$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/77A20CBE5BDC11F0BE617A76C4F9AE02.roa File: 77A20CBE5BDC11F0BE617A76C4F9AE02.roa (raw, json) Hash identifier: +Zl76cmx7AGsUQYqJ/t8IiGMCuy30Wvn2FjTFytnW7U= Subject key identifier: F2:E5:CD:25:CD:38:D9:89:0E:D9:BA:51:A8:9A:9F:6C:4E:9E:83:D6 Certificate issuer: /CN=A915A0F9/serialNumber=7448C730A1054D7F1E29DC11951585DD11DE1787 Certificate serial: 05D4 Authority key identifier: 74:48:C7:30:A1:05:4D:7F:1E:29:DC:11:95:15:85:DD:11:DE:17:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEjHMKEFTX8eKdwRlRWF3RHeF4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/77A20CBE5BDC11F0BE617A76C4F9AE02.roa Signing time: Tue 08 Jul 2025 09:18:11 +0000 ROA not before: Tue 08 Jul 2025 09:18:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142436 IP address blocks: 103.168.90.0/23 maxlen: 23 103.168.90.0/24 maxlen: 24 2001:df6:d580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/dEjHMKEFTX8eKdwRlRWF3RHeF4c.crl rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/dEjHMKEFTX8eKdwRlRWF3RHeF4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEjHMKEFTX8eKdwRlRWF3RHeF4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1492 (0x5d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0F9, serialNumber=7448C730A1054D7F1E29DC11951585DD11DE1787 Validity Not Before: Jul 8 09:18:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=686ce252-2a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:69:2f:3b:f8:ed:33:ba:5b:45:39:7b:a4:69: 14:ed:52:82:df:dc:16:99:d5:55:33:12:f8:8d:27: f7:18:ae:fd:87:4e:be:2b:f0:6c:51:08:14:49:3d: 4c:a7:7d:9c:65:0c:65:00:af:c7:06:2e:b4:05:bb: f9:91:d2:c5:5e:95:98:c2:62:a7:38:5f:e4:81:0d: 95:25:a9:36:b0:c1:04:10:0f:0d:36:de:88:32:ba: 4f:38:5c:f7:c5:14:42:85:dc:c4:75:ed:b5:b5:6c: 04:8d:0f:d6:f0:ab:04:c5:c5:bc:f6:ac:da:34:49: 66:70:88:71:b7:42:b2:15:bc:78:80:8e:65:56:ee: 35:c8:4b:22:e3:8b:46:72:e3:1c:00:4c:90:6d:af: f4:57:cc:35:7c:85:88:f8:9b:c8:e8:6a:5e:2b:b6: ad:c3:ba:db:94:d6:40:d5:6d:8d:cb:84:a8:8e:9a: e8:12:d5:21:7c:5c:b7:5c:17:e8:57:64:56:28:fd: 5a:e0:f4:0c:8e:e3:ba:7b:49:c3:bd:26:5e:91:54: 09:a7:c1:25:c4:27:e0:0f:6b:ab:a2:fa:c0:1c:7c: 29:22:9a:ed:76:a6:87:6b:2d:2b:e9:4a:e7:08:8b: 17:81:19:f4:f5:1b:44:d5:78:b8:04:76:9b:0b:d1: 5a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E5:CD:25:CD:38:D9:89:0E:D9:BA:51:A8:9A:9F:6C:4E:9E:83:D6 X509v3 Authority Key Identifier: keyid:74:48:C7:30:A1:05:4D:7F:1E:29:DC:11:95:15:85:DD:11:DE:17:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/dEjHMKEFTX8eKdwRlRWF3RHeF4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEjHMKEFTX8eKdwRlRWF3RHeF4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/77A20CBE5BDC11F0BE617A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.90.0/23 