$ rpki-client -vvf rpki.apnic.net/member_repository/A917A53A/4E6BC66A592011EFA560004EC4F9AE02/ACDAB45E592011EF976B8A1BC4F9AE02.roa File: ACDAB45E592011EF976B8A1BC4F9AE02.roa (raw, json) Hash identifier: 7CSmGMxiJ/eyVM8Zl9g1/yXgrxIsImTrO2e6GsEs7/Y= Subject key identifier: 48:E3:A5:0D:B9:F0:DF:33:81:7C:6C:48:D7:5E:85:82:01:67:DC:7D Certificate issuer: /CN=A917A53A/serialNumber=594BD143BF72388DA2A5CB64BBC3910888F64DC5 Certificate serial: B0 Authority key identifier: 59:4B:D1:43:BF:72:38:8D:A2:A5:CB:64:BB:C3:91:08:88:F6:4D:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WUvRQ79yOI2ipctku8ORCIj2TcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A53A/4E6BC66A592011EFA560004EC4F9AE02/ACDAB45E592011EF976B8A1BC4F9AE02.roa Signing time: Wed 09 Jul 2025 07:13:26 +0000 ROA not before: Wed 09 Jul 2025 07:13:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133952 IP address blocks: 103.90.80.0/24 maxlen: 24 103.90.81.0/24 maxlen: 24 103.90.82.0/24 maxlen: 24 103.90.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A53A/4E6BC66A592011EFA560004EC4F9AE02/WUvRQ79yOI2ipctku8ORCIj2TcU.crl rsync://rpki.apnic.net/member_repository/A917A53A/4E6BC66A592011EFA560004EC4F9AE02/WUvRQ79yOI2ipctku8ORCIj2TcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WUvRQ79yOI2ipctku8ORCIj2TcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 06:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A53A, serialNumber=594BD143BF72388DA2A5CB64BBC3910888F64DC5 Validity Not Before: Jul 9 07:13:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=686e1696-ac2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b2:88:1c:f8:2a:32:9a:27:bb:c2:77:2b:c6: 74:ef:e6:67:f3:11:9f:91:d4:56:5c:85:fd:3d:24: d7:a5:f1:35:8b:bd:df:7b:d6:d0:e1:67:52:f3:40: ce:a2:ab:86:f9:6c:47:e6:e9:64:b2:be:3b:2b:f3: 27:71:b2:f4:49:21:52:84:c4:25:45:2a:60:6b:1d: 25:ec:31:ff:93:eb:a2:0e:47:7e:0f:d2:1e:d2:95: 71:9c:52:2c:d5:c3:2c:10:fc:b3:82:ed:9b:0f:24: 9c:07:c6:60:d5:4a:3b:37:5b:57:be:da:e9:74:59: 95:21:59:87:0e:4c:f0:b2:eb:84:84:75:f3:94:9d: 38:0d:ba:5a:9b:b3:db:26:66:51:d2:1b:d8:0f:a4: 91:b4:f3:e4:bf:b8:1a:39:cb:af:5f:92:90:34:74: c1:4f:98:c8:6c:46:08:8a:f5:b4:0b:06:c7:67:a6: ba:d2:3e:a0:ce:a7:5c:b3:f7:76:c1:a8:b1:6e:d5: 12:38:03:a1:ec:76:74:4f:27:74:47:d7:62:af:0c: ef:f8:3b:56:97:58:25:a7:00:26:36:1b:35:8d:09: 33:37:e0:7c:f6:d1:70:c1:e1:b9:85:2a:15:6a:07: ac:26:ab:ab:18:c1:02:63:56:ce:a5:ee:e1:86:e3: 2e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E3:A5:0D:B9:F0:DF:33:81:7C:6C:48:D7:5E:85:82:01:67:DC:7D X509v3 Authority Key Identifier: keyid:59:4B:D1:43:BF:72:38:8D:A2:A5:CB:64:BB:C3:91:08:88:F6:4D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A53A/4E6BC66A592011EFA560004EC4F9AE02/WUvRQ79yOI2ipctku8ORCIj2TcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WUvRQ79yOI2ipctku8ORCIj2TcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A53A/4E6BC66A592011EFA560004EC4F9AE02/ACDAB45E592011EF976B8A1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.80.0/22 Signature Algorithm: sha256WithRSAEncryption e2:e0:4b:69:09:f7:b7:39:46:6f:97:cf:a3:8d:d4:b7:cb:c9: 58:74:b4:9d:19:d7:ec:5f:3e:6d:a4:51:0e:72:fd:a4:c9:19: d1:9f:cc:65:a2:68:a7:e1:38:9a:b1:17:d6:40:df:3a:95:ef: eb:76:cd:3f:8e:93:13:83:71:3e:86:59:8f:75:cb:0a:9a:2b: 6c:c7:5b:2a:1d:80:ea:a4:49:9e:1e:12:a2:6b:48:de:b0:45: 42:19:17:ee:8f:c6:7a:ab:ea:b6:17:f3:05:79:c0:b1:c8:1f: 66:f6:3e:d4:cb:20:87:08:17:cd:45:05:c4:62:a2:e4:c1:2d: f1:d7:5b:7f:41:5e:42:94:20:7a:d1:bf:63:93:43:d7:a4:9b: c1:ee:5b:e5:52:11:3d:24:ca:9c:5c:5b:2c:ed:3e:85:9b:1f: 60:83:b0:32:f2:4a:92:74:10:09:0a:dd:de:2d:1b:65:1e:cb: da:8d:83:94:71:99:8a:b6:8b:18:b4:06:a0:48:b2:ab:8b:30: 8d:2a:f3:12:20:30:91:d4:91:60:89:d6:6e:08:20:85:27:b8: 0c:1a:b2:20:a4:03:00:1a:16:2d:ab:0b:b3:09:15:fc:b8:ff: ff:f4:5a:26:8c:73:d2:e5:e3:64:1d:56:fa:fa:5a:e0:f1:cf: a5:c8:21:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E1M0ExMTAvBgNVBAUTKDU5NEJEMTQzQkY3MjM4OERBMkE1Q0I2NEJCQzM5MTA4 ODhGNjREQzUwHhcNMjUwNzA5MDcxMzI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZlMTY5Ni1hYzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorKIHPgqMponu8J3K8Z07+Zn8xGfkdRWXIX9PSTXpfE1i73fe9bQ4WdS80DO oquG+WxH5ulksr47K/MncbL0SSFShMQlRSpgax0l7DH/k+uiDkd+D9Ie0pVxnFIs 1cMsEPyzgu2bDyScB8Zg1Uo7N1tXvtrpdFmVIVmHDkzwsuuEhHXzlJ04Dbpam7Pb JmZR0hvYD6SRtPPkv7gaOcuvX5KQNHTBT5jIbEYIivW0CwbHZ6a60j6gzqdcs/d2 waixbtUSOAOh7HZ0Tyd0R9dirwzv+DtWl1glpwAmNhs1jQkzN+B89tFwweG5hSoV agesJqurGMECY1bOpe7hhuMumwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEjjpQ25 8N8zgXxsSNdehYIBZ9x9MB8GA1UdIwQYMBaAFFlL0UO/cjiNoqXLZLvDkQiI9k3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTUzQS80RTZCQzY2QTU5 MjAxMUVGQTU2MDAwNEVDNEY5QUUwMi9XVXZSUTc5eU9JMmlwY3RrdThPUkNJajJU Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dVdlJRNzl5T0kyaXBjdGt1OE9SQ0lqMlRjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E1M0EvNEU2QkM2NkE1OTIwMTFFRkE1NjAwMDRFQzRGOUFFMDIvQUNEQUI0NUU1 OTIwMTFFRjk3NkI4QTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWlAwDQYJKoZIhvcNAQELBQADggEBAOLgS2kJ97c5Rm+X z6ON1LfLyVh0tJ0Z1+xfPm2kUQ5y/aTJGdGfzGWiaKfhOJqxF9ZA3zqV7+t2zT+O kxODcT6GWY91ywqaK2zHWyodgOqkSZ4eEqJrSN6wRUIZF+6Pxnqr6rYX8wV5wLHI H2b2PtTLIIcIF81FBcRiouTBLfHXW39BXkKUIHrRv2OTQ9ekm8HuW+VSET0kypxc WyztPoWbH2CDsDLySpJ0EAkK3d4tG2Uey9qNg5RxmYq2ixi0BqBIsquLMI0q8xIg MJHUkWCJ1m4IIIUnuAwasiCkAwAaFi2rC7MJFfy4///0WiaMc9Ll42QdVvr6WuDx z6XIIas= -----END CERTIFICATE-----Generated at Wed Jul 23 23:29:22 2025 by rpki-client