$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa File: 3A7527ECC1F711EF8B510B86C4F9AE02.roa (raw, json) Hash identifier: 7UGzCq6Cb6amiBq87W5KeE/DUZqLNVV6OVzp45wF3WQ= Subject key identifier: 58:41:38:96:47:F2:EB:5A:5F:7E:1A:72:EB:F2:6A:90:CC:3A:3C:F1 Certificate issuer: /CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Certificate serial: 018A Authority key identifier: 83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa Signing time: Tue 15 Jul 2025 04:10:23 +0000 ROA not before: Tue 15 Jul 2025 04:10:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 141778 IP address blocks: 103.229.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C42, serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Validity Not Before: Jul 15 04:10:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875d4af-5b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:95:cc:e6:08:1b:e1:ed:db:04:1b:f9:95:0e: 31:fa:d8:3a:a1:f0:64:46:13:41:aa:a7:b5:a2:dd: cc:bf:23:fe:a3:93:f9:eb:aa:a5:1c:0d:f4:c6:95: 0d:96:05:3a:cd:07:da:8c:22:da:73:50:c4:b6:3a: b4:01:cb:fb:fc:a5:e5:32:50:ac:8a:96:b4:75:41: ff:21:4f:64:d6:af:3f:14:7e:cc:fb:33:c2:20:38: 2b:7b:66:ae:12:1d:3f:80:d9:43:98:cd:be:5f:56: 32:af:9a:1b:95:9e:ae:56:34:73:65:b0:12:1f:e7: 4b:3d:8d:2c:b4:09:88:38:4c:1c:00:71:b1:45:70: de:9d:c8:a1:96:d7:a4:02:65:80:75:97:24:9e:0d: e4:16:cf:37:2f:39:48:e9:5e:99:b8:f8:7b:35:6c: fb:ad:5b:58:49:a4:fc:62:a5:5d:b6:7d:18:98:79: 3f:44:79:a4:f7:c0:89:a9:1f:e8:3d:bf:9b:b1:5c: 71:07:cf:cd:ca:93:cd:31:63:7f:dc:f3:39:41:f2: 4e:b8:8e:f2:2f:99:02:b0:79:ec:5d:3d:fe:65:d1: 56:82:6f:30:2b:05:07:9e:0d:15:08:b1:55:63:7c: 5c:92:ef:0a:75:a7:26:16:e3:1b:cc:9f:ef:d0:a2: ba:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:41:38:96:47:F2:EB:5A:5F:7E:1A:72:EB:F2:6A:90:CC:3A:3C:F1 X509v3 Authority Key Identifier: keyid:83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.190.0/24 Signature Algorithm: sha256WithRSAEncryption 52:e7:9a:dc:bb:dc:bc:1e:f3:f9:0c:96:c2:a8:1a:b3:75:51: 17:94:6b:f8:a1:21:79:e7:92:13:71:b9:f8:04:92:f1:ba:65: af:14:8d:0b:ff:55:12:52:c7:fb:92:48:77:8e:ee:dc:82:64: 8c:08:9a:77:98:b6:79:c1:d9:e8:d4:70:cc:98:c6:fb:90:1d: 21:a6:16:b6:57:bb:cd:97:5a:ec:e7:b4:34:09:8e:02:33:25: 98:d6:c0:b6:fe:73:2a:39:d1:f0:c5:75:40:5a:e0:b6:54:a3: dd:65:3b:05:ed:16:9a:6f:ce:b0:fa:8e:8c:5e:5e:cd:0c:d6: 58:58:6e:4c:9b:e3:95:b4:e1:ad:58:54:11:8f:7d:f8:b7:90: 54:fb:5a:4f:68:15:d9:f9:03:4a:a5:0a:78:08:65:27:4d:9b: c8:0a:53:fa:08:12:fc:76:74:7c:39:f8:f0:f2:b2:55:26:ac: 01:09:51:e3:c1:5d:4f:f2:f1:55:5c:3b:6b:35:ea:27:ed:1e: ed:e7:3c:0a:4d:8b:d3:b7:cb:39:ac:3f:36:29:4b:f6:14:48: 24:60:0e:fd:12:98:9b:15:c1:c5:0a:75:58:b9:37:01:58:73: cf:8b:de:b0:d6:2b:f0:ee:e9:82:c0:32:4b:3f:b9:5d:87:41: 0a:2b:53:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDNDIxMTAvBgNVBAUTKDgzNzlENzQ3Rjc0QTU1RURDNzNBMEUwNDIxQzc5QjVF QzBFNERFNzYwHhcNMjUwNzE1MDQxMDIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1ZDRhZi01YjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZXM5ggb4e3bBBv5lQ4x+tg6ofBkRhNBqqe1ot3MvyP+o5P566qlHA30xpUN lgU6zQfajCLac1DEtjq0Acv7/KXlMlCsipa0dUH/IU9k1q8/FH7M+zPCIDgre2au Eh0/gNlDmM2+X1Yyr5oblZ6uVjRzZbASH+dLPY0stAmIOEwcAHGxRXDencihltek AmWAdZckng3kFs83LzlI6V6ZuPh7NWz7rVtYSaT8YqVdtn0YmHk/RHmk98CJqR/o Pb+bsVxxB8/NypPNMWN/3PM5QfJOuI7yL5kCsHnsXT3+ZdFWgm8wKwUHng0VCLFV Y3xcku8KdacmFuMbzJ/v0KK6TwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFhBOJZH 8utaX34acuvyapDMOjzxMB8GA1UdIwQYMBaAFIN510f3SlXtxzoOBCHHm17A5N52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM0Mi8yNEE2NUVCRTIw RDAxMUVFOTAwODRGNUNDNEY5QUUwMi9nM25YUl9kS1ZlM0hPZzRFSWNlYlhzRGsz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czblhSX2RLVmUzSE9nNEVJY2ViWHNEazNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlDNDIvMjRBNjVFQkUyMEQwMTFFRTkwMDg0RjVDQzRGOUFFMDIvM0E3NTI3RUND MUY3MTFFRjhCNTEwQjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5b4wDQYJKoZIhvcNAQELBQADggEBAFLnmty73Lwe8/kM lsKoGrN1UReUa/ihIXnnkhNxufgEkvG6Za8UjQv/VRJSx/uSSHeO7tyCZIwImneY tnnB2ejUcMyYxvuQHSGmFrZXu82XWuzntDQJjgIzJZjWwLb+cyo50fDFdUBa4LZU o91lOwXtFppvzrD6joxeXs0M1lhYbkyb45W04a1YVBGPffi3kFT7Wk9oFdn5A0ql CngIZSdNm8gKU/oIEvx2dHw5+PDyslUmrAEJUePBXU/y8VVcO2s16iftHu3nPApN i9O3yzmsPzYpS/YUSCRgDv0SmJsVwcUKdVi5NwFYc8+L3rDWK/Du6YLAMks/uV2H QQorU4I= -----END CERTIFICATE-----Generated at Sun Jul 20 15:12:40 2025 by rpki-client