$ rpki-client -vvf rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/CD23AE8C403011EEA773CE47C4F9AE02.roa File: CD23AE8C403011EEA773CE47C4F9AE02.roa (raw, json) Hash identifier: QHxe/wWqzwNVIDLAM9edUwMUGE9Cp2KpjH57VB1iuhs= Subject key identifier: C7:E7:E7:0E:A6:EF:1C:35:71:FA:C3:BA:FC:F2:FE:DD:22:2C:E9:78 Certificate issuer: /CN=A91896D4/serialNumber=4AB7079A9699D2AB9D68DE4AE4327C40BB2C50DB Certificate serial: 0205 Authority key identifier: 4A:B7:07:9A:96:99:D2:AB:9D:68:DE:4A:E4:32:7C:40:BB:2C:50:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/CD23AE8C403011EEA773CE47C4F9AE02.roa Signing time: Tue 15 Jul 2025 03:09:25 +0000 ROA not before: Tue 15 Jul 2025 03:09:25 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134424 IP address blocks: 103.167.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.crl rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91896D4, serialNumber=4AB7079A9699D2AB9D68DE4AE4327C40BB2C50DB Validity Not Before: Jul 15 03:09:25 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6875c665-2d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8a:4b:a5:00:0b:f0:bd:a4:82:0a:47:31:aa: 68:9d:d1:94:dc:ea:d2:5e:46:53:96:83:29:e5:8a: 09:69:82:68:97:48:c2:52:01:27:27:34:16:8e:22: a0:97:1e:b5:7b:ec:a6:30:2f:7e:84:91:00:f0:04: 0b:2c:cc:fb:19:91:f0:28:b3:04:e7:08:0b:72:c2: 65:c5:3b:ae:7c:b0:0a:2f:b6:aa:6f:ed:86:da:64: fd:86:74:2a:15:c6:b1:10:c8:77:08:b4:01:6f:75: f3:d0:03:ff:b0:42:9e:7f:21:b0:62:c7:f0:db:22: 1d:a9:f4:a2:f8:c4:8f:dc:66:f1:69:fe:4f:df:fc: 03:3c:ca:d7:da:9f:13:6b:7d:dd:1b:6f:92:fb:de: b4:9b:9d:be:f6:7d:7a:2c:fc:f9:a7:59:d4:ee:c6: 27:b6:03:bb:62:59:bd:f5:62:43:c6:07:6f:f3:3c: 23:30:b1:93:25:c3:0c:7a:9f:ec:a0:e5:f3:58:fd: 72:2b:fa:fc:37:61:52:75:a6:97:4a:85:12:38:df: 33:5e:25:70:0a:d8:9a:84:aa:2e:44:02:61:82:11: 80:53:b3:c4:c9:bc:97:95:5c:99:02:e3:a6:45:9c: c6:4d:06:4d:ef:a8:21:c7:a7:b4:58:49:63:09:6c: 47:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E7:E7:0E:A6:EF:1C:35:71:FA:C3:BA:FC:F2:FE:DD:22:2C:E9:78 X509v3 Authority Key Identifier: keyid:4A:B7:07:9A:96:99:D2:AB:9D:68:DE:4A:E4:32:7C:40:BB:2C:50:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/CD23AE8C403011EEA773CE47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.209.0/24 Signature Algorithm: sha256WithRSAEncryption 93:2d:d7:02:18:29:6b:82:02:12:78:42:21:d1:fd:fc:ca:5e: c9:dd:5e:e3:94:7c:36:e8:f7:f2:d7:61:06:83:dd:3f:76:62: 9a:a9:0e:00:7b:d6:4f:b4:56:64:09:bf:77:eb:04:1a:ff:04: 49:c8:d0:05:6b:58:eb:45:52:06:a2:ec:8e:b6:2e:06:54:59: 3a:69:fd:78:67:b2:aa:61:17:99:35:ef:ec:51:d9:34:3d:1d: 79:83:48:63:17:64:5f:79:dc:17:48:00:04:29:a2:56:1b:90: 0a:54:f9:13:61:e3:b5:29:02:b6:02:9a:53:f8:d6:6c:dd:f6: 1f:14:22:eb:67:47:0a:27:8e:c6:78:c3:5e:2c:0b:08:5a:e5: be:f2:62:d3:3b:2f:8e:44:84:89:9a:fa:4d:c4:ee:32:78:3a: f2:11:f6:1b:b8:9c:5f:b7:22:31:35:10:44:e2:e3:02:b7:55: 87:40:46:de:f5:b9:5d:c0:41:3c:1c:c6:50:eb:8e:c5:96:d0: a0:0c:46:c6:1e:3e:06:cf:4d:f3:45:64:a2:32:80:04:c7:0e: d5:52:b2:e9:21:4a:ee:2b:df:4b:6c:a9:2b:6d:9f:74:74:df: 8e:35:bf:43:eb:6b:02:55:b0:da:cc:13:ea:3c:7f:7a:03:b0: 21:5d:c8:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk2RDQxMTAvBgNVBAUTKDRBQjcwNzlBOTY5OUQyQUI5RDY4REU0QUU0MzI3QzQw QkIyQzUwREIwHhcNMjUwNzE1MDMwOTI1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1YzY2NS0yZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44pLpQAL8L2kggpHMapondGU3OrSXkZTloMp5YoJaYJol0jCUgEnJzQWjiKg lx61e+ymMC9+hJEA8AQLLMz7GZHwKLME5wgLcsJlxTuufLAKL7aqb+2G2mT9hnQq FcaxEMh3CLQBb3Xz0AP/sEKefyGwYsfw2yIdqfSi+MSP3Gbxaf5P3/wDPMrX2p8T a33dG2+S+960m52+9n16LPz5p1nU7sYntgO7Ylm99WJDxgdv8zwjMLGTJcMMep/s oOXzWP1yK/r8N2FSdaaXSoUSON8zXiVwCtiahKouRAJhghGAU7PEybyXlVyZAuOm RZzGTQZN76ghx6e0WEljCWxHQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMfn5w6m 7xw1cfrDuvzy/t0iLOl4MB8GA1UdIwQYMBaAFEq3B5qWmdKrnWjeSuQyfEC7LFDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTZENC81RTlFNjQzNDdC OTYxMUVEOEJERkUzMTFDNEY5QUUwMi9TcmNIbXBhWjBxdWRhTjVLNURKOFFMc3NV TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyY0htcGFaMHF1ZGFONUs1REo4UUxzc1VOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODk2RDQvNUU5RTY0MzQ3Qjk2MTFFRDhCREZFMzExQzRGOUFFMDIvQ0QyM0FFOEM0 MDMwMTFFRUE3NzNDRTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnp9EwDQYJKoZIhvcNAQELBQADggEBAJMt1wIYKWuCAhJ4 QiHR/fzKXsndXuOUfDbo9/LXYQaD3T92YpqpDgB71k+0VmQJv3frBBr/BEnI0AVr WOtFUgai7I62LgZUWTpp/XhnsqphF5k17+xR2TQ9HXmDSGMXZF953BdIAAQpolYb kApU+RNh47UpArYCmlP41mzd9h8UIutnRwonjsZ4w14sCwha5b7yYtM7L45EhIma +k3E7jJ4OvIR9hu4nF+3IjE1EETi4wK3VYdARt71uV3AQTwcxlDrjsWW0KAMRsYe PgbPTfNFZKIygATHDtVSsukhSu4r30tsqSttn3R03441v0PrawJVsNrME+o8f3oD sCFdyAI= -----END CERTIFICATE-----Generated at Sun Jul 20 21:49:05 2025 by rpki-client