$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1022/9CC00A4A0FFE11EEB6192B76C4F9AE02/CD576B72764E11F0AF2A2483C4F9AE02.roa File: CD576B72764E11F0AF2A2483C4F9AE02.roa (raw, json) Hash identifier: 9nGUHhSCVgPXxyOQqhR79H/ww58KDpG2C2dcvRlfAGQ= Subject key identifier: 8A:F0:68:F8:B3:B5:46:A8:01:25:BE:C8:71:6E:99:0B:80:E3:A9:BF Certificate issuer: /CN=A91E1022/serialNumber=76AA20CA24A6C2E328876D004D1314E117A6E7D0 Certificate serial: 01A1 Authority key identifier: 76:AA:20:CA:24:A6:C2:E3:28:87:6D:00:4D:13:14:E1:17:A6:E7:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dqogyiSmwuMoh20ATRMU4Rem59A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1022/9CC00A4A0FFE11EEB6192B76C4F9AE02/CD576B72764E11F0AF2A2483C4F9AE02.roa Signing time: Mon 11 Aug 2025 01:02:07 +0000 ROA not before: Mon 11 Aug 2025 01:02:07 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153952 IP address blocks: 103.192.38.0/23 maxlen: 23 103.192.38.0/24 maxlen: 24 103.192.39.0/24 maxlen: 24 2407:6480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1022/9CC00A4A0FFE11EEB6192B76C4F9AE02/dqogyiSmwuMoh20ATRMU4Rem59A.crl rsync://rpki.apnic.net/member_repository/A91E1022/9CC00A4A0FFE11EEB6192B76C4F9AE02/dqogyiSmwuMoh20ATRMU4Rem59A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dqogyiSmwuMoh20ATRMU4Rem59A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1022, serialNumber=76AA20CA24A6C2E328876D004D1314E117A6E7D0 Validity Not Before: Aug 11 01:02:07 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6899410f-0fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0d:9d:f0:5c:f7:18:8f:c9:32:e4:94:ff:a2: 54:b2:34:93:66:8c:73:c1:41:c4:08:bb:e9:d3:bf: bd:f5:3d:04:4d:b1:3d:37:ec:e4:43:7f:d9:19:bf: 97:e4:58:f6:cb:48:54:cd:8f:81:40:7e:5d:db:e6: cf:b0:33:ea:81:1a:b4:d1:78:25:7b:b1:d4:8f:82: 2c:09:4c:8f:14:ac:f3:f1:7a:2c:d5:f8:96:ab:71: 65:a8:4a:c2:dd:34:c9:f0:72:0d:82:69:ec:c3:f0: 99:a2:d4:de:86:16:dd:a5:95:d9:9f:07:c6:45:30: 07:f1:f3:53:aa:c2:25:3c:d6:bf:be:09:8b:46:ce: 37:3b:69:50:c0:25:b7:b6:f4:36:02:e5:d7:9c:17: c9:fc:89:da:5f:20:c2:82:33:91:89:36:37:a0:0a: ed:a3:9e:ef:de:73:2e:a9:6c:73:a1:99:99:be:00: 3f:1d:19:f5:a2:43:9a:7d:ca:cb:92:e8:5a:92:b7: 26:12:c2:f9:2f:59:da:26:23:2e:6a:8f:e0:43:ec: 7f:bd:42:81:4a:8b:c0:49:bc:d3:9b:96:be:3c:42: f6:3e:16:67:a3:a1:3b:99:51:6f:75:4a:f5:55:c1: 97:fd:41:01:a4:0a:de:08:fc:c3:03:18:e5:f6:f5: a2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F0:68:F8:B3:B5:46:A8:01:25:BE:C8:71:6E:99:0B:80:E3:A9:BF X509v3 Authority Key Identifier: keyid:76:AA:20:CA:24:A6:C2:E3:28:87:6D:00:4D:13:14:E1:17:A6:E7:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1022/9CC00A4A0FFE11EEB6192B76C4F9AE02/dqogyiSmwuMoh20ATRMU4Rem59A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dqogyiSmwuMoh20ATRMU4Rem59A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1022/9CC00A4A0FFE11EEB6192B76C4F9AE02/CD576B72764E11F0AF2A2483C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.192.38.0/23 IPv6: 2407:6480::/32 Signature Algorithm: sha256WithRSAEncryption 0c:3e:b3:9f:46:37:e0:ee:4c:35:a0:33:b2:4e:3d:80:6b:9c: a5:b6:07:4a:d5:c7:a1:aa:52:60:64:f6:61:d8:89:47:63:92: fb:51:49:27:80:bd:d8:36:10:5d:bb:97:77:65:59:0d:84:fd: 3e:97:1d:f3:99:d8:e9:53:a7:dc:31:de:89:f4:82:12:e6:4e: ba:ce:41:dd:90:38:d7:68:74:74:79:f7:b4:4f:cb:ce:c9:ca: 77:f9:82:08:7d:93:f4:0c:f6:32:18:cb:37:ef:24:7e:3d:20: 78:5c:d5:df:2c:5f:b8:18:02:ae:ae:16:a2:1a:f5:69:23:92: f7:eb:da:bb:71:09:2f:32:77:20:2e:9d:99:eb:cb:e9:95:db: 8d:54:12:a4:e3:a5:19:b8:d0:9f:04:1a:8b:a4:41:15:84:0f: 34:e5:7c:6a:7d:47:fe:dd:af:97:92:b1:9a:7d:02:2c:63:fa: ff:29:bb:31:c6:71:cb:51:ee:b1:9f:c8:ca:f0:58:58:e5:ca: 71:88:ae:c3:53:85:dd:75:da:30:38:a3:8f:dd:d1:e1:ad:fd: ec:90:e7:8b:36:37:55:30:c7:1c:85:37:b6:f7:5e:9c:99:33: 43:54:34:4e:1f:3b:c8:43:b9:57:dc:b2:33:19:79:84:23:f9: cf:8f:09:6c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEwMjIxMTAvBgNVBAUTKDc2QUEyMENBMjRBNkMyRTMyODg3NkQwMDREMTMxNEUx MTdBNkU3RDAwHhcNMjUwODExMDEwMjA3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5NDEwZi0wZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2A2d8Fz3GI/JMuSU/6JUsjSTZoxzwUHECLvp07+99T0ETbE9N+zkQ3/ZGb+X 5Fj2y0hUzY+BQH5d2+bPsDPqgRq00Xgle7HUj4IsCUyPFKzz8Xos1fiWq3FlqErC 3TTJ8HINgmnsw/CZotTehhbdpZXZnwfGRTAH8fNTqsIlPNa/vgmLRs43O2lQwCW3 tvQ2AuXXnBfJ/InaXyDCgjORiTY3oArto57v3nMuqWxzoZmZvgA/HRn1okOafcrL kuhakrcmEsL5L1naJiMuao/gQ+x/vUKBSovASbzTm5a+PEL2PhZno6E7mVFvdUr1 VcGX/UEBpAreCPzDAxjl9vWiXQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIrwaPiz tUaoASW+yHFumQuA46m/MB8GA1UdIwQYMBaAFHaqIMokpsLjKIdtAE0TFOEXpufQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTAyMi85Q0MwMEE0QTBG RkUxMUVFQjYxOTJCNzZDNEY5QUUwMi9kcW9neWlTbXd1TW9oMjBBVFJNVTRSZW01 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Rxb2d5aVNtd3VNb2gyMEFUUk1VNFJlbTU5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTEwMjIvOUNDMDBBNEEwRkZFMTFFRUI2MTkyQjc2QzRGOUFFMDIvQ0Q1NzZCNzI3 NjRFMTFGMEFGMkEyNDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnwCYwDQQCAAIwBwMFACQHZIAwDQYJKoZIhvcNAQELBQAD ggEBAAw+s59GN+DuTDWgM7JOPYBrnKW2B0rVx6GqUmBk9mHYiUdjkvtRSSeAvdg2 EF27l3dlWQ2E/T6XHfOZ2OlTp9wx3on0ghLmTrrOQd2QONdodHR597RPy87Jynf5 ggh9k/QM9jIYyzfvJH49IHhc1d8sX7gYAq6uFqIa9Wkjkvfr2rtxCS8ydyAunZnr y+mV241UEqTjpRm40J8EGoukQRWEDzTlfGp9R/7dr5eSsZp9Aixj+v8puzHGcctR 7rGfyMrwWFjlynGIrsNThd112jA4o4/d0eGt/eyQ54s2N1UwxxyFN7b3XpyZM0NU NE4fO8hDuVfcsjMZeYQj+c+PCWw= -----END CERTIFICATE-----Generated at Thu Aug 21 15:41:53 2025 by rpki-client