$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa File: 2A53DA54332011EF89CABD61C4F9AE02.roa (raw, json) Hash identifier: 3E5KCTYO2qXRZGwimFw21kbH1Dhwm76ZCbT4bcDlI8Y= Subject key identifier: B4:2A:55:F5:86:30:29:08:6E:8C:CA:27:C3:FC:19:56:7C:CC:C9:85 Certificate issuer: /CN=A91CE821/serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Certificate serial: 0497 Authority key identifier: 06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa Signing time: Sat 02 Aug 2025 17:26:19 +0000 ROA not before: Sat 02 Aug 2025 17:26:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 152605 IP address blocks: 103.115.196.0/24 maxlen: 24 103.115.197.0/24 maxlen: 24 103.115.198.0/24 maxlen: 24 103.115.199.0/24 maxlen: 24 2402:edc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821, serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Validity Not Before: Aug 2 17:26:19 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688e4a3b-6df5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8b:8d:f2:f5:5c:13:61:42:99:ba:05:2a:d5: 77:88:4e:52:fa:7c:94:f6:5d:02:94:6a:99:7b:34: 1f:74:2b:06:40:e7:aa:19:b9:98:d8:15:74:cb:9c: fa:82:6d:25:91:4c:24:d2:12:1d:e6:b1:69:71:8d: e5:7d:e6:f3:9a:8e:cd:48:66:95:3c:8a:e5:b9:3a: 96:19:af:6a:29:a4:00:e6:c1:2f:93:ea:09:71:d9: 75:3d:26:e4:5c:1d:ab:5c:bf:8e:6a:0a:d0:9c:37: 8c:de:ce:15:ad:f5:fe:4a:8f:d4:73:df:53:75:59: 6d:ff:d1:4a:86:2a:89:fa:8c:d4:af:eb:3e:08:4e: a8:bc:b1:cc:03:b8:7e:7a:e9:0b:1f:63:f2:c6:c2: c1:a9:21:db:1d:6c:ee:a3:34:0d:15:0c:3c:16:86: 7b:8a:9a:7a:62:45:46:b9:de:31:09:1d:bd:f7:07: 1a:02:1f:5d:b2:66:f4:e1:cf:f8:d7:99:43:7a:49: 89:d0:c6:39:6b:c6:63:f8:16:8a:9b:48:c4:6a:7f: ef:9a:cf:c7:6c:c0:bb:6d:e8:cc:ab:7d:52:35:0b: 14:39:47:1f:eb:39:16:76:64:80:b8:91:d0:7a:bb: 3e:35:00:1d:3e:a3:ab:73:44:e9:8d:58:e6:7b:66: fc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2A:55:F5:86:30:29:08:6E:8C:CA:27:C3:FC:19:56:7C:CC:C9:85 X509v3 Authority Key Identifier: keyid:06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.196.0/22 IPv6: 2402:edc0::/32 Signature Algorithm: sha256WithRSAEncryption 85:1d:33:47:05:cd:69:79:99:8b:4d:98:16:59:04:b3:66:ae: 7f:9c:1a:2e:46:34:c7:f9:2d:31:74:97:5e:71:92:c7:98:d7: 3e:3f:c0:75:6a:b0:f5:a9:60:2e:a2:3c:22:b5:92:7d:68:0e: e8:dc:e0:73:08:70:23:c8:5b:c1:5e:27:94:af:fc:8c:df:7a: e2:c5:b3:f1:f3:40:11:54:8e:90:e4:cb:82:2c:df:d2:37:e8: 1b:9f:7f:8c:b7:ac:9d:99:26:bb:dc:71:a7:56:ac:73:83:4c: 06:b4:6d:04:c8:90:62:e2:3f:99:0e:27:55:5f:33:ea:cb:b9: 08:a5:18:90:72:fb:c8:2d:47:12:c9:b1:05:80:39:ae:49:f4: 7c:8a:85:ea:17:94:21:b7:3a:49:60:ce:fe:c5:85:57:59:91: 17:36:5c:66:6d:b4:2d:c3:c3:74:54:91:c2:37:3f:4a:59:2e: 2c:1a:2c:54:21:13:e1:65:a0:4c:71:f7:f7:ec:17:f8:65:cf: 56:81:43:f9:21:c1:35:b9:6a:3e:77:1b:00:dc:e0:bf:d3:cd: ab:e0:87:17:4a:cb:b3:2b:2f:eb:da:a7:b8:0c:fb:16:4d:be: 33:28:f0:7b:38:91:06:85:59:4f:9f:1d:ce:84:b6:ca:ee:f3: 63:af:33:f0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKDA2MzdFNUIzOEM2MURGODNFQkIzMzAyMDkzQkI1NzZD QjMxRDlCMTAwHhcNMjUwODAyMTcyNjE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlNGEzYi02ZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYuN8vVcE2FCmboFKtV3iE5S+nyU9l0ClGqZezQfdCsGQOeqGbmY2BV0y5z6 gm0lkUwk0hId5rFpcY3lfebzmo7NSGaVPIrluTqWGa9qKaQA5sEvk+oJcdl1PSbk XB2rXL+OagrQnDeM3s4VrfX+So/Uc99TdVlt/9FKhiqJ+ozUr+s+CE6ovLHMA7h+ eukLH2PyxsLBqSHbHWzuozQNFQw8FoZ7ipp6YkVGud4xCR299wcaAh9dsmb04c/4 15lDekmJ0MY5a8Zj+BaKm0jEan/vms/HbMC7bejMq31SNQsUOUcf6zkWdmSAuJHQ ers+NQAdPqOrc0TpjVjme2b8FQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLQqVfWG MCkIbozKJ8P8GVZ8zMmFMB8GA1UdIwQYMBaAFAY35bOMYd+D67MwIJO7V2yzHZsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi9CamZsczR4aDM0UHJzekFnazd0WGJMTWRt eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JqZmxzNHhoMzRQcnN6QWdrN3RYYkxNZG14QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U4MjEvODExRkI1OTA2MDUxMTFFODhDRDhFQzQ3QzRGOUFFMDIvMkE1M0RBNTQz MzIwMTFFRjg5Q0FCRDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnc8QwDQQCAAIwBwMFACQC7cAwDQYJKoZIhvcNAQELBQAD ggEBAIUdM0cFzWl5mYtNmBZZBLNmrn+cGi5GNMf5LTF0l15xkseY1z4/wHVqsPWp YC6iPCK1kn1oDujc4HMIcCPIW8FeJ5Sv/IzfeuLFs/HzQBFUjpDky4Is39I36Buf f4y3rJ2ZJrvccadWrHODTAa0bQTIkGLiP5kOJ1VfM+rLuQilGJBy+8gtRxLJsQWA Oa5J9HyKheoXlCG3Oklgzv7FhVdZkRc2XGZttC3Dw3RUkcI3P0pZLiwaLFQhE+Fl oExx9/fsF/hlz1aBQ/khwTW5aj53GwDc4L/TzavghxdKy7MrL+vap7gM+xZNvjMo 8Hs4kQaFWU+fHc6Etsru82OvM/A= -----END CERTIFICATE-----Generated at Wed Aug 13 05:53:52 2025 by rpki-client