$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2A41/BD4146DAE93511ECAC665452C4F9AE02/01C04C52FB8D11ECABCA1D0AC4F9AE02.roa File: 01C04C52FB8D11ECABCA1D0AC4F9AE02.roa (raw, json) Hash identifier: DRDlC7cP5kScc1hDU1cGcX/a0wHpMiRUfD8YYtGPsXQ= Subject key identifier: 0C:9C:97:56:BC:A4:A3:86:26:1B:6C:3C:44:FD:11:B4:4A:83:B8:DF Certificate issuer: /CN=A91F2A41/serialNumber=EEFBC65363F5716D724C117CD54221E412D923CC Certificate serial: 02E8 Authority key identifier: EE:FB:C6:53:63:F5:71:6D:72:4C:11:7C:D5:42:21:E4:12:D9:23:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7vvGU2P1cW1yTBF81UIh5BLZI8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2A41/BD4146DAE93511ECAC665452C4F9AE02/01C04C52FB8D11ECABCA1D0AC4F9AE02.roa Signing time: Sat 07 Jun 2025 01:59:39 +0000 ROA not before: Sat 07 Jun 2025 01:59:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 7594 IP address blocks: 103.188.182.0/23 maxlen: 23 103.188.182.0/24 maxlen: 24 103.188.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2A41/BD4146DAE93511ECAC665452C4F9AE02/7vvGU2P1cW1yTBF81UIh5BLZI8w.crl rsync://rpki.apnic.net/member_repository/A91F2A41/BD4146DAE93511ECAC665452C4F9AE02/7vvGU2P1cW1yTBF81UIh5BLZI8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7vvGU2P1cW1yTBF81UIh5BLZI8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2A41, serialNumber=EEFBC65363F5716D724C117CD54221E412D923CC Validity Not Before: Jun 7 01:59:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68439d0b-df82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:b0:a7:9c:a2:7f:8e:02:e2:62:83:4c:9d: 0a:5f:96:11:f5:08:08:f8:f5:86:40:df:a3:fa:b4: f9:3a:6d:2b:43:0e:de:17:33:11:16:80:de:62:79: ce:fe:89:10:ff:86:cf:70:cb:c8:60:8c:88:3f:e7: 72:78:28:40:84:e4:bb:bb:31:4e:e7:61:9b:72:0f: 84:aa:df:b1:ab:fe:05:18:9f:04:a2:7d:34:70:1d: df:be:bf:bb:99:8d:09:2b:7b:67:8b:b3:e9:4d:d0: 96:b1:fb:8e:c4:1e:a2:42:a0:67:e7:4b:13:f8:01: ce:83:b4:de:ae:69:b8:3d:61:96:dd:0c:9c:f1:2b: 80:83:c1:20:c0:e1:23:b4:36:1e:d5:22:3f:11:33: 32:50:6c:f8:df:b5:74:7d:95:19:4d:ab:d9:62:78: 15:43:63:6e:ca:64:a3:25:e3:4a:26:a5:2a:ee:e4: 4e:bb:a2:a8:87:5c:dd:36:bf:6c:25:da:d9:97:78: 52:b6:ec:25:1c:5c:93:c6:81:fe:83:27:cb:f2:22: 79:86:0a:6d:62:b7:fe:49:0f:2c:01:6b:c8:9a:09: 20:a4:05:da:dc:d2:9a:6e:ab:38:f0:fe:a9:a0:59: a9:46:56:8c:c5:47:89:d3:08:c5:cd:34:88:71:e7: 8c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9C:97:56:BC:A4:A3:86:26:1B:6C:3C:44:FD:11:B4:4A:83:B8:DF X509v3 Authority Key Identifier: keyid:EE:FB:C6:53:63:F5:71:6D:72:4C:11:7C:D5:42:21:E4:12:D9:23:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2A41/BD4146DAE93511ECAC665452C4F9AE02/7vvGU2P1cW1yTBF81UIh5BLZI8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7vvGU2P1cW1yTBF81UIh5BLZI8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2A41/BD4146DAE93511ECAC665452C4F9AE02/01C04C52FB8D11ECABCA1D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.182.