$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa File: 33A8447E3D0111EA9B37B256C4F9AE02.roa (raw, json) Hash identifier: nC2MCb31DN75ahkTYwNnww6l+ZVraZqBgRvw8nlhuTg= Subject key identifier: 30:F8:3E:DF:2E:8A:7B:B6:0C:A2:90:91:E9:22:48:78:3C:1F:6D:52 Certificate issuer: /CN=A91E1A60/serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Certificate serial: 0B39 Authority key identifier: 2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa Signing time: Mon 30 Jun 2025 19:54:24 +0000 ROA not before: Mon 30 Jun 2025 19:54:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139227 IP address blocks: 103.140.24.0/23 maxlen: 24 2404:f640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2873 (0xb39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1A60, serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Validity Not Before: Jun 30 19:54:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6862eb70-4b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:31:06:50:55:65:48:a2:6c:17:c8:75:d5: 03:e7:ad:4d:1f:87:c9:a3:46:7f:ed:b6:98:61:91: a7:64:f7:18:17:e1:00:20:2d:3a:a1:b3:02:4b:ba: 3a:bb:46:0a:6a:1f:5b:a1:6b:db:29:af:a5:1a:b5: dd:02:d8:0f:8a:d2:62:15:a1:c8:a1:7f:a7:ea:9b: 41:f1:e9:ed:2b:34:a3:a6:a9:a7:78:b9:d8:d6:86: d0:ab:67:a1:d4:34:36:4f:08:0c:2b:63:38:b0:21: c6:47:43:85:3f:c0:c3:64:75:30:bf:1a:e8:b9:f4: a7:62:32:0d:b8:1b:2c:cb:04:40:64:98:5a:70:94: 37:c9:f5:4e:15:28:ed:49:f6:a2:60:7c:79:18:0c: 08:e4:e5:41:f5:c3:a1:0b:07:d3:25:7b:4c:0a:a8: 0f:0d:c8:ec:d6:eb:64:53:6a:c3:ee:06:a7:4d:3e: 69:99:5a:84:de:2b:ee:4d:27:c7:16:cb:ca:1a:76: c2:14:7f:aa:52:6d:1a:fc:de:b7:95:79:72:6f:4c: 8e:72:b4:b2:f9:8f:83:1f:f2:50:4a:6b:b8:75:4c: fb:0b:83:4a:ba:a7:6a:1b:42:6e:01:b8:4d:24:8d: bc:b6:91:d9:43:de:1c:a6:67:b3:e3:88:08:08:56: cd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F8:3E:DF:2E:8A:7B:B6:0C:A2:90:91:E9:22:48:78:3C:1F:6D:52 X509v3 Authority Key Identifier: keyid:2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.24.0/23 IPv6: 2404:f640::/32 Signature Algorithm: sha256WithRSAEncryption a5:61:cb:b2:9d:11:87:83:36:44:43:59:72:71:3c:2c:f2:64: 1e:09:2b:e1:1e:d0:5e:e8:09:dd:02:fc:d6:72:a6:a2:da:99: 40:82:5d:53:3f:35:80:ac:55:8d:1f:a4:10:e6:96:94:6d:29: fd:34:ab:dd:cc:6a:d6:99:9f:c3:dd:07:6a:23:52:67:d1:0b: 1e:0c:71:e3:e1:e7:e9:d9:42:5e:07:69:99:4a:eb:79:ae:8b: dc:d1:e6:7b:3f:27:55:07:cf:ff:61:38:e0:3b:5f:bd:9f:3d: de:86:e2:12:e6:ae:e2:bb:37:90:62:07:52:38:75:92:8a:ee: 84:32:87:f9:73:b3:1d:4a:8f:44:08:bd:08:f4:80:e3:2e:ac: 70:64:5a:4f:f8:66:c8:2f:1e:a9:d3:6e:b4:ef:57:3d:94:3b: d4:3a:33:93:a0:8f:74:45:c2:24:ee:46:1e:75:9b:84:a0:7b: 82:62:a0:76:41:80:d7:da:94:74:d0:74:a0:46:39:36:4a:01: 63:c5:7b:f5:63:62:a0:3b:1a:f0:06:7e:e8:b6:5c:80:76:82: ef:b4:ad:73:5a:c4:6c:33:34:db:5b:3b:77:e5:ee:33:ad:d6: c3:46:17:c7:5b:6d:13:6b:24:58:4d:ae:78:19:79:8b:7f:76: f8:92:89:35 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFBNjAxMTAvBgNVBAUTKDJFODIzRDU5NDk2Q0ZBQzczNzhGQTgyQkY4NERERjY4 NEQ5MzJCOUQwHhcNMjUwNjMwMTk1NDI0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyZWI3MC00YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAoxBlBVZUiibBfIddUD561NH4fJo0Z/7baYYZGnZPcYF+EAIC06obMCS7o6 u0YKah9boWvbKa+lGrXdAtgPitJiFaHIoX+n6ptB8entKzSjpqmneLnY1obQq2eh 1DQ2TwgMK2M4sCHGR0OFP8DDZHUwvxroufSnYjINuBssywRAZJhacJQ3yfVOFSjt SfaiYHx5GAwI5OVB9cOhCwfTJXtMCqgPDcjs1utkU2rD7ganTT5pmVqE3ivuTSfH FsvKGnbCFH+qUm0a/N63lXlyb0yOcrSy+Y+DH/JQSmu4dUz7C4NKuqdqG0JuAbhN JI28tpHZQ94cpmez44gICFbNFwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDD4Pt8u inu2DKKQkekiSHg8H21SMB8GA1UdIwQYMBaAFC6CPVlJbPrHN4+oK/hN32hNkyud MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUE2MC84MDMxNEY4NjND RkYxMUVBODIxMDgyNTNDNEY5QUUwMi9Mb0k5V1Vscy1zYzNqNmdyLUUzZmFFMlRL NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xvSTlXVWxzLXNjM2o2Z3ItRTNmYUUyVEs1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFBNjAvODAzMTRGODYzQ0ZGMTFFQTgyMTA4MjUzQzRGOUFFMDIvMzNBODQ0N0Uz RDAxMTFFQTlCMzdCMjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjBgwDQQCAAIwBwMFACQE9kAwDQYJKoZIhvcNAQELBQAD ggEBAKVhy7KdEYeDNkRDWXJxPCzyZB4JK+Ee0F7oCd0C/NZypqLamUCCXVM/NYCs VY0fpBDmlpRtKf00q93MataZn8PdB2ojUmfRCx4McePh5+nZQl4HaZlK63mui9zR 5ns/J1UHz/9hOOA7X72fPd6G4hLmruK7N5BiB1I4dZKK7oQyh/lzsx1Kj0QIvQj0 gOMurHBkWk/4ZsgvHqnTbrTvVz2UO9Q6M5Ogj3RFwiTuRh51m4Sge4JioHZBgNfa lHTQdKBGOTZKAWPFe/VjYqA7GvAGfui2XIB2gu+0rXNaxGwzNNtbO3fl7jOt1sNG F8dbbRNrJFhNrngZeYt/dviSiTU= -----END CERTIFICATE-----Generated at Wed Nov 5 15:39:06 2025 by rpki-client