$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/CCD6F0DE5DE711F0BC6E0A50C4F9AE02.roa File: CCD6F0DE5DE711F0BC6E0A50C4F9AE02.roa (raw, json) Hash identifier: SbNim6olcnK9HKDq/sPOQqnjuBHhomhQ4KRgrPuZckw= Subject key identifier: 5F:8F:D1:7F:71:6B:26:BA:8A:B6:88:E9:AB:E7:DB:DB:3D:E0:D6:68 Certificate issuer: /CN=A91D0F0F/serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Certificate serial: 02 Authority key identifier: 38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/CCD6F0DE5DE711F0BC6E0A50C4F9AE02.roa Signing time: Thu 10 Jul 2025 23:44:20 +0000 ROA not before: Thu 10 Jul 2025 23:44:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150680 IP address blocks: 103.27.1.0/24 maxlen: 24 202.172.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0F0F, serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Validity Not Before: Jul 10 23:44:20 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68705054-2099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:39:69:5f:d0:46:dc:9a:1a:7a:03:7a:ac:fe: 5a:db:34:26:9e:cd:5d:b9:4b:dc:8a:08:16:59:d5: 37:d0:77:28:66:ea:2c:4f:9d:74:6e:75:f7:25:e5: 5f:15:14:ac:71:7c:bb:d6:83:a3:a2:4d:3f:0b:be: 66:e2:a0:19:fa:2a:5c:91:28:40:a2:dd:18:0b:cd: 9f:2e:ca:1d:ba:5a:bf:4b:de:3d:85:6c:5c:56:0a: 24:6a:5f:e1:e4:2d:7d:57:0f:fb:64:c0:4c:a7:cf: 24:a7:4d:ec:ab:c1:4c:c2:68:35:f8:d9:2c:06:21: fe:8d:b8:2e:37:43:c6:4a:cd:31:a8:ef:d5:8a:8a: 31:b2:25:16:3e:ba:98:58:43:c1:e3:93:7d:6a:8c: f9:ce:45:81:08:e5:b1:90:70:21:78:bf:1c:bf:ce: 3d:3c:46:64:a1:d9:68:c5:cb:8f:12:7c:b9:8e:ff: fb:c5:ce:94:e5:b2:03:27:a4:6e:c1:64:a2:1b:1f: 26:4d:07:62:44:ec:01:85:d2:9c:a7:7b:46:c7:6d: ce:12:f1:73:5d:e2:aa:33:0f:6f:2b:01:c9:ae:6c: 7d:84:b8:87:39:13:d9:27:b1:2c:96:f5:bc:26:ab: 02:45:a1:04:b0:51:f1:b0:ad:e7:69:4e:9d:7c:cb: e4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8F:D1:7F:71:6B:26:BA:8A:B6:88:E9:AB:E7:DB:DB:3D:E0:D6:68 X509v3 Authority Key Identifier: keyid:38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/CCD6F0DE5DE711F0BC6E0A50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.1.0/24 202.172.6.0/24 Signature Algorithm: sha256WithRSAEncryption 25:f2:9d:1b:34:35:a5:85:32:81:c1:24:aa:34:9d:0a:05:1d: bc:95:eb:94:b8:12:7f:8b:a9:97:53:14:42:aa:0c:de:7b:46: 65:b3:47:75:8b:00:b0:9d:a4:ec:d3:60:f9:16:49:9b:23:fb: c1:3f:97:17:16:66:cd:bf:a7:03:42:98:71:31:2f:f5:95:59: 18:06:e4:58:32:03:cf:09:26:99:e6:b8:60:0f:a8:b9:5e:34: e9:db:78:7a:66:70:e5:7b:36:60:30:98:33:28:38:11:16:d3: 36:b4:d1:82:9f:5d:56:25:54:92:e0:3c:79:b1:c1:4f:5a:0c: 58:b6:2c:23:e7:dc:4e:37:91:56:a1:ec:99:16:79:e9:b4:d3: a8:75:53:ac:8d:c1:01:67:05:8a:e1:e1:c8:3c:49:c5:2d:33: e1:29:97:a4:24:61:ac:4e:19:74:b0:37:5d:ea:80:a2:0d:c5: db:3f:52:ec:80:78:74:85:36:a6:82:ed:86:f1:84:2b:19:4f: 83:da:03:e6:c2:76:45:01:33:93:6f:1c:2e:5f:ef:71:e8:94: 90:9d:b3:c3:39:0c:62:5f:82:73:c2:9f:9a:7f:13:e8:e1:aa: 50:a5:97:f7:75:67:aa:f4:fd:bd:6b:99:e6:da:f3:01:98:f0: 77:0a:4e:f0 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEYwRjExMC8GA1UEBRMoMzhFQjBEOEU3QUYxRUIxODdENUFBM0ZDNUY3OTQxOTEz MzhCREI2NjAeFw0yNTA3MTAyMzQ0MjBaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzA1MDU0LTIwOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYOWlf0Ebcmhp6A3qs/lrbNCaezV25S9yKCBZZ1TfQdyhm6ixPnXRudfcl5V8V FKxxfLvWg6OiTT8LvmbioBn6KlyRKECi3RgLzZ8uyh26Wr9L3j2FbFxWCiRqX+Hk LX1XD/tkwEynzySnTeyrwUzCaDX42SwGIf6NuC43Q8ZKzTGo79WKijGyJRY+uphY Q8Hjk31qjPnORYEI5bGQcCF4vxy/zj08RmSh2WjFy48SfLmO//vFzpTlsgMnpG7B ZKIbHyZNB2JE7AGF0pyne0bHbc4S8XNd4qozD28rAcmubH2EuIc5E9knsSyW9bwm qwJFoQSwUfGwredpTp18y+QtAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUX4/Rf3Fr JrqKtojpq+fb2z3g1mgwHwYDVR0jBBgwFoAUOOsNjnrx6xh9WqP8X3lBkTOL22Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRjBGLzVDMThBNjEyNURF NzExRjBBODY3OTE0RUM0RjlBRTAyL09Pc05qbnJ4NnhoOVdxUDhYM2xCa1RPTDIy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT09zTmpucng2eGg5V3FQOFgzbEJrVE9MMjJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEYwRi81QzE4QTYxMjVERTcxMUYwQTg2NzkxNEVDNEY5QUUwMi9DQ0Q2RjBERTVE RTcxMUYwQkM2RTBBNTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGcbAQMEAMqsBjANBgkqhkiG9w0BAQsFAAOCAQEAJfKdGzQ1 pYUygcEkqjSdCgUdvJXrlLgSf4upl1MUQqoM3ntGZbNHdYsAsJ2k7NNg+RZJmyP7 wT+XFxZmzb+nA0KYcTEv9ZVZGAbkWDIDzwkmmea4YA+ouV406dt4emZw5Xs2YDCY Myg4ERbTNrTRgp9dViVUkuA8ebHBT1oMWLYsI+fcTjeRVqHsmRZ56bTTqHVTrI3B AWcFiuHhyDxJxS0z4SmXpCRhrE4ZdLA3XeqAog3F2z9S7IB4dIU2poLthvGEKxlP g9oD5sJ2RQEzk28cLl/vceiUkJ2zwzkMYl+Cc8Kfmn8T6OGqUKWX93VnqvT9vWuZ 5trzAZjwdwpO8A== -----END CERTIFICATE-----Generated at Sun Jul 20 07:09:41 2025 by rpki-client