$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/298965AC06B611EBBBFD6B2CC4F9AE02.roa File: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (raw, json) Hash identifier: TH9JF4+CN1WO9NYgkx1yWi97+W1C48OFIwRdTh3Mt1Q= Subject key identifier: BA:95:05:CD:68:8A:10:7C:10:4C:CE:57:D4:AD:BB:1B:5D:21:C2:60 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 07DB Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/298965AC06B611EBBBFD6B2CC4F9AE02.roa Signing time: Wed 02 Jul 2025 22:01:26 +0000 ROA not before: Wed 02 Jul 2025 22:01:26 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.27.74.0/24 maxlen: 24 220.158.200.0/24 maxlen: 24 220.158.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2011 (0x7db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Jul 2 22:01:26 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865ac36-ec3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9a:1c:29:51:aa:3c:ea:b1:18:fc:36:ec:6e: 82:fa:3e:e3:f4:41:ad:37:6d:a6:45:29:11:7a:41: 2c:1e:1c:52:0b:23:33:43:d1:d0:ee:7e:5f:84:c4: 89:98:ec:ff:63:f0:f4:42:ab:f0:e1:be:d7:2a:40: 59:fb:66:32:09:a7:ec:be:d2:75:f8:40:0a:fd:0c: 7b:82:79:ac:98:be:c4:bc:bd:bf:71:fa:da:90:60: 5b:2f:09:58:f9:56:9c:7c:9f:ba:01:b8:d3:7e:6e: ce:41:13:70:9f:55:e5:46:d3:91:bd:6b:a9:2e:6f: cb:c5:1b:93:11:d9:90:e8:20:dc:d9:ee:f3:47:67: 05:8c:6a:f2:9f:45:6b:45:8c:1a:9b:d6:6a:54:5c: b3:32:1e:90:18:cb:c2:48:d2:24:ca:92:55:4a:76: 2a:f2:4b:dc:e3:8c:1f:ed:62:d9:ae:b4:a5:65:9c: be:fa:32:99:0c:ae:2d:12:f7:f1:e5:eb:a4:4a:0c: eb:97:0a:58:88:2c:f1:18:1c:c0:e1:3e:f5:e8:5f: e9:82:be:57:a9:ab:f8:cd:40:c6:cc:b0:95:1f:34: c8:30:1e:c0:a8:c8:f6:35:63:93:8e:e1:8a:f3:83: fd:2d:20:02:f6:3d:68:7e:91:0a:c4:fe:45:bf:a6: bc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:95:05:CD:68:8A:10:7C:10:4C:CE:57:D4:AD:BB:1B:5D:21:C2:60 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/298965AC06B611EBBBFD6B2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.74.0/24 220.158.200.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:37:12:45:5e:61:26:71:6f:e7:6c:c0:de:6d:ae:b3:8b:6b: dc:49:63:e9:07:53:ad:53:83:74:e0:1e:b5:da:46:35:9e:7d: f8:4f:bd:13:84:b4:45:fa:f6:24:7a:33:e3:ee:cf:df:6f:6e: eb:d9:61:3d:f8:a8:f1:1a:e4:28:53:a8:51:20:20:8f:94:e8: 2d:b8:f9:f8:a2:fa:19:a2:82:cc:61:e9:2d:b5:77:21:0d:0a: e8:2b:a8:7e:9f:3a:c1:38:c9:62:1f:53:ae:c1:e6:67:4c:60: 69:b4:29:07:3e:4e:6b:4d:bf:d8:a1:0e:f6:b1:46:bb:2f:53: 9a:23:50:c1:24:f8:fb:a8:aa:ad:0f:a6:c0:28:f5:c5:00:fb: a8:d9:e2:88:68:43:2c:52:8b:8a:94:37:ff:ca:14:8f:4d:e0: f6:e6:8e:69:e8:49:43:81:12:63:31:7e:14:f3:91:a2:46:cd: ca:1f:45:a0:57:05:31:08:ac:78:39:70:8e:f6:7d:2d:b9:44: c2:9e:e7:ed:96:3f:ee:ba:8a:46:6e:eb:ed:09:75:5e:36:45: 81:60:d1:6a:30:6a:67:98:11:bc:d1:77:ab:59:c4:37:4f:5d: 2e:ab:98:7e:6a:8b:8a:5a:f7:19:95:a7:b7:1c:b6:23:da:5a: b5:f9:e8:ee -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwNzAyMjIwMTI2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YWMzNi1lYzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5ocKVGqPOqxGPw27G6C+j7j9EGtN22mRSkRekEsHhxSCyMzQ9HQ7n5fhMSJ mOz/Y/D0Qqvw4b7XKkBZ+2YyCafsvtJ1+EAK/Qx7gnmsmL7EvL2/cfrakGBbLwlY +VacfJ+6AbjTfm7OQRNwn1XlRtORvWupLm/LxRuTEdmQ6CDc2e7zR2cFjGryn0Vr RYwam9ZqVFyzMh6QGMvCSNIkypJVSnYq8kvc44wf7WLZrrSlZZy++jKZDK4tEvfx 5eukSgzrlwpYiCzxGBzA4T716F/pgr5Xqav4zUDGzLCVHzTIMB7AqMj2NWOTjuGK 84P9LSAC9j1ofpEKxP5Fv6a85QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLqVBc1o ihB8EEzOV9StuxtdIcJgMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExM0UvNTRENkE1MEUwNkI1MTFFQjkzNzJEMzJCQzRGOUFFMDIvMjk4OTY1QUMw NkI2MTFFQkJCRkQ2QjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnG0oDBAHcnsgwDQYJKoZIhvcNAQELBQADggEBAB03EkVe YSZxb+dswN5trrOLa9xJY+kHU61Tg3TgHrXaRjWeffhPvROEtEX69iR6M+Puz99v buvZYT34qPEa5ChTqFEgII+U6C24+fii+hmigsxh6S21dyENCugrqH6fOsE4yWIf U67B5mdMYGm0KQc+TmtNv9ihDvaxRrsvU5ojUMEk+Puoqq0PpsAo9cUA+6jZ4oho QyxSi4qUN//KFI9N4PbmjmnoSUOBEmMxfhTzkaJGzcofRaBXBTEIrHg5cI72fS25 RMKe5+2WP+66ikZu6+0JdV42RYFg0WowameYEbzRd6tZxDdPXS6rmH5qi4pa9xmV p7cctiPaWrX56O4= -----END CERTIFICATE-----Generated at Thu Aug 21 15:41:01 2025 by rpki-client