$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9FF0/94330FE6D46911E98F01982CC4F9AE02/1D5C353C1D4C11F0B392EC38C4F9AE02.roa File: 1D5C353C1D4C11F0B392EC38C4F9AE02.roa (raw, json) Hash identifier: znRSUO3caPihB9pwLwMc1O8NeSvwB5D6pWui44HfBSk= Subject key identifier: 05:99:92:5F:F5:C5:1D:0F:B6:9B:BB:72:00:6C:BD:28:D4:4B:2A:BF Certificate issuer: /CN=A91D9FF0/serialNumber=E7DE31FADED379414D67FBBCF51D976514E34225 Certificate serial: 0D8E Authority key identifier: E7:DE:31:FA:DE:D3:79:41:4D:67:FB:BC:F5:1D:97:65:14:E3:42:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/594x-t7TeUFNZ_u89R2XZRTjQiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9FF0/94330FE6D46911E98F01982CC4F9AE02/1D5C353C1D4C11F0B392EC38C4F9AE02.roa Signing time: Tue 22 Jul 2025 18:27:47 +0000 ROA not before: Tue 22 Jul 2025 18:27:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139302 IP address blocks: 103.141.4.0/24 maxlen: 24 103.141.5.0/24 maxlen: 24 2001:df1:39c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9FF0/94330FE6D46911E98F01982CC4F9AE02/594x-t7TeUFNZ_u89R2XZRTjQiU.crl rsync://rpki.apnic.net/member_repository/A91D9FF0/94330FE6D46911E98F01982CC4F9AE02/594x-t7TeUFNZ_u89R2XZRTjQiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/594x-t7TeUFNZ_u89R2XZRTjQiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3470 (0xd8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9FF0, serialNumber=E7DE31FADED379414D67FBBCF51D976514E34225 Validity Not Before: Jul 22 18:27:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687fd823-1d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:51:a7:53:9f:a7:8d:71:a5:d6:6b:9b:f4:15: 13:a8:20:59:10:dd:0f:c1:7b:54:aa:27:6a:07:81: ab:86:81:49:ff:29:84:97:81:a5:21:5b:a6:da:34: e5:2d:88:8d:8d:9e:6f:d0:b9:de:cd:4a:37:e5:73: 45:b9:8b:b3:50:9f:53:ea:73:f4:4f:43:61:0c:4f: 0e:04:93:5b:1b:f8:3a:e4:4d:23:83:5b:d2:4d:c9: 48:0b:00:ff:62:99:e3:48:c1:a0:07:c2:65:15:a4: 8d:d7:fa:df:a4:0e:9a:01:d2:97:af:ed:14:94:26: 0e:5e:a3:2b:10:9c:e2:23:c4:57:82:2c:b6:c2:62: 3f:0c:8e:b5:9f:0d:bb:b3:2c:7e:d4:cf:e4:62:0a: 81:ce:f2:31:4b:3b:8d:4b:92:77:0e:c7:52:d0:4f: df:16:09:4f:86:c4:90:b4:0e:8f:ff:d8:4c:64:a4: 3d:64:57:bf:c5:e5:1c:7d:d3:e0:90:90:45:77:b2: 8e:c8:80:0c:9c:2d:17:6f:65:f4:4b:f8:d0:5d:cb: ea:40:53:c3:1b:a5:d4:56:00:c5:00:51:d6:d2:16: 04:dc:c4:7c:4c:b0:a5:94:06:bf:64:50:d2:94:02: 7e:38:38:4c:00:a3:b5:41:bb:dd:9f:d7:69:d4:3c: 80:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:99:92:5F:F5:C5:1D:0F:B6:9B:BB:72:00:6C:BD:28:D4:4B:2A:BF X509v3 Authority Key Identifier: