$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/E32E2F000EE811EE90BBC818C4F9AE02.roa File: E32E2F000EE811EE90BBC818C4F9AE02.roa (raw, json) Hash identifier: byJpKNPjQF7b2JFAHp+3RTx6U3vbcPnlcOVf0jom37s= Subject key identifier: 34:99:91:A4:60:FD:9E:6F:79:6A:1E:50:0E:D3:D3:DE:EC:3C:E9:B6 Certificate issuer: /CN=A91DB4C3/serialNumber=4EF9473B554AE1A72BA0981FFEFE138E2D480ECC Certificate serial: 096A Authority key identifier: 4E:F9:47:3B:55:4A:E1:A7:2B:A0:98:1F:FE:FE:13:8E:2D:48:0E:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvlHO1VK4acroJgf_v4Tji1IDsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/E32E2F000EE811EE90BBC818C4F9AE02.roa Signing time: Tue 08 Jul 2025 21:00:54 +0000 ROA not before: Tue 08 Jul 2025 21:00:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134160 IP address blocks: 45.115.232.0/22 maxlen: 24 103.56.12.0/22 maxlen: 24 103.225.216.0/23 maxlen: 23 2402:4880::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/TvlHO1VK4acroJgf_v4Tji1IDsw.crl rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/TvlHO1VK4acroJgf_v4Tji1IDsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvlHO1VK4acroJgf_v4Tji1IDsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2410 (0x96a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB4C3, serialNumber=4EF9473B554AE1A72BA0981FFEFE138E2D480ECC Validity Not Before: Jul 8 21:00:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686d8705-2e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9a:ff:8a:1c:e1:30:27:a4:c7:2e:34:09:e8: 0d:88:30:86:2e:33:57:b9:85:8e:a4:9f:76:12:d7: b2:4b:ba:b8:c7:4a:b9:c2:f3:61:79:dc:d0:21:a3: 3b:eb:b7:d1:c1:c8:09:59:56:6b:cb:06:64:68:1a: 91:9d:89:be:22:0c:b8:69:77:49:f8:ad:07:60:2e: 58:4b:6c:12:6a:70:a4:7b:7d:ec:ce:7d:41:53:5e: 78:65:ac:f4:d3:c1:ea:72:e4:7d:55:9b:a2:c0:02: 5b:8f:cd:f3:07:d3:70:02:2f:5b:a3:f3:4a:ff:d5: 23:50:0f:57:ac:cd:d1:ff:52:e7:fe:5d:32:b0:da: 9d:2b:0e:ce:01:24:88:d9:06:ea:be:2e:a9:b4:a0: 03:1b:7b:51:96:82:3b:62:77:77:5a:2e:1d:bc:d7: a8:91:f8:22:a4:60:19:db:7e:a7:1d:4e:3b:61:c3: cc:38:cf:a6:8e:e8:39:68:2f:15:b7:de:bd:7e:b5: a1:92:75:81:7f:36:62:e1:52:21:5b:66:67:98:22: 53:3a:59:45:dc:7e:98:35:98:8b:00:41:f4:ca:67: eb:88:f1:84:86:57:7d:34:f2:51:6a:07:b4:72:f4: 15:61:1f:0d:54:fe:53:5d:39:aa:98:4d:6a:e9:cb: 66:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:99:91:A4:60:FD:9E:6F:79:6A:1E:50:0E:D3:D3:DE:EC:3C:E9:B6 X509v3 Authority Key Identifier: keyid:4E:F9:47:3B:55:4A:E1:A7:2B:A0:98:1F:FE:FE:13:8E:2D:48:0E:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/TvlHO1VK4acroJgf_v4Tji1IDsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvlHO1VK4acroJgf_v4Tji1IDsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4C3/C23F767C998011EAB3373E6FC4F9AE02/E32E2F000EE811EE90BBC818C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.232.0/22 