$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa File: 12F0D72E7BC111EA8503D815C4F9AE02.roa (raw, json) Hash identifier: fVAiyutcaUjImiI/+ZOO2PTga7QNJojrwSKqKhdWN0M= Subject key identifier: 90:C1:B6:3C:2B:CB:32:B4:75:B5:63:38:71:B0:B0:7D:98:16:F5:3A Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E9B Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:38:00 +0000 ROA not before: Tue 02 Sep 2025 18:38:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 2914 IP address blocks: 103.142.140.0/23 maxlen: 23 103.142.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3739 (0xe9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:38:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73988-93a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b6:de:43:4a:40:47:52:82:8f:b7:28:35:59: 41:a7:c8:c9:4c:49:2d:70:5b:3b:27:22:39:4e:f4: 47:42:04:e0:21:54:58:77:dd:cd:de:4f:94:f8:2c: 37:60:68:3a:a0:21:23:fa:d3:ce:5c:09:bd:55:4a: 1b:57:61:fa:62:b3:6a:95:e4:dd:81:6f:18:e8:41: 93:d7:e7:c5:9f:4a:2c:c4:2d:61:2b:ad:f1:0a:67: 88:f3:2f:e8:19:97:ca:da:ab:39:4c:87:e5:45:a9: b5:52:d6:5c:d7:a8:5a:86:52:5d:3a:9b:4d:05:6e: a1:09:61:34:e1:a4:d3:e8:bb:3c:61:d6:1f:4f:11: 27:4b:c9:87:96:a4:c2:87:51:34:17:98:ec:48:85: ef:2c:61:82:c3:40:7c:7c:37:fd:da:8e:53:1f:e3: 88:92:e8:b7:cf:e2:77:49:8a:6f:66:a0:cd:00:d4: d0:31:50:17:9e:d0:51:4d:ce:2c:52:b2:73:ff:a3: 43:48:e0:ae:b0:8b:1a:0f:e5:8e:db:59:68:02:f0: 98:7d:e5:a9:d7:9c:8d:58:38:97:9c:69:ca:6a:68: 00:e6:1f:72:91:a8:8c:79:fe:db:a5:3d:c3:50:07: cf:12:44:d0:7c:0b:d8:d3:4e:7c:86:53:55:76:b2: f3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C1:B6:3C:2B:CB:32:B4:75:B5:63:38:71:B0:B0:7D:98:16:F5:3A X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.140.0/23 Signature Algorithm: sha256WithRSAEncryption 88:8c:6a:ba:9a:7a:19:ca:bf:12:29:56:4c:d0:1a:0b:77:21: bf:00:30:84:0d:46:fd:41:fe:1b:71:14:a7:32:ba:35:c8:56: 82:dc:a1:64:26:9c:09:d0:7d:ce:44:99:ff:a0:4c:97:a3:60: 6c:a6:37:39:a1:17:b9:22:64:3f:98:40:19:40:82:41:10:0a: 97:b0:0c:31:9a:d3:3c:86:6d:01:e9:a8:4a:d2:34:c8:60:f0: 43:cc:70:52:75:3f:24:62:f2:c9:25:ed:8f:e1:52:3c:1b:90: 1d:00:5b:5c:e0:91:59:eb:f1:32:22:61:04:d1:d6:92:3e:96: 8a:5b:4b:c1:8e:92:b4:3f:9e:0b:de:22:88:0c:ba:53:ec:93: ae:82:68:f9:58:f0:3d:6b:a0:d3:65:a5:db:04:56:eb:84:ed: a6:2f:46:49:fb:bf:89:9a:93:18:cb:a9:5c:72:94:92:c3:67: 53:5e:96:98:5b:25:13:4c:b7:b4:95:e8:8d:d2:b3:34:80:b2: 18:90:2c:bb:0a:b2:ef:59:4e:48:ec:8b:3e:7e:bf:1d:28:b3: b7:90:25:6a:3c:b3:c1:f4:25:ba:5a:39:16:91:83:2d:f0:d0: 1f:bd:dd:5b:2f:68:73:63:c4:26:23:a4:23:39:1e:44:4f:03: 87:5a:20:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzODAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4OC05M2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprbeQ0pAR1KCj7coNVlBp8jJTEktcFs7JyI5TvRHQgTgIVRYd93N3k+U+Cw3 YGg6oCEj+tPOXAm9VUobV2H6YrNqleTdgW8Y6EGT1+fFn0osxC1hK63xCmeI8y/o GZfK2qs5TIflRam1UtZc16hahlJdOptNBW6hCWE04aTT6Ls8YdYfTxEnS8mHlqTC h1E0F5jsSIXvLGGCw0B8fDf92o5TH+OIkui3z+J3SYpvZqDNANTQMVAXntBRTc4s UrJz/6NDSOCusIsaD+WO21loAvCYfeWp15yNWDiXnGnKamgA5h9ykaiMef7bpT3D UAfPEkTQfAvY0058hlNVdrLzxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJDBtjwr yzK0dbVjOHGwsH2YFvU6MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMTJGMEQ3MkU3 QkMxMTFFQTg1MDNEODE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjowwDQYJKoZIhvcNAQELBQADggEBAIiMarqaehnKvxIp VkzQGgt3Ib8AMIQNRv1B/htxFKcyujXIVoLcoWQmnAnQfc5Emf+gTJejYGymNzmh F7kiZD+YQBlAgkEQCpewDDGa0zyGbQHpqErSNMhg8EPMcFJ1PyRi8skl7Y/hUjwb kB0AW1zgkVnr8TIiYQTR1pI+lopbS8GOkrQ/ngveIogMulPsk66CaPlY8D1roNNl pdsEVuuE7aYvRkn7v4makxjLqVxylJLDZ1NelphbJRNMt7SV6I3SszSAshiQLLsK su9ZTkjsiz5+vx0os7eQJWo8s8H0JbpaORaRgy3w0B+93VsvaHNjxCYjpCM5HkRP A4daIFI= -----END CERTIFICATE-----Generated at Thu Sep 4 08:45:23 2025 by rpki-client