$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa File: 8B0201183E8911EFB2DCA846C4F9AE02.roa (raw, json) Hash identifier: sQR4OxxnRQelaQye41JzM/+/uoADouWx9n3P5u34eoY= Subject key identifier: D6:B9:B3:2C:74:32:5E:9D:91:64:39:C2:E1:B3:9F:AA:A6:E1:64:06 Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: E7 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa Signing time: Fri 05 Sep 2025 06:12:09 +0000 ROA not before: Fri 05 Sep 2025 06:12:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 18196 IP address blocks: 103.72.204.0/22 maxlen: 22 103.72.204.0/24 maxlen: 24 103.72.205.0/24 maxlen: 24 103.72.206.0/24 maxlen: 24 103.72.207.0/24 maxlen: 24 160.202.12.0/22 maxlen: 22 160.202.12.0/24 maxlen: 24 160.202.13.0/24 maxlen: 24 160.202.14.0/24 maxlen: 24 160.202.15.0/24 maxlen: 24 2406:e880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Sep 5 06:12:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ba7f39-f660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ac:e9:71:7a:4f:34:d3:fa:64:5e:4e:b8:ac: 75:cd:82:81:26:75:28:f5:7d:9f:9f:c9:c5:31:15: 49:a0:22:7e:96:68:7a:40:df:cc:34:f6:73:58:6f: dc:85:24:d3:45:36:5a:eb:38:c0:ae:11:35:2a:33: b5:f8:60:e9:16:cf:25:a7:41:79:39:93:6d:a9:81: a1:7f:ee:f5:56:47:64:f7:ac:bd:d3:4b:f2:c6:88: 00:94:f7:bc:94:7e:56:4d:52:1c:50:14:7f:d9:5d: 78:80:2e:1a:be:1b:c8:df:1a:12:cb:4f:44:1a:51: 09:fe:f7:6a:a0:4a:c6:29:7c:97:d0:0a:be:09:84: c1:91:79:93:92:1b:88:d0:26:b3:50:9a:ee:1f:13: e6:38:fe:0d:2e:79:85:68:08:dc:fc:1d:9f:09:34: 50:c0:24:39:d3:e4:d5:f9:04:c1:00:a2:88:19:da: 0f:c5:08:1a:33:3d:7e:af:87:d6:da:43:00:b7:07: a8:f4:80:92:d4:7f:ee:21:f4:04:88:a4:d8:18:3c: c7:ec:fb:58:31:d1:1a:cb:96:f3:30:ce:c9:38:0a: 76:65:26:6d:ae:2f:b9:53:6c:98:9e:18:48:7c:dd: be:a9:58:f0:e9:cb:0a:ac:db:c2:a8:52:68:42:fc: 7b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B9:B3:2C:74:32:5E:9D:91:64:39:C2:E1:B3:9F:AA:A6:E1:64:06 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.204.0/22 160.202.12.0/22 IPv6: 2406:e880::/32 Signature Algorithm: sha256WithRSAEncryption 11:c3:ba:0a:be:65:4d:ca:9e:b6:61:9e:f8:9b:60:8d:b8:28: dc:c6:a9:25:5e:01:8e:8a:1f:6d:03:63:ee:86:dc:c7:b7:8e: 9c:e0:f8:76:ae:06:1a:b3:f5:fc:2b:be:65:56:d3:a8:89:10: 4c:49:a5:18:96:b9:84:da:f9:09:c8:5d:c1:46:1f:f6:96:82: e6:c7:70:90:49:0b:c7:33:95:ce:2a:fc:64:80:34:73:23:9a: 50:87:80:5b:09:5a:62:e6:ba:75:38:fa:24:35:07:7a:20:9c: 7b:d9:f1:8d:56:b4:cf:7b:00:dc:9b:40:e3:89:66:77:ab:bd: fd:02:76:ea:c3:a2:5e:2f:c6:66:cf:a8:a5:a7:dc:5f:bf:c7: 5f:32:66:08:e4:f9:c0:b6:cd:d0:0f:21:67:de:8c:5a:38:4c: fc:d1:2e:f0:c8:d0:8b:c3:d5:91:3d:28:87:3e:a6:9b:d2:e6: 5a:a6:d3:66:cb:14:1d:f6:55:a0:d5:24:a8:90:05:1f:82:b8: 3d:d3:d9:c0:61:06:29:ce:d9:37:5c:77:35:e3:c0:c2:51:aa: 91:6f:5a:6e:2e:29:af:82:1d:a8:ab:68:86:22:4e:f9:3b:ca: 70:b8:4d:3b:c8:06:2b:b2:c2:9f:e1:08:d2:16:70:9d:89:31: 8d:af:ef:e2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUwOTA1MDYxMjA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhN2YzOS1mNjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6zpcXpPNNP6ZF5OuKx1zYKBJnUo9X2fn8nFMRVJoCJ+lmh6QN/MNPZzWG/c hSTTRTZa6zjArhE1KjO1+GDpFs8lp0F5OZNtqYGhf+71Vkdk96y900vyxogAlPe8 lH5WTVIcUBR/2V14gC4avhvI3xoSy09EGlEJ/vdqoErGKXyX0Aq+CYTBkXmTkhuI 0CazUJruHxPmOP4NLnmFaAjc/B2fCTRQwCQ50+TV+QTBAKKIGdoPxQgaMz1+r4fW 2kMAtweo9ICS1H/uIfQEiKTYGDzH7PtYMdEay5bzMM7JOAp2ZSZtri+5U2yYnhhI fN2+qVjw6csKrNvCqFJoQvx7IwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNa5syx0 Ml6dkWQ5wuGzn6qm4WQGMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjExRUUvRTk4QTQ2NTIzRTg3MTFFRkFBMjRBQTQzQzRGOUFFMDIvOEIwMjAxMTgz RTg5MTFFRkIyRENBODQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnSMwDBAKgygwwDQQCAAIwBwMFACQG6IAwDQYJKoZIhvcN AQELBQADggEBABHDugq+ZU3KnrZhnvibYI24KNzGqSVeAY6KH20DY+6G3Me3jpzg +HauBhqz9fwrvmVW06iJEExJpRiWuYTa+QnIXcFGH/aWgubHcJBJC8czlc4q/GSA NHMjmlCHgFsJWmLmunU4+iQ1B3ognHvZ8Y1WtM97ANybQOOJZnervf0CdurDol4v xmbPqKWn3F+/x18yZgjk+cC2zdAPIWfejFo4TPzRLvDI0IvD1ZE9KIc+ppvS5lqm 02bLFB32VaDVJKiQBR+CuD3T2cBhBinO2TdcdzXjwMJRqpFvWm4uKa+CHairaIYi Tvk7ynC4TTvIBiuywp/hCNIWcJ2JMY2v7+I= -----END CERTIFICATE-----Generated at Mon Sep 8 17:10:27 2025 by rpki-client