$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/C2B9483E5BDC11F0AA574A7AC4F9AE02.roa File: C2B9483E5BDC11F0AA574A7AC4F9AE02.roa (raw, json) Hash identifier: ex+WlMFyVtiheikj5CcskwxC1bY5wSTJhW1aaMBV/nE= Subject key identifier: 22:9D:80:4C:8E:F5:75:B6:84:E2:EB:CF:AD:80:79:F8:1A:3A:5B:44 Certificate issuer: /CN=A915A0F9/serialNumber=7448C730A1054D7F1E29DC11951585DD11DE1787 Certificate serial: 05D8 Authority key identifier: 74:48:C7:30:A1:05:4D:7F:1E:29:DC:11:95:15:85:DD:11:DE:17:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEjHMKEFTX8eKdwRlRWF3RHeF4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/C2B9483E5BDC11F0AA574A7AC4F9AE02.roa Signing time: Tue 08 Jul 2025 09:20:17 +0000 ROA not before: Tue 08 Jul 2025 09:20:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138998 IP address blocks: 103.168.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/dEjHMKEFTX8eKdwRlRWF3RHeF4c.crl rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/dEjHMKEFTX8eKdwRlRWF3RHeF4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEjHMKEFTX8eKdwRlRWF3RHeF4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0F9, serialNumber=7448C730A1054D7F1E29DC11951585DD11DE1787 Validity Not Before: Jul 8 09:20:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=686ce2d0-22d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:27:0d:af:e3:36:c1:1a:2c:a3:5b:e4:ef: d2:3a:0b:5d:f3:f6:d4:4d:5b:c7:47:26:60:d3:f0: 67:ea:7e:15:0e:d4:26:41:05:8d:aa:0a:42:35:81: b5:e1:39:2f:af:b9:5b:26:c6:e8:fd:94:ac:37:d0: ca:c4:f9:92:c2:ae:7c:80:f2:e3:9e:92:fc:3e:8f: 25:a8:f7:63:3f:16:47:de:06:a9:78:e6:33:6e:e9: 70:04:99:c6:a6:2f:78:08:70:f2:33:57:8a:83:e1: b7:f5:21:40:be:d4:10:a9:9a:0c:0e:34:47:46:40: d3:52:d6:78:38:aa:05:82:8a:35:20:0b:c3:86:1f: e4:9a:9c:97:a7:d7:20:54:58:4a:72:66:a7:15:5a: de:d5:d6:31:af:44:cc:cd:08:4f:76:6f:1a:8c:15: 5c:86:7a:a3:7d:93:9a:61:47:4b:8e:52:f7:6c:39: 72:d3:0c:ef:36:20:52:13:6c:60:43:87:d3:18:0a: 2c:97:69:d2:b1:89:ce:e0:50:a7:be:d9:41:77:bd: 59:8c:5e:a8:47:76:7f:8d:b0:19:7b:e5:0a:59:79: ed:92:de:70:62:fe:b0:b4:52:ad:ce:4b:22:f7:64: 23:1d:80:69:1c:61:a3:90:98:c4:ef:89:e8:47:fb: ea:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9D:80:4C:8E:F5:75:B6:84:E2:EB:CF:AD:80:79:F8:1A:3A:5B:44 X509v3 Authority Key Identifier: keyid:74:48:C7:30:A1:05:4D:7F:1E:29:DC:11:95:15:85:DD:11:DE:17:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/dEjHMKEFTX8eKdwRlRWF3RHeF4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEjHMKEFTX8eKdwRlRWF3RHeF4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0F9/4EC2CD74CF4F11EBAAB4084EC4F9AE02/C2B9483E5BDC11F0AA574A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.91.