$ rpki-client -vvf rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/D08FF4F0BB7111EFACA16B1DC4F9AE02.roa File: D08FF4F0BB7111EFACA16B1DC4F9AE02.roa (raw, json) Hash identifier: i91dJKVTb6GLG1R30/IzaT1OTBlo0JQsHaeOVz47T3o= Subject key identifier: 50:92:81:97:6A:C2:19:5F:9B:EF:2B:37:18:63:5E:DD:1C:E4:CF:F1 Certificate issuer: /CN=A917270F/serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Certificate serial: 02F5 Authority key identifier: 7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/D08FF4F0BB7111EFACA16B1DC4F9AE02.roa Signing time: Tue 26 Aug 2025 07:15:46 +0000 ROA not before: Tue 26 Aug 2025 07:15:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139029 IP address blocks: 103.191.163.0/24 maxlen: 24 2400:96e0:2000::/36 maxlen: 36 2400:96e0:2000::/40 maxlen: 40 2400:96e0:2001::/48 maxlen: 48 2400:96e0:2002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917270F, serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Validity Not Before: Aug 26 07:15:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ad5f21-aa6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:43:a4:fb:dc:d4:bc:48:79:18:d5:87:2b:aa: 49:08:d1:f2:7e:b4:60:2b:15:99:fc:48:ed:ce:2c: d3:c9:8a:8b:23:72:eb:db:ce:56:13:7b:f3:ff:20: cf:47:a5:b9:bb:96:74:76:3c:ce:6e:bf:5b:e2:18: 1b:f4:76:d8:0e:38:0e:16:ec:e9:19:4a:4d:c2:52: 12:29:57:83:73:d3:70:f0:92:42:b8:b3:b0:43:07: 91:16:3a:a7:85:db:4b:3f:ec:a9:f2:3f:25:4a:77: f4:df:1c:0d:48:de:d1:57:0a:65:d0:af:66:7f:34: 05:82:91:8a:ff:15:72:d3:0d:41:e7:1c:ec:d2:7f: e9:73:7e:4b:a8:17:6d:87:44:89:8f:e8:98:c8:af: a9:22:e6:25:e7:19:45:d6:93:3d:af:95:b2:4b:63: 00:ac:58:73:8a:44:f1:2b:38:f3:de:d9:36:d3:d6: 3f:fe:80:db:de:31:30:6c:8e:49:7e:89:b3:83:3c: 7a:00:3a:ce:d2:fa:9a:4f:e0:86:50:a8:98:48:1a: c9:ad:14:a4:2f:0c:e9:00:a2:7b:6d:e6:11:ad:92: af:52:93:71:05:02:6b:29:8b:29:70:fd:82:e6:11: b1:d1:d5:a6:a5:52:26:c3:4a:79:5b:48:45:af:40: b1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:92:81:97:6A:C2:19:5F:9B:EF:2B:37:18:63:5E:DD:1C:E4:CF:F1 X509v3 Authority Key Identifier: keyid:7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/D08FF4F0BB7111EFACA16B1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.163.0/24 IPv6: 2400:96e0:2000::/36 Signature Algorithm: sha256WithRSAEncryption 6c:15:c0:e1:99:bc:9a:27:da:02:3f:8d:20:8d:5a:3f:57:25: ba:32:cf:65:71:02:84:df:49:92:9b:34:2e:e6:90:ff:7b:db: ed:22:fe:02:21:7c:28:1b:9c:76:61:8a:b9:1e:75:c1:d0:34: 06:28:82:54:ee:59:74:3e:b3:1a:ae:62:be:b6:50:4e:55:9b: 86:bf:1f:e9:33:96:c6:71:11:d5:f2:e8:ef:47:1d:11:30:93: fb:c1:db:a2:de:2b:78:28:60:81:f8:44:20:61:5d:4b:e4:42: 49:2b:c4:dd:ed:6d:c2:e2:98:48:a3:02:8f:b2:34:56:54:79: 99:70:c8:64:66:57:3a:1a:45:fb:29:58:47:2a:5e:5b:8d:75: e4:9e:20:65:cc:60:c4:c7:7a:16:0c:9f:ff:45:73:68:23:7e: bc:56:e0:5a:da:b8:75:9e:d0:f1:f4:c2:af:49:94:7a:58:fa: ae:47:59:c7:28:f2:b5:28:25:fa:ca:d1:a9:ee:d5:75:1e:57: 1e:8d:ef:9e:9c:16:7a:6c:6d:b4:e6:a3:e2:ff:a0:0c:85:fc: c2:24:b8:21:c8:1d:9c:17:4f:de:a0:5d:3c:c6:7e:83:3a:e8: 07:79:6c:4e:eb:5b:e1:16:24:6c:f8:48:d3:ee:ef:8e:3c:00: 4d:b1:c8:cf -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI3MEYxMTAvBgNVBAUTKDdFNDREQ0U5NzJGMTNDODBFNTM0QjJFNjg1RkUxRDJB MEQ3NjE1MTIwHhcNMjUwODI2MDcxNTQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkNWYyMS1hYTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEOk+9zUvEh5GNWHK6pJCNHyfrRgKxWZ/EjtzizTyYqLI3Lr285WE3vz/yDP R6W5u5Z0djzObr9b4hgb9HbYDjgOFuzpGUpNwlISKVeDc9Nw8JJCuLOwQweRFjqn hdtLP+yp8j8lSnf03xwNSN7RVwpl0K9mfzQFgpGK/xVy0w1B5xzs0n/pc35LqBdt h0SJj+iYyK+pIuYl5xlF1pM9r5WyS2MArFhzikTxKzjz3tk209Y//oDb3jEwbI5J fomzgzx6ADrO0vqaT+CGUKiYSBrJrRSkLwzpAKJ7beYRrZKvUpNxBQJrKYspcP2C 5hGx0dWmpVImw0p5W0hFr0CxywIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFCSgZdq whlfm+8rNxhjXt0c5M/xMB8GA1UdIwQYMBaAFH5E3Oly8TyA5TSy5oX+HSoNdhUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjcwRi9EQzVFNzRDQTA4 RTgxMUVEQjlFMUI2MzNDNEY5QUUwMi9ma1RjNlhMeFBJRGxOTExtaGY0ZEtnMTJG UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZrVGM2WEx4UElEbE5MTG1oZjRkS2cxMkZSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI3MEYvREM1RTc0Q0EwOEU4MTFFREI5RTFCNjMzQzRGOUFFMDIvRDA4RkY0RjBC QjcxMTFFRkFDQTE2QjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnv6MwDgQCAAIwCAMGBCQAluAgMA0GCSqGSIb3DQEBCwUA A4IBAQBsFcDhmbyaJ9oCP40gjVo/VyW6Ms9lcQKE30mSmzQu5pD/e9vtIv4CIXwo G5x2YYq5HnXB0DQGKIJU7ll0PrMarmK+tlBOVZuGvx/pM5bGcRHV8ujvRx0RMJP7 wdui3it4KGCB+EQgYV1L5EJJK8Td7W3C4phIowKPsjRWVHmZcMhkZlc6GkX7KVhH Kl5bjXXkniBlzGDEx3oWDJ//RXNoI368VuBa2rh1ntDx9MKvSZR6WPquR1nHKPK1 KCX6ytGp7tV1Hlceje+enBZ6bG205qPi/6AMhfzCJLghyB2cF0/eoF08xn6DOugH eWxO61vhFiRs+EjT7u+OPABNscjP -----END CERTIFICATE-----Generated at Wed Sep 10 04:17:50 2025 by rpki-client