$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/1AE323249F2D11EC897FD30CC4F9AE02.roa File: 1AE323249F2D11EC897FD30CC4F9AE02.roa (raw, json) Hash identifier: n9RCBLHpgjOAFQhIl7OXxEtavy0mL+5/7gM0zNsjfBw= Subject key identifier: 74:12:0C:4F:0D:0F:4D:29:4C:31:93:81:EE:38:07:3B:B5:17:91:84 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 03A9 Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/1AE323249F2D11EC897FD30CC4F9AE02.roa Signing time: Wed 09 Jul 2025 01:37:31 +0000 ROA not before: Wed 09 Jul 2025 01:37:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140718 IP address blocks: 103.152.32.0/24 maxlen: 24 2001:df3:f380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 00:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Jul 9 01:37:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686dc7da-899e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7b:ce:e7:97:f3:c1:d2:ad:a0:44:3d:ba:8c: 99:06:56:0b:83:29:9f:99:c8:08:0c:41:93:95:47: 9c:b6:27:94:f8:2a:96:03:5a:54:b7:41:f5:ca:c4: f3:f4:7c:8f:ef:7c:99:c4:65:d2:05:38:2f:56:2f: 1f:02:ce:4e:e5:ba:be:3d:6a:62:cd:f1:54:1a:fa: 93:07:78:5d:ff:dc:61:fe:a7:93:f9:08:59:b5:47: 02:98:5b:6c:d7:49:97:3e:e1:61:62:ad:e6:d2:c2: ed:0f:0e:bc:4f:56:7e:81:9c:7a:b5:1a:cc:aa:a7: 89:eb:02:9f:67:35:28:1d:82:41:73:65:5e:b3:e3: b1:e9:7d:7f:d6:f0:5c:7d:c0:a3:d5:e7:fd:22:5c: 68:5c:06:78:2e:d9:3d:5e:3a:63:ca:3e:ee:cd:0b: 9c:d4:f8:a4:16:7d:52:1d:d9:a7:ca:0a:4e:5a:86: 1c:77:9c:2f:17:cc:b4:90:fb:1a:6d:0f:e4:31:37: f2:b8:b4:44:a4:a6:14:cc:74:18:b5:e9:a3:ed:02: 2a:f7:69:c1:d9:fb:f9:ea:53:79:13:7e:fc:71:41: 5c:3b:0c:0a:a9:b2:20:a3:21:c6:d0:f7:7c:34:f2: ec:64:3d:b7:c2:1d:d1:d0:29:4d:d8:91:f5:b9:5e: 62:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:12:0C:4F:0D:0F:4D:29:4C:31:93:81:EE:38:07:3B:B5:17:91:84 X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/1AE323249F2D11EC897FD30CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.32.0/24 IPv6: 2001:df3:f380::/48 Signature Algorithm: sha256WithRSAEncryption 6b:87:9b:53:e3:a3:52:0e:34:73:fd:88:47:be:81:57:e8:5e: 84:70:9b:db:0b:d5:00:dc:73:4e:94:d8:85:a6:46:79:41:c2: 66:93:ca:2a:8d:9b:2a:ac:6c:01:f5:2b:0a:7c:79:58:42:22: d1:e3:af:87:40:37:ff:b1:08:2a:c0:c9:6e:4f:42:7a:6e:01: 94:9f:c9:7c:21:47:84:c8:bc:15:48:6f:8f:d7:df:c4:5e:95: ce:f5:78:4c:ea:37:01:0a:b4:17:b7:2d:ad:aa:24:8d:af:c9: 87:0c:5c:79:c3:52:6c:c0:1f:26:2a:d8:b0:d5:5e:dd:b0:dc: 12:77:28:39:8b:58:2d:c7:f4:5f:f4:ef:fe:20:f6:ce:64:cc: 2a:a6:00:df:53:6c:29:e8:5b:44:12:56:eb:78:1c:35:ba:1f: 31:d0:ce:fd:9b:50:88:72:85:2c:56:3e:91:6b:f7:21:d9:5d: 31:15:0d:d3:19:19:0d:1e:e1:f5:d9:28:77:ab:97:40:66:08: 6a:a0:b2:93:a4:e3:da:ac:68:88:fe:9e:24:db:c3:c2:f9:24: b0:6d:bf:ec:b6:56:90:a7:65:10:64:21:94:46:1f:21:87:b4: 8d:62:b1:cc:62:83:a0:04:8e:9e:6c:36:58:cc:15:bd:de:6c: 26:90:9c:ea -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwNzA5MDEzNzMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkYzdkYS04OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3vO55fzwdKtoEQ9uoyZBlYLgymfmcgIDEGTlUectieU+CqWA1pUt0H1ysTz 9HyP73yZxGXSBTgvVi8fAs5O5bq+PWpizfFUGvqTB3hd/9xh/qeT+QhZtUcCmFts 10mXPuFhYq3m0sLtDw68T1Z+gZx6tRrMqqeJ6wKfZzUoHYJBc2Ves+Ox6X1/1vBc fcCj1ef9IlxoXAZ4Ltk9Xjpjyj7uzQuc1PikFn1SHdmnygpOWoYcd5wvF8y0kPsa bQ/kMTfyuLREpKYUzHQYtemj7QIq92nB2fv56lN5E378cUFcOwwKqbIgoyHG0Pd8 NPLsZD23wh3R0ClN2JH1uV5iqQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHQSDE8N D00pTDGTge44Bzu1F5GEMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVGNDUvNUQ4QjlCODI5RjJBMTFFQ0E3Q0ZBRDBBQzRGOUFFMDIvMUFFMzIzMjQ5 RjJEMTFFQzg5N0ZEMzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmCAwDwQCAAIwCQMHACABDfPzgDANBgkqhkiG9w0BAQsF AAOCAQEAa4ebU+OjUg40c/2IR76BV+hehHCb2wvVANxzTpTYhaZGeUHCZpPKKo2b KqxsAfUrCnx5WEIi0eOvh0A3/7EIKsDJbk9Cem4BlJ/JfCFHhMi8FUhvj9ffxF6V zvV4TOo3AQq0F7ctraokja/JhwxcecNSbMAfJirYsNVe3bDcEncoOYtYLcf0X/Tv /iD2zmTMKqYA31NsKehbRBJW63gcNbofMdDO/ZtQiHKFLFY+kWv3IdldMRUN0xkZ DR7h9dkod6uXQGYIaqCyk6Tj2qxoiP6eJNvDwvkksG2/7LZWkKdlEGQhlEYfIYe0 jWKxzGKDoASOnmw2WMwVvd5sJpCc6g== -----END CERTIFICATE-----Generated at Wed Aug 13 00:37:38 2025 by rpki-client