$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa File: 0791DE6034A511ED9D82D13BC4F9AE02.roa (raw, json) Hash identifier: YgLuhvSqEin+i5SUp1az8jMscHcAbxhVSlyBc8B1vlM= Subject key identifier: 1C:64:45:BC:E2:7D:D6:E7:54:03:38:25:6D:18:3D:16:B9:F9:A9:E4 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 0A64 Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa Signing time: Thu 04 Sep 2025 20:00:29 +0000 ROA not before: Thu 04 Sep 2025 20:00:29 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149175 IP address blocks: 39.109.92.0/24 maxlen: 24 39.109.93.0/24 maxlen: 24 39.109.94.0/24 maxlen: 24 39.109.95.0/24 maxlen: 24 103.120.228.0/23 maxlen: 24 103.227.128.0/24 maxlen: 24 103.227.129.0/24 maxlen: 24 103.227.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2660 (0xa64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Sep 4 20:00:29 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b9efdd-d909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:74:db:18:9f:59:60:82:42:2b:c2:d9:a5:ce: f8:15:71:05:17:30:2b:7a:54:b0:f3:a9:92:52:25: 2c:d2:e0:28:06:ff:1a:ee:84:ca:39:02:19:7d:ee: 1d:5a:9d:56:65:b9:5c:92:da:2b:9c:1d:cd:fd:e5: b5:1c:d1:f3:8a:d7:c4:56:b8:3e:93:78:73:b4:1c: 8d:69:11:50:f8:09:3d:9d:cf:84:25:5c:e6:19:89: d2:1b:81:9e:2e:d5:e1:78:bd:1f:e8:47:c5:69:46: a1:3a:3d:39:6c:b0:bd:e1:a2:6d:2d:51:8f:b4:cd: ab:f5:53:30:93:b5:ee:4c:f4:b1:f0:bf:ad:47:53: 3f:e7:dc:94:d7:76:f7:7b:67:4e:97:d4:4f:85:88: 50:9f:f9:4a:c1:73:26:0f:99:22:4d:cc:87:e7:ca: 80:fb:18:66:c1:64:22:a0:59:f3:97:fb:48:5c:ea: 8d:6e:b2:cb:e5:16:ef:43:2b:7e:fa:3b:47:a1:c0: 4f:61:15:47:aa:d5:61:5c:99:03:77:7f:12:c4:ef: ca:6b:ad:4c:a4:29:f4:fe:e4:aa:84:b1:15:1f:86: 89:64:f3:b4:64:c0:9f:af:07:a6:77:6a:37:41:9d: 8d:33:d9:a9:b4:58:d1:49:aa:fa:f3:c2:2f:c6:ca: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:64:45:BC:E2:7D:D6:E7:54:03:38:25:6D:18:3D:16:B9:F9:A9:E4 X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.109.92.0/22 103.120.228.0/23 103.227.128.0/23 103.227.131.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:6d:27:27:97:89:3c:1d:88:d5:5d:bc:e8:fc:db:f0:93:49: 70:f7:bd:28:70:08:0e:e2:aa:0d:65:c0:52:a0:be:30:e4:21: 23:0c:cf:99:5d:e4:a5:b1:a2:f8:f6:55:13:ce:06:81:48:40: ba:87:d8:dd:61:84:38:b2:d3:18:39:49:ed:03:c6:12:11:60: 0d:b2:96:c9:83:75:af:bd:84:98:06:2b:71:82:2d:75:3d:99: f8:f8:88:d2:84:86:04:7b:78:cf:2b:6f:51:74:79:03:d2:98: 74:f9:13:aa:2a:1c:03:20:45:64:20:6f:a8:29:40:64:5b:57: 50:6b:cc:53:f4:97:1f:4b:9d:ba:26:91:a4:a4:2c:c5:11:fc: 6a:f7:a3:56:98:85:0f:7b:8d:b5:31:05:57:b4:ea:4b:18:5b: fa:25:46:83:10:92:c7:95:91:f1:99:98:5e:cc:3d:46:d3:51: 98:08:f3:74:5c:a5:7b:28:35:03:74:50:49:b2:ec:0d:c8:36: ec:b0:3c:32:ed:fb:34:6c:b4:fd:e8:05:a0:c4:de:3c:6f:33: b4:fc:c8:17:8c:2b:c7:1f:54:31:4f:b1:fe:b4:8c:8a:71:9e: 8f:e7:3f:9d:44:71:c8:9d:6b:db:04:98:1a:4a:d3:fb:f3:9b: 95:88:a0:c4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjUwOTA0MjAwMDI5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5ZWZkZC1kOTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HTbGJ9ZYIJCK8LZpc74FXEFFzArelSw86mSUiUs0uAoBv8a7oTKOQIZfe4d Wp1WZblcktornB3N/eW1HNHzitfEVrg+k3hztByNaRFQ+Ak9nc+EJVzmGYnSG4Ge LtXheL0f6EfFaUahOj05bLC94aJtLVGPtM2r9VMwk7XuTPSx8L+tR1M/59yU13b3 e2dOl9RPhYhQn/lKwXMmD5kiTcyH58qA+xhmwWQioFnzl/tIXOqNbrLL5RbvQyt+ +jtHocBPYRVHqtVhXJkDd38SxO/Ka61MpCn0/uSqhLEVH4aJZPO0ZMCfrwemd2o3 QZ2NM9mptFjRSar688IvxspVIwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBxkRbzi fdbnVAM4JW0YPRa5+ankMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdEQ0QvODQ0MjhCMEU3M0QxMTFFQTlDREVDNTM0QzRGOUFFMDIvMDc5MURFNjAz NEE1MTFFRDlEODJEMTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAInbVwDBAFneOQDBAFn44ADBABn44MwDQYJKoZIhvcNAQEL BQADggEBAJptJyeXiTwdiNVdvOj82/CTSXD3vShwCA7iqg1lwFKgvjDkISMMz5ld 5KWxovj2VRPOBoFIQLqH2N1hhDiy0xg5Se0DxhIRYA2ylsmDda+9hJgGK3GCLXU9 mfj4iNKEhgR7eM8rb1F0eQPSmHT5E6oqHAMgRWQgb6gpQGRbV1BrzFP0lx9Lnbom kaSkLMUR/Gr3o1aYhQ97jbUxBVe06ksYW/olRoMQkseVkfGZmF7MPUbTUZgI83Rc pXsoNQN0UEmy7A3INuywPDLt+zRstP3oBaDE3jxvM7T8yBeMK8cfVDFPsf60jIpx no/nP51Eccida9sEmBpK0/vzm5WIoMQ= -----END CERTIFICATE-----Generated at Tue Sep 9 09:21:02 2025 by rpki-client