$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/66CA9E0C0C5C11ECBD37E846C4F9AE02.roa File: 66CA9E0C0C5C11ECBD37E846C4F9AE02.roa (raw, json) Hash identifier: OdV4BW1AypHn4SWRXVNRSTTOuuILOVr+n5WSk2uAXqs= Subject key identifier: 32:EB:26:E2:35:B0:F5:8C:B2:B1:DC:B2:C8:1C:8F:F6:50:C7:04:86 Certificate issuer: /CN=A91F7AC9/serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Certificate serial: 04FE Authority key identifier: 32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/66CA9E0C0C5C11ECBD37E846C4F9AE02.roa Signing time: Wed 30 Apr 2025 23:35:13 +0000 ROA not before: Wed 30 Apr 2025 23:35:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138934 IP address blocks: 103.137.88.0/22 maxlen: 24 2404:adc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1278 (0x4fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7AC9, serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Validity Not Before: Apr 30 23:35:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812b3b1-06f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e5:a1:e6:1c:20:87:4c:bb:c3:68:eb:2f:14: 47:1e:ad:f8:b3:e4:09:dc:ce:d5:06:cb:01:45:f9: 0d:4f:f3:37:6f:f3:80:72:b2:40:f6:8a:06:42:43: 50:52:4a:90:b5:6a:56:82:54:7c:6e:ba:ca:d8:40: cb:83:76:6c:4b:c1:e3:ba:83:cc:20:b5:0b:b7:55: 70:7d:63:f9:5d:b9:74:63:55:f9:44:21:b7:31:9c: 6b:b6:cf:f0:dc:b2:b3:ca:f9:a6:a9:21:50:06:d2: ae:fb:71:c2:dd:76:cf:ce:dc:d5:62:9c:4d:c4:f8: cc:03:a5:db:6e:e0:79:1c:10:32:cb:6d:f5:9d:a9: 84:79:bd:b2:97:34:65:08:af:92:27:4b:4a:8d:bf: 09:63:4f:9e:7a:ee:e0:4b:8f:3b:d2:df:9a:98:ce: 74:19:67:f5:60:3d:24:a8:08:c7:30:4a:81:0d:77: f8:ee:43:d3:a7:74:cc:94:eb:8e:e8:77:6c:28:0c: 2a:b7:36:c0:bb:df:ff:90:48:e0:37:f1:6a:81:5d: 2f:bd:16:66:97:e0:ce:38:1c:46:42:57:84:b2:e4: 94:05:ff:95:4b:ac:68:38:7b:7e:2d:30:df:ec:55: c5:23:d6:c7:19:23:07:49:bc:dc:67:f1:20:73:5b: 06:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:EB:26:E2:35:B0:F5:8C:B2:B1:DC:B2:C8:1C:8F:F6:50:C7:04:86 X509v3 Authority Key Identifier: keyid:32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/66CA9E0C0C5C11ECBD37E846C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.88.0/22 IPv6: 2404:adc0::/32 Signature Algorithm: sha256WithRSAEncryption 33:c4:4a:fa:ba:1e:a3:58:a9:93:4e:0d:34:47:18:dc:7e:bc: e7:f5:06:0c:b7:ea:20:9c:08:0a:40:b9:fb:f7:31:3f:6b:d7: 45:93:c4:d5:9c:85:db:c4:54:d3:3b:2f:d4:96:db:b3:d6:99: 75:17:a6:e4:9a:85:48:de:a7:57:d4:51:1a:62:54:ba:c7:30: 3e:ba:56:b9:1f:45:d2:44:35:27:5d:9b:6b:4f:cb:74:23:7c: a4:df:91:46:ff:36:c5:ac:c0:17:4c:91:13:ab:e3:d9:a7:0a: 30:1a:8f:d9:97:0b:08:85:76:f2:4c:fb:85:7a:4f:bc:d2:4e: 75:40:15:be:db:ae:3c:5c:02:12:84:af:f3:7c:ba:b1:d0:d8: c3:3e:22:c4:4f:54:be:57:1c:bc:20:64:1f:f5:be:01:d3:95: ef:bb:c8:fb:a0:4a:61:5a:e6:3b:5a:e7:24:82:8c:94:f0:a5: 6b:0c:11:b3:0b:7d:f7:02:07:9b:52:22:f1:2a:e7:4c:36:43: e3:57:95:3f:fa:7e:0e:3e:42:b9:be:c4:7c:b8:07:ee:71:59: 3c:97:e3:cf:f7:b0:0a:e9:78:73:20:e9:ac:d2:32:22:17:5d: b5:f1:d4:45:a2:f3:41:03:61:13:8d:bf:c6:41:e7:1d:21:4e: 48:c3:9c:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdBQzkxMTAvBgNVBAUTKDMyNkU1NUU3NEIwNkNEODNGOTk0Q0MxREE2NjU2NTQy MUNDOUUyMTkwHhcNMjUwNDMwMjMzNTEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYjNiMS0wNmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+Wh5hwgh0y7w2jrLxRHHq34s+QJ3M7VBssBRfkNT/M3b/OAcrJA9ooGQkNQ UkqQtWpWglR8brrK2EDLg3ZsS8HjuoPMILULt1VwfWP5Xbl0Y1X5RCG3MZxrts/w 3LKzyvmmqSFQBtKu+3HC3XbPztzVYpxNxPjMA6XbbuB5HBAyy231namEeb2ylzRl CK+SJ0tKjb8JY0+eeu7gS4870t+amM50GWf1YD0kqAjHMEqBDXf47kPTp3TMlOuO 6HdsKAwqtzbAu9//kEjgN/FqgV0vvRZml+DOOBxGQleEsuSUBf+VS6xoOHt+LTDf 7FXFI9bHGSMHSbzcZ/Egc1sGSQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDLrJuI1 sPWMsrHcssgcj/ZQxwSGMB8GA1UdIwQYMBaAFDJuVedLBs2D+ZTMHaZlZUIcyeIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0FDOS8wRDlGNDBFNjBD NUExMUVDOUY0MTUzNDVDNEY5QUUwMi9NbTVWNTBzR3pZUDVsTXdkcG1WbFFoeko0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tNVY1MHNHellQNWxNd2RwbVZsUWh6SjRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdBQzkvMEQ5RjQwRTYwQzVBMTFFQzlGNDE1MzQ1QzRGOUFFMDIvNjZDQTlFMEMw QzVDMTFFQ0JEMzdFODQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJniVgwDQQCAAIwBwMFACQErcAwDQYJKoZIhvcNAQELBQAD ggEBADPESvq6HqNYqZNODTRHGNx+vOf1Bgy36iCcCApAufv3MT9r10WTxNWchdvE VNM7L9SW27PWmXUXpuSahUjep1fUURpiVLrHMD66VrkfRdJENSddm2tPy3QjfKTf kUb/NsWswBdMkROr49mnCjAaj9mXCwiFdvJM+4V6T7zSTnVAFb7brjxcAhKEr/N8 urHQ2MM+IsRPVL5XHLwgZB/1vgHTle+7yPugSmFa5jta5ySCjJTwpWsMEbMLffcC B5tSIvEq50w2Q+NXlT/6fg4+Qrm+xHy4B+5xWTyX48/3sArpeHMg6azSMiIXXbXx 1EWi80EDYRONv8ZB5x0hTkjDnMw= -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:37 2025 by rpki-client