$ rpki-client -vvf rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/96ACE9CE8E8F11EE8915FE78C4F9AE02.roa File: 96ACE9CE8E8F11EE8915FE78C4F9AE02.roa (raw, json) Hash identifier: R4xHtrMxN1c5iDWMnVRL8nAiEpy4Y4o7VWQJMa2QgSY= Subject key identifier: 32:7F:C2:6A:66:99:82:97:94:35:93:ED:C9:CE:5E:E4:BB:FE:F9:59 Certificate issuer: /CN=A915B77C/serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Certificate serial: 0A8F Authority key identifier: 70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/96ACE9CE8E8F11EE8915FE78C4F9AE02.roa Signing time: Thu 04 Sep 2025 20:00:09 +0000 ROA not before: Thu 04 Sep 2025 20:00:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151983 IP address blocks: 103.104.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2703 (0xa8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B77C, serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Validity Not Before: Sep 4 20:00:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b9efc9-1e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ae:39:8e:01:72:fc:b2:e8:e2:55:ad:f0:29: d6:e0:eb:e4:51:7e:ba:34:c9:de:b2:09:37:99:5a: c2:4d:c1:f9:a3:65:11:c1:64:70:b6:8e:04:27:d9: 56:da:76:19:51:bc:98:24:a2:f3:b6:a4:86:88:27: 4a:fd:4a:24:1c:33:01:67:bf:d5:96:c3:89:2e:25: 89:d6:db:b1:f1:77:ca:5c:27:6a:75:09:d0:c0:13: 54:23:16:f8:7b:99:e3:25:54:25:61:7f:6d:05:68: 6f:ab:2b:6e:67:7f:b4:0d:fe:4d:5a:d6:2e:77:b7: 20:56:2a:61:77:c3:67:c0:33:b1:29:e8:87:bb:cc: d8:55:4e:32:a4:6e:ca:81:9d:7c:d5:4b:fc:38:7e: 11:12:49:72:bc:2e:e1:f9:89:ad:7f:b1:a1:c1:6c: 8d:29:3e:14:86:96:9f:32:d0:c5:3f:0f:a8:53:c8: 1a:a6:6c:07:05:8c:9a:07:31:b0:16:67:a2:3c:c0: ba:59:e3:f5:33:65:cb:3a:00:6d:bb:20:e7:2a:bc: d5:67:c4:9f:d0:b2:00:79:3d:ae:7f:21:0b:19:a6: 45:a5:67:d8:bd:fb:57:ba:3a:6b:86:f4:e4:69:52: f1:69:9a:bd:2e:9a:c6:6c:b4:96:62:24:61:b8:d2: fa:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7F:C2:6A:66:99:82:97:94:35:93:ED:C9:CE:5E:E4:BB:FE:F9:59 X509v3 Authority Key Identifier: keyid:70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/96ACE9CE8E8F11EE8915FE78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.87.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:8f:86:84:6f:4e:59:6c:dc:3c:23:e2:67:9f:ff:ac:87:5f: 2a:86:e0:21:f5:6e:9b:fe:14:29:00:b2:ae:87:10:52:73:4c: 8e:46:16:bd:31:31:96:cd:f9:3d:b4:bc:e6:79:7f:01:fb:fa: 07:7b:42:ec:77:9f:fb:2a:60:73:d8:96:51:c2:26:2c:43:02: a2:64:57:ef:2e:5a:91:52:63:51:e2:5c:29:e1:e3:64:ec:01: d9:79:42:cd:79:38:b2:c7:7e:db:5f:a2:a2:7a:1f:bc:74:6b: e8:b4:3c:00:92:69:66:f3:33:43:88:13:0c:42:1c:dd:bb:c4: 00:fb:93:c5:2d:f1:21:f4:db:b5:d2:31:25:4b:aa:c3:1a:72: 7b:17:42:ff:fd:64:60:7d:72:09:33:9f:d6:d0:f4:4c:f3:c8: 9a:b0:34:a8:61:ad:cc:24:33:f7:90:75:bf:b5:d4:30:f2:bf: 56:9f:0e:86:1a:9c:3e:64:35:11:90:e9:92:44:9a:57:ec:81: fa:ed:83:08:f7:38:20:37:57:9d:40:c3:dd:c8:09:34:59:72: 70:d2:f4:dd:3b:17:20:ea:9a:bc:a1:26:10:f2:e6:6a:cc:a6: 8e:bf:05:2c:25:43:12:e2:d1:89:33:22:84:87:24:b7:46:05: 82:69:7c:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI3N0MxMTAvBgNVBAUTKDcwNzBDNTU2NUNDMkZFNDU2QzMxNjA0MDhCNkU3RkI2 ODBDMDhDMTkwHhcNMjUwOTA0MjAwMDA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5ZWZjOS0xZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApq45jgFy/LLo4lWt8CnW4OvkUX66NMnesgk3mVrCTcH5o2URwWRwto4EJ9lW 2nYZUbyYJKLztqSGiCdK/UokHDMBZ7/VlsOJLiWJ1tux8XfKXCdqdQnQwBNUIxb4 e5njJVQlYX9tBWhvqytuZ3+0Df5NWtYud7cgViphd8NnwDOxKeiHu8zYVU4ypG7K gZ181Uv8OH4REklyvC7h+Ymtf7GhwWyNKT4UhpafMtDFPw+oU8gapmwHBYyaBzGw FmeiPMC6WeP1M2XLOgBtuyDnKrzVZ8Sf0LIAeT2ufyELGaZFpWfYvftXujprhvTk aVLxaZq9LprGbLSWYiRhuNL6yQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDJ/wmpm mYKXlDWT7cnOXuS7/vlZMB8GA1UdIwQYMBaAFHBwxVZcwv5FbDFgQItuf7aAwIwZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjc3Qy8yODE0Rjc3QTY5 QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6Q19rVnNNV0JBaTI1X3RvREFq QmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIREZWbHpDX2tWc01XQkFpMjVfdG9EQWpCay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI3N0MvMjgxNEY3N0E2OUI1MTFFQUJBNjAxNzUyQzRGOUFFMDIvOTZBQ0U5Q0U4 RThGMTFFRTg5MTVGRTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaFcwDQYJKoZIhvcNAQELBQADggEBAFqPhoRvTlls3Dwj 4mef/6yHXyqG4CH1bpv+FCkAsq6HEFJzTI5GFr0xMZbN+T20vOZ5fwH7+gd7Qux3 n/sqYHPYllHCJixDAqJkV+8uWpFSY1HiXCnh42TsAdl5Qs15OLLHfttfoqJ6H7x0 a+i0PACSaWbzM0OIEwxCHN27xAD7k8Ut8SH027XSMSVLqsMacnsXQv/9ZGB9cgkz n9bQ9EzzyJqwNKhhrcwkM/eQdb+11DDyv1afDoYanD5kNRGQ6ZJEmlfsgfrtgwj3 OCA3V51Aw93ICTRZcnDS9N07FyDqmryhJhDy5mrMpo6/BSwlQxLi0YkzIoSHJLdG BYJpfEU= -----END CERTIFICATE-----Generated at Mon Sep 8 12:58:01 2025 by rpki-client