$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/5A7E13CA8C2B11EA90152018C4F9AE02.roa File: 5A7E13CA8C2B11EA90152018C4F9AE02.roa (raw, json) Hash identifier: MZTRHkBugOG0/w9DN1EvKjeTW8go+K0xNXADKQ+F2nY= Subject key identifier: 06:82:95:EA:22:F2:3F:3D:AE:B5:3F:74:F2:46:5A:30:F9:7A:4F:D3 Certificate issuer: /CN=A91F2BA6/serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Certificate serial: 09CA Authority key identifier: 9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/5A7E13CA8C2B11EA90152018C4F9AE02.roa Signing time: Thu 31 Jul 2025 21:01:09 +0000 ROA not before: Thu 31 Jul 2025 21:01:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140606 IP address blocks: 103.150.234.0/24 maxlen: 24 103.150.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2506 (0x9ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2BA6, serialNumber=9EEAA4509B9D6ACA91CDA4021F105E921037EB74 Validity Not Before: Jul 31 21:01:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=688bd995-d53e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b0:26:80:80:86:6c:c4:7b:12:94:d3:ae:91: 54:2e:fa:e4:fc:f1:64:39:ea:2f:ce:64:7a:26:49: 28:43:dc:1c:d3:ec:2c:4f:f3:73:4a:4f:f7:96:6a: 00:13:1b:32:18:65:cb:84:aa:95:17:92:0d:2f:a3: c0:8c:cd:9d:b3:03:7d:7b:9f:2d:90:c0:64:50:c5: 69:fc:d5:c4:cc:4b:6b:c4:c4:fb:a9:e6:09:0f:2e: 84:44:99:11:02:d9:ee:4d:92:73:c9:32:1f:e2:64: d5:90:2e:ae:17:1e:7d:34:53:84:15:89:f1:7e:2a: 4f:2d:5f:f6:ff:5d:ac:2f:c3:12:cc:cc:43:ea:63: 51:6a:8a:5d:f9:c9:c9:38:56:ef:4d:4f:89:d7:1b: 55:f1:9e:1c:38:9f:53:d7:40:57:13:aa:5e:db:65: b1:df:5a:df:49:cb:d0:9c:d5:be:01:22:48:a3:7b: 0b:51:e1:dc:03:57:83:f0:35:bf:66:63:f2:2f:79: 9c:c1:8c:26:e9:e9:62:16:7f:49:7a:5e:44:79:53: 73:8e:82:aa:14:25:9b:ed:9e:e3:63:92:02:03:2d: 14:fd:d6:06:a7:fd:ba:c5:dc:66:e0:c3:31:ac:81: cd:31:ea:37:0c:b7:fc:0f:e2:ea:6a:23:e1:05:e4: ae:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:82:95:EA:22:F2:3F:3D:AE:B5:3F:74:F2:46:5A:30:F9:7A:4F:D3 X509v3 Authority Key Identifier: keyid:9E:EA:A4:50:9B:9D:6A:CA:91:CD:A4:02:1F:10:5E:92:10:37:EB:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/nuqkUJudasqRzaQCHxBekhA363Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nuqkUJudasqRzaQCHxBekhA363Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2BA6/84DD79E08B7611EA91050743C4F9AE02/5A7E13CA8C2B11EA90152018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.234.0/23 Signature Algorithm: