$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/652A87CC65EC11F0BAEF8066C4F9AE02.roa File: 652A87CC65EC11F0BAEF8066C4F9AE02.roa (raw, json) Hash identifier: 9XaT2Y28YTwZ6IYxTWM25GSFb0uYcps1D3XMi6kO1+8= Subject key identifier: 32:01:6F:33:57:75:DF:9C:17:70:6A:04:CE:6F:4A:FD:EE:80:58:81 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 02D9 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/652A87CC65EC11F0BAEF8066C4F9AE02.roa Signing time: Mon 21 Jul 2025 04:37:23 +0000 ROA not before: Mon 21 Jul 2025 04:37:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138115 IP address blocks: 103.67.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Jul 21 04:37:23 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=687dc403-7504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c8:f6:a0:63:31:e3:f9:7c:7b:7e:3c:f7:95: 88:94:96:0c:f4:2a:09:9a:a4:22:4b:1d:69:be:06: aa:8c:75:d3:86:ec:66:28:3c:47:59:78:6a:c7:b2: 1f:00:2e:f9:a9:44:27:84:4e:31:07:36:c2:d7:a0: 26:bd:ec:fb:73:bc:fd:75:da:eb:4b:2d:82:90:a7: 73:19:7f:ef:7f:82:63:af:7e:d1:f7:74:e5:40:e4: 4a:c0:c3:b1:74:05:47:f5:45:a0:3b:30:1c:56:d2: 96:24:fa:bb:15:cc:f6:d5:58:39:d6:f2:4d:1c:97: 8c:02:a0:e2:a1:b2:90:7e:01:d9:7e:78:da:d3:fb: 6c:b8:db:19:31:58:18:74:67:2b:2a:b3:e0:14:4d: 23:bd:ed:54:f3:7c:14:a1:69:fa:5d:82:84:8b:0a: 0c:c1:92:ad:da:31:8e:d1:30:ec:4c:73:4d:c3:0a: d6:12:94:09:f8:35:d4:e2:db:c0:2c:54:1f:f4:18: 84:36:fb:3e:80:48:f4:8b:74:6c:a0:04:fd:c4:b2: a0:ec:35:fb:ca:69:37:24:37:78:55:b7:18:b6:3b: 00:a8:2b:7c:17:62:57:ef:e3:3f:e5:9e:08:54:a9: 67:b6:ba:ed:56:81:89:f8:cd:c0:63:4b:ae:ee:4a: 8e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:01:6F:33:57:75:DF:9C:17:70:6A:04:CE:6F:4A:FD:EE:80:58:81 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/652A87CC65EC11F0BAEF8066C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.244.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:0f:3d:87:f1:83:fd:a0:ff:e0:97:2f:f3:e8:8b:33:32:3d: 8d:20:72:c6:53:23:33:a5:62:90:86:33:d7:bf:b1:69:ab:b3: c8:48:ae:1d:5d:da:76:d2:dc:3f:d2:5d:d7:6b:62:e8:e9:4b: dc:3f:20:e7:e7:2a:3a:41:50:68:52:d0:a9:dc:b0:c7:5b:b7: dc:c9:da:2c:bd:53:44:e0:63:de:3a:c5:dd:6f:94:cf:39:fd: 62:7c:2a:8e:d0:b4:8e:af:5e:02:59:74:8e:8f:1b:90:e4:a2: f5:62:31:7b:70:47:49:73:6c:d1:79:66:bd:a0:44:7c:56:19: 83:08:c2:7a:33:52:a9:e7:6b:3d:1e:e9:0d:a3:41:f4:4e:c0: 2f:7d:98:c5:06:71:16:57:19:9a:df:85:bc:32:b1:c7:9e:dd: 79:00:c8:3b:e7:4a:f7:76:c7:7f:3b:1b:ed:b9:1b:ad:3f:4a: 6f:cf:23:ea:f5:18:02:1d:e0:9a:f5:5d:b3:20:3e:49:70:14: 0e:e5:ef:c0:30:1f:39:8c:08:f2:95:2a:2b:54:c9:ec:dd:de: 47:fb:b8:67:4a:18:7a:02:4b:6e:27:b5:17:e3:b9:ed:50:d4: 18:8b:cb:8d:e4:96:9b:66:b0:ae:71:ae:74:7d:3c:cb:43:11: 2a:8a:57:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUwNzIxMDQzNzIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdkYzQwMy03NTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusj2oGMx4/l8e34895WIlJYM9CoJmqQiSx1pvgaqjHXThuxmKDxHWXhqx7If AC75qUQnhE4xBzbC16Amvez7c7z9ddrrSy2CkKdzGX/vf4Jjr37R93TlQORKwMOx dAVH9UWgOzAcVtKWJPq7Fcz21Vg51vJNHJeMAqDiobKQfgHZfnja0/tsuNsZMVgY dGcrKrPgFE0jve1U83wUoWn6XYKEiwoMwZKt2jGO0TDsTHNNwwrWEpQJ+DXU4tvA LFQf9BiENvs+gEj0i3RsoAT9xLKg7DX7ymk3JDd4VbcYtjsAqCt8F2JX7+M/5Z4I VKlntrrtVoGJ+M3AY0uu7kqO8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDIBbzNX dd+cF3BqBM5vSv3ugFiBMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0N0MvN0UwRjU4NzIwMUU5MTFFREFGOEJERTMwQzRGOUFFMDIvNjUyQTg3Q0M2 NUVDMTFGMEJBRUY4MDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQ/QwDQYJKoZIhvcNAQELBQADggEBAEoPPYfxg/2g/+CX L/PoizMyPY0gcsZTIzOlYpCGM9e/sWmrs8hIrh1d2nbS3D/SXddrYujpS9w/IOfn KjpBUGhS0KncsMdbt9zJ2iy9U0TgY946xd1vlM85/WJ8Ko7QtI6vXgJZdI6PG5Dk ovViMXtwR0lzbNF5Zr2gRHxWGYMIwnozUqnnaz0e6Q2jQfROwC99mMUGcRZXGZrf hbwyscee3XkAyDvnSvd2x387G+25G60/Sm/PI+r1GAId4Jr1XbMgPklwFA7l78Aw HzmMCPKVKitUyezd3kf7uGdKGHoCS24ntRfjue1Q1BiLy43klptmsK5xrnR9PMtD ESqKVxw= -----END CERTIFICATE-----Generated at Mon Jul 21 18:45:44 2025 by rpki-client