$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa File: 12702794577711ECB7FD0C6FC4F9AE02.roa (raw, json) Hash identifier: 7OgpQvkBU6+tUiHR/xeuBjYzt4Evz4MreUzB4Ql4bWc= Subject key identifier: 84:AE:7A:56:08:48:5D:CA:9E:D7:65:1C:C5:0E:D7:92:26:96:76:ED Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 046F Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa Signing time: Thu 17 Jul 2025 00:35:39 +0000 ROA not before: Thu 17 Jul 2025 00:35:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18196 IP address blocks: 103.115.21.0/24 maxlen: 24 103.123.27.0/24 maxlen: 24 103.123.36.0/23 maxlen: 23 103.123.36.0/24 maxlen: 24 103.123.37.0/24 maxlen: 24 2001:df5:1700::/48 maxlen: 48 2400:3c20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9, serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: Jul 17 00:35:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6878455b-c933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3e:20:87:3b:67:a9:fb:d3:82:dc:58:d0:b5: 67:41:18:52:e2:2e:92:79:8a:b8:a0:4a:12:23:ba: 3e:6a:71:39:fe:c6:1e:38:8e:a3:4e:41:23:1d:81: 6b:0d:8b:99:5b:89:77:14:ed:d3:cc:c6:f5:b0:45: bc:51:19:6c:fb:2d:0e:69:c9:8d:37:84:86:97:6a: 14:6b:61:14:e9:98:9e:4e:52:ae:82:1a:c6:47:0e: 7b:79:7c:b0:1a:33:65:b4:5a:d6:e3:e3:53:0b:a9: 37:8c:38:59:8b:5c:4c:dd:c9:cf:96:1f:1d:62:5d: ee:43:b3:38:0f:ec:b4:bc:29:a1:30:75:92:25:80: 20:62:5a:7a:c5:0c:3e:01:e0:ed:0d:6f:51:0c:73: 95:5f:d3:9a:3e:35:af:91:5e:10:32:58:93:93:2e: 5c:d1:bf:0d:bd:33:c5:aa:51:e9:80:43:7d:cb:de: 4a:5f:1c:93:5c:9c:fa:91:68:e8:d4:f4:51:85:b3: 77:fc:e1:17:c8:6e:13:73:a5:87:60:a7:64:b8:f8: 3d:12:c6:de:6f:c0:62:08:42:06:8e:45:e7:71:a7: fd:57:fa:6f:b1:f8:d2:3b:54:f4:19:6a:f8:f0:c0: 8e:8a:12:9e:21:12:e1:ed:17:09:7b:2a:53:e8:00: 29:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AE:7A:56:08:48:5D:CA:9E:D7:65:1C:C5:0E:D7:92:26:96:76:ED X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.21.0/24 103.123.27.0/24 103.123.36.0/23 IPv6: 2001:df5:1700::/48 2400:3c20::/32 Signature Algorithm: sha256WithRSAEncryption 33:c4:35:68:b2:dc:23:23:52:8c:3e:66:1b:b3:a0:b7:0a:b3: 4f:13:a2:88:31:92:a4:cc:d6:f8:5e:bc:8d:de:7c:61:70:61: dc:0f:60:8c:ae:22:c2:29:bb:31:a9:ed:0c:04:20:5f:6d:93: 5b:24:2b:6b:ec:c0:a1:21:b6:13:21:32:dd:57:fd:0f:c8:82: f9:86:1b:0d:41:c1:9e:5e:a0:5b:6c:1f:db:76:b4:87:84:fb: 4a:77:12:12:86:4a:b1:ce:79:15:c5:2c:b6:f4:1a:24:a6:83: 33:52:71:5c:44:3f:8b:fc:e3:42:f2:02:ed:58:0d:fe:4f:ab: 1f:46:d7:f8:5a:5e:11:7f:60:53:fe:aa:b2:4a:d5:2d:57:b6: d2:7c:5e:3e:a6:63:d3:56:c1:eb:8b:c9:82:14:6c:a8:3a:ba: 77:5d:f6:85:d1:83:55:83:ee:6e:26:57:1c:8c:1a:26:19:dd: 13:b8:37:ec:d0:f3:b9:0d:66:fd:66:5f:cf:62:6e:8d:23:9b: 77:bd:d3:6b:77:24:87:cf:c9:e0:e9:64:ae:24:39:e6:51:86: e4:54:27:5d:94:a9:c7:89:c0:00:db:5f:d0:3e:63:24:61:73: de:e6:e6:cf:33:02:5d:6f:98:e6:d6:4d:ef:84:1c:9a:dc:c0: 8e:80:4c:9d -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjUwNzE3MDAzNTM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc4NDU1Yi1jOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyz4ghztnqfvTgtxY0LVnQRhS4i6SeYq4oEoSI7o+anE5/sYeOI6jTkEjHYFr DYuZW4l3FO3TzMb1sEW8URls+y0OacmNN4SGl2oUa2EU6ZieTlKughrGRw57eXyw GjNltFrW4+NTC6k3jDhZi1xM3cnPlh8dYl3uQ7M4D+y0vCmhMHWSJYAgYlp6xQw+ AeDtDW9RDHOVX9OaPjWvkV4QMliTky5c0b8NvTPFqlHpgEN9y95KXxyTXJz6kWjo 1PRRhbN3/OEXyG4Tc6WHYKdkuPg9Esbeb8BiCEIGjkXncaf9V/pvsfjSO1T0GWr4 8MCOihKeIRLh7RcJeypT6AApZQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFISuelYI SF3KntdlHMUO15ImlnbtMB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM5QTkvNTI1NDg2Qjg1NjYyMTFFQ0I4RUM3MzMxQzRGOUFFMDIvMTI3MDI3OTQ1 Nzc3MTFFQ0I3RkQwQzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMBgEAgABMBIDBABncxUDBABnexsDBAFneyQwFgQCAAIwEAMHACABDfUXAAMF ACQAPCAwDQYJKoZIhvcNAQELBQADggEBADPENWiy3CMjUow+ZhuzoLcKs08Toogx kqTM1vhevI3efGFwYdwPYIyuIsIpuzGp7QwEIF9tk1skK2vswKEhthMhMt1X/Q/I gvmGGw1BwZ5eoFtsH9t2tIeE+0p3EhKGSrHOeRXFLLb0GiSmgzNScVxEP4v840Ly Au1YDf5Pqx9G1/haXhF/YFP+qrJK1S1XttJ8Xj6mY9NWweuLyYIUbKg6undd9oXR g1WD7m4mVxyMGiYZ3RO4N+zQ87kNZv1mX89ibo0jm3e902t3JIfPyeDpZK4kOeZR huRUJ12UqceJwADbX9A+YyRhc97m5s8zAl1vmObWTe+EHJrcwI6ATJ0= -----END CERTIFICATE-----Generated at Sun Jul 20 10:14:46 2025 by rpki-client