$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa File: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (raw, json) Hash identifier: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y= Subject key identifier: 02:FD:A1:1B:57:AD:97:46:FB:80:84:4C:0B:BF:BF:E5:A1:E9:51:B1 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0564 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa Signing time: Sat 19 Jul 2025 00:05:51 +0000 ROA not before: Sat 19 Jul 2025 00:05:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140732 IP address blocks: 103.167.162.0/24 maxlen: 24 2001:df6:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1380 (0x564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Jul 19 00:05:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687ae15f-47a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d0:65:78:d8:3f:37:99:25:b7:3d:04:3e:ed: 0d:42:7c:50:cd:c0:42:f1:0b:9c:97:14:80:5c:a4: 76:fc:30:e1:d3:6e:ef:40:b3:5a:d0:d2:06:3b:53: 92:30:fe:73:e4:80:c3:62:70:5f:bd:ad:f4:62:45: c4:4b:e9:ca:05:be:f6:03:e7:c9:b3:79:0c:d9:9c: 1a:88:5e:74:36:04:cd:48:4a:b9:41:bf:ba:6f:71: a9:d4:b4:92:c6:61:ac:ce:18:ca:c3:0b:c2:44:26: 95:ae:b5:92:3b:c7:8e:7a:8e:aa:cf:0f:d9:28:b9: ca:d5:a4:a5:ed:ba:96:c6:e3:25:e3:4c:1b:f1:bf: 35:f6:97:d0:a6:d6:67:28:c9:ed:8e:34:0f:bc:ec: 53:51:08:3b:30:34:ed:48:5d:bf:7c:4a:d4:02:82: d6:70:6b:19:02:0e:7d:08:37:95:10:51:87:37:a9: 42:38:a3:e6:7c:64:cd:b6:23:cf:9e:db:7b:7b:64: d6:5a:f7:8e:72:fd:6e:40:cc:bc:95:b7:38:ff:89: a4:bc:9f:ad:3d:dd:25:d9:a4:f2:d2:7a:64:e4:d7: e5:20:f3:34:59:b4:98:74:c7:d2:d5:7f:55:b6:ae: a3:3c:23:69:65:ae:b3:bb:7c:24:d3:85:31:ea:c3: 26:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FD:A1:1B:57:AD:97:46:FB:80:84:4C:0B:BF:BF:E5:A1:E9:51:B1 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.162.0/24 IPv6: 2001:df6:b980::/48 Signature Algorithm: sha256WithRSAEncryption a5:d6:7a:d4:44:e3:d5:c2:23:65:d3:09:1e:17:e1:b8:53:73: 2b:de:a0:75:f2:bf:ee:05:be:62:f7:88:88:7e:a6:da:d5:bb: 95:1d:e3:d4:23:59:3b:5f:be:a3:b9:40:a2:aa:84:7c:96:82: 46:9c:40:f7:fc:f9:92:9c:6a:06:c0:d0:d1:7b:94:00:89:52: a1:9f:47:bf:2b:d2:b2:47:af:32:b8:a9:2f:51:05:fb:5b:71: 45:45:54:40:02:70:27:dc:8b:67:a1:0d:b8:d6:f1:2b:58:82: 9d:ac:c9:08:ae:87:97:ac:cb:ed:93:53:9b:2c:93:7a:7f:4f: 63:37:a3:e9:04:0a:65:cb:f4:da:a9:9e:c7:5f:0c:7a:a8:23: 70:64:4a:46:0b:a7:8d:19:90:24:77:ca:ea:de:e4:4a:2c:b0: ca:8e:a7:4e:c2:cb:b1:28:7f:6c:d8:f3:46:a2:ff:72:2a:9f: fa:7c:a2:98:bb:6a:6b:20:36:eb:18:68:42:43:c7:13:4f:8e: 21:4a:76:55:9b:fc:34:5f:85:b0:d6:75:e5:90:29:c5:e1:ef: 0f:2c:c7:38:c5:af:d6:55:c4:f1:45:10:c5:51:de:ab:56:12: fe:87:0e:17:42:7c:cc:06:0a:71:36:19:d8:a8:55:c7:e1:0b: a0:5d:37:7f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNzE5MDAwNTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhZTE1Zi00N2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNBleNg/N5kltz0EPu0NQnxQzcBC8QuclxSAXKR2/DDh027vQLNa0NIGO1OS MP5z5IDDYnBfva30YkXES+nKBb72A+fJs3kM2ZwaiF50NgTNSEq5Qb+6b3Gp1LSS xmGszhjKwwvCRCaVrrWSO8eOeo6qzw/ZKLnK1aSl7bqWxuMl40wb8b819pfQptZn KMntjjQPvOxTUQg7MDTtSF2/fErUAoLWcGsZAg59CDeVEFGHN6lCOKPmfGTNtiPP ntt7e2TWWveOcv1uQMy8lbc4/4mkvJ+tPd0l2aTy0npk5NflIPM0WbSYdMfS1X9V tq6jPCNpZa6zu3wk04Ux6sMmBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAL9oRtX rZdG+4CETAu/v+Wh6VGxMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3QTkvNUY4OUY2RUNGQjMxMTFFQjhGQkZBNTU5QzRGOUFFMDIvQzJDQUMxNkU1 QzlEMTFFQzk5RjdEMTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnp6IwDwQCAAIwCQMHACABDfa5gDANBgkqhkiG9w0BAQsF AAOCAQEApdZ61ETj1cIjZdMJHhfhuFNzK96gdfK/7gW+YveIiH6m2tW7lR3j1CNZ O1++o7lAoqqEfJaCRpxA9/z5kpxqBsDQ0XuUAIlSoZ9HvyvSskevMripL1EF+1tx RUVUQAJwJ9yLZ6ENuNbxK1iCnazJCK6Hl6zL7ZNTmyyTen9PYzej6QQKZcv02qme x18MeqgjcGRKRgunjRmQJHfK6t7kSiywyo6nTsLLsSh/bNjzRqL/ciqf+nyimLtq ayA26xhoQkPHE0+OIUp2VZv8NF+FsNZ15ZApxeHvDyzHOMWv1lXE8UUQxVHeq1YS /ocOF0J8zAYKcTYZ2KhVx+ELoF03fw== -----END CERTIFICATE-----Generated at Sun Jul 20 12:34:13 2025 by rpki-client