4a:89:47:45:49: e1:a7:9c:70:01:55:2c:d4:fa:cb:e0:c9:6f:4e:af:b0:71:d4: 1c:3a:cd:ca:31:73:48:df:31:ce:ef:fa:cf:fd:1b:2e:46:4a: 0f:7e:7a:87:a6:29:ee:87:3f:2d:02:f8:67:c7:72:05:f4:65: ef:bc:52:f9:69:9f:3f:0f:64:78:2c:15:50:fa:74:4a:dc:0b: f7:39:44:91:ff:04:90:14:a3:b8:1a:c2:f4:64:a4:7e:34:c6: cb:56:35:e9:51:11:67:76:7b:c0:9e:1d:84:03:2e:3b:50:81: ee:ca:f5:ca:22:21:e9:03:56:37:a2:62:2b:36:e1:b0:31:35: bc:df:6b:56:14:5b:89:42:a1:7f:d2:6b:8c:11:f0:10:86:b9: 57:f2:a0:44 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJEMjUxMTAvBgNVBAUTKDdGRkM3QzU1Q0E0ODVDMzc2QTYxRUZFQzBFNTM3NzY1 M0EwNEMzQkQwHhcNMjUwNzMxMDc0NzA5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiMWY3ZC04YmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3itJzHfQyMPTgr/ErPjoCx9lzriPn6LTmFltQLbYY94Wct2mYa+Tes94e0J7 d2NHfscmHIpOMEWTMKHxWLCqZAn5OmCXVmoJTJakLsf+SowzhFR53Xwi0JifB49N 9B0jAQ6v0YeQfmPQywAogYSqYnwHyNcsk6nOd2SRSSAtoFeRYWj9foY0gAFHbM/O Ub1ZMqUVTnMyDVU/wsmRLZ0YsqgaUZseZNxlToJpkdqNDDB8AYMue9zRChF8mv9W 4sUybAvYhWOcEyJWgXYgVhEtr6D0R80XE/esyJHzLL4YahVWxz8xUNJg+KMqXFh3 wD53Cu2UbpHMl5XC6mmIff9HkwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF+TFR8m ZspsSpVbb34LdGUpvw+PMB8GA1UdIwQYMBaAFH/8fFXKSFw3amHv7A5Td2U6BMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkQyNS81MjdERDI1QTRF QUMxMUVEQjRGNzFFMzhDNEY5QUUwMi9mX3g4VmNwSVhEZHFZZV9zRGxOM1pUb0V3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeDhWY3BJWERkcVllX3NEbE4zWlRvRXc3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJEMjUvNTI3REQyNUE0RUFDMTFFREI0RjcxRTM4QzRGOUFFMDIvOTUzNTYyOEU1 QzBEMTFFREE3MTkxQTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnW7kDBABnW8AwDQYJKoZIhvcNAQELBQADggEBAG5PmGao KAp8gJkcC9mPQvZHQwOkQqQDv6EIEBxGbOPfpNIbBAxnavCA3llCkTHgV7TqiiOv Fegb+T3m0iymZytbxdCvJnXyUAhFNuQNzD8lL8cprMvJ0Zl8E71UvAcQ8OMjRGN3 1F9KiUdFSeGnnHABVSzU+svgyW9Or7Bx1Bw6zcoxc0jfMc7v+s/9Gy5GSg9+eoem Ke6HPy0C+GfHcgX0Ze+8Uvlpnz8PZHgsFVD6dErcC/c5RJH/BJAUo7gawvRkpH40 xstWNelREWd2e8CeHYQDLjtQge7K9coiIekDVjeiYis24bAxNbzfa1YUW4lCoX/S a4wR8BCGuVfyoEQ= -----END CERTIFICATE-----Generated at Mon Aug 11 04:10:38 2025 by rpki-client