IPv6: 2001:df6:d580::/48 Signature Algorithm: sha256WithRSAEncryption d7:5e:85:ac:d7:bc:50:b6:f2:13:75:1d:fc:0d:69:7b:b0:97: ce:22:55:e7:1c:43:8d:4d:38:a1:c2:11:1e:9f:28:e8:35:c7: 23:6a:e5:6d:04:51:82:bb:f3:67:a8:03:86:da:d9:1d:55:2e: eb:25:42:0f:4d:94:90:30:1a:88:25:1d:52:4f:02:f6:3b:20: 7c:58:99:f5:bb:6f:a7:4f:18:3f:d9:21:1b:7f:1e:93:39:e3: 58:83:f9:17:58:3d:a0:6a:83:04:e1:c5:7b:ab:00:1a:cd:c1: 96:b5:f0:ee:fa:e9:7b:ca:1d:2a:6e:c2:b2:61:41:0e:a9:9a: eb:7b:b5:31:78:3a:b3:73:80:c3:99:8f:2b:09:cc:86:2e:0f: cd:96:ff:69:00:40:fb:68:50:f3:bd:28:a3:41:fd:02:ae:ad: cc:8c:75:01:82:58:ba:a7:90:0d:22:9d:dd:87:46:f2:88:40: e7:70:03:33:ad:70:01:39:0b:b9:28:72:36:05:2e:ec:05:d2: 06:51:ed:4c:99:72:1b:31:76:86:ca:3e:e2:84:47:f7:37:7b: 73:93:93:60:2c:7c:3f:c3:3a:13:d6:9a:d9:95:0d:9e:6d:31: 06:7b:fe:66:f1:f6:c6:ea:12:8f:a5:36:69:62:bb:45:61:cc: 1d:54:60:28 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRjkxMTAvBgNVBAUTKDc0NDhDNzMwQTEwNTREN0YxRTI5REMxMTk1MTU4NURE MTFERTE3ODcwHhcNMjUwNzA4MDkxODExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZjZTI1Mi0yYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmkvO/jtM7pbRTl7pGkU7VKC39wWmdVVMxL4jSf3GK79h06+K/BsUQgUST1M p32cZQxlAK/HBi60Bbv5kdLFXpWYwmKnOF/kgQ2VJak2sMEEEA8NNt6IMrpPOFz3 xRRChdzEde21tWwEjQ/W8KsExcW89qzaNElmcIhxt0KyFbx4gI5lVu41yEsi44tG cuMcAEyQba/0V8w1fIWI+JvI6GpeK7atw7rblNZA1W2Ny4SojproEtUhfFy3XBfo V2RWKP1a4PQMjuO6e0nDvSZekVQJp8ElxCfgD2urovrAHHwpIprtdqaHay0r6Urn CIsXgRn09RtE1Xi4BHabC9FafwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPLlzSXN ONmJDtm6Uaian2xOnoPWMB8GA1UdIwQYMBaAFHRIxzChBU1/HincEZUVhd0R3heH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGOS80RUMyQ0Q3NENG NEYxMUVCQUFCNDA4NEVDNEY5QUUwMi9kRWpITUtFRlRYOGVLZHdSbFJXRjNSSGVG NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RFakhNS0VGVFg4ZUtkd1JsUldGM1JIZUY0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwRjkvNEVDMkNENzRDRjRGMTFFQkFBQjQwODRFQzRGOUFFMDIvNzdBMjBDQkU1 QkRDMTFGMEJFNjE3QTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqFowDwQCAAIwCQMHACABDfbVgDANBgkqhkiG9w0BAQsF AAOCAQEA116FrNe8ULbyE3Ud/A1pe7CXziJV5xxDjU04ocIRHp8o6DXHI2rlbQRR grvzZ6gDhtrZHVUu6yVCD02UkDAaiCUdUk8C9jsgfFiZ9btvp08YP9khG38ekznj WIP5F1g9oGqDBOHFe6sAGs3BlrXw7vrpe8odKm7CsmFBDqma63u1MXg6s3OAw5mP KwnMhi4PzZb/aQBA+2hQ870oo0H9Aq6tzIx1AYJYuqeQDSKd3YdG8ohA53ADM61w ATkLuShyNgUu7AXSBlHtTJlyGzF2hso+4oRH9zd7c5OTYCx8P8M6E9aa2ZUNnm0x Bnv+ZvH2xuoSj6U2aWK7RWHMHVRgKA== -----END CERTIFICATE-----Generated at Mon Jul 21 12:45:59 2025 by rpki-client