$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/A1C764027A5B11EA98745A0EC4F9AE02.roa File: A1C764027A5B11EA98745A0EC4F9AE02.roa (raw, json) Hash identifier: WPHw7kNP0n6c5UltUwmrIvy70bAxnVBFcfWA6in4LsM= Subject key identifier: 05:03:15:14:A5:B7:82:C1:17:E2:15:EA:A6:66:BA:0D:4D:3D:04:48 Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A19 Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/A1C764027A5B11EA98745A0EC4F9AE02.roa Signing time: Tue 08 Jul 2025 20:30:01 +0000 ROA not before: Tue 08 Jul 2025 20:30:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138398 IP address blocks: 103.140.143.0/24 maxlen: 24 2001:df0:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2585 (0xa19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Jul 8 20:30:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686d7fc8-ed6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bb:0c:56:cb:27:10:86:76:27:e6:24:dc:3d: b7:62:0c:be:32:9d:b6:07:c7:11:ee:24:d9:86:ed: 30:d4:ef:8e:a9:af:33:f9:a0:f7:d5:d4:9a:6a:e3: de:96:18:ba:30:30:5c:3c:52:05:56:a2:8f:e0:e0: 59:63:d3:96:67:7b:1c:12:16:17:2a:92:4c:d8:33: 1e:29:0b:c2:fc:bd:fd:20:2f:2a:c4:1a:c8:5c:56: 4d:18:90:5c:a2:09:66:cf:91:15:b9:48:9d:35:c1: 2d:4e:bd:91:20:39:7b:77:0d:42:65:20:98:bd:ed: 9a:e0:47:91:27:14:10:10:79:7b:92:29:ac:ad:d1: ef:65:f4:1a:56:f7:a1:24:74:b8:bd:a6:66:2f:c3: 66:aa:d4:be:65:97:5b:9c:01:eb:ce:8f:d8:03:45: 7f:ee:56:b6:6a:28:a3:93:a1:49:75:6e:62:d7:ac: 6c:fd:6b:27:31:0a:b2:42:b9:bd:0b:16:0b:b4:e9: 63:18:eb:b2:6b:4c:48:b5:29:19:6d:35:3a:f1:93: 59:a6:09:91:4e:f6:85:24:6b:9e:1c:a0:df:8a:eb: 8b:5d:3e:2d:4d:77:78:3e:b0:d0:2d:98:88:59:57: fc:cb:61:35:a0:c3:64:46:17:82:08:22:52:fa:b6: 1f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:03:15:14:A5:B7:82:C1:17:E2:15:EA:A6:66:BA:0D:4D:3D:04:48 X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/A1C764027A5B11EA98745A0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.143.0/24 IPv6: 2001:df0:c480::/48 Signature Algorithm: sha256WithRSAEncryption 70:8c:09:77:30:fe:2e:37:13:71:40:6d:5a:b5:76:6c:ce:8b: 49:c4:7c:9f:df:cf:73:ef:0f:e5:a8:60:aa:0a:50:a7:20:d9: 0c:7d:da:8c:37:a6:be:17:a1:40:74:dd:0b:f0:2b:74:f8:2d: 9f:b9:27:c4:36:02:0f:e1:3b:4f:92:bf:c6:41:60:a9:bc:75: 1e:d7:6c:4d:ac:1a:ef:4d:3c:7b:f9:64:41:28:c6:fa:94:68: 5a:e9:c8:5c:60:26:0e:f1:30:e2:dc:7a:31:4b:1e:bc:6f:47: d3:42:3c:73:11:e2:51:5a:27:66:bd:cf:2a:b3:0b:90:2b:d3: 42:44:98:3b:7c:b0:72:21:e1:2a:6c:c4:2d:50:02:ba:97:e9: 8e:86:08:11:ae:ce:d3:4e:c0:f8:a5:76:5d:a1:2b:13:7b:2a: 65:88:da:eb:91:69:90:19:cb:2b:8d:3b:fc:4d:98:af:5a:ea: 69:94:8f:7c:0d:4f:78:24:c9:1b:f5:bc:95:f9:a9:22:0b:18: ba:b2:a4:f2:bb:06:ea:f1:34:83:87:f9:56:1b:45:6a:81:e7: 0f:fe:61:e5:4e:fc:58:cb:d1:7d:8e:95:11:39:00:41:32:4b: 25:da:6a:ba:57:8b:13:d3:1e:3e:ba:7d:a1:01:f5:5a:d2:e3: e4:95:11:a6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICChkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUwNzA4MjAzMDAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkN2ZjOC1lZDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrsMVssnEIZ2J+Yk3D23Ygy+Mp22B8cR7iTZhu0w1O+Oqa8z+aD31dSaauPe lhi6MDBcPFIFVqKP4OBZY9OWZ3scEhYXKpJM2DMeKQvC/L39IC8qxBrIXFZNGJBc oglmz5EVuUidNcEtTr2RIDl7dw1CZSCYve2a4EeRJxQQEHl7kimsrdHvZfQaVveh JHS4vaZmL8NmqtS+ZZdbnAHrzo/YA0V/7la2aiijk6FJdW5i16xs/WsnMQqyQrm9 CxYLtOljGOuya0xItSkZbTU68ZNZpgmRTvaFJGueHKDfiuuLXT4tTXd4PrDQLZiI WVf8y2E1oMNkRheCCCJS+rYf9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAUDFRSl t4LBF+IV6qZmug1NPQRIMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RDYvOUU2NkY1MTI3QTU1MTFFQUJGQkU5NDdBQzRGOUFFMDIvQTFDNzY0MDI3 QTVCMTFFQTk4NzQ1QTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnjI8wDwQCAAIwCQMHACABDfDEgDANBgkqhkiG9w0BAQsF AAOCAQEAcIwJdzD+LjcTcUBtWrV2bM6LScR8n9/Pc+8P5ahgqgpQpyDZDH3ajDem vhehQHTdC/ArdPgtn7knxDYCD+E7T5K/xkFgqbx1HtdsTawa7008e/lkQSjG+pRo WunIXGAmDvEw4tx6MUsevG9H00I8cxHiUVonZr3PKrMLkCvTQkSYO3ywciHhKmzE LVACupfpjoYIEa7O007A+KV2XaErE3sqZYja65FpkBnLK407/E2Yr1rqaZSPfA1P eCTJG/W8lfmpIgsYurKk8rsG6vE0g4f5VhtFaoHnD/5h5U78WMvRfY6VETkAQTJL JdpquleLE9MePrp9oQH1WtLj5JURpg== -----END CERTIFICATE-----Generated at Sun Jul 20 02:29:51 2025 by rpki-client