$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/0D5812C4B2E711EB8A61B44EC4F9AE02.roa File: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (raw, json) Hash identifier: x6RJn5oQmyrZkTIL+jnIDh/DG4GNtduzvhq+KZOjCjM= Subject key identifier: 42:29:CD:B1:BD:55:D3:5C:17:48:07:5E:FF:41:C7:0E:8E:56:24:FD Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 05FF Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/0D5812C4B2E711EB8A61B44EC4F9AE02.roa Signing time: Tue 08 Jul 2025 23:35:14 +0000 ROA not before: Tue 08 Jul 2025 23:35:14 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 31898 IP address blocks: 103.167.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Jul 8 23:35:14 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686dab32-02dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cf:d8:58:49:1b:77:25:e9:8a:d3:05:17:4d: 4c:13:a5:62:70:b8:e5:d5:34:db:b8:7c:01:23:d4: 10:ab:61:1e:7e:95:a9:6e:27:e1:3a:b4:4c:5c:42: 03:24:31:04:18:d5:74:85:70:45:a8:98:7e:f6:53: 32:6b:27:2c:bd:81:ef:af:77:df:fe:9d:5b:a5:16: c9:a4:12:ff:c8:56:bf:ba:80:7b:77:6b:a1:22:fb: 73:ac:f7:d2:92:55:f5:ff:2c:69:42:ed:09:1c:1e: 77:88:a5:ed:47:c9:06:10:69:d6:f6:38:7d:0b:62: a2:76:65:4c:a4:58:b9:24:7a:ac:63:fc:13:f2:62: 8a:57:7f:fc:12:f0:ad:02:be:1e:1c:23:5c:24:23: d0:80:3f:d1:00:67:bd:fc:96:ba:b1:0c:a4:65:61: 05:29:69:78:c4:31:4a:d8:aa:77:7f:67:48:77:44: 58:45:36:af:85:fd:85:5f:69:c6:e2:81:d1:13:cc: 51:c4:52:1f:92:2d:4b:d3:bc:98:9c:d3:c0:80:ca: 93:89:28:bc:74:40:09:81:34:73:73:9f:1e:2d:e7: 75:08:aa:8e:8e:16:5c:56:d8:a5:26:1a:de:b7:d8: ce:3d:7c:7e:7a:52:ad:8e:11:46:7f:1a:56:28:8b: 95:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:29:CD:B1:BD:55:D3:5C:17:48:07:5E:FF:41:C7:0E:8E:56:24:FD X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/0D5812C4B2E711EB8A61B44EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.28.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:09:dd:b7:37:fe:f2:96:87:90:d9:6e:fb:4e:11:17:d1:52: 6c:e8:81:e7:b5:c1:f7:9d:87:26:ff:9e:b0:a8:8c:d5:a5:45: 47:19:74:31:62:cb:69:9a:09:25:2c:d3:4b:63:14:8d:5a:bd: ef:d7:68:66:85:b8:45:51:e3:17:33:73:4b:33:e8:a0:da:87: 34:e7:92:56:6c:f2:68:98:b5:c5:1e:b5:91:2c:f5:8d:7d:69: 40:25:bb:08:01:c4:1b:0a:7f:2a:12:20:8c:7c:3f:7e:ce:91: a3:0e:03:8a:33:27:20:75:97:65:e4:a8:5d:fb:6c:03:87:22: 17:c2:39:0e:df:c9:18:2f:89:46:ca:28:b1:3c:78:d6:3e:dd: 6b:5f:b0:08:4c:d8:aa:fc:5c:cd:30:ed:f7:f2:c6:11:4f:95: a9:10:1c:df:b9:ba:71:38:a2:b3:d5:cc:58:94:c1:f8:32:47: 9f:6b:50:73:58:39:02:50:2e:21:ac:97:7d:06:77:19:a6:6e: 52:67:2a:b4:9e:f2:7b:8e:01:d2:ec:84:3f:8d:d1:c4:17:6b: e8:a5:88:b6:0b:c5:ab:70:8d:be:2f:85:65:58:29:9c:b8:3b: 99:83:0f:53:28:ed:7f:3d:24:cb:ea:37:84:94:10:13:12:fc: dd:cc:9f:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwNzA4MjMzNTE0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkYWIzMi0wMmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8/YWEkbdyXpitMFF01ME6VicLjl1TTbuHwBI9QQq2EefpWpbifhOrRMXEID JDEEGNV0hXBFqJh+9lMyaycsvYHvr3ff/p1bpRbJpBL/yFa/uoB7d2uhIvtzrPfS klX1/yxpQu0JHB53iKXtR8kGEGnW9jh9C2KidmVMpFi5JHqsY/wT8mKKV3/8EvCt Ar4eHCNcJCPQgD/RAGe9/Ja6sQykZWEFKWl4xDFK2Kp3f2dId0RYRTavhf2FX2nG 4oHRE8xRxFIfki1L07yYnNPAgMqTiSi8dEAJgTRzc58eLed1CKqOjhZcVtilJhre t9jOPXx+elKtjhFGfxpWKIuVrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEIpzbG9 VdNcF0gHXv9Bxw6OViT9MB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQyREUvNTIwNDM0MTRCMjNBMTFFQjkwNzQ3NzRBQzRGOUFFMDIvMEQ1ODEyQzRC MkU3MTFFQjhBNjFCNDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpxwwDQYJKoZIhvcNAQELBQADggEBAI8J3bc3/vKWh5DZ bvtOERfRUmzogee1wfedhyb/nrCojNWlRUcZdDFiy2maCSUs00tjFI1ave/XaGaF uEVR4xczc0sz6KDahzTnklZs8miYtcUetZEs9Y19aUAluwgBxBsKfyoSIIx8P37O kaMOA4ozJyB1l2XkqF37bAOHIhfCOQ7fyRgviUbKKLE8eNY+3WtfsAhM2Kr8XM0w 7ffyxhFPlakQHN+5unE4orPVzFiUwfgyR59rUHNYOQJQLiGsl30GdxmmblJnKrSe 8nuOAdLshD+N0cQXa+iliLYLxatwjb4vhWVYKZy4O5mDD1Mo7X89JMvqN4SUEBMS /N3Mn4k= -----END CERTIFICATE-----Generated at Mon Jul 21 18:32:08 2025 by rpki-client