$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/72D9F434AD2411E98D9E935AC4F9AE02.roa File: 72D9F434AD2411E98D9E935AC4F9AE02.roa (raw, json) Hash identifier: 6yiyih3iYU5SXCZve8BQVAbNfjgN61udEXmY/BbF0dY= Subject key identifier: D3:7A:79:78:74:60:87:07:89:B7:EE:DE:B1:7C:22:88:A1:D4:DC:07 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0DC9 Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/72D9F434AD2411E98D9E935AC4F9AE02.roa Signing time: Mon 06 Jan 2025 18:16:04 +0000 ROA not before: Mon 06 Jan 2025 18:16:04 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137404 IP address blocks: 103.107.80.0/22 maxlen: 22 103.107.80.0/24 maxlen: 24 103.107.81.0/24 maxlen: 24 103.107.82.0/24 maxlen: 24 103.107.83.0/24 maxlen: 24 2402:4f40::/32 maxlen: 32 2402:4f40:1000::/36 maxlen: 36 2402:4f40:2000::/36 maxlen: 36 2402:4f40:3000::/36 maxlen: 36 2402:4f40:4000::/36 maxlen: 36 2402:4f40:5000::/36 maxlen: 36 2402:4f40:6000::/36 maxlen: 36 2402:4f40:7000::/36 maxlen: 36 2402:4f40:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3529 (0xdc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5, serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Jan 6 18:16:04 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677c1de3-7e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:25:cc:d3:e8:26:4f:ce:a0:ce:0c:f1:42:81: 36:ae:2a:17:53:91:38:9c:60:e7:64:63:c8:9b:25: 17:4a:bb:21:cd:ca:13:11:7e:30:63:0b:2a:3f:c9: 4e:bb:df:ff:c0:82:1c:62:4f:8d:31:9a:8a:e3:98: 0f:90:3d:db:f7:52:bb:5c:68:92:ed:e5:71:a1:c5: aa:58:d9:69:11:04:42:86:0f:76:13:94:5c:30:66: cd:29:20:77:86:cd:f9:c1:66:27:03:d0:f5:4c:89: 37:e5:7b:9b:cb:c8:6c:33:a9:ed:b4:1f:64:b3:66: 05:4e:4e:6e:a0:d7:fa:1e:81:51:bd:ac:19:b2:d6: 32:b0:86:40:0f:8f:4e:f2:24:0c:83:38:56:0b:94: a6:19:72:ca:53:8e:04:1d:09:f8:ca:42:01:09:c1: d1:83:ac:bc:e5:da:12:55:01:14:db:fb:ee:c2:2b: 44:85:d4:1e:6e:f3:3c:18:0a:6b:ea:c6:05:f6:ca: 12:85:83:f6:b4:b5:0c:3c:6d:89:31:6c:8d:3a:70: a7:88:9d:64:7e:9a:dc:da:df:6d:e9:6e:fe:d3:95: 77:80:6e:65:e0:80:5a:39:3d:0e:25:82:b4:52:38: 20:a8:4c:fe:d4:63:b5:dd:91:3c:43:ef:f3:e9:c5: eb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7A:79:78:74:60:87:07:89:B7:EE:DE:B1:7C:22:88:A1:D4:DC:07 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/72D9F434AD2411E98D9E935AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.80.0/22 IPv6: 2402:4f40::/32 Signature Algorithm: sha256WithRSAEncryption ca:e4:1b:06:84:cd:8b:83:d4:d7:28:61:a0:20:83:a1:b9:49: ba:bb:1e:90:44:29:e4:8b:1c:23:23:32:bf:e5:b4:78:02:13: bc:5c:f3:9f:08:0d:4e:3d:c2:a9:01:9f:19:f3:4c:cf:11:f7: f9:e0:64:be:b9:eb:cf:c4:1e:44:e1:a0:03:43:6a:1a:9f:0b: 3b:2b:5e:36:fa:cb:f0:30:f8:cf:70:88:0a:5d:c9:e6:30:55: 50:1d:99:4e:e3:19:4e:4a:1a:0c:56:d0:d3:33:ac:29:ca:85: c3:92:ea:3b:f4:42:b7:b2:de:f4:36:8d:2d:e3:16:37:24:6a: c4:77:67:cf:42:f4:e6:bb:88:c8:b6:1c:61:80:70:c2:eb:62: 36:fa:c1:f1:06:f9:0c:68:cf:72:b0:1e:a2:dd:6c:a1:ea:0e: ea:24:b0:70:02:09:77:29:6d:85:35:01:62:91:6b:6c:1b:f1: 67:f1:a4:22:01:3e:57:5a:63:d3:12:42:7b:97:da:10:5c:1e: f2:7a:4b:fa:1d:e4:a7:85:cd:7e:04:3f:11:ce:09:19:1e:02: a7:f1:9b:19:b8:ad:4f:76:ab:9c:ba:86:21:d0:2e:3d:ea:fb: e8:1c:39:e4:9c:a6:d8:89:8a:a9:cb:2e:3b:eb:ef:c5:6f:af: 3f:44:4f:44 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjUwMTA2MTgxNjA0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjMWRlMy03ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSXM0+gmT86gzgzxQoE2rioXU5E4nGDnZGPImyUXSrshzcoTEX4wYwsqP8lO u9//wIIcYk+NMZqK45gPkD3b91K7XGiS7eVxocWqWNlpEQRChg92E5RcMGbNKSB3 hs35wWYnA9D1TIk35Xuby8hsM6nttB9ks2YFTk5uoNf6HoFRvawZstYysIZAD49O 8iQMgzhWC5SmGXLKU44EHQn4ykIBCcHRg6y85doSVQEU2/vuwitEhdQebvM8GApr 6sYF9soShYP2tLUMPG2JMWyNOnCniJ1kfprc2t9t6W7+05V3gG5l4IBaOT0OJYK0 UjggqEz+1GO13ZE8Q+/z6cXrcQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNN6eXh0 YIcHibfu3rF8Ioih1NwHMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTIzQzUvMDM2NkQ3QUVBQ0UxMTFFOUJGQTU2NDIzQzRGOUFFMDIvNzJEOUY0MzRB RDI0MTFFOThEOUU5MzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJna1AwDQQCAAIwBwMFACQCT0AwDQYJKoZIhvcNAQELBQAD ggEBAMrkGwaEzYuD1NcoYaAgg6G5Sbq7HpBEKeSLHCMjMr/ltHgCE7xc858IDU49 wqkBnxnzTM8R9/ngZL6568/EHkThoANDahqfCzsrXjb6y/Aw+M9wiApdyeYwVVAd mU7jGU5KGgxW0NMzrCnKhcOS6jv0Qrey3vQ2jS3jFjckasR3Z89C9Oa7iMi2HGGA cMLrYjb6wfEG+Qxoz3KwHqLdbKHqDuoksHACCXcpbYU1AWKRa2wb8WfxpCIBPlda Y9MSQnuX2hBcHvJ6S/od5KeFzX4EPxHOCRkeAqfxmxm4rU92q5y6hiHQLj3q++gc OeScptiJiqnLLjvr78Vvrz9ET0Q= -----END CERTIFICATE-----Generated at Wed Nov 5 19:46:36 2025 by rpki-client