$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/7F52DF541CF011F0ACBEBD22C4F9AE02.roa File: 7F52DF541CF011F0ACBEBD22C4F9AE02.roa (raw, json) Hash identifier: duTYZvXv6lu6t8rEgm3ckGUyqXhrkljrh8aPt8kb7W8= Subject key identifier: 40:5B:E7:D8:82:EC:1B:F3:69:D4:1E:DC:A6:85:49:05:7C:60:CB:65 Certificate issuer: /CN=A91CEBAA/serialNumber=32618618244C8D6B4BA60A2FED9723B998D9A170 Certificate serial: 01E8 Authority key identifier: 32:61:86:18:24:4C:8D:6B:4B:A6:0A:2F:ED:97:23:B9:98:D9:A1:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/7F52DF541CF011F0ACBEBD22C4F9AE02.roa Signing time: Sun 27 Jul 2025 03:38:50 +0000 ROA not before: Sun 27 Jul 2025 03:38:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149870 IP address blocks: 103.189.232.0/24 maxlen: 24 103.189.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/MmGGGCRMjWtLpgov7ZcjuZjZoXA.crl rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/MmGGGCRMjWtLpgov7ZcjuZjZoXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBAA, serialNumber=32618618244C8D6B4BA60A2FED9723B998D9A170 Validity Not Before: Jul 27 03:38:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68859f4a-8732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:4f:a3:a6:e5:59:78:fd:90:a6:ab:cb:f8: aa:a7:10:55:ec:28:e0:31:b3:20:9b:26:d3:67:75: f7:32:7b:a5:ad:3b:fd:ad:30:bc:ca:2d:d9:af:1b: d3:8b:5b:72:53:a4:86:22:9e:14:3c:f0:6d:b9:5f: 2d:9a:c4:42:c3:a0:7c:c1:58:4c:ee:60:3e:55:51: 89:bb:3b:66:00:93:13:0f:2d:04:c1:f4:60:9e:43: 9a:91:26:1f:b2:90:bb:a3:e6:ef:90:a1:ee:91:fb: b8:4a:3e:6a:61:98:8c:5d:45:5b:d4:ec:7a:cd:43: d9:42:f0:d5:38:51:f4:6c:21:f4:fb:b9:90:14:1c: ab:67:a2:06:77:92:2d:ed:5a:7f:1a:1d:e2:3c:b3: 10:f5:b0:fa:17:05:70:6d:42:12:2c:bd:6b:c4:64: 86:65:38:5e:8c:b1:b2:c6:79:60:77:3d:b8:b3:97: ff:03:d4:8b:52:c3:bd:66:97:81:00:ef:c3:3b:72: 2e:c9:f5:f3:c0:36:98:e7:ea:f3:23:b8:5c:3b:24: ec:e8:be:52:75:ad:b7:a6:36:61:58:7a:dd:a1:05: 29:71:77:ef:e9:a9:a5:87:55:ee:b5:57:14:7e:81: bf:f6:ca:03:dd:14:ef:e1:1a:e1:52:4d:d0:38:c6: 71:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5B:E7:D8:82:EC:1B:F3:69:D4:1E:DC:A6:85:49:05:7C:60:CB:65 X509v3 Authority Key Identifier: keyid:32:61:86:18:24:4C:8D:6B:4B:A6:0A:2F:ED:97:23:B9:98:D9:A1:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/MmGGGCRMjWtLpgov7ZcjuZjZoXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/7F52DF541CF011F0ACBEBD22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.232.0/23 Signature