keyid:E7:DE:31:FA:DE:D3:79:41:4D:67:FB:BC:F5:1D:97:65:14:E3:42:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9FF0/94330FE6D46911E98F01982CC4F9AE02/594x-t7TeUFNZ_u89R2XZRTjQiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/594x-t7TeUFNZ_u89R2XZRTjQiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9FF0/94330FE6D46911E98F01982CC4F9AE02/1D5C353C1D4C11F0B392EC38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.4.0/23 IPv6: 2001:df1:39c0::/48 Signature Algorithm: sha256WithRSAEncryption 24:66:5e:47:f0:b3:e7:64:99:ed:54:b5:5b:56:73:ce:15:00: 19:2b:ea:bc:e7:0c:43:38:19:b5:47:bc:1e:fd:74:85:21:b2: c2:b3:b6:5b:94:a0:2c:21:c6:61:39:ca:ec:79:47:63:e8:9b: 26:19:ca:9f:01:58:16:f8:15:c6:9f:a1:1c:6d:10:c9:cf:da: b2:55:b4:be:ec:4c:88:e8:74:08:c5:45:b5:57:9c:74:c8:b1: 93:d6:e6:0f:33:1d:bd:fd:eb:dc:b8:22:55:07:fc:a9:59:c4: d9:cd:d9:63:8c:01:ea:c2:42:01:a8:d2:a6:f7:a0:0e:e8:d1: f6:a4:bd:ad:34:d0:e0:65:d8:e1:9c:12:22:6c:46:6c:72:67: a4:a3:02:6c:bc:89:f7:79:ba:3c:b7:0b:8e:be:31:9f:2e:51: a5:1c:2a:28:9b:c7:3f:3d:4a:d5:90:85:83:2a:8d:43:40:1d: 26:e4:ba:22:99:63:bd:65:17:f4:ac:18:5a:41:ef:86:e0:4e: 79:5a:66:c6:0d:09:94:c4:45:ee:12:0b:d4:d0:ba:c8:21:8b: ea:c7:bf:51:8e:3c:da:ce:fb:40:6a:ac:17:a7:3c:bf:e5:56: 4c:31:4c:31:47:60:44:08:51:9a:13:1c:d3:ba:84:65:34:b5: 31:a8:55:2a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGRjAxMTAvBgNVBAUTKEU3REUzMUZBREVEMzc5NDE0RDY3RkJCQ0Y1MUQ5NzY1 MTRFMzQyMjUwHhcNMjUwNzIyMTgyNzQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZDgyMy0xZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lGnU5+njXGl1mub9BUTqCBZEN0PwXtUqidqB4GrhoFJ/ymEl4GlIVum2jTl LYiNjZ5v0LnezUo35XNFuYuzUJ9T6nP0T0NhDE8OBJNbG/g65E0jg1vSTclICwD/ YpnjSMGgB8JlFaSN1/rfpA6aAdKXr+0UlCYOXqMrEJziI8RXgiy2wmI/DI61nw27 syx+1M/kYgqBzvIxSzuNS5J3DsdS0E/fFglPhsSQtA6P/9hMZKQ9ZFe/xeUcfdPg kJBFd7KOyIAMnC0Xb2X0S/jQXcvqQFPDG6XUVgDFAFHW0hYE3MR8TLCllAa/ZFDS lAJ+ODhMAKO1Qbvdn9dp1DyA0wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAWZkl/1 xR0Ptpu7cgBsvSjUSyq/MB8GA1UdIwQYMBaAFOfeMfre03lBTWf7vPUdl2UU40Il MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUZGMC85NDMzMEZFNkQ0 NjkxMUU5OEYwMTk4MkNDNEY5QUUwMi81OTR4LXQ3VGVVRk5aX3U4OVIyWFpSVGpR aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU5NHgtdDdUZVVGTlpfdTg5UjJYWlJUalFpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDlGRjAvOTQzMzBGRTZENDY5MTFFOThGMDE5ODJDQzRGOUFFMDIvMUQ1QzM1M0Mx RDRDMTFGMEIzOTJFQzM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjQQwDwQCAAIwCQMHACABDfE5wDANBgkqhkiG9w0BAQsF AAOCAQEAJGZeR/Cz52SZ7VS1W1ZzzhUAGSvqvOcMQzgZtUe8Hv10hSGywrO2W5Sg LCHGYTnK7HlHY+ibJhnKnwFYFvgVxp+hHG0Qyc/aslW0vuxMiOh0CMVFtVecdMix k9bmDzMdvf3r3LgiVQf8qVnE2c3ZY4wB6sJCAajSpvegDujR9qS9rTTQ4GXY4ZwS ImxGbHJnpKMCbLyJ93m6PLcLjr4xny5RpRwqKJvHPz1K1ZCFgyqNQ0AdJuS6Iplj vWUX9KwYWkHvhuBOeVpmxg0JlMRF7hIL1NC6yCGL6se/UY482s77QGqsF6c8v+VW TDFMMUdgRAhRmhMc07qEZTS1MahVKg== -----END CERTIFICATE-----Generated at Sun Aug 10 04:20:52 2025 by rpki-client