$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/23E61408678A11F08A94B35AC4F9AE02.roa File: 23E61408678A11F08A94B35AC4F9AE02.roa (raw, json) Hash identifier: 5Yz7qxk1jdgn6P7lka9rnOmBSo28tqIS5zv1OkL6X7A= Subject key identifier: 62:98:D5:23:33:E8:8D:EE:D9:9B:2E:C9:2A:AA:D9:DC:87:B5:BE:C7 Certificate issuer: /CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Certificate serial: 1045 Authority key identifier: 42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/23E61408678A11F08A94B35AC4F9AE02.roa Signing time: Wed 23 Jul 2025 06:11:12 +0000 ROA not before: Wed 23 Jul 2025 06:11:12 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7470 IP address blocks: 103.26.20.0/22 maxlen: 24 124.40.224.0/20 maxlen: 24 2407:ed00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4165 (0x1045) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE1BC, serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Validity Not Before: Jul 23 06:11:12 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68807d00-8122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5d:37:24:8a:e0:e4:db:ed:77:d6:98:94:32: 70:59:1a:fd:85:90:9d:e8:24:e5:11:ed:f2:39:a7: ea:b2:48:88:b9:9b:9d:ee:c2:1c:42:9c:22:32:56: ed:68:14:76:6f:9f:fb:c9:a2:9d:b3:b1:7d:01:96: 41:f6:23:89:a7:79:d1:1a:77:cc:7e:5b:b6:ec:ac: f7:2f:33:8c:df:49:14:3b:f0:6f:27:1b:90:a6:ba: 00:c4:ad:b4:bc:1a:70:1c:f9:0b:42:b1:cb:8d:08: d9:c3:89:d4:47:39:55:99:a9:83:7c:fb:ad:24:ce: d2:13:c5:88:53:16:d8:43:76:da:3e:2e:c1:57:b7: 8b:d0:b4:8e:83:28:03:57:f8:e3:11:11:f5:f5:00: cd:4c:74:ce:61:c4:31:b1:59:1a:48:5f:a6:a8:9e: bf:a8:d4:18:83:0b:0f:be:0c:f6:53:a2:f6:7d:57: c5:e3:8a:f3:84:b0:27:2a:72:58:c1:54:16:80:46: f7:e0:35:3f:78:ee:c3:d7:59:88:b6:4a:30:49:23: fa:8a:d5:b4:34:8d:d8:56:a4:b9:dc:4e:a7:34:0a: c1:d1:60:94:1b:b3:b4:5d:29:45:8e:5e:52:06:1a: 4f:ca:99:69:ba:de:5d:9d:66:46:b5:bb:e2:f8:4d: aa:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:98:D5:23:33:E8:8D:EE:D9:9B:2E:C9:2A:AA:D9:DC:87:B5:BE:C7 X509v3 Authority Key Identifier: keyid:42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/23E61408678A11F08A94B35AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.20.0/22 124.40.224.0/20 IPv6: 2407:ed00::/32 Signature Algorithm: sha256WithRSAEncryption 43:70:82:70:62:99:5f:6a:e9:fa:ca:8a:c7:d4:5c:52:33:85: 01:42:28:ba:a0:35:8a:57:c9:dd:70:8a:67:98:d1:a4:c8:37: b4:c2:ea:46:20:50:c6:db:10:05:4d:64:f5:26:cd:98:e0:77: b5:7e:4e:b0:2e:c0:b9:00:84:a4:e0:83:a9:fa:8e:d8:d4:7e: aa:9d:7e:19:0e:73:86:5d:2c:79:86:be:d6:99:58:ac:ad:15: 6b:68:32:aa:6f:08:c8:6f:5e:a1:d4:73:e2:12:da:dc:0b:ac: 50:06:f4:ec:74:bf:55:88:b4:46:a6:68:f6:46:cb:65:ce:04: 95:64:28:e2:0d:be:6c:1f:f9:1e:b9:40:72:68:3b:27:bd:e6: cd:b6:8b:d8:7d:77:b7:fe:23:44:b4:62:9a:fa:22:92:77:b4: a0:e3:55:81:15:73:60:c7:e2:06:41:cd:22:ea:92:d9:e5:bf: ac:53:85:3e:88:f0:48:f0:d3:b7:cc:0f:aa:4b:3b:f3:1c:3f: 5f:61:50:e3:e6:48:01:b5:a0:bc:7c:19:76:97:bd:0c:9f:dc: f3:02:a7:f1:d6:16:54:1b:6b:15:ad:22:8d:93:7f:73:62:51: a9:7e:da:84:6c:62:0d:c3:01:f3:21:e5:b8:79:2a:6b:3f:ec: 2b:7b:a0:dd -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxQkMxMTAvBgNVBAUTKDQyOUU5QkREQTI5NjYyMDAwM0NFQzVFRkFCQjgyM0Qz MDNGRTRGNzEwHhcNMjUwNzIzMDYxMTEyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwN2QwMC04MTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5l03JIrg5Nvtd9aYlDJwWRr9hZCd6CTlEe3yOafqskiIuZud7sIcQpwiMlbt aBR2b5/7yaKds7F9AZZB9iOJp3nRGnfMflu27Kz3LzOM30kUO/BvJxuQproAxK20 vBpwHPkLQrHLjQjZw4nURzlVmamDfPutJM7SE8WIUxbYQ3baPi7BV7eL0LSOgygD V/jjERH19QDNTHTOYcQxsVkaSF+mqJ6/qNQYgwsPvgz2U6L2fVfF44rzhLAnKnJY wVQWgEb34DU/eO7D11mItkowSSP6itW0NI3YVqS53E6nNArB0WCUG7O0XSlFjl5S BhpPyplput5dnWZGtbvi+E2qNQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGKY1SMz 6I3u2ZsuySqq2dyHtb7HMB8GA1UdIwQYMBaAFEKem92ilmIAA87F76u4I9MD/k9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTFCQy84OTZDNkM0ODQ2 Q0UxMUU5OTI4NTBBM0NDNEY5QUUwMi9RcDZiM2FLV1lnQUR6c1h2cTdnajB3UC1U M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwNmIzYUtXWWdBRHpzWHZxN2dqMHdQLVQzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxQkMvODk2QzZDNDg0NkNFMTFFOTkyODUwQTNDQzRGOUFFMDIvMjNFNjE0MDg2 NzhBMTFGMDhBOTRCMzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnGhQDBAR8KOAwDQQCAAIwBwMFACQH7QAwDQYJKoZIhvcN AQELBQADggEBAENwgnBimV9q6frKisfUXFIzhQFCKLqgNYpXyd1wimeY0aTIN7TC 6kYgUMbbEAVNZPUmzZjgd7V+TrAuwLkAhKTgg6n6jtjUfqqdfhkOc4ZdLHmGvtaZ WKytFWtoMqpvCMhvXqHUc+IS2twLrFAG9Ox0v1WItEamaPZGy2XOBJVkKOINvmwf +R65QHJoOye95s22i9h9d7f+I0S0Ypr6IpJ3tKDjVYEVc2DH4gZBzSLqktnlv6xT hT6I8Ejw07fMD6pLO/McP19hUOPmSAG1oLx8GXaXvQyf3PMCp/HWFlQbaxWtIo2T f3NiUal+2oRsYg3DAfMh5bh5Kms/7Ct7oN0= -----END CERTIFICATE-----Generated at Sun Aug 10 19:54:15 2025 by rpki-client