$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/D78EA2DE44ED11EEA6685324C4F9AE02.roa File: D78EA2DE44ED11EEA6685324C4F9AE02.roa (raw, json) Hash identifier: 4QpgormCT1kZqyeVQ/y0TiB9qs/O+TjOWDffZPqJhKo= Subject key identifier: 15:10:E4:5F:D1:43:8E:DF:DA:D6:2E:1A:0A:80:3A:C1:6F:DF:FE:02 Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 019F Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/D78EA2DE44ED11EEA6685324C4F9AE02.roa Signing time: Tue 08 Jul 2025 10:18:42 +0000 ROA not before: Tue 08 Jul 2025 10:18:42 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140443 IP address blocks: 103.215.228.0/23 maxlen: 24 2401:920:123::/48 maxlen: 48 2401:920:a31::/48 maxlen: 48 2401:920:1001::/48 maxlen: 48 2401:920:1002::/48 maxlen: 48 2401:920:1003::/48 maxlen: 48 2401:920:1004::/48 maxlen: 48 2401:920:1005::/48 maxlen: 48 2401:920:1006::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92, serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Jul 8 10:18:42 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=686cf082-cf56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cb:4c:b1:f3:79:29:9d:49:98:97:a9:87:0a: 9f:8b:6f:7f:ba:b4:e4:0b:d9:4c:9c:05:c7:a8:15: df:51:af:6c:c5:14:d2:bf:9e:43:de:49:2d:f3:de: f4:d9:0e:2f:62:05:59:7e:9b:92:0d:4f:a2:ed:36: 15:f5:47:80:31:a0:dc:b8:d1:f0:4a:f8:b5:5e:f7: d7:6e:79:4c:93:03:82:0c:94:18:43:6c:a8:5d:43: df:e4:fc:a6:92:1d:dc:01:9e:dd:d8:2e:fe:9f:4c: 08:55:f3:53:8e:ea:f7:0f:e2:02:a7:e2:78:f5:b4: 2a:69:32:67:35:82:83:4b:9b:cc:73:d3:19:db:00: 22:ef:d4:a9:3c:bd:bb:fb:bf:90:4f:17:62:a1:7d: 11:f7:c2:36:e1:79:17:b4:89:05:5f:92:33:3d:b2: 47:1e:f5:4f:dc:1b:5c:db:89:6c:8b:30:3e:28:83: 10:35:e8:f7:cb:65:7e:6c:18:ba:33:ac:33:3b:d0: 16:2b:43:a9:b4:96:03:f5:20:4f:4c:8f:8f:c8:1c: 2f:98:dd:f0:47:67:08:01:ea:bb:e2:d9:df:ce:0c: 4a:54:9c:be:90:43:3f:bd:5e:0b:b2:a7:60:77:45: 83:48:aa:bc:4a:77:72:7e:2a:42:b8:df:dc:41:a6: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:10:E4:5F:D1:43:8E:DF:DA:D6:2E:1A:0A:80:3A:C1:6F:DF:FE:02 X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/D78EA2DE44ED11EEA6685324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.228.0/23 IPv6: 2401:920:123::/48 2401:920:a31::/48 2401:920:1001::-2401:920:1006:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0f:c9:6e:c6:b4:71:6c:d6:bd:e2:a6:f1:b6:f1:e9:34:e8:7a: bf:68:aa:8c:7c:1a:91:7c:44:f6:b2:18:25:82:e5:62:92:66: ea:7c:89:be:6c:61:fd:ef:85:99:90:83:60:1d:a2:54:ff:10: fd:55:9f:b8:e6:f1:e4:cd:47:34:5b:17:5e:a8:9d:7b:fc:d5: 9f:fd:a8:d3:54:6b:2a:69:26:0d:8c:73:e3:56:75:79:6c:cc: 54:79:55:0d:ce:e2:57:db:10:6f:8e:51:c6:ad:b1:04:d1:90: 24:19:63:58:b6:0b:3e:d8:79:0e:04:cf:22:41:df:09:ef:64: 7f:37:ea:68:44:96:b9:45:54:6f:a9:45:90:fb:67:98:4f:d8: d1:58:81:03:22:49:2f:6b:94:37:e4:c9:5b:9c:68:5c:d0:3c: 2b:9f:06:d2:a9:09:aa:58:9b:3a:f7:28:9c:d1:45:3d:f9:34: 61:4a:0e:59:28:8f:e1:ce:55:94:29:2e:5e:3a:ae:e6:ef:9e: 29:a2:6c:2a:31:83:11:2a:57:2b:75:69:3e:03:12:96:ea:4a: fb:5a:a9:84:c6:73:3a:56:d8:92:46:7f:2e:bd:a7:f8:f3:cc: e6:d6:5b:05:7c:32:75:41:04:06:d3:6f:28:94:41:ee:e5:d9: a7:21:a8:d8 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFOTIxMTAvBgNVBAUTKDk3RjNFQzEwMTQ1NThFMDg0NzBBMDNBOTQ3OEM4NEYy M0U0NTAwM0EwHhcNMjUwNzA4MTAxODQyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZjZjA4Mi1jZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtstMsfN5KZ1JmJephwqfi29/urTkC9lMnAXHqBXfUa9sxRTSv55D3kkt8970 2Q4vYgVZfpuSDU+i7TYV9UeAMaDcuNHwSvi1XvfXbnlMkwOCDJQYQ2yoXUPf5Pym kh3cAZ7d2C7+n0wIVfNTjur3D+ICp+J49bQqaTJnNYKDS5vMc9MZ2wAi79SpPL27 +7+QTxdioX0R98I24XkXtIkFX5IzPbJHHvVP3Btc24lsizA+KIMQNej3y2V+bBi6 M6wzO9AWK0OptJYD9SBPTI+PyBwvmN3wR2cIAeq74tnfzgxKVJy+kEM/vV4Lsqdg d0WDSKq8SndyfipCuN/cQaYpaQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFBUQ5F/R Q47f2tYuGgqAOsFv3/4CMB8GA1UdIwQYMBaAFJfz7BAUVY4IRwoDqUeMhPI+RQA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkU5Mi8xODg1QTZEMjA2 Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpnaEhDZ09wUjR5RThqNUZB RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJFOTIvMTg4NUE2RDIwNkNGMTFFRTlDOTcxMjdCQzRGOUFFMDIvRDc4RUEyREU0 NEVEMTFFRUE2Njg1MzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MAwEAgABMAYDBAFn1+QwLAQCAAIwJgMHACQBCSABIwMHACQBCSAKMTASAwcA JAEJIBABAwcAJAEJIBAGMA0GCSqGSIb3DQEBCwUAA4IBAQAPyW7GtHFs1r3ipvG2 8ek06Hq/aKqMfBqRfET2shglguVikmbqfIm+bGH974WZkINgHaJU/xD9VZ+45vHk zUc0WxdeqJ17/NWf/ajTVGsqaSYNjHPjVnV5bMxUeVUNzuJX2xBvjlHGrbEE0ZAk GWNYtgs+2HkOBM8iQd8J72R/N+poRJa5RVRvqUWQ+2eYT9jRWIEDIkkva5Q35Mlb nGhc0DwrnwbSqQmqWJs69yic0UU9+TRhSg5ZKI/hzlWUKS5eOq7m754pomwqMYMR KlcrdWk+AxKW6kr7WqmExnM6VtiSRn8uvaf488zm1lsFfDJ1QQQG028olEHu5dmn IajY -----END CERTIFICATE-----Generated at Mon Jul 21 06:35:22 2025 by rpki-client