sha256WithRSAEncryption 26:33:8d:50:c7:d2:d6:d5:b2:18:82:39:48:9d:cd:a4:8b:2b: 44:b7:1b:08:e0:f9:52:e0:80:cb:ad:d4:00:24:c1:8c:02:f7: bd:02:9c:07:b3:18:84:f0:15:60:80:bf:61:f7:30:81:36:55: f5:e4:8d:2e:2f:51:ea:9a:06:8d:22:81:e6:63:85:f3:c1:d8: ca:86:ec:36:5f:fe:28:1c:e0:77:4c:b1:b7:c2:a4:d7:73:45: dc:66:cc:90:c7:4c:d4:c3:61:e7:4d:bd:dd:2e:ff:76:da:56: 6b:9f:7e:c9:e8:de:d5:46:a2:fd:7c:f5:ab:f4:9d:87:52:d5: c0:43:67:5e:60:47:99:d4:16:ae:3b:f1:20:3c:72:72:71:97: 21:41:f3:08:50:8a:70:62:e1:c9:7c:b1:c4:5f:4f:68:de:10: 69:f0:7d:67:59:80:7d:8b:4e:2f:6d:fa:d6:64:44:f0:63:06: 63:08:5e:31:2c:8f:ce:71:9b:f4:84:d9:8e:39:4c:0e:03:c5: 47:52:6b:3a:45:a1:87:8b:6e:12:b5:94:5b:15:2e:5c:ec:b7: 32:fc:bc:91:e4:08:45:30:45:c1:31:9b:57:30:0d:b1:38:b4: f2:25:fb:56:ec:fb:29:37:90:71:47:79:f2:51:9e:fd:c1:2a: 5e:00:1a:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCQTYxMTAvBgNVBAUTKDlFRUFBNDUwOUI5RDZBQ0E5MUNEQTQwMjFGMTA1RTky MTAzN0VCNzQwHhcNMjUwNzMxMjEwMTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiZDk5NS1kNTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7AmgICGbMR7EpTTrpFULvrk/PFkOeovzmR6JkkoQ9wc0+wsT/NzSk/3lmoA ExsyGGXLhKqVF5INL6PAjM2dswN9e58tkMBkUMVp/NXEzEtrxMT7qeYJDy6ERJkR AtnuTZJzyTIf4mTVkC6uFx59NFOEFYnxfipPLV/2/12sL8MSzMxD6mNRaopd+cnJ OFbvTU+J1xtV8Z4cOJ9T10BXE6pe22Wx31rfScvQnNW+ASJIo3sLUeHcA1eD8DW/ ZmPyL3mcwYwm6eliFn9Jel5EeVNzjoKqFCWb7Z7jY5ICAy0U/dYGp/26xdxm4MMx rIHNMeo3DLf8D+LqaiPhBeSukwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAaCleoi 8j89rrU/dPJGWjD5ek/TMB8GA1UdIwQYMBaAFJ7qpFCbnWrKkc2kAh8QXpIQN+t0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkJBNi84NERENzlFMDhC NzYxMUVBOTEwNTA3NDNDNEY5QUUwMi9udXFrVUp1ZGFzcVJ6YVFDSHhCZWtoQTM2 M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL251cWtVSnVkYXNxUnphUUNIeEJla2hBMzYzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJCQTYvODRERDc5RTA4Qjc2MTFFQTkxMDUwNzQzQzRGOUFFMDIvNUE3RTEzQ0E4 QzJCMTFFQTkwMTUyMDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnluowDQYJKoZIhvcNAQELBQADggEBACYzjVDH0tbVshiC OUidzaSLK0S3Gwjg+VLggMut1AAkwYwC970CnAezGITwFWCAv2H3MIE2VfXkjS4v UeqaBo0igeZjhfPB2MqG7DZf/igc4HdMsbfCpNdzRdxmzJDHTNTDYedNvd0u/3ba Vmuffsno3tVGov189av0nYdS1cBDZ15gR5nUFq478SA8cnJxlyFB8whQinBi4cl8 scRfT2jeEGnwfWdZgH2LTi9t+tZkRPBjBmMIXjEsj85xm/SE2Y45TA4DxUdSazpF oYeLbhK1lFsVLlzstzL8vJHkCEUwRcExm1cwDbE4tPIl+1bs+yk3kHFHefJRnv3B Kl4AGpU= -----END CERTIFICATE-----Generated at Wed Aug 13 09:46:34 2025 by rpki-client