$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa File: B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa (raw, json) Hash identifier: PAK/TxIr+dmrK+KiwHQ68OGXOTg91fc22TNBIvKrGx0= Subject key identifier: 30:4A:A9:78:F3:34:8F:12:B9:0F:E4:1E:41:B5:3D:ED:78:A8:9A:9B Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0EA0 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:38:06 +0000 ROA not before: Tue 02 Sep 2025 18:38:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 60024 IP address blocks: 103.142.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:38:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7398e-1bba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:88:e0:6f:0f:20:6e:4a:90:c3:c3:9a:87:a8: 38:e2:6d:b0:ea:d1:d5:b3:44:62:15:e7:8c:80:9c: 22:1c:39:c3:9d:fb:36:ac:3e:8d:e0:c0:b6:6c:b6: 94:7f:18:31:0f:ea:28:e9:7b:5e:b6:f5:fc:a4:9b: 5d:f5:09:97:ee:78:ba:9c:25:e2:08:63:f0:65:5e: 4a:fc:58:2c:e7:08:d4:b2:62:14:b4:0d:d8:37:90: f3:71:ea:e9:c5:fb:93:41:58:db:7f:74:4e:1c:60: eb:5d:c8:e8:08:e6:78:17:bc:8a:68:87:35:0e:1b: 95:b8:da:ca:27:82:38:8c:ae:fa:d1:11:3c:cf:fb: c1:f5:4c:ee:5c:63:22:67:d6:8b:11:de:8f:78:18: 9e:e5:bd:55:82:c3:79:4b:06:a6:63:03:7a:2a:a0: 5b:01:b4:1d:ed:01:ff:08:4e:b6:7c:7e:b9:a5:4d: ef:6a:9d:21:24:95:df:4e:04:59:d1:f7:51:c7:ef: f1:af:f5:05:49:d0:6d:5a:07:93:4e:30:c7:6a:a8: eb:ed:46:82:dd:9d:fb:dd:8d:7f:6f:18:64:2e:21: ff:f3:5b:bd:6f:03:64:87:b0:a0:06:8f:92:cc:ea: b0:e3:e5:4c:ad:d3:0f:f6:89:e4:1c:9b:41:a2:f4: fd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:4A:A9:78:F3:34:8F:12:B9:0F:E4:1E:41:B5:3D:ED:78:A8:9A:9B X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.140.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:15:72:11:ef:76:80:c2:0f:e2:1a:d0:ec:a2:e8:59:8d:4b: f3:48:3d:19:a7:c7:66:19:6b:ef:36:70:6e:15:45:25:54:8c: 51:a1:88:26:9a:3a:36:51:df:05:37:e3:ec:09:89:bc:8c:f0: 11:f7:c9:c5:46:c7:73:c7:49:8c:40:d9:ab:32:2e:73:fa:e1: 0a:1a:e1:01:9e:f2:16:62:eb:9b:b0:f9:21:4a:c4:3e:9c:fd: 4b:4f:e1:33:ef:55:ec:e7:14:82:90:3d:dd:93:d7:bf:01:d6: 9a:62:a0:9b:6c:c1:8b:01:f2:94:bf:47:d8:74:1a:cf:17:4d: dd:8a:49:a3:05:02:f3:7a:0c:f8:60:75:54:f7:8c:ee:63:16: eb:9e:4b:2e:41:5c:64:36:a0:3e:89:4f:7b:04:3b:ac:16:98: d7:8b:23:18:90:1e:da:42:ad:59:2f:d9:c3:0b:a7:e1:6f:36: c4:9d:5e:d6:4a:72:c1:f0:63:fe:e6:9d:48:f4:9f:e7:80:2c: 96:21:0c:2b:ac:27:8f:df:1e:7c:ae:af:7c:39:93:29:b8:72: 74:9f:8c:3a:7a:79:26:47:08:f7:12:2c:8e:75:90:47:36:0b: 23:f3:0a:25:56:89:f6:e2:ba:d7:de:6d:c9:c6:c1:4c:bd:6a: 57:b2:42:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzODA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4ZS0xYmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14jgbw8gbkqQw8Oah6g44m2w6tHVs0RiFeeMgJwiHDnDnfs2rD6N4MC2bLaU fxgxD+oo6XtetvX8pJtd9QmX7ni6nCXiCGPwZV5K/Fgs5wjUsmIUtA3YN5Dzcerp xfuTQVjbf3ROHGDrXcjoCOZ4F7yKaIc1DhuVuNrKJ4I4jK760RE8z/vB9UzuXGMi Z9aLEd6PeBie5b1VgsN5SwamYwN6KqBbAbQd7QH/CE62fH65pU3vap0hJJXfTgRZ 0fdRx+/xr/UFSdBtWgeTTjDHaqjr7UaC3Z373Y1/bxhkLiH/81u9bwNkh7CgBo+S zOqw4+VMrdMP9onkHJtBovT9/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDBKqXjz NI8SuQ/kHkG1Pe14qJqbMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvQjZBN0Q2RkND QUVBMTFFRThFMUIyRDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjowwDQYJKoZIhvcNAQELBQADggEBAHwVchHvdoDCD+Ia 0Oyi6FmNS/NIPRmnx2YZa+82cG4VRSVUjFGhiCaaOjZR3wU34+wJibyM8BH3ycVG x3PHSYxA2asyLnP64Qoa4QGe8hZi65uw+SFKxD6c/UtP4TPvVeznFIKQPd2T178B 1ppioJtswYsB8pS/R9h0Gs8XTd2KSaMFAvN6DPhgdVT3jO5jFuueSy5BXGQ2oD6J T3sEO6wWmNeLIxiQHtpCrVkv2cMLp+FvNsSdXtZKcsHwY/7mnUj0n+eALJYhDCus J4/fHnyur3w5kym4cnSfjDp6eSZHCPcSLI51kEc2CyPzCiVWifbiutfebcnGwUy9 aleyQrU= -----END CERTIFICATE-----Generated at Thu Sep 4 10:30:28 2025 by rpki-client