$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa File: 722D43AC7A5A11EABD77E486C4F9AE02.roa (raw, json) Hash identifier: dz0lDVUdbKurIPgLKnTIK+TUvk2MtsrFSHr5aV4oHoA= Subject key identifier: 9D:19:57:0A:2B:E1:F7:D3:EE:27:B4:2B:39:83:C8:49:88:6F:14:43 Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A18 Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa Signing time: Tue 08 Jul 2025 20:30:00 +0000 ROA not before: Tue 08 Jul 2025 20:30:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135642 IP address blocks: 103.140.143.0/24 maxlen: 24 103.178.53.0/24 maxlen: 24 2001:df0:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Jul 8 20:30:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686d7fc7-a0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:24:f0:5c:42:df:47:38:17:43:c4:53:a6:06: 3f:10:55:d8:43:d3:b0:64:47:a4:ad:b1:11:9f:1b: 56:d7:39:33:ac:e5:ef:19:67:77:5b:2c:f1:8b:c8: aa:15:99:c7:75:10:7f:40:e1:2d:8a:65:13:5c:45: 6e:8c:c4:b8:6c:16:4f:cf:67:67:ca:30:de:99:eb: 49:31:28:93:a1:b0:42:92:4c:74:a5:cc:a4:e5:0c: fa:c3:ff:f8:f4:40:89:4e:a2:9a:53:9c:f8:71:fc: 1f:3f:44:07:00:90:1f:b0:1b:3a:1d:d0:e9:77:a1: d1:e5:cf:bc:4a:61:d4:ae:c8:85:c7:c7:81:6c:71: 0e:aa:c4:76:83:0d:49:f5:fc:da:61:e9:d3:ba:b9: d6:4b:b7:8e:b7:67:c3:78:83:7c:5f:aa:ad:a6:fa: 84:6f:72:e2:88:65:52:5f:e0:55:40:74:a2:ab:4d: 93:29:4a:1d:ab:9d:10:be:ec:1f:43:f1:7a:8d:8b: 56:12:e5:df:4c:54:f2:c4:1d:65:43:66:ee:f7:71: cd:50:93:9b:b9:e0:64:e2:55:4e:84:fa:7b:8e:30: b2:b8:21:98:90:f0:6b:98:88:b4:23:0c:61:86:8a: 18:3a:c6:ed:3d:cd:61:46:2b:0c:bd:37:21:cc:52: 24:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:19:57:0A:2B:E1:F7:D3:EE:27:B4:2B:39:83:C8:49:88:6F:14:43 X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.143.0/24 103.178.53.0/24 IPv6: 2001:df0:c480::/48 Signature Algorithm: sha256WithRSAEncryption 22:e3:35:25:d8:43:20:55:a1:c3:b6:92:a2:a6:8d:51:f0:84: c2:12:b2:5a:25:06:cf:e8:bd:c6:b9:ba:60:b0:c4:c5:40:fe: bc:f9:55:af:99:3f:f0:a1:6f:22:7c:2f:c1:61:a9:c4:9b:fa: c4:25:56:e4:65:07:df:89:bd:44:f3:96:a9:67:cb:ad:c5:8e: 91:05:ee:87:8a:6c:41:6f:49:bf:08:ae:46:a3:3a:f0:d5:1b: 28:2f:51:30:64:07:b7:c6:d5:74:37:bc:8f:2a:34:dc:79:18: cf:01:96:a4:f2:cf:6d:50:ab:aa:5d:d7:88:60:92:4c:bf:fe: d8:c8:4e:c5:a3:6e:20:22:53:f1:60:c4:9d:bb:06:54:5e:66: 94:a6:d5:46:ad:08:3f:ef:c3:ab:6f:43:b4:1a:ae:f1:b3:0c: b0:e8:aa:50:44:af:4b:9e:a4:14:3e:95:8c:9a:7b:c1:ef:01: 5c:73:4b:a1:a9:7b:5a:55:67:0a:df:bd:7d:e1:ec:c9:d4:2a: 96:42:9b:24:76:52:7b:81:93:8f:48:67:85:bd:29:b5:fa:de: c0:04:dd:9f:8d:b3:f4:ef:0c:1c:3e:a2:5f:8f:02:47:cb:c5: 6f:30:44:82:ae:06:17:dd:ee:6e:82:14:e2:ac:7c:53:72:62: fe:5a:fd:ee -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUwNzA4MjAzMDAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkN2ZjNy1hMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyTwXELfRzgXQ8RTpgY/EFXYQ9OwZEekrbERnxtW1zkzrOXvGWd3Wyzxi8iq FZnHdRB/QOEtimUTXEVujMS4bBZPz2dnyjDemetJMSiTobBCkkx0pcyk5Qz6w//4 9ECJTqKaU5z4cfwfP0QHAJAfsBs6HdDpd6HR5c+8SmHUrsiFx8eBbHEOqsR2gw1J 9fzaYenTurnWS7eOt2fDeIN8X6qtpvqEb3LiiGVSX+BVQHSiq02TKUodq50Qvuwf Q/F6jYtWEuXfTFTyxB1lQ2bu93HNUJObueBk4lVOhPp7jjCyuCGYkPBrmIi0Iwxh hooYOsbtPc1hRisMvTchzFIkXQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJ0ZVwor 4ffT7ie0KzmDyEmIbxRDMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RDYvOUU2NkY1MTI3QTU1MTFFQUJGQkU5NDdBQzRGOUFFMDIvNzIyRDQzQUM3 QTVBMTFFQUJENzdFNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjI8DBABnsjUwDwQCAAIwCQMHACABDfDEgDANBgkqhkiG 9w0BAQsFAAOCAQEAIuM1JdhDIFWhw7aSoqaNUfCEwhKyWiUGz+i9xrm6YLDExUD+ vPlVr5k/8KFvInwvwWGpxJv6xCVW5GUH34m9RPOWqWfLrcWOkQXuh4psQW9Jvwiu RqM68NUbKC9RMGQHt8bVdDe8jyo03HkYzwGWpPLPbVCrql3XiGCSTL/+2MhOxaNu ICJT8WDEnbsGVF5mlKbVRq0IP+/Dq29DtBqu8bMMsOiqUESvS56kFD6VjJp7we8B XHNLoal7WlVnCt+9feHsydQqlkKbJHZSe4GTj0hnhb0ptfrewATdn42z9O8MHD6i X48CR8vFbzBEgq4GF93uboIU4qx8U3Ji/lr97g== -----END CERTIFICATE-----Generated at Sun Jul 20 02:23:52 2025 by rpki-client