$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/09E46A74C07F11ECB0707F18C4F9AE02.roa File: 09E46A74C07F11ECB0707F18C4F9AE02.roa (raw, json) Hash identifier: eJqOfUXf9pyBvXqljah+FkA7bab4t5X+jzwwp1GzOds= Subject key identifier: 87:96:F3:52:F3:68:6A:E4:9C:F6:AD:E1:39:A9:C6:19:37:97:57:E3 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 036D Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/09E46A74C07F11ECB0707F18C4F9AE02.roa Signing time: Sun 03 Aug 2025 01:38:54 +0000 ROA not before: Sun 03 Aug 2025 01:38:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142153 IP address blocks: 103.166.250.0/23 maxlen: 23 103.166.250.0/24 maxlen: 24 103.166.251.0/24 maxlen: 24 2001:df6:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 877 (0x36d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Aug 3 01:38:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688ebdad-89cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cc:4f:db:00:d5:10:63:f8:ff:4d:36:7d:a9: 81:5e:89:fb:51:16:5f:6a:48:1f:86:14:1f:26:28: 7d:3d:11:d8:e1:69:82:37:b9:60:30:75:31:7b:20: 8d:a1:0f:7e:aa:ce:85:8c:3f:b8:66:e4:ce:20:1f: 59:40:be:76:af:3f:9e:45:93:f0:df:ee:ea:f6:1e: 1b:1e:db:a8:ee:95:c6:78:77:d8:8e:30:29:ae:0a: 3e:50:8f:75:32:98:8c:c0:d7:ec:e4:79:ad:7a:ab: 37:45:49:f0:ad:d9:69:bb:78:b5:44:46:4f:3e:6e: a8:6d:87:56:e5:35:25:ac:79:bb:1a:03:44:41:c6: a3:be:7a:62:ff:9c:02:42:f9:ef:09:eb:e7:b2:0b: 64:c5:1e:4d:86:7a:36:53:6f:a9:70:2b:17:9f:e9: 58:0b:2c:e4:2c:cc:53:7b:05:ed:12:09:c6:3d:ba: e9:af:08:4e:d5:2f:02:c3:18:a6:4b:95:ec:c1:33: 0d:98:0a:b4:17:03:b7:cf:3b:f8:9f:2a:69:94:02: eb:3f:ce:44:8b:ee:09:84:62:9c:92:54:e4:d8:e3: ee:8d:90:cd:1a:83:16:3d:99:0e:1a:96:10:fa:83: c7:a5:a9:c9:52:18:ec:d1:b0:56:80:8d:30:7f:ad: a4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:96:F3:52:F3:68:6A:E4:9C:F6:AD:E1:39:A9:C6:19:37:97:57:E3 X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/09E46A74C07F11ECB0707F18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.250.0/23 IPv6: 2001:df6:a080::/48 Signature Algorithm: sha256WithRSAEncryption 69:2d:99:ba:5e:d1:48:41:03:4a:11:f1:ca:03:02:90:16:de: c5:25:f3:cd:27:e1:80:e5:21:5e:48:75:d3:b3:05:ff:7a:5b: 85:fb:db:3b:bc:22:ad:e7:e0:d4:ab:21:ca:d2:37:7e:64:11: e0:6d:49:47:ff:2f:2d:19:4c:5b:5d:a5:7f:75:b8:f0:df:65: d8:a5:57:e7:61:7e:8f:3d:36:76:90:98:1f:8f:c4:58:87:af: ce:7a:ec:60:74:1c:a7:9a:31:8c:34:b1:e6:00:3c:43:eb:37: 60:97:bf:a7:8c:04:0a:59:bf:04:3e:dc:63:1c:b7:87:b2:3e: 80:8a:e9:e7:6c:8c:4f:b6:0f:e4:02:a2:41:5e:c0:0c:d4:e2: 9b:cb:3d:6a:d5:bd:94:f0:d8:20:19:0b:93:8d:36:50:d8:07: ea:52:eb:bb:c0:e4:83:00:42:97:53:d3:32:47:66:de:65:60: 90:ad:ec:a1:92:16:ec:0f:c9:9d:47:da:c8:6c:c6:ab:93:4a: b6:1c:90:72:7d:2f:70:60:a4:02:8a:d4:27:d0:5e:87:9f:50: cf:80:0a:18:8c:9e:ec:1e:70:f6:1a:6c:a6:1d:24:32:d8:41: 93:08:11:5c:b6:fa:18:8a:b9:b3:90:92:8e:6d:85:98:86:4f: 45:7c:2c:99 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjUwODAzMDEzODU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYmRhZC04OWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMxP2wDVEGP4/002famBXon7URZfakgfhhQfJih9PRHY4WmCN7lgMHUxeyCN oQ9+qs6FjD+4ZuTOIB9ZQL52rz+eRZPw3+7q9h4bHtuo7pXGeHfYjjAprgo+UI91 MpiMwNfs5Hmteqs3RUnwrdlpu3i1REZPPm6obYdW5TUlrHm7GgNEQcajvnpi/5wC QvnvCevnsgtkxR5Nhno2U2+pcCsXn+lYCyzkLMxTewXtEgnGPbrprwhO1S8Cwxim S5XswTMNmAq0FwO3zzv4nypplALrP85Ei+4JhGKcklTk2OPujZDNGoMWPZkOGpYQ +oPHpanJUhjs0bBWgI0wf62ksQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIeW81Lz aGrknPat4Tmpxhk3l1fjMB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE1OTAvOTUxMEU4NkFDMDdCMTFFQzk4N0I4NDdGQzRGOUFFMDIvMDlFNDZBNzRD MDdGMTFFQ0IwNzA3RjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpvowDwQCAAIwCQMHACABDfaggDANBgkqhkiG9w0BAQsF AAOCAQEAaS2Zul7RSEEDShHxygMCkBbexSXzzSfhgOUhXkh107MF/3pbhfvbO7wi refg1KshytI3fmQR4G1JR/8vLRlMW12lf3W48N9l2KVX52F+jz02dpCYH4/EWIev znrsYHQcp5oxjDSx5gA8Q+s3YJe/p4wEClm/BD7cYxy3h7I+gIrp52yMT7YP5AKi QV7ADNTim8s9atW9lPDYIBkLk402UNgH6lLru8DkgwBCl1PTMkdm3mVgkK3soZIW 7A/JnUfayGzGq5NKthyQcn0vcGCkAorUJ9Beh59Qz4AKGIye7B5w9hpsph0kMthB kwgRXLb6GIq5s5CSjm2FmIZPRXwsmQ== -----END CERTIFICATE-----Generated at Mon Aug 11 10:30:58 2025 by rpki-client