$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa File: 331C6A2C66DF11F0A3F38136C4F9AE02.roa (raw, json) Hash identifier: kor8/NDnBK7P8dppMp/iyuN21sK3KmR3jpyTrgrDBxc= Subject key identifier: 15:F3:FD:C3:C1:FE:8A:7C:F7:41:A9:AF:08:86:FA:24:D1:E9:3D:BA Certificate issuer: /CN=A91B9E19/serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Certificate serial: 0E00 Authority key identifier: 25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa Signing time: Tue 22 Jul 2025 09:35:27 +0000 ROA not before: Tue 22 Jul 2025 09:35:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 401276 IP address blocks: 103.88.94.0/24 maxlen: 24 220.158.194.0/24 maxlen: 24 220.158.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3584 (0xe00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9E19, serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Validity Not Before: Jul 22 09:35:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=687f5b5f-84a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6f:39:39:39:07:96:6c:f2:cc:88:90:cc:c5: 73:0f:f9:00:82:2a:92:4b:eb:2b:aa:bb:40:17:97: 34:cb:0c:2c:9a:a1:e8:fb:7d:e0:ef:11:a5:a9:ac: ee:e5:56:01:8f:fb:e8:60:2b:a7:1c:ae:d3:b3:9a: c6:cc:16:fc:90:c8:58:d0:bb:01:64:11:93:4f:fc: 5e:b5:34:63:e7:56:82:1f:85:a5:14:e3:6f:ed:53: e1:03:a2:0e:69:95:15:6a:c1:22:36:00:3f:c7:31: d2:27:05:5b:71:eb:97:7c:57:95:6c:bb:5a:92:bb: 8f:36:88:9a:2c:c7:26:0f:89:2e:23:d0:a6:2d:4f: 6b:01:79:a2:2d:07:06:28:38:16:2b:9c:49:79:82: 50:73:db:bd:ad:0e:65:77:83:20:e6:52:4f:eb:24: 52:73:77:52:d9:b2:b1:87:ad:4c:a7:5a:58:8b:46: a4:1b:35:60:d1:6c:ed:0d:cc:b1:d1:ed:12:d9:9c: 7a:84:ff:d8:f5:b3:f3:e6:32:b0:11:ff:b2:ee:49: 2d:92:7d:f4:30:9a:2c:ae:c1:aa:18:1d:2e:dd:36: ba:eb:2e:32:53:55:6c:3b:a1:19:94:cc:83:7f:05: 7d:a9:c2:a3:ea:87:b1:1f:a4:bb:0c:7b:cd:a5:1c: d8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F3:FD:C3:C1:FE:8A:7C:F7:41:A9:AF:08:86:FA:24:D1:E9:3D:BA X509v3 Authority Key Identifier: keyid:25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.94.0/24 220.158.194.0/23 Signature Algorithm: sha256WithRSAEncryption 40:43:a0:4b:e3:e6:f6:34:bc:64:16:39:8f:5b:d2:69:10:00: 71:c6:07:cf:d4:cb:8c:5b:0d:0e:79:1c:aa:dc:81:dd:26:d5: f5:f2:da:9b:42:f4:fc:05:60:ab:07:e7:c2:2c:af:aa:b9:3a: 41:b7:b1:63:e4:e3:47:71:ec:28:24:c3:c7:23:f8:b7:c2:7c: 2f:2f:5d:79:25:15:dd:66:9b:b6:34:de:03:cd:ff:8d:7f:fa: 95:d2:46:95:02:b0:7a:f9:19:0c:b4:f4:58:f1:c3:33:18:29: ba:6d:99:70:84:31:18:8a:f9:f2:ad:4c:b1:74:38:80:37:15: 8d:59:98:c7:cf:38:88:40:1b:97:7e:9b:7c:7f:c1:62:93:01: 8a:82:50:93:c9:d6:81:da:46:69:d1:30:12:fd:a0:2e:53:ee: 22:08:3d:06:7e:91:3e:6f:bd:84:9e:2b:64:bd:23:bd:9c:30: ec:3a:75:b5:98:cb:38:3f:f0:10:27:2b:1d:25:6f:4d:9a:2f: 01:70:e6:d6:24:40:25:96:4e:b7:18:38:a4:14:b6:64:eb:4e: 22:0e:ec:17:19:f3:6d:9a:e2:3d:e6:48:8a:a4:8b:8f:9f:49: d3:56:8d:5b:9d:d8:6a:e2:a7:5d:36:8a:f0:ca:3a:1b:2c:f8: cd:bf:a4:47 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFMTkxMTAvBgNVBAUTKDI1NTI5MEEwMUFBOUI5MTE4QjY2RUVEQTBGOTA1RjZE NDBEQjA1QUUwHhcNMjUwNzIyMDkzNTI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmNWI1Zi04NGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtG85OTkHlmzyzIiQzMVzD/kAgiqSS+srqrtAF5c0ywwsmqHo+33g7xGlqazu 5VYBj/voYCunHK7Ts5rGzBb8kMhY0LsBZBGTT/xetTRj51aCH4WlFONv7VPhA6IO aZUVasEiNgA/xzHSJwVbceuXfFeVbLtakruPNoiaLMcmD4kuI9CmLU9rAXmiLQcG KDgWK5xJeYJQc9u9rQ5ld4Mg5lJP6yRSc3dS2bKxh61Mp1pYi0akGzVg0WztDcyx 0e0S2Zx6hP/Y9bPz5jKwEf+y7kktkn30MJosrsGqGB0u3Ta66y4yU1VsO6EZlMyD fwV9qcKj6oexH6S7DHvNpRzYpQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBXz/cPB /op890GprwiG+iTR6T26MB8GA1UdIwQYMBaAFCVSkKAaqbkRi2bu2g+QX21A2wWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUUxOS8zNTZGMkYzRUMx QTUxMUU5QThCOEYzMzZDNEY5QUUwMi9KVktRb0JxcHVSR0xadTdhRDVCZmJVRGJC YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pWS1FvQnFwdVJHTFp1N2FENUJmYlVEYkJhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFMTkvMzU2RjJGM0VDMUE1MTFFOUE4QjhGMzM2QzRGOUFFMDIvMzMxQzZBMkM2 NkRGMTFGMEEzRjM4MTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnWF4DBAHcnsIwDQYJKoZIhvcNAQELBQADggEBAEBDoEvj 5vY0vGQWOY9b0mkQAHHGB8/Uy4xbDQ55HKrcgd0m1fXy2ptC9PwFYKsH58Isr6q5 OkG3sWPk40dx7Cgkw8cj+LfCfC8vXXklFd1mm7Y03gPN/41/+pXSRpUCsHr5GQy0 9FjxwzMYKbptmXCEMRiK+fKtTLF0OIA3FY1ZmMfPOIhAG5d+m3x/wWKTAYqCUJPJ 1oHaRmnRMBL9oC5T7iIIPQZ+kT5vvYSeK2S9I72cMOw6dbWYyzg/8BAnKx0lb02a LwFw5tYkQCWWTrcYOKQUtmTrTiIO7BcZ822a4j3mSIqki4+fSdNWjVud2Grip102 ivDKOhss+M2/pEc= -----END CERTIFICATE-----Generated at Sat Aug 9 02:48:55 2025 by rpki-client