Algorithm: sha256WithRSAEncryption a8:45:25:e7:5b:61:f0:fe:60:48:eb:1b:70:bb:86:35:f9:b3: 68:b5:f1:45:6d:47:67:26:11:08:61:44:96:d3:9c:2f:0f:07: a9:e6:cb:14:bf:2f:ab:2b:53:1e:a7:36:a8:ab:81:fd:a4:ff: 79:28:79:e4:16:f5:ac:13:a4:ff:c6:40:7a:ea:a5:10:b0:84: 78:e1:dc:26:48:f9:48:0c:c0:54:22:be:6e:00:c3:70:ed:87: 5d:66:f8:ee:b0:20:50:0a:d9:f9:9f:1a:be:21:8b:88:30:6d: 9b:2f:71:ce:e0:1d:88:95:ca:3e:07:44:24:91:16:b8:fb:53: f7:38:52:9e:a6:da:93:36:d1:90:d2:33:76:2e:af:e2:2c:50: 4e:4f:26:08:ff:55:cb:c6:38:20:ea:45:c4:be:00:11:cf:d7: 25:36:d7:1a:cf:25:b2:4c:ca:69:7b:25:95:ea:da:c6:e6:4c: 36:9b:6a:e3:5c:e7:ce:ef:58:08:d9:53:72:88:50:de:00:91: 8c:4c:dc:b8:2e:41:cb:01:61:c6:47:eb:80:59:17:a5:9c:e6: df:4a:92:2c:bd:d4:7a:86:21:9a:28:44:58:b7:24:eb:3f:4f: 48:13:c4:d0:1a:18:24:0e:0d:e4:d0:2f:67:8d:1e:dc:a1:31: e9:79:e4:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQUExMTAvBgNVBAUTKDMyNjE4NjE4MjQ0QzhENkI0QkE2MEEyRkVEOTcyM0I5 OThEOUExNzAwHhcNMjUwNzI3MDMzODUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1OWY0YS04NzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUdPo6blWXj9kKary/iqpxBV7CjgMbMgmybTZ3X3MnulrTv9rTC8yi3ZrxvT i1tyU6SGIp4UPPBtuV8tmsRCw6B8wVhM7mA+VVGJuztmAJMTDy0EwfRgnkOakSYf spC7o+bvkKHukfu4Sj5qYZiMXUVb1Ox6zUPZQvDVOFH0bCH0+7mQFByrZ6IGd5It 7Vp/Gh3iPLMQ9bD6FwVwbUISLL1rxGSGZThejLGyxnlgdz24s5f/A9SLUsO9ZpeB AO/DO3IuyfXzwDaY5+rzI7hcOyTs6L5Sda23pjZhWHrdoQUpcXfv6amlh1XutVcU foG/9soD3RTv4RrhUk3QOMZxmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEBb59iC 7BvzadQe3KaFSQV8YMtlMB8GA1UdIwQYMBaAFDJhhhgkTI1rS6YKL+2XI7mY2aFw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJBQS8yQ0ZEMzcxMkND RDAxMUVEOTgyNTJFNzVDNEY5QUUwMi9NbUdHR0NSTWpXdExwZ292N1pjanVaalpv WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tR0dHQ1JNald0THBnb3Y3WmNqdVpqWm9YQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VCQUEvMkNGRDM3MTJDQ0QwMTFFRDk4MjUyRTc1QzRGOUFFMDIvN0Y1MkRGNTQx Q0YwMTFGMEFDQkVCRDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvegwDQYJKoZIhvcNAQELBQADggEBAKhFJedbYfD+YEjr G3C7hjX5s2i18UVtR2cmEQhhRJbTnC8PB6nmyxS/L6srUx6nNqirgf2k/3koeeQW 9awTpP/GQHrqpRCwhHjh3CZI+UgMwFQivm4Aw3Dth11m+O6wIFAK2fmfGr4hi4gw bZsvcc7gHYiVyj4HRCSRFrj7U/c4Up6m2pM20ZDSM3Yur+IsUE5PJgj/VcvGOCDq RcS+ABHP1yU21xrPJbJMyml7JZXq2sbmTDabauNc587vWAjZU3KIUN4AkYxM3Lgu QcsBYcZH64BZF6Wc5t9Kkiy91HqGIZooRFi3JOs/T0gTxNAaGCQODeTQL2eNHtyh Mel55AQ= -----END CERTIFICATE-----Generated at Wed Aug 13 20:17:29 2025 by rpki-client