$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/609701825A1611EF9ED11513C4F9AE02.roa File: 609701825A1611EF9ED11513C4F9AE02.roa (raw, json) Hash identifier: nOpG+yb8xecZXBJPhij/jRHgVz7gZBn8JFs+m2pE4oQ= Subject key identifier: 70:A6:FA:2B:09:FC:36:C2:84:41:D6:53:3B:DC:DA:F7:2D:B3:64:56 Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: CC Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/609701825A1611EF9ED11513C4F9AE02.roa Signing time: Wed 03 Sep 2025 06:28:00 +0000 ROA not before: Wed 03 Sep 2025 06:28:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 26658 IP address blocks: 43.239.160.0/22 maxlen: 22 103.35.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Sep 3 06:28:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7dff0-c997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:06:b6:1f:c8:0d:b7:2f:ea:ea:36:9c:7d:21: 45:00:81:a3:6b:0b:8d:9d:93:34:71:13:65:f5:b4: 04:6d:ed:1b:7f:97:2b:59:af:45:e8:c5:38:44:e6: b6:b2:cd:df:c5:d4:ba:8c:53:06:e0:fe:f8:11:d4: 40:55:86:75:47:a8:42:95:5c:c4:8e:f0:9e:4c:69: f3:01:26:b8:9b:f5:c5:d8:c0:9f:bf:e7:88:87:10: 8c:4a:99:55:7a:0c:c2:88:4e:61:89:de:a8:b1:0b: 7e:1d:23:f7:71:a1:93:96:fc:2c:74:8c:68:04:57: 13:f8:71:4d:3d:59:46:94:2c:30:c6:58:bf:e3:d2: ed:29:80:47:ed:1f:98:1b:4e:89:93:1c:47:99:bc: de:b3:e0:ba:e6:a8:aa:4b:b7:b6:dc:d6:d8:a0:5b: 51:a2:07:39:36:87:44:73:1f:76:af:ad:a4:8b:b5: 36:56:35:c9:ad:6e:8d:2a:23:ed:01:46:f0:9e:7a: 3e:80:d5:ad:7f:29:98:54:ba:0d:6d:55:a0:e5:48: 48:7c:d9:9a:19:7b:bf:b2:84:98:a3:27:2b:64:0e: 99:8e:f3:f6:9a:da:95:b2:7b:f1:6a:e9:7d:a1:7a: 3d:2f:78:65:84:08:14:93:30:e8:57:61:29:ff:ec: c3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A6:FA:2B:09:FC:36:C2:84:41:D6:53:3B:DC:DA:F7:2D:B3:64:56 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/609701825A1611EF9ED11513C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.160.0/22 103.35.76.0/22 Signature Algorithm: sha256WithRSAEncryption a6:e2:d8:5c:5b:ab:7f:c8:1f:05:25:07:b0:c2:93:22:43:fe: 6d:9b:42:b3:ac:66:8d:4c:e7:0d:99:87:3e:17:57:9f:01:f3: 1e:35:cf:92:c9:fb:6b:5f:dd:ca:6e:cc:3a:0f:67:8a:91:23: b4:2d:d3:dd:e1:a6:db:8f:a4:a2:a5:17:7f:f0:a4:bd:23:52: fb:84:da:c0:bd:3b:ea:4c:21:77:00:4a:0d:3f:1b:7c:04:60: 75:87:de:f7:70:a4:41:be:cd:6d:f1:df:66:43:94:02:74:c5: 9b:90:df:20:4e:68:25:b7:04:f7:39:a0:3c:eb:7d:2f:c0:d5: f9:44:e8:95:b5:41:fb:42:b2:57:1d:c5:d8:af:27:87:12:26: b3:7c:99:45:b2:30:28:df:68:1e:00:f0:5d:af:7c:52:69:6f: a1:5f:0a:1b:ea:51:93:a0:11:32:38:f4:0b:cc:99:41:76:71: 99:65:c6:a2:e8:6f:39:53:14:0c:a4:45:da:18:71:ea:b9:77: 2f:92:cb:cb:f7:f9:3a:64:d6:a9:15:f1:ac:52:f2:db:39:e6: 59:06:a7:a9:ee:90:bc:25:d5:03:41:1e:9c:c2:cf:88:b9:88: 21:bb:b4:38:25:02:11:08:df:76:62:05:4b:ee:79:c6:d7:a6: 28:f3:e7:9d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUwOTAzMDYyODAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZGZmMC1jOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wa2H8gNty/q6jacfSFFAIGjawuNnZM0cRNl9bQEbe0bf5crWa9F6MU4ROa2 ss3fxdS6jFMG4P74EdRAVYZ1R6hClVzEjvCeTGnzASa4m/XF2MCfv+eIhxCMSplV egzCiE5hid6osQt+HSP3caGTlvwsdIxoBFcT+HFNPVlGlCwwxli/49LtKYBH7R+Y G06JkxxHmbzes+C65qiqS7e23NbYoFtRogc5NodEcx92r62ki7U2VjXJrW6NKiPt AUbwnno+gNWtfymYVLoNbVWg5UhIfNmaGXu/soSYoycrZA6ZjvP2mtqVsnvxaul9 oXo9L3hlhAgUkzDoV2Ep/+zDKwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHCm+isJ /DbChEHWUzvc2vcts2RWMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJDREEvMkM3RTcyQjg1QTE2MTFFRjgyQjZEOTEyQzRGOUFFMDIvNjA5NzAxODI1 QTE2MTFFRjlFRDExNTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr76ADBAJnI0wwDQYJKoZIhvcNAQELBQADggEBAKbi2Fxb q3/IHwUlB7DCkyJD/m2bQrOsZo1M5w2Zhz4XV58B8x41z5LJ+2tf3cpuzDoPZ4qR I7Qt093hptuPpKKlF3/wpL0jUvuE2sC9O+pMIXcASg0/G3wEYHWH3vdwpEG+zW3x 32ZDlAJ0xZuQ3yBOaCW3BPc5oDzrfS/A1flE6JW1QftCslcdxdivJ4cSJrN8mUWy MCjfaB4A8F2vfFJpb6FfChvqUZOgETI49AvMmUF2cZllxqLobzlTFAykRdoYceq5 dy+Sy8v3+Tpk1qkV8axS8ts55lkGp6nukLwl1QNBHpzCz4i5iCG7tDglAhEI33Zi BUvuecbXpijz550= -----END CERTIFICATE-----Generated at Tue Sep 9 08:54:53 2025 by rpki-client