$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa File: 3CED465E8E0811EE8450D961C4F9AE02.roa (raw, json) Hash identifier: cZSiy4bCwDyhfeb/EZhFsCoqJYnevtXYXbg2+tmKMXk= Subject key identifier: A6:1D:9A:0F:10:71:A3:F8:DE:66:E5:F9:2B:F8:49:A9:19:45:90:51 Certificate issuer: /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Certificate serial: 014B Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa Signing time: Wed 23 Jul 2025 04:40:38 +0000 ROA not before: Wed 23 Jul 2025 04:40:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149849 IP address blocks: 103.188.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 04:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF306, serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Validity Not Before: Jul 23 04:40:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688067c6-7a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9a:60:c8:4d:71:db:25:9f:92:69:13:a1:d0: 1a:ea:0c:9c:e5:1c:17:aa:cc:5d:e8:ce:c8:14:58: 54:fa:b5:51:17:73:37:d7:70:b5:64:7f:b8:06:a2: 05:cd:70:6c:46:63:df:3e:83:d7:91:33:c7:c3:d1: 20:27:68:ed:f1:df:35:88:fc:21:14:71:1a:00:50: 10:1a:86:46:6d:70:1f:bf:27:f2:d2:aa:1c:b1:93: 04:63:64:c5:9b:c0:1f:fd:b0:0a:94:05:d1:4d:c6: b0:92:d9:25:4f:58:59:d6:05:55:56:02:6c:08:5e: 75:33:f2:2d:ef:66:95:02:2b:5e:1d:bb:61:90:56: 66:d4:e5:e9:5b:0e:b6:12:bd:75:30:ac:f7:6f:90: 3b:0b:04:24:f6:34:e8:5b:61:34:dd:22:04:99:d8: b7:0a:4b:ad:03:8e:ae:67:99:65:8f:f0:22:44:62: ad:2f:4e:b9:31:d5:cb:06:c5:21:50:1f:50:d4:b0: 2f:d9:e5:8c:45:a5:65:1c:f5:21:d7:77:a2:62:2f: d5:df:e8:cf:da:d5:59:11:85:d9:28:12:d4:16:19: 78:9f:f9:d8:96:f5:98:a7:fd:5d:da:cd:a9:1d:77: 95:fc:cf:14:01:64:af:d3:29:7f:74:c3:04:a4:d9: 6d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1D:9A:0F:10:71:A3:F8:DE:66:E5:F9:2B:F8:49:A9:19:45:90:51 X509v3 Authority Key Identifier: keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.88.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:57:fe:33:48:0a:e8:ec:26:13:eb:ab:71:14:fc:e4:49:bc: 1c:c5:1c:0c:ce:d6:a1:f3:54:58:f2:e5:c0:a3:d2:24:0d:9a: be:0a:de:04:8d:90:4f:1f:22:61:5c:a8:59:9e:1b:0f:c5:4c: 92:12:45:6f:c7:46:b7:97:97:39:7d:d0:e6:87:19:52:fe:c3: da:94:19:f9:70:2b:67:5d:4a:61:48:8c:d3:cd:5b:1b:27:79: f9:8a:16:ac:1b:a6:3f:ea:4a:11:de:f7:47:e8:fa:0a:98:6e: 9c:3c:c7:ec:40:14:db:81:b4:31:c3:b0:7f:ff:da:ab:5e:d2: 92:e3:77:d2:b9:87:74:d1:0f:f1:0b:a3:bc:aa:65:d1:26:21: 0f:ab:2f:d6:02:66:4c:6f:2b:46:d6:48:69:68:40:62:3f:9d: 21:1c:7f:b7:0a:b0:ab:2e:cd:95:0a:40:47:f5:5c:eb:37:53: bf:21:6e:b7:c1:4d:5f:dc:31:d5:cd:28:4c:04:cb:c4:e9:b2: 04:0d:a7:dd:33:eb:8b:ea:5b:d3:57:fd:5f:47:9d:03:f6:45: a4:a0:ec:09:ca:09:a8:95:d7:3f:7f:d8:a8:94:f4:89:81:a4: 06:73:20:3e:79:3d:b6:05:48:e0:bd:e6:9a:44:22:6e:fa:cb: 56:c7:ae:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMDYxMTAvBgNVBAUTKEI2MDQxMkNFOTgwOUMxMEM2N0RERUFCQkEwRTMzNUUz QURBNEZFMTAwHhcNMjUwNzIzMDQ0MDM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwNjdjNi03YTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JpgyE1x2yWfkmkTodAa6gyc5RwXqsxd6M7IFFhU+rVRF3M313C1ZH+4BqIF zXBsRmPfPoPXkTPHw9EgJ2jt8d81iPwhFHEaAFAQGoZGbXAfvyfy0qocsZMEY2TF m8Af/bAKlAXRTcawktklT1hZ1gVVVgJsCF51M/It72aVAiteHbthkFZm1OXpWw62 Er11MKz3b5A7CwQk9jToW2E03SIEmdi3CkutA46uZ5llj/AiRGKtL065MdXLBsUh UB9Q1LAv2eWMRaVlHPUh13eiYi/V3+jP2tVZEYXZKBLUFhl4n/nYlvWYp/1d2s2p HXeV/M8UAWSv0yl/dMMEpNltSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKYdmg8Q caP43mbl+Sv4SakZRZBRMB8GA1UdIwQYMBaAFLYEEs6YCcEMZ93qu6DjNeOtpP4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMwNi8xNzE3OTIwRTcx NkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndReG4zZXE3b09NMTQ2Mmtf aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnUVN6cGdKd1F4bjNlcTdvT00xNDYya19oQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYzMDYvMTcxNzkyMEU3MTZCMTFFRUIxNjczMjc3QzRGOUFFMDIvM0NFRDQ2NUU4 RTA4MTFFRTg0NTBEOTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvFgwDQYJKoZIhvcNAQELBQADggEBAH5X/jNICujsJhPr q3EU/ORJvBzFHAzO1qHzVFjy5cCj0iQNmr4K3gSNkE8fImFcqFmeGw/FTJISRW/H RreXlzl90OaHGVL+w9qUGflwK2ddSmFIjNPNWxsnefmKFqwbpj/qShHe90fo+gqY bpw8x+xAFNuBtDHDsH//2qte0pLjd9K5h3TRD/ELo7yqZdEmIQ+rL9YCZkxvK0bW SGloQGI/nSEcf7cKsKsuzZUKQEf1XOs3U78hbrfBTV/cMdXNKEwEy8TpsgQNp90z 64vqW9NX/V9HnQP2RaSg7AnKCaiV1z9/2KiU9ImBpAZzID55PbYFSOC95ppEIm76 y1bHrnA= -----END CERTIFICATE-----Generated at Wed Aug 13 05:58:09 2025 by rpki-client