$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/108B7DAAB2A711EAABBE8663C4F9AE02.roa File: 108B7DAAB2A711EAABBE8663C4F9AE02.roa (raw, json) Hash identifier: bY9iBRTWTxnL3x5BGOrTrK8i1l/rZN5Ru7pBpcmVZwg= Subject key identifier: FA:5C:C8:66:A6:DC:3B:0E:B6:D3:F8:2A:DC:56:63:83:FF:12:28:95 Certificate issuer: /CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Certificate serial: 0901 Authority key identifier: 5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/108B7DAAB2A711EAABBE8663C4F9AE02.roa Signing time: Thu 04 Sep 2025 21:00:55 +0000 ROA not before: Thu 04 Sep 2025 21:00:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131582 IP address blocks: 103.69.130.0/24 maxlen: 24 103.69.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2305 (0x901) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E29, serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Validity Not Before: Sep 4 21:00:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b9fe07-fd43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:fa:ff:10:08:c7:e2:67:37:c9:9b:54:4d: b0:c1:07:88:bf:08:47:4f:8e:c1:a4:f3:d7:57:29: 4c:a6:5a:9c:cd:05:55:e6:25:c4:85:35:b5:e3:bc: 68:5a:c7:84:43:ec:89:c6:b1:d9:2d:44:29:b9:60: c4:73:0d:e0:64:55:f1:d4:49:7c:a3:ce:10:68:85: e9:47:47:29:f3:36:fd:3b:e7:26:36:aa:c5:78:e1: ea:ad:17:d9:da:70:ef:bf:8d:4e:f0:2e:0b:4a:6c: a3:69:21:6f:bc:37:14:46:81:84:3e:8d:d6:a7:8d: 8f:72:4e:ff:62:2f:e3:ac:29:d1:0d:57:58:67:e0: fb:73:13:ce:0d:b8:c9:50:67:3e:ca:8d:b1:7e:58: 0b:85:bb:80:9f:67:10:19:1d:05:44:44:18:7a:89: 38:5e:82:21:3a:2a:9f:04:7b:01:73:9f:1f:61:54: c4:52:5e:23:fe:f5:2d:54:d4:67:37:ed:8d:93:19: 19:97:a1:6c:ff:e6:8b:6e:4c:2e:31:86:0c:bf:e5: 98:35:d0:3f:57:82:06:c0:e7:35:6f:9d:6b:b7:e9: 4b:50:bc:c9:ae:f3:0e:54:df:e3:06:4f:f2:86:c1: 75:ac:11:26:49:03:d5:ec:77:eb:7e:08:7b:2e:85: 5e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5C:C8:66:A6:DC:3B:0E:B6:D3:F8:2A:DC:56:63:83:FF:12:28:95 X509v3 Authority Key Identifier: keyid:5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/108B7DAAB2A711EAABBE8663C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.130.0/23 Signature Algorithm: sha256WithRSAEncryption 57:b5:ce:ac:c2:8d:2e:f4:25:8f:2d:72:98:db:56:4d:3a:2e: a3:34:c3:c0:bc:cb:4c:c8:73:16:1f:b4:c3:fc:9b:7c:22:31: e6:bc:42:e7:69:12:a5:a5:a6:ec:a0:1f:b3:34:17:58:54:de: bf:b4:d2:b6:1c:a6:da:8a:f3:c8:a8:91:6f:12:28:62:d8:e7: c9:c0:28:22:f6:21:35:c4:f6:69:eb:c2:dc:13:73:02:b0:ca: f5:91:dc:78:19:31:e8:00:65:3f:15:12:77:df:33:81:16:35: 5a:08:49:0f:a9:b7:f5:3a:e8:23:5e:3a:f4:9b:a5:48:ca:02: cc:92:2c:a1:9b:9c:c8:04:fa:de:92:0c:cb:f1:24:14:0b:10: 7d:1a:18:fe:61:14:61:cf:d3:d8:69:6e:b4:e9:08:75:12:20: 9f:02:e6:9b:0e:8d:b1:ae:32:1c:e1:bf:0f:33:5d:ac:db:5b: f7:60:08:cf:53:62:47:24:73:6f:e0:69:04:e9:19:e3:95:20: c2:66:f9:5b:fe:3b:11:2f:f7:e2:6e:90:d5:69:87:f5:f8:df: d6:75:68:03:be:a8:17:e1:7a:d8:f8:19:af:0c:a8:51:ec:03: 97:2f:af:4f:fd:6e:9e:29:35:db:ef:b9:bb:54:74:b4:35:83: 67:99:3e:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMjkxMTAvBgNVBAUTKDVCRjYyNDM5OTBBOTQ2NEM4NUI3ODIzREI0MjZFMkFC OTY3MjBBM0MwHhcNMjUwOTA0MjEwMDU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5ZmUwNy1mZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupv6/xAIx+JnN8mbVE2wwQeIvwhHT47BpPPXVylMplqczQVV5iXEhTW147xo WseEQ+yJxrHZLUQpuWDEcw3gZFXx1El8o84QaIXpR0cp8zb9O+cmNqrFeOHqrRfZ 2nDvv41O8C4LSmyjaSFvvDcURoGEPo3Wp42Pck7/Yi/jrCnRDVdYZ+D7cxPODbjJ UGc+yo2xflgLhbuAn2cQGR0FREQYeok4XoIhOiqfBHsBc58fYVTEUl4j/vUtVNRn N+2NkxkZl6Fs/+aLbkwuMYYMv+WYNdA/V4IGwOc1b51rt+lLULzJrvMOVN/jBk/y hsF1rBEmSQPV7Hfrfgh7LoVeSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPpcyGam 3DsOttP4KtxWY4P/EiiVMB8GA1UdIwQYMBaAFFv2JDmQqUZMhbeCPbQm4quWcgo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUyOS9ERDEzRjhGMEIy OUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJreUZ0NEk5dENiaXE1WnlD ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dfWWtPWkNwUmt5RnQ0STl0Q2JpcTVaeUNqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFMjkvREQxM0Y4RjBCMjlGMTFFQTkzODBDMDRCQzRGOUFFMDIvMTA4QjdEQUFC MkE3MTFFQUFCQkU4NjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnRYIwDQYJKoZIhvcNAQELBQADggEBAFe1zqzCjS70JY8t cpjbVk06LqM0w8C8y0zIcxYftMP8m3wiMea8QudpEqWlpuygH7M0F1hU3r+00rYc ptqK88iokW8SKGLY58nAKCL2ITXE9mnrwtwTcwKwyvWR3HgZMegAZT8VEnffM4EW NVoISQ+pt/U66CNeOvSbpUjKAsySLKGbnMgE+t6SDMvxJBQLEH0aGP5hFGHP09hp brTpCHUSIJ8C5psOjbGuMhzhvw8zXazbW/dgCM9TYkckc2/gaQTpGeOVIMJm+Vv+ OxEv9+JukNVph/X439Z1aAO+qBfhetj4Ga8MqFHsA5cvr0/9bp4pNdvvubtUdLQ1 g2eZPvQ= -----END CERTIFICATE-----Generated at Tue Sep 9 05:59:36 2025 by rpki-client