$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/A04E05E42CE911EC8F99F486C4F9AE02.roa File: A04E05E42CE911EC8F99F486C4F9AE02.roa (raw, json) Hash identifier: bw4oyTaqoqfdp29e2lYAU370gy2twH+W8CpSCQrTXLg= Subject key identifier: 8E:9B:CD:3E:25:66:6C:3F:69:1F:AC:7A:BF:76:4C:7D:2F:BC:CB:8C Certificate issuer: /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Certificate serial: 13CA Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/A04E05E42CE911EC8F99F486C4F9AE02.roa Signing time: Tue 10 Jun 2025 17:18:27 +0000 ROA not before: Tue 10 Jun 2025 17:18:27 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137826 IP address blocks: 103.115.23.0/24 maxlen: 24 103.139.194.0/24 maxlen: 24 2001:df5:1b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5066 (0x13ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Validity Not Before: Jun 10 17:18:27 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684868e2-09e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c8:60:12:e5:c0:e1:27:af:60:5e:3b:2c:a7: f3:07:b8:5c:eb:a9:f7:02:04:f2:c0:37:ce:36:7b: 6d:40:eb:02:8c:67:0b:5d:e3:69:93:0e:83:e8:28: de:5b:da:41:ca:5f:08:10:51:56:c8:cc:45:c0:62: 6e:14:d4:8d:1f:df:1c:65:dd:96:5c:5f:0b:dd:a2: 97:04:d5:49:7e:98:e2:9c:c6:e5:c9:55:78:19:21: ad:e8:04:29:53:a8:64:8e:89:87:24:68:38:6b:d4: 75:62:2d:d7:85:4c:cb:87:8c:3f:c1:98:f8:3c:8e: a2:ee:a0:24:5f:35:4b:1a:c0:3f:c0:ec:15:ca:b1: 00:0d:44:7a:23:4f:ef:aa:87:60:47:7a:2f:c4:27: 2e:00:88:e9:84:4e:5e:b2:e1:dd:24:85:7a:a6:3f: 1f:c0:f2:3c:1a:5a:25:12:e5:9a:6b:78:5c:45:12: 1c:38:79:97:c8:f3:e0:2c:52:1a:09:02:c9:50:d7: ca:41:f2:c1:59:c9:01:48:f4:28:97:33:02:a7:84: bd:f5:05:c5:b0:4b:9c:47:43:8d:0b:6d:82:d1:93: 6d:a0:b1:d3:f8:c9:f1:34:18:0a:ac:e5:61:18:fb: ef:b0:21:b9:bf:a0:ee:18:da:04:e3:4e:36:d3:b6: bc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9B:CD:3E:25:66:6C:3F:69:1F:AC:7A:BF:76:4C:7D:2F:BC:CB:8C X509v3 Authority Key Identifier: keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/A04E05E42CE911EC8F99F486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.23.0/24 103.139.194.0/24 IPv6: 2001:df5:1b00::/48 Signature Algorithm: sha256WithRSAEncryption 98:3b:57:18:fe:4c:a2:89:1a:a0:5b:4e:e6:8c:2e:95:e5:b7: cf:5f:6f:f6:fc:88:90:7f:56:a6:b3:43:02:47:e5:f0:4a:1c: 42:d3:c3:f4:aa:1d:4d:7b:f2:bb:a2:a1:3b:31:60:85:4d:40: 34:89:af:46:36:76:42:f9:2b:bf:7a:e6:f2:89:e3:a5:0d:5a: 92:12:f6:af:c3:9a:25:5b:53:b3:08:1f:a6:52:ff:25:0e:ae: ed:c7:6e:16:21:cd:00:90:ac:e3:58:89:01:f0:40:72:94:46: c6:40:28:a3:52:83:18:ac:fd:29:9f:56:50:2d:f2:6e:f8:cf: a9:11:d2:ec:9f:39:c1:4d:5f:12:04:5c:97:35:b6:7c:98:31: a9:2f:a6:c9:e0:c4:47:24:56:10:ee:d4:76:ad:23:e0:a3:cc: 5c:8e:54:92:bc:95:bb:53:7b:0b:b8:bb:69:ea:f3:1f:b5:5a: 38:17:75:65:09:8a:d1:67:df:01:05:6a:61:37:85:b0:2e:7f: 71:7d:56:bc:8e:bd:ed:df:2e:00:25:ac:3b:15:de:d6:8a:00: d3:82:3d:2f:34:17:a7:6f:6e:80:ca:03:72:b2:fe:f6:a6:24: 74:71:cf:ad:6b:4e:3d:15:c6:8a:b5:dd:5e:ca:12:47:37:cb: fc:d4:6b:6c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICE8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw RTEyMEMwRTkwHhcNMjUwNjEwMTcxODI3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4NjhlMi0wOWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8hgEuXA4SevYF47LKfzB7hc66n3AgTywDfONnttQOsCjGcLXeNpkw6D6Cje W9pByl8IEFFWyMxFwGJuFNSNH98cZd2WXF8L3aKXBNVJfpjinMblyVV4GSGt6AQp U6hkjomHJGg4a9R1Yi3XhUzLh4w/wZj4PI6i7qAkXzVLGsA/wOwVyrEADUR6I0/v qodgR3ovxCcuAIjphE5esuHdJIV6pj8fwPI8GlolEuWaa3hcRRIcOHmXyPPgLFIa CQLJUNfKQfLBWckBSPQolzMCp4S99QXFsEucR0ONC22C0ZNtoLHT+MnxNBgKrOVh GPvvsCG5v6DuGNoE404207a8eQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFI6bzT4l Zmw/aR+ser92TH0vvMuMMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1 QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNEMTUvN0M2ODVBODI5NUI5MTFFOEE2ODhCNjBFQzRGOUFFMDIvQTA0RTA1RTQy Q0U5MTFFQzhGOTlGNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABncxcDBABni8IwDwQCAAIwCQMHACABDfUbADANBgkqhkiG 9w0BAQsFAAOCAQEAmDtXGP5MookaoFtO5owuleW3z19v9vyIkH9WprNDAkfl8Eoc QtPD9KodTXvyu6KhOzFghU1ANImvRjZ2Qvkrv3rm8onjpQ1akhL2r8OaJVtTswgf plL/JQ6u7cduFiHNAJCs41iJAfBAcpRGxkAoo1KDGKz9KZ9WUC3ybvjPqRHS7J85 wU1fEgRclzW2fJgxqS+myeDERyRWEO7Udq0j4KPMXI5UkryVu1N7C7i7aerzH7Va OBd1ZQmK0WffAQVqYTeFsC5/cX1WvI697d8uACWsOxXe1ooA04I9LzQXp29ugMoD crL+9qYkdHHPrWtOPRXGirXdXsoSRzfL/NRrbA== -----END CERTIFICATE-----Generated at Wed Aug 13 05:28:34 2025 by rpki-client