$ rpki-client -vvf rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/CDD1E222775711EF95F9762FC4F9AE02.roa File: CDD1E222775711EF95F9762FC4F9AE02.roa (raw, json) Hash identifier: Aoh8CUhINnfnEgUDz3yDlYTd3FWs346Lf8sfNhEQYQg= Subject key identifier: 54:9E:44:51:9A:81:A8:02:DD:76:21:00:FF:3B:70:89:8C:7D:2D:90 Certificate issuer: /CN=A91392AE/serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4 Certificate serial: 1A10 Authority key identifier: 4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/CDD1E222775711EF95F9762FC4F9AE02.roa Signing time: Wed 20 Aug 2025 16:54:36 +0000 ROA not before: Wed 20 Aug 2025 16:54:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153319 IP address blocks: 103.115.6.0/24 maxlen: 24 2001:df4:45c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6672 (0x1a10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91392AE, serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4 Validity Not Before: Aug 20 16:54:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a5fdcc-8add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0d:fe:fd:20:5f:2a:83:b6:22:a1:28:81:a0: d5:95:59:a2:22:36:1b:07:64:bd:31:fb:10:cb:17: ce:55:5c:75:a0:c5:a4:47:a4:15:2b:e0:cf:d1:9c: 49:db:54:23:0f:e1:a7:d4:41:c3:04:3f:4d:fd:87: 71:8e:4e:72:6d:de:94:03:57:32:34:a9:1f:4d:5f: 3e:67:88:67:50:25:2f:a3:5d:62:4a:23:cb:a7:23: 0f:32:75:58:16:50:9b:87:ad:96:af:fd:c3:3a:95: c6:29:24:83:70:5c:d0:c1:87:24:76:82:0a:11:cc: 42:59:c1:5a:03:5f:e5:60:30:a8:0e:a1:d9:0a:19: 69:5b:36:6f:42:2c:dc:c8:c8:21:6c:de:38:07:01: 56:6e:b5:67:a8:11:08:1a:84:96:60:f4:0b:11:f7: bc:e3:5b:63:c4:cc:48:c0:aa:d7:a0:1b:a3:17:4c: ba:5e:13:d9:0e:cd:61:68:5b:2d:3b:ad:de:8a:69: 57:89:51:75:10:4e:6e:b6:f0:0c:cc:15:be:4d:6c: 68:f5:0c:a5:31:ac:68:d4:40:11:c6:68:ba:f3:11: c4:ca:f5:5b:fb:d7:04:76:35:6e:07:d6:52:c7:ea: 33:f0:31:ff:81:3e:96:90:43:9b:74:63:34:6b:ca: 67:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:9E:44:51:9A:81:A8:02:DD:76:21:00:FF:3B:70:89:8C:7D:2D:90 X509v3 Authority Key Identifier: keyid:4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/CDD1E222775711EF95F9762FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.6.0/24 IPv6: 2001:df4:45c0::/48 Signature Algorithm: sha256WithRSAEncryption 95:3b:4e:c3:c5:74:9a:9b:71:c3:16:2d:37:ff:5c:44:73:4b: fd:f9:b8:35:65:78:c0:40:a6:80:11:61:e9:7e:3d:14:3e:b1: 92:15:30:9a:c8:05:03:76:c5:9e:e9:7e:3a:8b:5b:e5:6b:38: f8:44:b2:25:b2:cd:71:77:b4:14:fb:b8:44:8c:0c:a2:54:09: 64:25:bf:10:f2:6f:20:a4:0d:f1:01:af:c5:65:d8:46:d1:e2: 19:0d:45:44:00:9f:f4:5f:83:b4:f5:b7:15:78:7c:44:0f:dd: 15:de:f9:9a:50:cb:44:32:f1:6f:2f:09:85:8a:e1:6e:f8:ea: 87:0a:04:fe:f1:6f:35:14:b9:9e:84:70:73:a0:83:08:54:d9: dc:4e:48:41:55:d2:0c:7e:a5:73:78:8b:ac:d0:62:08:e4:bb: 49:af:e2:63:1d:7d:38:e8:f5:96:bf:f0:38:41:a8:23:a4:c9: 56:c6:34:ea:c0:e0:de:b0:2c:45:fc:d8:64:2d:87:c5:cc:a0: 2d:fa:e9:d9:cd:b5:1c:72:52:2b:17:00:76:de:a9:f6:3d:45: f8:20:51:e4:c6:db:04:de:b1:ea:33:f8:52:d2:7b:35:ef:10: cf:92:ea:f2:8f:eb:aa:33:e7:07:02:69:da:74:05:86:71:d4: c1:56:b8:3d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICGhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyQUUxMTAvBgNVBAUTKDREQUE3NzZGODc5MjgwMEY0MkI4OTc4MEYzMkQ5RTcz Mjc2MTU1RDQwHhcNMjUwODIwMTY1NDM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1ZmRjYy04YWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4g3+/SBfKoO2IqEogaDVlVmiIjYbB2S9MfsQyxfOVVx1oMWkR6QVK+DP0ZxJ 21QjD+Gn1EHDBD9N/Ydxjk5ybd6UA1cyNKkfTV8+Z4hnUCUvo11iSiPLpyMPMnVY FlCbh62Wr/3DOpXGKSSDcFzQwYckdoIKEcxCWcFaA1/lYDCoDqHZChlpWzZvQizc yMghbN44BwFWbrVnqBEIGoSWYPQLEfe841tjxMxIwKrXoBujF0y6XhPZDs1haFst O63eimlXiVF1EE5utvAMzBW+TWxo9QylMaxo1EARxmi68xHEyvVb+9cEdjVuB9ZS x+oz8DH/gT6WkEObdGM0a8pnjQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFSeRFGa gagC3XYhAP87cImMfS2QMB8GA1UdIwQYMBaAFE2qd2+HkoAPQriXgPMtnnMnYVXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTJBRS8zMzZFRjY3NjYw RTgxMUU3QUMxNzUyNTlDNEY5QUUwMi9UYXAzYjRlU2dBOUN1SmVBOHkyZWN5ZGhW ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RhcDNiNGVTZ0E5Q3VKZUE4eTJlY3lkaFZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkyQUUvMzM2RUY2NzY2MEU4MTFFN0FDMTc1MjU5QzRGOUFFMDIvQ0REMUUyMjI3 NzU3MTFFRjk1Rjk3NjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABncwYwDwQCAAIwCQMHACABDfRFwDANBgkqhkiG9w0BAQsF AAOCAQEAlTtOw8V0mptxwxYtN/9cRHNL/fm4NWV4wECmgBFh6X49FD6xkhUwmsgF A3bFnul+Ootb5Ws4+ESyJbLNcXe0FPu4RIwMolQJZCW/EPJvIKQN8QGvxWXYRtHi GQ1FRACf9F+DtPW3FXh8RA/dFd75mlDLRDLxby8JhYrhbvjqhwoE/vFvNRS5noRw c6CDCFTZ3E5IQVXSDH6lc3iLrNBiCOS7Sa/iYx19OOj1lr/wOEGoI6TJVsY06sDg 3rAsRfzYZC2HxcygLfrp2c21HHJSKxcAdt6p9j1F+CBR5MbbBN6x6jP4UtJ7Ne8Q z5Lq8o/rqjPnBwJp2nQFhnHUwVa4PQ== -----END CERTIFICATE-----Generated at Thu Aug 21 18:36:22 2025 by rpki-client