$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/9A59F7D670E411F0A8BFEE2AC4F9AE02.roa File: 9A59F7D670E411F0A8BFEE2AC4F9AE02.roa (raw, json) Hash identifier: Pm7xX1vwf0DPPYIok3OlHUKVD8r7hcmVaxi8mGdbOm0= Subject key identifier: 58:05:8D:2B:2A:42:78:22:60:55:52:04:54:17:64:81:80:D7:E1:87 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 028C Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/9A59F7D670E411F0A8BFEE2AC4F9AE02.roa Signing time: Mon 04 Aug 2025 03:39:19 +0000 ROA not before: Mon 04 Aug 2025 03:39:19 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 213254 IP address blocks: 103.176.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 01:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Aug 4 03:39:19 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68902b67-c9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b4:46:90:6c:73:b3:f3:d4:ea:74:1f:86:3e: b0:98:24:64:e9:cb:89:b6:be:76:a4:55:36:f4:29: a0:1c:d2:02:ef:a7:9e:1e:e8:df:5c:67:9c:69:bf: a8:a6:17:cd:1b:0a:15:71:7f:e4:ab:34:34:a1:e0: 67:32:53:c1:8a:fd:cd:34:3a:70:b6:c6:4e:93:f7: b1:b1:0b:ff:a0:ba:91:e5:b8:20:93:fe:4f:b5:03: 28:ad:ed:eb:97:64:b1:74:49:65:d5:32:ac:b6:d1: 0e:c2:fe:4f:85:57:f7:55:89:30:fe:b7:70:0f:91: d5:60:5f:4b:de:11:dc:fc:89:97:bb:42:ae:e1:91: 55:3b:60:4d:e3:2c:5d:d4:37:9f:8a:13:04:77:f3: a4:ff:59:a5:b1:1b:3d:1b:4e:f2:e9:5f:8c:98:82: 65:9b:3e:83:2e:32:c3:49:2f:6d:86:fa:73:80:97: 25:07:87:ed:ce:d4:98:f6:7f:5e:80:4f:16:77:c0: e1:18:00:a5:0a:a4:da:20:49:75:b2:a3:65:de:75: e7:0a:33:4e:61:a2:c6:d8:7a:e1:26:c4:11:3b:ae: f3:a4:67:aa:4a:8a:11:21:dc:19:3d:99:04:bd:40: 7d:52:fa:47:83:b8:b3:60:9d:c7:70:2e:95:25:1a: 6c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:05:8D:2B:2A:42:78:22:60:55:52:04:54:17:64:81:80:D7:E1:87 X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/9A59F7D670E411F0A8BFEE2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.91.0/24 Signature Algorithm: sha256WithRSAEncryption 04:f5:32:b1:a3:84:4c:fe:ef:72:c8:5a:99:36:95:6e:93:a7: 25:c3:4a:15:4a:6d:61:af:a0:fc:8b:95:1a:07:62:d8:5a:f9: eb:00:03:e0:d4:2e:00:a7:78:e5:c9:d5:83:f4:b3:6f:f1:9b: ac:c8:07:65:09:1d:d4:e6:88:e1:80:1e:2f:06:da:fc:1c:63: 76:83:10:0e:66:d8:2c:3f:a8:08:e2:89:f6:ac:0b:0e:59:a6: a9:a8:15:21:91:4b:ef:e7:cb:1e:57:25:48:7c:ff:65:69:ef: 2f:3b:e4:8e:5e:b1:34:71:1e:f3:14:4c:79:04:e2:5f:23:59: d8:dc:68:8c:de:45:78:92:ca:a5:ea:e7:45:da:66:7d:26:d5: d4:c3:43:3e:c6:31:55:7d:fa:79:02:75:60:a8:84:2a:19:81: 1d:36:a4:51:b5:c1:65:12:69:67:d6:ab:ef:a6:43:46:7d:4e: 65:bb:a0:43:82:9c:13:78:9a:a9:30:83:64:d1:a4:17:2b:97: a1:d8:cd:c0:a6:c7:f5:26:02:9c:22:5b:bb:99:e8:e8:f1:00: 52:53:b1:5b:33:62:8d:a6:47:e8:2c:fe:4c:1c:84:ab:6e:b2: f9:6f:f8:17:49:8a:51:f6:73:1e:4e:bb:91:ee:b3:18:23:a1: 83:e6:9c:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUwODA0MDMzOTE5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwMmI2Ny1jOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybRGkGxzs/PU6nQfhj6wmCRk6cuJtr52pFU29CmgHNIC76eeHujfXGecab+o phfNGwoVcX/kqzQ0oeBnMlPBiv3NNDpwtsZOk/exsQv/oLqR5bggk/5PtQMore3r l2SxdEll1TKsttEOwv5PhVf3VYkw/rdwD5HVYF9L3hHc/ImXu0Ku4ZFVO2BN4yxd 1DefihMEd/Ok/1mlsRs9G07y6V+MmIJlmz6DLjLDSS9thvpzgJclB4ftztSY9n9e gE8Wd8DhGAClCqTaIEl1sqNl3nXnCjNOYaLG2HrhJsQRO67zpGeqSooRIdwZPZkE vUB9UvpHg7izYJ3HcC6VJRps/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFgFjSsq QngiYFVSBFQXZIGA1+GHMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFENTYvODE4QjREMDIxQUFFMTFFRDlCNzRBRTUxQzRGOUFFMDIvOUE1OUY3RDY3 MEU0MTFGMEE4QkZFRTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsFswDQYJKoZIhvcNAQELBQADggEBAAT1MrGjhEz+73LI Wpk2lW6TpyXDShVKbWGvoPyLlRoHYtha+esAA+DULgCneOXJ1YP0s2/xm6zIB2UJ HdTmiOGAHi8G2vwcY3aDEA5m2Cw/qAjiifasCw5ZpqmoFSGRS+/nyx5XJUh8/2Vp 7y875I5esTRxHvMUTHkE4l8jWdjcaIzeRXiSyqXq50XaZn0m1dTDQz7GMVV9+nkC dWCohCoZgR02pFG1wWUSaWfWq++mQ0Z9TmW7oEOCnBN4mqkwg2TRpBcrl6HYzcCm x/UmApwiW7uZ6OjxAFJTsVszYo2mR+gs/kwchKtusvlv+BdJilH2cx5Ou5Husxgj oYPmnFE= -----END CERTIFICATE-----Generated at Wed Aug 13 02:44:29 2025 by rpki-client