$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa File: 9954B962F02D11EFBA26B94FC4F9AE02.roa (raw, json) Hash identifier: RpwdGJeEWb/3FqZBI7k4hyBai/WEVbuoaZIuDveesGk= Subject key identifier: 63:A8:D1:44:F4:3E:B3:FA:AD:F8:10:F7:3B:CC:FD:0C:C5:0D:6B:3E Certificate issuer: /CN=A91CEBCA/serialNumber=FE826EE9BC12DAAD3B197471B0413F1EB2082635 Certificate serial: 34D7 Authority key identifier: FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa Signing time: Tue 05 Aug 2025 02:39:54 +0000 ROA not before: Tue 05 Aug 2025 02:39:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 147040 IP address blocks: 103.35.136.0/22 maxlen: 24 202.87.100.0/22 maxlen: 24 202.87.112.0/22 maxlen: 24 202.87.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCA, serialNumber=FE826EE9BC12DAAD3B197471B0413F1EB2082635 Validity Not Before: Aug 5 02:39:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68916efa-6a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7f:f9:a0:a9:f5:1c:74:4b:c1:1d:91:0f:66: b0:82:5c:32:72:ca:8c:0a:9a:f4:e3:f0:e7:60:eb: 1b:34:1f:90:19:73:17:11:24:62:eb:72:9c:c7:21: 4d:c8:aa:44:a7:af:27:82:11:6c:f5:04:3a:e9:75: 0a:b9:18:ce:d7:5b:8f:31:29:1a:0a:16:de:06:97: 42:ef:82:a7:3f:33:84:dd:93:e8:cb:c3:df:64:56: d4:35:97:29:db:a3:14:7c:ee:2b:d8:f9:0a:de:1e: a3:1a:51:f6:ca:d9:e9:b1:10:bd:20:f1:32:b4:a1: bb:b8:e5:e7:53:ab:ef:cd:ae:13:89:35:e0:88:1c: af:93:08:4d:a5:cf:b9:2c:4e:85:c5:19:bd:3a:fa: 40:49:69:68:33:66:6b:e0:a2:54:62:20:a3:10:83: bd:38:ff:92:22:c6:ed:30:31:c3:4a:79:9c:26:9c: 27:a0:a7:9d:2c:b0:54:8a:58:75:ae:e4:06:9e:e4: be:c8:95:8f:21:bd:df:0d:3f:6f:df:91:d7:5e:28: af:30:67:17:bd:5e:89:79:92:c2:49:f0:6d:8d:5d: 88:41:1a:a4:71:cb:62:cd:20:b9:26:c6:e5:23:39: e5:4f:6a:17:6c:14:b7:00:8b:45:32:7e:d9:de:bc: 10:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A8:D1:44:F4:3E:B3:FA:AD:F8:10:F7:3B:CC:FD:0C:C5:0D:6B:3E X509v3 Authority Key Identifier: keyid:FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.136.0/22 202.87.100.0/22 202.87.112.0/22 202.87.120.0/22 Signature Algorithm: sha256WithRSAEncryption 58:1e:07:51:0d:02:09:24:dd:ae:8b:0b:29:34:36:64:81:a3: 1e:3f:44:fc:cd:b2:d8:eb:87:46:58:c5:1d:21:bf:82:11:f1: e3:44:db:a5:19:60:c6:33:dc:46:34:a8:24:16:d2:31:da:c1: c2:7f:fb:35:c7:8c:60:d9:42:de:61:e7:d9:88:c0:49:0b:96: 08:de:36:dd:8c:b5:b0:05:da:ba:a3:32:35:ab:59:e6:3d:cb: 2b:29:2e:db:bf:d2:83:88:e8:0f:4e:21:08:eb:fc:ac:fa:77: 75:92:4e:50:88:eb:a4:5c:d3:3f:bc:8f:eb:2a:d4:27:bf:54: d3:ac:4b:a8:67:8c:73:4d:c6:e3:3a:1f:75:17:6a:ed:a6:b2: 09:4a:bf:82:19:76:5e:5e:74:8b:f1:8a:f6:6e:3d:9b:f6:7e: d0:40:5a:bf:bb:bf:18:6f:80:b2:9b:d7:f1:bf:60:fd:db:14: 6b:1d:47:00:a6:26:1e:e0:1a:65:1d:e2:81:06:0c:27:fd:02: 1a:87:c7:5d:83:b0:f4:72:dc:4a:12:34:c0:e0:0b:0f:0a:02: f6:1a:cb:c5:63:23:5f:2d:5a:86:75:99:0e:fb:c8:02:6e:15: 4c:7d:a8:d2:fe:3e:b2:27:1f:87:d6:19:4d:97:f9:09:c9:8c: 33:3b:b3:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0ExMTAvBgNVBAUTKEZFODI2RUU5QkMxMkRBQUQzQjE5NzQ3MUIwNDEzRjFF QjIwODI2MzUwHhcNMjUwODA1MDIzOTU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxNmVmYS02YTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X/5oKn1HHRLwR2RD2awglwycsqMCpr04/DnYOsbNB+QGXMXESRi63KcxyFN yKpEp68nghFs9QQ66XUKuRjO11uPMSkaChbeBpdC74KnPzOE3ZPoy8PfZFbUNZcp 26MUfO4r2PkK3h6jGlH2ytnpsRC9IPEytKG7uOXnU6vvza4TiTXgiByvkwhNpc+5 LE6FxRm9OvpASWloM2Zr4KJUYiCjEIO9OP+SIsbtMDHDSnmcJpwnoKedLLBUilh1 ruQGnuS+yJWPIb3fDT9v35HXXiivMGcXvV6JeZLCSfBtjV2IQRqkcctizSC5Jsbl IznlT2oXbBS3AItFMn7Z3rwQ0QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFGOo0UT0 PrP6rfgQ9zvM/QzFDWs+MB8GA1UdIwQYMBaAFP6Cbum8EtqtOxl0cbBBPx6yCCY1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQS9CNTg4QjRBNjFE ODgxMUUyOENBRThGRTEwOEIwMkNEMi9fb0p1NmJ3UzJxMDdHWFJ4c0VFX0hySUlK alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19vSnU2YndTMnEwN0dYUnhzRUVfSHJJSUpqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VCQ0EvQjU4OEI0QTYxRDg4MTFFMjhDQUU4RkUxMDhCMDJDRDIvOTk1NEI5NjJG MDJEMTFFRkJBMjZCOTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnI4gDBALKV2QDBALKV3ADBALKV3gwDQYJKoZIhvcNAQEL BQADggEBAFgeB1ENAgkk3a6LCyk0NmSBox4/RPzNstjrh0ZYxR0hv4IR8eNE26UZ YMYz3EY0qCQW0jHawcJ/+zXHjGDZQt5h59mIwEkLlgjeNt2MtbAF2rqjMjWrWeY9 yyspLtu/0oOI6A9OIQjr/Kz6d3WSTlCI66Rc0z+8j+sq1Ce/VNOsS6hnjHNNxuM6 H3UXau2msglKv4IZdl5edIvxivZuPZv2ftBAWr+7vxhvgLKb1/G/YP3bFGsdRwCm Jh7gGmUd4oEGDCf9AhqHx12DsPRy3EoSNMDgCw8KAvYay8VjI18tWoZ1mQ77yAJu FUx9qNL+PrInH4fWGU2X+QnJjDM7swg= -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:39 2025 by rpki-client