$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/65E95D94657111F0A39D1B1AC4F9AE02.roa File: 65E95D94657111F0A39D1B1AC4F9AE02.roa (raw, json) Hash identifier: yZjnuXa3s96DTq5+NtB9imKpO7PSvj4NMeZLILrglAk= Subject key identifier: 4A:B9:F2:4D:2B:DE:F1:6F:0D:2E:FE:68:27:21:F2:31:67:30:0D:85 Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 01F7 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/65E95D94657111F0A39D1B1AC4F9AE02.roa Signing time: Sun 20 Jul 2025 13:56:56 +0000 ROA not before: Sun 20 Jul 2025 13:56:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 149296 IP address blocks: 103.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Jul 20 13:56:56 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=687cf5a8-2dd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:04:55:2b:4b:c9:34:53:6a:d2:21:71:9a: 57:09:5e:f0:41:dd:a9:b8:2a:b0:e4:b9:ca:cd:6f: ac:7d:df:cf:bd:a4:96:19:2a:f1:e6:c9:cc:19:c6: 1c:ec:cc:c6:0d:de:8f:8d:f4:67:98:a9:ae:58:b8: 6b:1a:a0:d6:37:e1:44:d3:84:06:06:9a:db:f0:60: 03:e4:28:70:b7:ff:dc:f9:40:b2:c2:ff:83:45:3e: 5e:fb:72:af:06:ee:1e:25:41:b4:fe:65:59:80:95: 51:c8:74:4f:ac:26:1b:13:e6:0e:9c:51:8d:6a:85: a8:98:4f:da:0b:9b:3f:da:ee:ae:4a:0e:dd:8f:49: 37:39:b2:d3:61:72:c6:7a:fa:4d:63:6e:39:5c:b7: 34:25:c3:bb:12:d5:ad:3a:a3:b7:78:76:9d:60:82: b6:5a:05:9a:59:c8:f5:4b:e3:55:6b:22:ef:f4:de: 35:cf:92:3f:41:07:ee:f0:53:2e:b8:35:f8:dd:e4: 47:0b:72:eb:2e:4b:9a:7b:7f:26:91:91:cf:45:53: e2:9d:f1:55:65:29:89:ef:40:0c:bc:41:79:e1:3e: a9:bb:10:57:5c:7f:14:cc:58:9a:b0:0d:6d:d5:19: 70:e3:e0:fa:93:9e:94:09:b8:de:f7:74:c7:8c:f3: 0c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B9:F2:4D:2B:DE:F1:6F:0D:2E:FE:68:27:21:F2:31:67:30:0D:85 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/65E95D94657111F0A39D1B1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:d2:01:6f:c5:8e:3e:d9:5e:7b:00:36:b1:c0:42:ab:62:68: e1:dc:e9:86:11:e7:9f:60:72:44:26:f5:a3:28:4e:a0:a4:e4: 29:b6:81:4d:6e:aa:98:c1:c5:08:40:f6:9a:8c:83:0a:4e:85: e0:66:cf:91:88:9a:ff:de:9f:4e:70:e6:1f:63:bb:fa:94:86: 6b:78:5b:ce:f9:eb:02:a7:16:5d:fe:c1:f6:86:f7:c6:84:eb: a9:c6:be:10:1f:3d:43:71:06:66:5e:7e:e6:61:e3:37:7a:6d: 5a:01:a0:33:0a:31:b5:b2:5b:6d:c6:23:22:68:d4:bd:2b:f2: 53:e1:3f:32:02:3d:cd:68:76:20:23:ea:c7:ba:9e:b5:56:af: 7f:43:e2:21:aa:f2:76:9f:81:25:fb:48:b8:00:38:7d:6b:44: 9d:63:35:c4:ca:31:27:f9:b8:34:13:76:af:22:08:93:32:21: 29:af:12:8e:bf:9b:23:68:52:c8:45:70:e3:17:7b:56:f6:03: c4:e3:63:1b:3a:04:54:55:e6:fe:38:02:d9:0c:4b:45:bc:08: bb:66:46:cd:a9:a9:b6:a7:2e:ea:95:12:bc:46:29:c8:10:80: 20:11:b9:7a:66:ea:3d:10:32:00:de:51:88:9e:35:e9:95:9a: 68:df:90:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUwNzIwMTM1NjU2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdjZjVhOC0yZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqwEVStLyTRTatIhcZpXCV7wQd2puCqw5LnKzW+sfd/PvaSWGSrx5snMGcYc 7MzGDd6PjfRnmKmuWLhrGqDWN+FE04QGBprb8GAD5Chwt//c+UCywv+DRT5e+3Kv Bu4eJUG0/mVZgJVRyHRPrCYbE+YOnFGNaoWomE/aC5s/2u6uSg7dj0k3ObLTYXLG evpNY245XLc0JcO7EtWtOqO3eHadYIK2WgWaWcj1S+NVayLv9N41z5I/QQfu8FMu uDX43eRHC3LrLkuae38mkZHPRVPinfFVZSmJ70AMvEF54T6puxBXXH8UzFiasA1t 1Rlw4+D6k56UCbje93THjPMMKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEq58k0r 3vFvDS7+aCch8jFnMA2FMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvNjVFOTVEOTQ2 NTcxMTFGMEEzOUQxQjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYAEwDQYJKoZIhvcNAQELBQADggEBAC/SAW/Fjj7ZXnsA NrHAQqtiaOHc6YYR559gckQm9aMoTqCk5Cm2gU1uqpjBxQhA9pqMgwpOheBmz5GI mv/en05w5h9ju/qUhmt4W8756wKnFl3+wfaG98aE66nGvhAfPUNxBmZefuZh4zd6 bVoBoDMKMbWyW23GIyJo1L0r8lPhPzICPc1odiAj6se6nrVWr39D4iGq8nafgSX7 SLgAOH1rRJ1jNcTKMSf5uDQTdq8iCJMyISmvEo6/myNoUshFcOMXe1b2A8TjYxs6 BFRV5v44AtkMS0W8CLtmRs2pqbanLuqVErxGKcgQgCARuXpm6j0QMgDeUYieNemV mmjfkLI= -----END CERTIFICATE-----Generated at Mon Jul 21 13:26:20 2025 by rpki-client