$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/E86E188A795F11EFBF3B491CC4F9AE02.roa File: E86E188A795F11EFBF3B491CC4F9AE02.roa (raw, json) Hash identifier: xkr6cXGQ/p7K1jYKezf1z+xt8LJrbP87Z5GaO3mC9Iw= Subject key identifier: 10:F4:C2:C5:EE:38:EC:E2:28:22:1C:D1:06:8D:FB:6E:79:9E:78:CE Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 2A4F Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/E86E188A795F11EFBF3B491CC4F9AE02.roa Signing time: Wed 16 Jul 2025 15:52:27 +0000 ROA not before: Wed 16 Jul 2025 15:52:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58601 IP address blocks: 103.9.112.0/22 maxlen: 22 103.9.112.0/24 maxlen: 24 103.9.113.0/24 maxlen: 24 103.9.114.0/24 maxlen: 24 103.9.115.0/24 maxlen: 24 2403:e100::/32 maxlen: 32 2403:e100:1000::/48 maxlen: 48 2403:e100:1000:4::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10831 (0x2a4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7, serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Validity Not Before: Jul 16 15:52:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6877cabb-6c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:0b:b5:ca:86:d7:65:78:8b:2b:b4:64:14: ab:eb:54:17:66:ce:72:66:23:6a:ac:20:b6:19:35: 72:41:26:b5:f8:1b:72:9f:5c:97:df:5c:d1:39:33: 73:80:b1:83:fb:59:7b:44:85:aa:e5:02:1d:a9:04: 74:8e:c6:34:29:39:a2:89:3f:19:79:0c:d4:3c:d1: b2:86:54:f5:f6:4b:89:d2:84:39:da:10:02:d2:3d: f3:4e:20:8e:55:95:9a:e7:09:20:db:78:44:b5:cd: 63:ea:86:5e:2a:41:77:07:38:4b:39:45:54:56:f1: 0a:19:02:8b:ec:92:1d:9b:b0:69:2d:ec:7f:28:b9: 65:8b:d6:20:4a:2b:64:27:41:19:47:8c:cd:6a:5f: f0:33:5d:86:b2:b2:18:a8:ef:85:3a:65:70:f6:78: 22:bf:5c:6e:7e:d6:e4:f0:fc:51:25:f5:7e:4f:e7: 1f:9c:0c:bf:2d:ec:0f:c9:55:b8:60:4f:e8:72:d3: c4:61:45:d5:d7:7b:af:01:18:b7:14:9c:55:e1:09: 94:fd:21:84:27:f1:da:f7:70:dd:ca:68:eb:cf:ff: 71:75:cc:c7:e2:4b:b4:bc:5d:94:cb:ed:f3:4f:ac: 40:22:66:07:75:f6:f8:2d:33:6b:ff:c8:96:99:94: 46:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F4:C2:C5:EE:38:EC:E2:28:22:1C:D1:06:8D:FB:6E:79:9E:78:CE X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/E86E188A795F11EFBF3B491CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.112.0/22 IPv6: 2403:e100::/32 Signature Algorithm: sha256WithRSAEncryption 5c:35:9d:c9:4e:fa:69:ad:01:2d:c6:86:56:98:51:b0:bd:39: 11:67:d9:f7:d6:e4:91:b0:b9:48:71:1f:6a:eb:54:b5:08:35: 7f:b7:46:72:08:87:e9:00:64:1d:e6:32:aa:8d:cc:d3:fe:be: 94:9f:ff:87:14:02:5e:27:03:d5:42:ff:38:6a:cf:e0:59:49: 69:b9:05:74:2f:8c:d1:ea:0e:75:f8:2d:0d:2e:82:9a:46:13: 62:38:72:3f:f6:36:e9:5c:10:72:16:32:fa:59:ea:c8:85:17: 3a:55:07:e7:dc:7b:09:d6:be:6f:95:92:0f:16:eb:2f:93:81: 90:20:e1:5a:9e:a6:89:9a:38:90:b5:08:d9:ef:d9:e1:05:7b: fb:50:97:dc:8f:89:26:e6:b2:ba:0e:d1:97:5c:49:dc:cc:0a: 0b:6b:b6:c8:9b:0e:52:86:89:24:42:1e:fa:c5:15:62:26:1c: c1:8f:15:5e:17:97:d0:41:c5:91:63:2e:43:49:46:41:8c:bc: 40:27:42:4f:45:61:d3:56:68:fd:31:8e:4c:51:2e:b3:d9:be: 6f:3f:72:2b:db:3e:80:2d:39:e3:12:38:82:ec:58:56:a6:03: e4:29:5b:0b:93:fc:c0:16:09:c9:eb:d7:a1:35:25:54:9a:5f: b8:d4:8b:1e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICKk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjUwNzE2MTU1MjI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3Y2FiYi02YzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXgLtcqG12V4iyu0ZBSr61QXZs5yZiNqrCC2GTVyQSa1+Btyn1yX31zROTNz gLGD+1l7RIWq5QIdqQR0jsY0KTmiiT8ZeQzUPNGyhlT19kuJ0oQ52hAC0j3zTiCO VZWa5wkg23hEtc1j6oZeKkF3BzhLOUVUVvEKGQKL7JIdm7BpLex/KLlli9YgSitk J0EZR4zNal/wM12GsrIYqO+FOmVw9ngiv1xuftbk8PxRJfV+T+cfnAy/LewPyVW4 YE/octPEYUXV13uvARi3FJxV4QmU/SGEJ/Ha93Ddymjrz/9xdczH4ku0vF2Uy+3z T6xAImYHdfb4LTNr/8iWmZRG7wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBD0wsXu OOziKCIc0QaN+255nnjOMB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvRTg2RTE4OEE3 OTVGMTFFRkJGM0I0OTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnCXAwDQQCAAIwBwMFACQD4QAwDQYJKoZIhvcNAQELBQAD ggEBAFw1nclO+mmtAS3GhlaYUbC9ORFn2ffW5JGwuUhxH2rrVLUINX+3RnIIh+kA ZB3mMqqNzNP+vpSf/4cUAl4nA9VC/zhqz+BZSWm5BXQvjNHqDnX4LQ0ugppGE2I4 cj/2NulcEHIWMvpZ6siFFzpVB+fcewnWvm+Vkg8W6y+TgZAg4VqepomaOJC1CNnv 2eEFe/tQl9yPiSbmsroO0ZdcSdzMCgtrtsibDlKGiSRCHvrFFWImHMGPFV4Xl9BB xZFjLkNJRkGMvEAnQk9FYdNWaP0xjkxRLrPZvm8/civbPoAtOeMSOILsWFamA+Qp WwuT/MAWCcnr16E1JVSaX7jUix4= -----END CERTIFICATE-----Generated at Mon Jul 21 13:08:01 2025 by rpki-client