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:49:fc:47:29:be:b3:f3:f8:14:99:b7:93:92:52:14:fd:0b: 00:3a:91:bd:cb:ef:4d:a7:0e:69:74:ad:d4:1c:7a:43:b4:c1: dc:55:16:66:a3:59:7a:78:1a:5d:5c:9d:18:ee:9a:04:28:32: 5c:23:9d:9b:74:8b:96:30:c6:e4:d0:d0:53:74:eb:88:5e:d1: ad:46:0b:91:48:7a:c4:08:3b:ae:fd:4d:86:a5:32:1d:d8:12: fc:33:7f:5d:32:b3:f3:39:9b:9a:41:b8:42:05:d1:58:db:6f: 27:26:e7:06:3e:00:69:f4:11:34:4e:14:c4:44:c7:02:0c:89: 21:ea:d1:d8:69:1a:d1:a6:b3:3b:1b:67:78:be:48:fd:39:52: 85:81:ae:49:f1:9f:b9:77:a2:c8:81:ce:92:44:b9:c9:92:0d: 42:43:4d:1f:42:76:4e:d0:15:31:33:81:88:a5:ec:11:26:c0: bf:e8:e4:87:2d:61:7e:1f:08:57:30:34:70:15:ef:cd:b2:69: a9:cb:5f:2f:6a:8c:63:81:f8:e5:9f:bc:8e:2a:4c:7d:54:db: 72:92:29:50:e1:2e:e0:c0:f9:d4:78:f8:ea:0d:fc:95:14:ec: 25:b2:15:1e:d2:34:6e:e6:33:2e:18:90:8f:9b:6d:89:a8:49: 43:90:89:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRjkxMTAvBgNVBAUTKDc0NDhDNzMwQTEwNTREN0YxRTI5REMxMTk1MTU4NURE MTFERTE3ODcwHhcNMjUwNzA4MDkyMDE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZjZTJkMC0yMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui8nDa/jNsEaLKNb5O/SOgtd8/bUTVvHRyZg0/Bn6n4VDtQmQQWNqgpCNYG1 4Tkvr7lbJsbo/ZSsN9DKxPmSwq58gPLjnpL8Po8lqPdjPxZH3gapeOYzbulwBJnG pi94CHDyM1eKg+G39SFAvtQQqZoMDjRHRkDTUtZ4OKoFgoo1IAvDhh/kmpyXp9cg VFhKcmanFVre1dYxr0TMzQhPdm8ajBVchnqjfZOaYUdLjlL3bDly0wzvNiBSE2xg Q4fTGAosl2nSsYnO4FCnvtlBd71ZjF6oR3Z/jbAZe+UKWXntkt5wYv6wtFKtzksi 92QjHYBpHGGjkJjE74noR/vqAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCKdgEyO 9XW2hOLrz62AefgaOltEMB8GA1UdIwQYMBaAFHRIxzChBU1/HincEZUVhd0R3heH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGOS80RUMyQ0Q3NENG NEYxMUVCQUFCNDA4NEVDNEY5QUUwMi9kRWpITUtFRlRYOGVLZHdSbFJXRjNSSGVG NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RFakhNS0VGVFg4ZUtkd1JsUldGM1JIZUY0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwRjkvNEVDMkNENzRDRjRGMTFFQkFBQjQwODRFQzRGOUFFMDIvQzJCOTQ4M0U1 QkRDMTFGMEFBNTc0QTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqFswDQYJKoZIhvcNAQELBQADggEBAA9J/EcpvrPz+BSZ t5OSUhT9CwA6kb3L702nDml0rdQcekO0wdxVFmajWXp4Gl1cnRjumgQoMlwjnZt0 i5YwxuTQ0FN064he0a1GC5FIesQIO679TYalMh3YEvwzf10ys/M5m5pBuEIF0Vjb bycm5wY+AGn0ETROFMRExwIMiSHq0dhpGtGmszsbZ3i+SP05UoWBrknxn7l3osiB zpJEucmSDUJDTR9Cdk7QFTEzgYil7BEmwL/o5IctYX4fCFcwNHAV782yaanLXy9q jGOB+OWfvI4qTH1U23KSKVDhLuDA+dR4+OoN/JUU7CWyFR7SNG7mMy4YkI+bbYmo SUOQiZU= -----END CERTIFICATE-----Generated at Sun Jul 20 12:31:55 2025 by rpki-client