103.56.12.0/22 103.225.216.0/23 IPv6: 2402:4880::/32 Signature Algorithm: sha256WithRSAEncryption 40:16:be:50:45:c9:ec:47:42:b4:c3:d9:92:c3:37:4a:c1:10: 79:a1:06:90:d0:76:cc:de:04:4c:06:df:5d:b1:76:c3:df:7e: 30:c3:92:97:41:65:8b:6b:9b:a1:73:0a:99:f5:53:e7:65:c5: d8:45:10:ef:5a:e2:5f:0f:7d:1c:30:29:d2:05:7a:4e:12:23: 2d:ae:c7:81:15:c9:5d:be:dc:2b:26:34:92:f3:bf:e5:3d:6d: 7a:c3:fc:1b:7d:06:d4:db:a8:35:a8:6b:0e:29:2a:56:b3:a2: 56:56:0d:1b:cc:7d:50:23:e5:cf:61:2c:ad:7a:16:3c:ec:47: 00:2b:a4:f9:08:15:e7:68:ad:97:71:76:63:1e:6a:59:e2:4a: 99:c8:06:f6:68:d2:db:3c:17:11:df:55:29:9d:b8:b5:21:91: 51:1f:29:80:dd:40:cf:fd:52:dd:7a:52:51:ec:3a:01:35:e0: 28:44:e8:9a:5d:f1:9e:b5:26:f4:fa:8b:f3:7d:cc:bf:27:2a: 61:bd:89:1c:b5:c6:3c:f3:22:e5:48:15:19:8b:df:c2:fd:02: 5a:70:c7:19:46:70:21:bd:57:45:79:08:c1:c1:48:7c:52:c2: c7:22:5d:2c:f6:03:0d:cc:1f:74:30:ca:28:9e:85:0b:c1:52: 9d:8b:e1:57 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0QzMxMTAvBgNVBAUTKDRFRjk0NzNCNTU0QUUxQTcyQkEwOTgxRkZFRkUxMzhF MkQ0ODBFQ0MwHhcNMjUwNzA4MjEwMDU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkODcwNS0yZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25r/ihzhMCekxy40CegNiDCGLjNXuYWOpJ92EteyS7q4x0q5wvNhedzQIaM7 67fRwcgJWVZrywZkaBqRnYm+Igy4aXdJ+K0HYC5YS2wSanCke33szn1BU154Zaz0 08HqcuR9VZuiwAJbj83zB9NwAi9bo/NK/9UjUA9XrM3R/1Ln/l0ysNqdKw7OASSI 2Qbqvi6ptKADG3tRloI7Ynd3Wi4dvNeokfgipGAZ236nHU47YcPMOM+mjug5aC8V t969frWhknWBfzZi4VIhW2ZnmCJTOllF3H6YNZiLAEH0ymfriPGEhld9NPJRage0 cvQVYR8NVP5TXTmqmE1q6ctmWQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFDSZkaRg /Z5veWoeUA7T097sPOm2MB8GA1UdIwQYMBaAFE75RztVSuGnK6CYH/7+E44tSA7M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRDMy9DMjNGNzY3Qzk5 ODAxMUVBQjMzNzNFNkZDNEY5QUUwMi9UdmxITzFWSzRhY3JvSmdmX3Y0VGppMUlE c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R2bEhPMVZLNGFjcm9KZ2ZfdjRUamkxSURzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0QzMvQzIzRjc2N0M5OTgwMTFFQUIzMzczRTZGQzRGOUFFMDIvRTMyRTJGMDAw RUU4MTFFRTkwQkJDODE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItc+gDBAJnOAwDBAFn4dgwDQQCAAIwBwMFACQCSIAwDQYJ KoZIhvcNAQELBQADggEBAEAWvlBFyexHQrTD2ZLDN0rBEHmhBpDQdszeBEwG312x dsPffjDDkpdBZYtrm6FzCpn1U+dlxdhFEO9a4l8PfRwwKdIFek4SIy2ux4EVyV2+ 3CsmNJLzv+U9bXrD/Bt9BtTbqDWoaw4pKlazolZWDRvMfVAj5c9hLK16FjzsRwAr pPkIFedorZdxdmMealniSpnIBvZo0ts8FxHfVSmduLUhkVEfKYDdQM/9Ut16UlHs OgE14ChE6Jpd8Z61JvT6i/N9zL8nKmG9iRy1xjzzIuVIFRmL38L9AlpwxxlGcCG9 V0V5CMHBSHxSwsciXSz2Aw3MH3QwyiiehQvBUp2L4Vc= -----END CERTIFICATE-----Generated at Wed Aug 13 00:38:16 2025 by rpki-client