$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E4EFE6905ECB11ECA9B55A3BC4F9AE02.roa File: E4EFE6905ECB11ECA9B55A3BC4F9AE02.roa (raw, json) Hash identifier: ACLukHzl4iP7lAUKq3zWaW1x17F+UkqOsay4tSs+0D0= Subject key identifier: 84:65:6D:26:E5:08:F6:34:42:69:55:10:A3:28:87:1B:71:B5:7B:DF Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A1A Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E4EFE6905ECB11ECA9B55A3BC4F9AE02.roa Signing time: Tue 08 Jul 2025 20:30:02 +0000 ROA not before: Tue 08 Jul 2025 20:30:02 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 64073 IP address blocks: 103.140.143.0/24 maxlen: 24 2001:df0:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2586 (0xa1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Jul 8 20:30:02 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686d7fc9-ac5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2f:4b:6a:64:3b:7c:fc:3d:05:69:92:7c:41: 95:cb:e6:64:87:04:1d:cf:6c:58:18:12:76:c0:3f: d8:4d:08:cb:30:7c:9a:79:a6:18:9b:ce:c0:18:93: 7e:e4:19:ad:7a:be:70:be:d4:1c:90:72:bb:98:18: d3:13:4b:05:c1:a3:ca:26:66:b2:5e:71:15:98:7f: 89:8f:c8:33:1a:26:08:0d:3d:3a:c7:9a:fe:c2:b0: 9c:95:89:c4:f3:cb:5e:a2:ed:82:c9:74:e9:23:58: 9c:db:23:70:95:10:13:ed:0e:08:8f:92:5c:69:c6: e0:ed:e2:db:dd:e2:c8:3e:99:5b:dd:65:9f:6e:88: 74:7a:15:9e:22:e9:da:7e:f5:92:16:15:d3:01:e9: 3e:91:22:59:9a:dd:23:81:e0:50:ed:c6:e2:6d:6b: 2b:00:4a:a0:4a:cb:3c:c5:8f:76:85:74:47:31:e8: f1:49:7b:8c:b8:88:7a:a4:48:2e:01:8b:0f:79:cc: 15:83:c2:3d:77:01:45:dd:b3:65:18:75:92:3d:2f: 6c:76:73:2d:b8:73:5b:17:47:3c:8f:11:91:c0:4a: 36:f4:cc:f3:f9:56:aa:73:c3:95:8a:03:76:76:1e: af:ba:0d:37:43:85:08:66:c1:d6:39:1d:1b:8b:8a: 15:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:65:6D:26:E5:08:F6:34:42:69:55:10:A3:28:87:1B:71:B5:7B:DF X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E4EFE6905ECB11ECA9B55A3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.143.0/24 IPv6: 2001:df0:c480::/48 Signature Algorithm: sha256WithRSAEncryption 6c:b0:e4:4e:15:26:9d:bf:d8:0d:8b:b4:b2:6e:3c:cb:1a:cb: 5f:e0:32:d3:29:7d:96:37:eb:b5:b9:53:1f:c0:8c:4c:92:1a: 9a:7a:47:81:e6:26:c8:c0:70:af:45:40:ef:df:9b:ef:63:7b: 03:89:82:eb:64:25:35:99:a7:ea:46:c3:a5:d2:6e:6b:23:99: 91:66:23:35:5f:37:fc:28:d3:f9:1a:a8:65:67:41:f3:f3:cf: 77:36:5d:8e:33:0f:57:5a:76:a6:15:14:f5:78:e3:b8:93:39: dc:fa:82:f8:c0:d6:70:9a:af:ec:2c:f0:e4:11:33:bc:76:34: 69:66:6b:23:8b:04:03:41:07:c5:b2:39:1a:1f:c2:44:41:43: fa:69:12:58:f7:4e:b8:84:ab:cd:e7:38:3f:48:a6:57:44:06: da:44:15:53:0c:f6:c1:4c:a4:6f:04:13:e1:b4:4d:8d:db:60: c2:ef:a2:bc:e0:08:c8:d4:86:ea:f3:46:27:59:34:73:02:d3: f4:dd:1f:4d:77:42:65:0f:fe:37:5a:21:82:be:4f:d5:cb:cc: f6:ac:07:da:6b:cc:73:6f:04:ac:64:1d:25:fa:7b:86:2f:d7: 20:0e:9b:c9:e2:a9:d7:3d:67:77:4d:57:81:00:2c:d3:74:48: 7c:2f:79:dd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICChowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUwNzA4MjAzMDAyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkN2ZjOS1hYzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC9LamQ7fPw9BWmSfEGVy+ZkhwQdz2xYGBJ2wD/YTQjLMHyaeaYYm87AGJN+ 5Bmter5wvtQckHK7mBjTE0sFwaPKJmayXnEVmH+Jj8gzGiYIDT06x5r+wrCclYnE 88teou2CyXTpI1ic2yNwlRAT7Q4Ij5Jcacbg7eLb3eLIPplb3WWfboh0ehWeIuna fvWSFhXTAek+kSJZmt0jgeBQ7cbibWsrAEqgSss8xY92hXRHMejxSXuMuIh6pEgu AYsPecwVg8I9dwFF3bNlGHWSPS9sdnMtuHNbF0c8jxGRwEo29Mzz+Vaqc8OVigN2 dh6vug03Q4UIZsHWOR0bi4oV7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIRlbSbl CPY0QmlVEKMohxtxtXvfMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RDYvOUU2NkY1MTI3QTU1MTFFQUJGQkU5NDdBQzRGOUFFMDIvRTRFRkU2OTA1 RUNCMTFFQ0E5QjU1QTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnjI8wDwQCAAIwCQMHACABDfDEgDANBgkqhkiG9w0BAQsF AAOCAQEAbLDkThUmnb/YDYu0sm48yxrLX+Ay0yl9ljfrtblTH8CMTJIamnpHgeYm yMBwr0VA79+b72N7A4mC62QlNZmn6kbDpdJuayOZkWYjNV83/CjT+RqoZWdB8/PP dzZdjjMPV1p2phUU9XjjuJM53PqC+MDWcJqv7Czw5BEzvHY0aWZrI4sEA0EHxbI5 Gh/CREFD+mkSWPdOuISrzec4P0imV0QG2kQVUwz2wUykbwQT4bRNjdtgwu+ivOAI yNSG6vNGJ1k0cwLT9N0fTXdCZQ/+N1ohgr5P1cvM9qwH2mvMc28ErGQdJfp7hi/X IA6byeKp1z1nd01XgQAs03RIfC953Q== -----END CERTIFICATE-----Generated at Sun Jul 20 02:22:40 2025 by rpki-client