$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/E2E21364C4F811EAB8D31113C4F9AE02.roa File: E2E21364C4F811EAB8D31113C4F9AE02.roa (raw, json) Hash identifier: DP8lG9el46NF03CMOLzrMzttp6pe74xkZuZziqnxmJ4= Subject key identifier: EF:DD:E1:44:CF:9E:CB:2B:2C:13:DD:F7:2B:F1:D6:1E:70:C5:17:04 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 08E8 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/E2E21364C4F811EAB8D31113C4F9AE02.roa Signing time: Mon 04 Aug 2025 21:01:48 +0000 ROA not before: Mon 04 Aug 2025 21:01:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138538 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2280 (0x8e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 4 21:01:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68911fbb-43aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:4a:52:74:42:8e:41:26:57:55:53:b7:5d:be: 73:77:fe:51:e1:e9:fd:01:9c:70:5a:91:38:5c:9e: 2b:2c:d3:cb:7c:0e:06:04:17:bb:33:a7:5a:aa:85: 7e:12:18:70:c6:60:ff:9e:c4:b0:62:0c:04:f8:67: 6f:94:58:e5:3e:ee:22:94:1f:e5:99:f4:90:bb:36: 72:13:61:fd:f9:bd:c8:6b:d7:fe:d2:d3:62:1c:63: 71:53:65:d9:8a:2e:d9:19:91:86:8b:cc:13:98:40: c8:8b:0d:e9:a5:1e:c8:2c:aa:30:c1:4f:78:e7:38: 7c:52:6b:51:4c:1b:7b:f7:99:e2:e2:65:49:07:20: 40:04:35:77:fe:33:39:a6:3b:90:18:05:1a:d8:2b: 68:d7:f2:31:62:c6:a1:f0:89:12:3a:32:04:c7:4b: 73:3e:ad:75:07:51:83:88:29:36:a2:2e:07:11:ef: f2:95:78:68:dc:fb:83:8e:c8:26:9b:79:f1:95:1f: fc:d5:93:38:16:ca:de:e7:98:f2:a5:bc:5e:5d:74: f5:83:ee:4d:dd:8d:a2:9d:f2:5a:39:ee:97:37:b1: 72:54:52:47:0a:31:31:16:73:49:ff:c6:ab:23:1c: e5:70:90:58:68:40:12:71:9b:11:1d:91:59:bf:11: 56:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DD:E1:44:CF:9E:CB:2B:2C:13:DD:F7:2B:F1:D6:1E:70:C5:17:04 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/E2E21364C4F811EAB8D31113C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:17:06:e8:fe:f3:1f:e8:45:b9:46:6c:a0:40:49:a9:33:a6: fc:89:1f:40:c7:20:61:fa:36:f0:f3:1b:e6:7d:2a:80:eb:d5: 0f:66:44:92:9c:9b:76:92:95:98:22:de:51:9a:cb:2b:61:b1: 3c:38:90:f2:d6:94:36:0c:c1:ab:2b:58:63:0a:6d:1e:2c:04: 08:83:ff:8f:b7:53:24:8d:63:af:07:b6:b4:e5:8a:3c:8d:9d: e7:34:c8:ba:f4:63:3e:4f:49:0a:2f:84:6d:94:02:99:0a:74: 38:a6:c6:d5:9b:94:9c:5c:0a:aa:52:0f:59:7c:eb:f1:4e:e0: 30:f2:46:ee:1b:5c:dd:a8:ba:ce:33:aa:f3:8d:26:f1:ac:48: a2:2f:48:54:dc:91:1e:36:11:fa:d8:30:9b:29:85:e8:7c:59: 9f:e4:3b:f1:72:0d:a5:53:dc:bd:c9:5d:b1:35:69:a1:95:ea: e3:dd:9c:8a:a7:6a:f6:f0:98:48:fa:09:68:65:91:35:6f:0f: d3:13:c2:7b:77:89:7d:fb:81:39:59:8f:64:1c:e0:9e:a5:0d: 44:9a:86:c7:01:65:a8:5b:ba:c2:8c:5d:8c:fb:58:7b:30:e2: 12:34:0b:01:74:5f:79:f2:ca:19:ae:64:88:81:26:8c:0a:41: d1:f8:4d:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwODA0MjEwMTQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxMWZiYi00M2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9EpSdEKOQSZXVVO3Xb5zd/5R4en9AZxwWpE4XJ4rLNPLfA4GBBe7M6daqoV+ EhhwxmD/nsSwYgwE+GdvlFjlPu4ilB/lmfSQuzZyE2H9+b3Ia9f+0tNiHGNxU2XZ ii7ZGZGGi8wTmEDIiw3ppR7ILKowwU945zh8UmtRTBt795ni4mVJByBABDV3/jM5 pjuQGAUa2Cto1/IxYsah8IkSOjIEx0tzPq11B1GDiCk2oi4HEe/ylXho3PuDjsgm m3nxlR/81ZM4Fsre55jypbxeXXT1g+5N3Y2infJaOe6XN7FyVFJHCjExFnNJ/8ar IxzlcJBYaEAScZsRHZFZvxFWMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO/d4UTP nssrLBPd9yvx1h5wxRcEMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvRTJFMjEzNjRD NEY4MTFFQUI4RDMxMTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKowDQYJKoZIhvcNAQELBQADggEBAC8XBuj+8x/oRblG bKBASakzpvyJH0DHIGH6NvDzG+Z9KoDr1Q9mRJKcm3aSlZgi3lGayythsTw4kPLW lDYMwasrWGMKbR4sBAiD/4+3UySNY68HtrTlijyNnec0yLr0Yz5PSQovhG2UApkK dDimxtWblJxcCqpSD1l86/FO4DDyRu4bXN2ous4zqvONJvGsSKIvSFTckR42EfrY MJspheh8WZ/kO/FyDaVT3L3JXbE1aaGV6uPdnIqnavbwmEj6CWhlkTVvD9MTwnt3 iX37gTlZj2Qc4J6lDUSahscBZahbusKMXYz7WHsw4hI0CwF0X3nyyhmuZIiBJowK QdH4TYs= -----END CERTIFICATE-----Generated at Sat Aug 9 05:45:31 2025 by rpki-client