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:b8:bb:88:ff:b7:08:ea:58:1d:c3:43:94:23:12:b6:39:59: eb:80:b3:33:52:e4:28:29:74:37:f0:55:cd:e0:7d:50:04:e1: 41:89:88:17:56:69:c9:af:1d:c0:4f:81:32:6c:e4:89:3a:e5: bc:02:21:fd:6f:72:42:1c:4b:2e:22:d7:ef:ee:41:65:15:c4: cc:79:ec:01:95:48:03:1a:7c:19:16:a2:a5:0e:b0:82:3b:a3: 5b:d7:dd:db:ed:c5:ea:d2:17:46:cb:96:ed:5b:4b:07:c8:dc: 10:8f:e1:d3:36:08:6e:b7:91:87:23:6c:59:62:f6:7d:ff:7e: 86:4c:8e:92:e3:2f:d2:a6:3e:bf:19:3b:37:18:4f:68:a5:5b: bc:e4:df:dc:88:60:73:88:ff:a9:95:af:2e:48:48:11:84:08: 9b:48:57:80:34:c8:a6:9b:b5:ec:d9:d3:5b:4f:b0:ea:a1:ff: b3:17:47:63:07:16:2a:c2:27:c1:fb:63:2b:50:d6:94:f8:a4: 93:28:bf:18:ba:67:17:78:8a:4e:6d:7c:23:ae:97:90:e9:0d: 76:35:d4:50:f2:b0:67:19:44:56:94:a8:2e:a6:74:28:d1:2b: c4:fd:d3:dc:a4:3b:1d:7b:c6:b7:fc:64:9d:29:00:47:e6:19: 09:3d:4a:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJBNDExMTAvBgNVBAUTKEVFRkJDNjUzNjNGNTcxNkQ3MjRDMTE3Q0Q1NDIyMUU0 MTJEOTIzQ0MwHhcNMjUwNjA3MDE1OTM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzOWQwYi1kZjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHOwp5yif44C4mKDTJ0KX5YR9QgI+PWGQN+j+rT5Om0rQw7eFzMRFoDeYnnO /okQ/4bPcMvIYIyIP+dyeChAhOS7uzFO52Gbcg+Eqt+xq/4FGJ8Eon00cB3fvr+7 mY0JK3tni7PpTdCWsfuOxB6iQqBn50sT+AHOg7Termm4PWGW3Qyc8SuAg8EgwOEj tDYe1SI/ETMyUGz437V0fZUZTavZYngVQ2NuymSjJeNKJqUq7uROu6Koh1zdNr9s JdrZl3hStuwlHFyTxoH+gyfL8iJ5hgptYrf+SQ8sAWvImgkgpAXa3NKabqs48P6p oFmpRlaMxUeJ0wjFzTSIceeMswIDAQABo4IClTCCApEwHQYDVR0OBBYEFAycl1a8 pKOGJhtsPET9EbRKg7jfMB8GA1UdIwQYMBaAFO77xlNj9XFtckwRfNVCIeQS2SPM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkE0MS9CRDQxNDZEQUU5 MzUxMUVDQUM2NjU0NTJDNEY5QUUwMi83dnZHVTJQMWNXMXlUQkY4MVVJaDVCTFpJ OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd2dkdVMlAxY1cxeVRCRjgxVUloNUJMWkk4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJBNDEvQkQ0MTQ2REFFOTM1MTFFQ0FDNjY1NDUyQzRGOUFFMDIvMDFDMDRDNTJG QjhEMTFFQ0FCQ0ExRDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvLYwDQYJKoZIhvcNAQELBQADggEBAI64u4j/twjqWB3D Q5QjErY5WeuAszNS5CgpdDfwVc3gfVAE4UGJiBdWacmvHcBPgTJs5Ik65bwCIf1v ckIcSy4i1+/uQWUVxMx57AGVSAMafBkWoqUOsII7o1vX3dvtxerSF0bLlu1bSwfI 3BCP4dM2CG63kYcjbFli9n3/foZMjpLjL9KmPr8ZOzcYT2ilW7zk39yIYHOI/6mV ry5ISBGECJtIV4A0yKabtezZ01tPsOqh/7MXR2MHFirCJ8H7YytQ1pT4pJMovxi6 Zxd4ik5tfCOul5DpDXY11FDysGcZRFaUqC6mdCjRK8T909ykOx17xrf8ZJ0pAEfm GQk9Sn4= -----END CERTIFICATE-----Generated at Wed Nov 5 06:30:31 2025 by rpki-client