$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa File: 36945EC2232711EBA0F14F17C4F9AE02.roa (raw, json) Hash identifier: EeEFahw1S1xzRQMqYweCJnCU9S+/LW0T/PuPJ3E+UWM= Subject key identifier: FE:3D:7A:8E:E1:1C:06:EE:D7:3C:20:EF:50:69:10:1F:10:DE:30:95 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 08E7 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa Signing time: Mon 04 Aug 2025 21:01:47 +0000 ROA not before: Mon 04 Aug 2025 21:01:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137969 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2279 (0x8e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 4 21:01:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68911fba-0392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:db:ec:c9:47:fb:f5:ab:1a:93:45:bb:8e:e3: c9:50:09:08:75:0b:9d:01:be:f7:84:25:a5:2c:aa: bb:40:88:75:81:75:49:25:77:03:05:30:8e:6a:8e: 9e:76:c3:eb:20:da:c8:7c:52:49:1b:dc:4e:19:be: ee:6c:fa:4b:94:bf:29:72:51:4b:85:1f:82:6e:e4: 8f:21:bf:59:b1:1e:c8:67:61:0b:dc:6a:9c:23:d0: 38:95:ff:ee:08:7d:74:34:37:d8:bf:f5:a0:e5:e5: 80:15:a4:b2:e0:05:a6:20:f2:8e:e5:67:38:da:cc: e6:66:22:34:64:5d:1e:49:ad:39:65:54:9d:78:5b: 7a:52:f5:9c:e8:fc:a3:df:b7:2a:db:07:55:69:3b: 6f:d4:fe:ab:c0:fb:33:da:a1:c1:25:ac:76:10:0c: 76:94:18:d6:ee:d5:4d:e1:8b:38:72:98:36:86:3d: 84:fa:9a:46:c7:d6:7b:0a:65:eb:ca:82:37:7d:ef: a0:3e:62:aa:fd:d1:09:b3:20:54:81:82:59:8b:c8: 11:d9:63:aa:87:2b:21:da:9a:7d:8a:fd:18:26:c3: dc:31:5b:52:fc:3a:ec:5a:78:6a:32:f7:4d:3b:45: 07:71:29:83:27:ee:3c:52:f5:f6:53:57:55:1f:c2: 90:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3D:7A:8E:E1:1C:06:EE:D7:3C:20:EF:50:69:10:1F:10:DE:30:95 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 43:9e:c7:ca:a9:f2:87:b5:53:ec:33:cf:a5:2b:a4:a8:bd:61: 5b:8c:65:c5:b7:bc:5a:92:88:95:88:b0:92:7a:bf:73:3c:27: d8:49:2a:14:21:bb:0b:0f:7d:d5:29:24:f6:02:e2:90:ef:ae: d5:27:dd:5c:be:96:2a:6c:a6:f5:d7:8b:da:22:9d:cc:25:bd: 1e:c8:e6:00:db:5e:05:20:b6:20:b9:b5:d6:44:82:7c:42:c4: 0c:6f:55:77:48:29:77:a9:23:69:04:55:14:7c:21:0b:51:6c: 4b:da:f8:30:79:26:77:76:ff:3e:e7:a7:84:51:81:39:9f:df: 84:e3:21:e6:38:58:c4:10:63:47:42:15:62:56:3f:f7:26:f4: 6f:d7:78:c7:37:2f:a2:d9:c4:f8:56:0b:5e:6f:eb:15:0c:54: 85:58:b7:72:f8:7a:b6:53:5c:94:bd:3b:95:0e:d7:15:6a:77: 0b:40:3a:6b:85:d1:2a:a4:94:e2:c9:9b:1f:0e:ac:40:31:bc: 72:d3:99:0a:c7:a1:4f:a0:85:dc:b3:fc:10:43:fb:3e:43:ad: 81:1e:83:ac:5d:1b:dd:7b:66:9f:49:d0:13:8d:e4:8d:6a:b3: 4e:68:4a:21:d3:6a:8f:fa:16:cf:f9:e1:89:07:22:f9:ad:32: 92:fd:5b:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwODA0MjEwMTQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxMWZiYS0wMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudvsyUf79asak0W7juPJUAkIdQudAb73hCWlLKq7QIh1gXVJJXcDBTCOao6e dsPrINrIfFJJG9xOGb7ubPpLlL8pclFLhR+CbuSPIb9ZsR7IZ2EL3GqcI9A4lf/u CH10NDfYv/Wg5eWAFaSy4AWmIPKO5Wc42szmZiI0ZF0eSa05ZVSdeFt6UvWc6Pyj 37cq2wdVaTtv1P6rwPsz2qHBJax2EAx2lBjW7tVN4Ys4cpg2hj2E+ppGx9Z7CmXr yoI3fe+gPmKq/dEJsyBUgYJZi8gR2WOqhysh2pp9iv0YJsPcMVtS/DrsWnhqMvdN O0UHcSmDJ+48UvX2U1dVH8KQ9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFP49eo7h HAbu1zwg71BpEB8Q3jCVMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvMzY5NDVFQzIy MzI3MTFFQkEwRjE0RjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKowDQYJKoZIhvcNAQELBQADggEBAEOex8qp8oe1U+wz z6UrpKi9YVuMZcW3vFqSiJWIsJJ6v3M8J9hJKhQhuwsPfdUpJPYC4pDvrtUn3Vy+ lipspvXXi9oincwlvR7I5gDbXgUgtiC5tdZEgnxCxAxvVXdIKXepI2kEVRR8IQtR bEva+DB5Jnd2/z7np4RRgTmf34TjIeY4WMQQY0dCFWJWP/cm9G/XeMc3L6LZxPhW C15v6xUMVIVYt3L4erZTXJS9O5UO1xVqdwtAOmuF0SqklOLJmx8OrEAxvHLTmQrH oU+ghdyz/BBD+z5DrYEeg6xdG917Zp9J0BON5I1qs05oSiHTao/6Fs/54YkHIvmt MpL9W9c= -----END CERTIFICATE-----Generated at Sat Aug 9 23:28:28 2025 by rpki-client