$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa File: F0223A56C8F711EFB2542D5FC4F9AE02.roa (raw, json) Hash identifier: slEYVdAk6tIbZpblC8w7KpBF1oowZxGxHf1f2574AkA= Subject key identifier: A5:83:6B:FD:A3:77:64:B7:C2:9E:EB:23:6B:51:32:51:09:60:69:64 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 03D1 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa Signing time: Sat 31 May 2025 01:06:55 +0000 ROA not before: Sat 31 May 2025 01:06:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149058 IP address blocks: 103.138.146.0/24 maxlen: 24 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40::/36 maxlen: 36 2407:3b40:1000::/36 maxlen: 36 2407:3b40:2000::/36 maxlen: 36 2407:3b40:3000::/36 maxlen: 36 2407:3b40:4000::/36 maxlen: 36 2407:3b40:5000::/36 maxlen: 36 2407:3b40:6000::/36 maxlen: 36 2407:3b40:7000::/36 maxlen: 36 2407:3b40:9000::/36 maxlen: 36 2407:3b40:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720, serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: May 31 01:06:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a562f-4a8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:89:58:b6:79:55:39:f3:7d:6b:70:9b:78:2a: 16:04:97:30:38:17:6a:a3:d3:69:0c:97:b7:0f:d0: 22:3c:96:06:cd:95:21:0d:2c:49:71:4e:06:0d:71: 32:b7:86:5a:90:4c:87:5d:23:4f:1f:77:17:91:f9: 33:45:7e:23:69:8f:19:65:9b:4b:d0:b2:09:b7:ca: 24:4f:d1:ee:07:77:3f:c2:b4:7b:78:eb:43:a5:bf: 17:12:76:2d:57:85:57:a9:7c:23:2c:c8:28:70:fe: dd:59:15:8a:48:20:8b:cf:f2:db:30:34:05:61:15: 0a:ff:1d:d6:fd:53:a5:82:17:c1:fd:6d:83:2f:8f: 00:1e:87:7c:64:c5:99:1e:f8:50:15:10:c8:2a:98: 12:d3:41:31:59:30:2c:98:98:50:b8:e3:1f:81:f0: 4a:ef:11:30:fc:f3:77:2d:be:74:4d:38:ac:60:ae: 95:fa:81:6e:a5:de:05:9a:b5:48:46:31:0c:92:54: 22:24:90:e3:6c:7b:11:f0:57:45:b0:a7:88:34:6e: df:8d:e8:18:71:f8:d7:9d:a3:d8:0c:b5:3d:d0:4a: 1c:cb:4f:73:3c:3f:6b:f7:ec:2e:43:da:02:7e:11: ee:67:15:8c:29:d3:8d:ea:5b:e9:96:bf:b5:fe:04: 8c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:83:6B:FD:A3:77:64:B7:C2:9E:EB:23:6B:51:32:51:09:60:69:64 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.146.0/23 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 2a:93:d7:02:e4:62:2f:da:26:1c:dc:fc:ec:c4:56:f8:1d:8e: 5e:5c:03:1a:cd:b8:72:de:77:c3:78:f1:c3:74:3b:62:70:f0: c7:f0:bf:13:28:63:86:5f:80:7b:06:f9:d2:70:e4:66:ba:9f: dc:6b:c4:34:38:5f:2b:46:75:30:d7:98:60:75:14:32:27:2a: 9e:4b:39:98:f5:ca:17:f6:3f:25:ec:f2:9f:4a:a1:cc:94:fe: 62:db:49:90:f4:69:39:bc:0d:1e:0d:d2:79:27:55:71:b8:9c: c8:de:b3:7e:db:d1:12:54:80:9c:99:f2:00:d4:e5:17:59:b9: 89:88:ba:4d:54:f4:b8:ca:98:33:d6:9e:a2:46:ff:79:01:4f: 31:7e:86:30:88:5e:d4:c9:2d:f3:82:bf:2c:95:fd:1b:c8:28: 92:19:38:04:ee:79:ef:cd:e5:65:97:18:3c:be:30:34:57:bc: 0d:4d:8b:7a:ed:42:c1:47:c7:ff:f6:a3:81:42:e2:74:d2:50: c4:ae:32:a7:36:cb:ff:bc:ae:45:15:4f:85:f0:61:2a:f1:67: f0:94:d9:18:31:36:ff:80:c6:7e:1f:c2:5f:27:26:cd:7b:a4: 46:3c:5c:84:8b:1f:18:eb:c2:54:ff:6e:68:3a:68:f5:0c:ed: f7:da:27:a4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjUwNTMxMDEwNjU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNTYyZi00YThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4lYtnlVOfN9a3CbeCoWBJcwOBdqo9NpDJe3D9AiPJYGzZUhDSxJcU4GDXEy t4ZakEyHXSNPH3cXkfkzRX4jaY8ZZZtL0LIJt8okT9HuB3c/wrR7eOtDpb8XEnYt V4VXqXwjLMgocP7dWRWKSCCLz/LbMDQFYRUK/x3W/VOlghfB/W2DL48AHod8ZMWZ HvhQFRDIKpgS00ExWTAsmJhQuOMfgfBK7xEw/PN3Lb50TTisYK6V+oFupd4FmrVI RjEMklQiJJDjbHsR8FdFsKeING7fjegYcfjXnaPYDLU90Eocy09zPD9r9+wuQ9oC fhHuZxWMKdON6lvplr+1/gSMRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKWDa/2j d2S3wp7rI2tRMlEJYGlkMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvRjAyMjNBNTZD OEY3MTFFRkIyNTQyRDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnipIwDQQCAAIwBwMFACQHO0AwDQYJKoZIhvcNAQELBQAD ggEBACqT1wLkYi/aJhzc/OzEVvgdjl5cAxrNuHLed8N48cN0O2Jw8MfwvxMoY4Zf gHsG+dJw5Ga6n9xrxDQ4XytGdTDXmGB1FDInKp5LOZj1yhf2PyXs8p9KocyU/mLb SZD0aTm8DR4N0nknVXG4nMjes37b0RJUgJyZ8gDU5RdZuYmIuk1U9LjKmDPWnqJG /3kBTzF+hjCIXtTJLfOCvyyV/RvIKJIZOATuee/N5WWXGDy+MDRXvA1Ni3rtQsFH x//2o4FC4nTSUMSuMqc2y/+8rkUVT4XwYSrxZ/CU2RgxNv+Axn4fwl8nJs17pEY8 XISLHxjrwlT/bmg6aPUM7ffaJ6Q= -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:36 2025 by rpki-client