$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/6E038820BF6211EA94C2957CC4F9AE02.roa File: 6E038820BF6211EA94C2957CC4F9AE02.roa (raw, json) Hash identifier: PLkHHx8GaTekc9dmC5heFwXjJ3zz86/8Y8QSgJQ+mrU= Subject key identifier: 68:C8:8F:36:55:A7:78:B9:A9:81:C3:46:0A:FC:0F:D2:6F:F5:A0:AE Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08B2 Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/6E038820BF6211EA94C2957CC4F9AE02.roa Signing time: Tue 22 Jul 2025 21:01:05 +0000 ROA not before: Tue 22 Jul 2025 21:01:05 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 18351 IP address blocks: 103.69.64.0/22 maxlen: 24 203.201.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2226 (0x8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Jul 22 21:01:05 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687ffc11-113d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:40:15:af:cd:31:c8:be:6f:a6:61:e3:4f:d1: d9:c4:6c:6e:79:12:d8:49:fc:24:07:69:86:d6:0f: 20:16:08:ed:7c:f1:c1:5b:30:86:c3:d4:15:30:f2: cc:70:47:8a:82:aa:49:5b:2b:fc:64:fc:50:c3:74: 37:ec:9c:38:60:56:2b:ed:3c:7c:86:43:5e:0f:2b: d6:27:d4:43:e3:98:30:09:aa:5b:09:99:23:7f:5c: 53:ee:e4:25:30:5e:36:76:ff:3e:9d:37:e7:b7:17: c6:c2:60:8c:ad:fe:ea:8c:a6:d0:09:f8:ee:61:23: b4:84:5e:4a:ef:e5:09:10:21:c2:90:2d:25:fc:2f: d7:49:bd:89:4e:98:ce:c2:2d:93:77:26:8a:0d:5d: b0:b7:35:4a:54:35:fd:e8:c8:f7:44:19:24:24:d2: 5e:f1:c8:18:f9:e2:8e:a0:f2:77:93:ca:a1:3b:ee: 8a:d3:8e:ac:68:69:b5:a1:0c:ef:3b:1b:3e:ce:60: 81:ec:5e:b9:76:76:6d:2e:d0:66:2b:24:d0:25:bd: ca:a6:63:a9:d6:03:d4:48:76:37:54:dc:c0:c2:72: b5:c7:a1:38:b1:c3:c2:00:f9:94:32:ff:40:91:cc: be:f7:26:65:57:2f:cd:99:86:51:24:64:7d:16:67: 33:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C8:8F:36:55:A7:78:B9:A9:81:C3:46:0A:FC:0F:D2:6F:F5:A0:AE X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/6E038820BF6211EA94C2957CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.64.0/22 203.201.176.0/22 Signature Algorithm: sha256WithRSAEncryption 84:1a:ce:57:86:e0:03:49:33:1b:b4:bd:7e:78:00:d6:a9:94: 88:64:f2:c3:72:14:32:fd:c4:95:b6:90:e1:9e:24:a6:0d:ec: c1:aa:26:79:57:f1:34:f8:5b:4a:74:e0:73:0e:11:01:86:b9: 14:a5:9a:a1:76:97:80:9e:5f:19:4d:18:0d:07:1b:e4:36:64: 85:a6:07:00:09:4d:ab:ef:c7:23:16:ec:c6:66:29:89:21:54: 81:64:4d:55:c0:80:a7:bc:b2:d1:ec:49:62:5a:0d:c1:7a:e9: 70:6b:ff:8d:6d:e6:a5:a4:d7:c9:55:70:b3:64:7a:45:db:49: bc:aa:40:8d:8e:f7:36:74:c6:fb:b9:0f:bc:48:c3:d3:ee:d8: 2d:17:b6:df:75:8e:55:cf:ad:91:4e:4d:c5:a1:21:26:0b:f3: 57:a5:64:57:79:75:53:0b:da:d3:04:26:44:f7:c3:1b:38:d8: 5d:d9:22:de:fe:b0:64:93:ee:8c:a6:ee:c4:f7:7c:69:44:18: 12:4d:5f:57:69:94:fb:c6:67:88:c7:3b:a7:1d:60:be:82:a2: 64:63:ab:39:f8:1d:0f:bb:b2:e5:5d:08:5a:a1:9a:e0:71:08: f2:91:8e:a3:b8:9e:93:ef:e3:3d:46:40:ae:53:8a:01:f3:e6: 91:85:d0:ab -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUwNzIyMjEwMTA1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZmMxMS0xMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0AVr80xyL5vpmHjT9HZxGxueRLYSfwkB2mG1g8gFgjtfPHBWzCGw9QVMPLM cEeKgqpJWyv8ZPxQw3Q37Jw4YFYr7Tx8hkNeDyvWJ9RD45gwCapbCZkjf1xT7uQl MF42dv8+nTfntxfGwmCMrf7qjKbQCfjuYSO0hF5K7+UJECHCkC0l/C/XSb2JTpjO wi2TdyaKDV2wtzVKVDX96Mj3RBkkJNJe8cgY+eKOoPJ3k8qhO+6K046saGm1oQzv Oxs+zmCB7F65dnZtLtBmKyTQJb3KpmOp1gPUSHY3VNzAwnK1x6E4scPCAPmUMv9A kcy+9yZlVy/NmYZRJGR9Fmcz7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGjIjzZV p3i5qYHDRgr8D9Jv9aCuMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUwOEUvQjJBM0MyM0NCRjRBMTFFQThDMzE1RDMxQzRGOUFFMDIvNkUwMzg4MjBC RjYyMTFFQTk0QzI5NTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRUADBALLybAwDQYJKoZIhvcNAQELBQADggEBAIQazleG 4ANJMxu0vX54ANaplIhk8sNyFDL9xJW2kOGeJKYN7MGqJnlX8TT4W0p04HMOEQGG uRSlmqF2l4CeXxlNGA0HG+Q2ZIWmBwAJTavvxyMW7MZmKYkhVIFkTVXAgKe8stHs SWJaDcF66XBr/41t5qWk18lVcLNkekXbSbyqQI2O9zZ0xvu5D7xIw9Pu2C0Xtt91 jlXPrZFOTcWhISYL81elZFd5dVML2tMEJkT3wxs42F3ZIt7+sGST7oym7sT3fGlE GBJNX1dplPvGZ4jHO6cdYL6ComRjqzn4HQ+7suVdCFqhmuBxCPKRjqO4npPv4z1G QK5TigHz5pGF0Ks= -----END CERTIFICATE-----Generated at Sun Aug 10 20:03:08 2025 by rpki-client