$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/085B4576C35711EC9F5ADC3DC4F9AE02.roa File: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (raw, json) Hash identifier: LJ768Cu3JxipfpTsVr1alEqz1iSEePAZhcCKQ/8p8EU= Subject key identifier: 65:3F:9E:1E:FC:60:70:4E:15:72:0B:06:6B:6B:45:CB:D4:83:57:92 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0EFF Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/085B4576C35711EC9F5ADC3DC4F9AE02.roa Signing time: Wed 16 Jul 2025 17:56:44 +0000 ROA not before: Wed 16 Jul 2025 17:56:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58689 IP address blocks: 103.139.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3839 (0xeff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Jul 16 17:56:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6877e7db-2db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a3:c9:30:0b:ab:e0:e9:d8:d7:ca:e3:7c:b6: ae:d8:5e:45:1d:84:fc:f6:5a:ed:88:c7:51:b5:1f: e7:4d:1c:6c:cc:33:39:c7:7b:90:65:e0:e4:90:4e: 26:0b:d6:11:62:3f:bf:3e:fe:23:40:fb:23:22:c2: 11:36:0c:e2:90:b2:df:c5:37:11:ce:44:49:d6:bd: 0b:29:5e:1e:aa:f4:8a:b2:de:22:bf:10:99:e7:7a: 31:43:64:9f:1b:22:ef:dc:67:33:d5:34:28:1d:a3: 03:98:19:e9:c2:78:4d:2a:c6:0b:75:7f:f5:d0:13: 24:66:d4:cb:2e:b3:78:c8:f0:12:9e:30:4f:95:3a: 6a:48:6b:b9:43:c6:f0:f4:8a:19:66:ba:0d:a8:89: 67:1d:80:7a:05:94:d5:00:d0:8f:84:a4:9e:7d:11: 7b:56:7c:91:54:c1:5c:42:be:29:77:10:66:19:65: c1:08:20:2b:eb:71:64:b2:ee:ce:43:71:66:3b:47: 68:46:07:0c:b4:06:cd:68:a5:6e:5a:9b:99:12:da: de:9e:58:2a:aa:84:73:7e:17:fe:67:06:9e:a9:93: 9e:6d:c4:7a:fa:13:84:54:10:44:19:f3:48:8b:a6: 8d:61:7c:d9:3f:4f:65:c0:da:e1:02:36:71:c5:1f: 14:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3F:9E:1E:FC:60:70:4E:15:72:0B:06:6B:6B:45:CB:D4:83:57:92 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/085B4576C35711EC9F5ADC3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.9.0/24 Signature Algorithm: sha256WithRSAEncryption 12:00:b0:0b:46:b6:38:97:c7:38:8c:ae:34:66:2c:da:a7:f4: d4:a9:04:f4:31:da:4d:08:8c:a9:0d:f5:9b:ed:64:3c:e0:37: e0:64:04:e4:35:8a:1c:77:9f:bc:07:dc:5d:36:7c:72:98:61: cd:12:39:be:63:dc:30:a3:c0:b5:04:7a:22:76:26:71:f7:f5: 23:e3:a2:48:cc:91:a8:6d:8e:f0:38:ae:b8:5d:ed:9d:04:7a: f5:2d:1b:ab:30:bc:2e:14:b8:f8:39:97:8f:68:df:03:78:b8: 95:09:22:89:9e:9d:9c:3b:e6:b4:a0:e2:81:7e:e7:fb:f9:b1: 76:68:a2:62:6d:39:a3:2a:1e:b5:4f:00:c4:94:b5:ca:2d:25: ee:c7:fc:0c:09:3a:0c:d4:53:25:00:ce:6c:44:08:24:3d:6c: 22:7f:0d:81:a0:c4:b5:31:a6:9d:98:6b:85:7d:6b:8c:4f:b3: b9:a6:e0:76:bc:d3:b3:ab:ee:39:60:85:71:d2:2a:06:99:0d: 11:78:f3:bf:7f:4d:8f:5a:7f:1b:68:0d:d8:8c:c1:e4:d4:9f: 43:d7:9b:6c:a8:34:61:88:59:df:2b:9c:1f:02:43:f9:22:60: a8:76:d3:5b:9b:17:f8:8a:58:a6:41:3b:14:e3:f2:68:83:a7: 98:1d:7f:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjUwNzE2MTc1NjQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3ZTdkYi0yZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6PJMAur4OnY18rjfLau2F5FHYT89lrtiMdRtR/nTRxszDM5x3uQZeDkkE4m C9YRYj+/Pv4jQPsjIsIRNgzikLLfxTcRzkRJ1r0LKV4eqvSKst4ivxCZ53oxQ2Sf GyLv3Gcz1TQoHaMDmBnpwnhNKsYLdX/10BMkZtTLLrN4yPASnjBPlTpqSGu5Q8bw 9IoZZroNqIlnHYB6BZTVANCPhKSefRF7VnyRVMFcQr4pdxBmGWXBCCAr63Fksu7O Q3FmO0doRgcMtAbNaKVuWpuZEtrenlgqqoRzfhf+ZwaeqZOebcR6+hOEVBBEGfNI i6aNYXzZP09lwNrhAjZxxR8UfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGU/nh78 YHBOFXILBmtrRcvUg1eSMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE3RDEvOUE5QjQ4QTI4MkEzMTFFOTlFNTgyMzg0QzRGOUFFMDIvMDg1QjQ1NzZD MzU3MTFFQzlGNUFEQzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniwkwDQYJKoZIhvcNAQELBQADggEBABIAsAtGtjiXxziM rjRmLNqn9NSpBPQx2k0IjKkN9ZvtZDzgN+BkBOQ1ihx3n7wH3F02fHKYYc0SOb5j 3DCjwLUEeiJ2JnH39SPjokjMkahtjvA4rrhd7Z0EevUtG6swvC4UuPg5l49o3wN4 uJUJIomenZw75rSg4oF+5/v5sXZoomJtOaMqHrVPAMSUtcotJe7H/AwJOgzUUyUA zmxECCQ9bCJ/DYGgxLUxpp2Ya4V9a4xPs7mm4Ha807Or7jlghXHSKgaZDRF4879/ TY9afxtoDdiMweTUn0PXm2yoNGGIWd8rnB8CQ/kiYKh201ubF/iKWKZBOxTj8miD p5gdf94= -----END CERTIFICATE-----Generated at Sun Jul 20 14:33:11 2025 by rpki-client