$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/ABCDCC4EE16711EEA88FAE64C4F9AE02.roa File: ABCDCC4EE16711EEA88FAE64C4F9AE02.roa (raw, json) Hash identifier: +uMy6pf4Gt8KymBYpp9dNbF+7Zqp/sfAyxYpWwI1HYE= Subject key identifier: 3E:B6:75:4A:DA:D2:64:44:58:58:6E:60:1E:3D:74:45:BB:06:94:43 Certificate issuer: /CN=A91ADDD5/serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Certificate serial: 0594 Authority key identifier: FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/ABCDCC4EE16711EEA88FAE64C4F9AE02.roa Signing time: Wed 09 Jul 2025 00:05:04 +0000 ROA not before: Wed 09 Jul 2025 00:05:04 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58955 IP address blocks: 103.78.31.0/24 maxlen: 24 103.169.66.0/23 maxlen: 23 103.169.67.0/24 maxlen: 24 2407:9c40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADDD5, serialNumber=FB112CAD56319BFAACA1AB28CE7BD7F4CB268CE9 Validity Not Before: Jul 9 00:05:04 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686db230-e7e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:85:f3:6c:98:23:06:36:2e:27:8a:74:d9:7f: cf:b8:94:cc:25:aa:6c:29:51:98:81:1a:62:2d:d5: 6e:6c:ad:9e:b9:9a:43:ff:cf:c2:2f:47:46:6e:ca: 93:06:ac:df:1a:a1:2c:24:1a:38:8a:f2:47:63:03: 9b:e6:3f:e9:86:e8:3a:03:d2:1a:b6:9f:53:03:0a: a5:e8:6c:7f:c6:28:eb:e9:ae:fd:4a:9f:79:e3:3f: 3a:8e:79:78:54:5e:ce:2f:67:9d:53:b8:3f:a9:54: d1:ef:4e:15:89:3f:1e:8c:9e:13:26:e9:3c:9b:b5: 2d:ac:f1:75:e2:aa:73:fb:6b:5b:2d:cf:09:32:6b: 4c:df:c8:6c:08:f8:79:aa:a5:ae:57:c0:cf:6c:e7: e3:af:2c:13:dc:15:68:0c:43:ac:c8:03:29:da:2c: 65:40:5f:74:df:ea:84:a3:4c:9e:b9:4d:35:ce:a3: e6:52:31:06:f4:4f:a6:0b:80:5c:b8:8b:87:23:4f: 82:41:88:d4:82:67:a4:3d:0b:4a:87:38:a1:06:a6: 11:77:e5:c6:c5:1e:42:45:87:58:b5:35:a8:33:a1: 2a:ce:e1:65:5e:f5:a8:e2:73:a1:3e:a8:18:af:ef: 7b:6f:dc:86:2f:72:d9:a9:dc:58:8d:02:eb:3e:7e: 81:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B6:75:4A:DA:D2:64:44:58:58:6E:60:1E:3D:74:45:BB:06:94:43 X509v3 Authority Key Identifier: keyid:FB:11:2C:AD:56:31:9B:FA:AC:A1:AB:28:CE:7B:D7:F4:CB:26:8C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/-xEsrVYxm_qsoasoznvX9MsmjOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xEsrVYxm_qsoasoznvX9MsmjOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADDD5/8B0D0FF2E3F811EB9E08DB14C4F9AE02/ABCDCC4EE16711EEA88FAE64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.31.0/24 103.169.66.0/23 IPv6: 2407:9c40::/32 Signature Algorithm: sha256WithRSAEncryption bb:07:3c:2e:d6:5d:1f:a5:9c:fa:41:93:b1:2e:49:1d:e5:2c: 91:90:ae:f0:1a:49:a8:6d:eb:de:ba:ce:15:fe:46:37:1f:28: 88:96:41:ef:92:90:5f:42:2a:b9:c9:10:96:a7:bf:ed:30:c1: 95:72:7c:49:9d:74:2e:8e:27:24:4c:05:a6:cd:55:19:ec:d9: c0:bf:3d:4a:e6:c0:0c:63:eb:e3:cf:ff:b1:82:eb:bd:d2:55: 43:32:1a:2b:ea:21:66:45:a2:77:8c:d5:21:ea:11:c5:3e:30: 67:cf:66:28:16:7a:3c:d5:24:c7:bc:94:c0:14:c1:3c:f2:1a: 86:6d:3b:e1:63:f4:b8:d0:68:68:4c:fe:df:a4:d4:0a:c1:84: 5d:93:cc:1b:17:ed:52:92:5f:e4:ac:41:ca:16:3f:2a:c6:61: 96:58:c1:51:6f:b9:b5:14:45:d9:4c:0d:36:e0:1c:6e:13:c4: dd:e6:cc:e0:08:64:80:d0:56:79:87:70:03:d8:00:80:b6:d0: 35:39:10:18:6d:ad:e1:68:4d:04:22:50:d4:91:20:dd:05:58: 58:1b:f1:68:5a:e2:32:9a:c3:89:24:b9:b0:be:e7:ab:51:3c: f3:63:2c:de:c9:ae:17:bd:6d:76:41:e2:40:49:0d:a6:ab:09: 25:c4:82:5e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURERDUxMTAvBgNVBAUTKEZCMTEyQ0FENTYzMTlCRkFBQ0ExQUIyOENFN0JEN0Y0 Q0IyNjhDRTkwHhcNMjUwNzA5MDAwNTA0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkYjIzMC1lN2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4XzbJgjBjYuJ4p02X/PuJTMJapsKVGYgRpiLdVubK2euZpD/8/CL0dGbsqT BqzfGqEsJBo4ivJHYwOb5j/phug6A9Iatp9TAwql6Gx/xijr6a79Sp954z86jnl4 VF7OL2edU7g/qVTR704ViT8ejJ4TJuk8m7UtrPF14qpz+2tbLc8JMmtM38hsCPh5 qqWuV8DPbOfjrywT3BVoDEOsyAMp2ixlQF903+qEo0yeuU01zqPmUjEG9E+mC4Bc uIuHI0+CQYjUgmekPQtKhzihBqYRd+XGxR5CRYdYtTWoM6EqzuFlXvWo4nOhPqgY r+97b9yGL3LZqdxYjQLrPn6BkQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFD62dUra 0mREWFhuYB49dEW7BpRDMB8GA1UdIwQYMBaAFPsRLK1WMZv6rKGrKM571/TLJozp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRERENS84QjBEMEZGMkUz RjgxMUVCOUUwOERCMTRDNEY5QUUwMi8teEVzclZZeG1fcXNvYXNvem52WDlNc21q T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14RXNyVll4bV9xc29hc296bnZYOU1zbWpPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURERDUvOEIwRDBGRjJFM0Y4MTFFQjlFMDhEQjE0QzRGOUFFMDIvQUJDRENDNEVF MTY3MTFFRUE4OEZBRTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnTh8DBAFnqUIwDQQCAAIwBwMFACQHnEAwDQYJKoZIhvcN AQELBQADggEBALsHPC7WXR+lnPpBk7EuSR3lLJGQrvAaSaht6966zhX+RjcfKIiW Qe+SkF9CKrnJEJanv+0wwZVyfEmddC6OJyRMBabNVRns2cC/PUrmwAxj6+PP/7GC 673SVUMyGivqIWZFoneM1SHqEcU+MGfPZigWejzVJMe8lMAUwTzyGoZtO+Fj9LjQ aGhM/t+k1ArBhF2TzBsX7VKSX+SsQcoWPyrGYZZYwVFvubUURdlMDTbgHG4TxN3m zOAIZIDQVnmHcAPYAIC20DU5EBhtreFoTQQiUNSRIN0FWFgb8Wha4jKaw4kkubC+ 56tRPPNjLN7Jrhe9bXZB4kBJDaarCSXEgl4= -----END CERTIFICATE-----Generated at Fri Jul 25 01:01:43 2025 by rpki-client