$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa File: CF0AE2F0159411EDB66C5D82C4F9AE02.roa (raw, json) Hash identifier: +LEU78x/LWwi5ap6sqbnvORUUGIW3bkmD1+ul2+yf4E= Subject key identifier: 6B:33:B7:2D:CC:ED:24:D5:3E:BB:CE:EE:D3:4B:06:A1:A0:5D:8E:DC Certificate issuer: /CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Certificate serial: 02B2 Authority key identifier: 8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa Signing time: Sun 07 Sep 2025 02:08:10 +0000 ROA not before: Sun 07 Sep 2025 02:08:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 139043 IP address blocks: 103.154.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 690 (0x2b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA8E8, serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Validity Not Before: Sep 7 02:08:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bce90a-ddf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:43:fa:84:be:ce:ab:19:07:72:d8:e3:6a:a4: 05:7c:d8:25:ee:f4:d1:2f:0c:18:03:f5:d8:d6:05: 64:17:14:08:c3:af:af:30:9f:65:46:87:68:73:ae: 59:61:66:49:15:28:6b:f2:60:5d:26:46:30:70:ef: e9:bf:ab:48:22:49:1d:78:1a:ef:66:63:98:ce:40: ae:5f:ff:e8:ef:5c:50:02:9d:3d:23:7e:71:7e:67: 51:c2:ef:b8:92:f9:4f:cf:a0:f0:5f:5f:0a:c5:30: 16:5a:74:8c:a8:6f:a8:17:f5:f3:9b:20:e8:ed:d8: 18:fc:da:1d:48:be:1e:d1:7f:ee:d3:7c:19:20:e6: 1e:39:5e:d2:cd:86:fc:6a:64:04:66:61:e7:df:b3: 26:21:d7:d0:f9:8b:b4:24:d4:e2:ca:36:f0:ef:5f: 37:cf:e7:d5:1c:eb:ca:0b:db:16:b1:b1:68:7e:e6: 26:60:e1:cc:0c:b3:a1:6f:5e:77:e9:68:f3:69:a4: 94:5b:14:50:15:d5:33:c2:92:d2:d9:a6:5f:98:34: 93:de:fa:c6:db:f2:c9:46:ca:a1:46:c0:2c:66:73: a9:df:c3:aa:6b:8a:b2:a3:d3:38:f8:b2:ac:49:ac: a5:46:08:ec:6a:2c:30:e4:60:90:64:3e:e5:38:c6: c3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:33:B7:2D:CC:ED:24:D5:3E:BB:CE:EE:D3:4B:06:A1:A0:5D:8E:DC X509v3 Authority Key Identifier: keyid:8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.65.0/24 Signature Algorithm: sha256WithRSAEncryption 32:89:8d:e1:12:99:33:b8:a9:ef:9d:e0:52:3f:b5:b3:a9:90: 5f:f5:e1:76:fe:d3:e3:0e:1f:02:86:e9:f1:d8:db:a7:72:05: 37:f0:60:3e:c6:3d:2c:c0:ab:f1:d8:93:c9:fd:64:2f:0b:83: 78:3f:44:8c:60:f5:de:42:1e:7e:a3:b6:be:7c:ff:e3:8e:4a: a7:7b:a8:46:d9:f4:6b:fa:28:94:5f:b8:fa:50:ff:c6:91:5e: a3:14:a5:f5:ab:d1:57:42:26:ee:0f:d5:5c:e5:55:6e:f9:85: 8f:60:d3:a7:7a:c6:8e:72:01:e0:71:55:7e:5b:fb:39:38:9a: d2:67:01:d4:8f:a4:67:49:66:cf:9c:14:7c:11:a4:d2:39:48: 43:3c:56:31:e2:f8:33:63:55:7f:2d:7c:f3:36:76:46:eb:7c: dd:6f:4d:60:8e:9e:e4:a0:5d:7d:1d:d7:d6:dd:bd:b9:91:26: e6:5d:cb:ce:1a:d8:f6:fd:e4:53:4f:f0:60:36:60:a4:c9:ce: da:4f:4e:73:e8:db:70:0b:cb:2d:a9:63:48:0e:f3:27:9a:05: 9e:ee:b9:db:87:56:ef:b5:3d:e7:60:3b:40:01:01:16:ae:e3: 91:f3:a6:e5:9c:2f:54:f4:57:28:7f:fc:19:35:f3:ae:2e:43: b5:0c:91:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4RTgxMTAvBgNVBAUTKDhEQTE5RkNFMEVGQUUwMjJCQkE4RjhFMEMxMjM3QkVE QkVCRTNFRjMwHhcNMjUwOTA3MDIwODEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJjZTkwYS1kZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkP6hL7OqxkHctjjaqQFfNgl7vTRLwwYA/XY1gVkFxQIw6+vMJ9lRodoc65Z YWZJFShr8mBdJkYwcO/pv6tIIkkdeBrvZmOYzkCuX//o71xQAp09I35xfmdRwu+4 kvlPz6DwX18KxTAWWnSMqG+oF/XzmyDo7dgY/NodSL4e0X/u03wZIOYeOV7SzYb8 amQEZmHn37MmIdfQ+Yu0JNTiyjbw7183z+fVHOvKC9sWsbFofuYmYOHMDLOhb153 6WjzaaSUWxRQFdUzwpLS2aZfmDST3vrG2/LJRsqhRsAsZnOp38Oqa4qyo9M4+LKs SaylRgjsaiww5GCQZD7lOMbD1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGszty3M 7STVPrvO7tNLBqGgXY7cMB8GA1UdIwQYMBaAFI2hn84O+uAiu6j44MEje+2+vj7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQThFOC85MDM5NzgzMDEw RDkxMUVEODBCODBEMjlDNEY5QUUwMi9qYUdmemc3NjRDSzdxUGpnd1NONzdiNi1Q dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2phR2Z6Zzc2NENLN3FQamd3U043N2I2LVB2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4RTgvOTAzOTc4MzAxMEQ5MTFFRDgwQjgwRDI5QzRGOUFFMDIvQ0YwQUUyRjAx NTk0MTFFREI2NkM1RDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmkEwDQYJKoZIhvcNAQELBQADggEBADKJjeESmTO4qe+d 4FI/tbOpkF/14Xb+0+MOHwKG6fHY26dyBTfwYD7GPSzAq/HYk8n9ZC8Lg3g/RIxg 9d5CHn6jtr58/+OOSqd7qEbZ9Gv6KJRfuPpQ/8aRXqMUpfWr0VdCJu4P1VzlVW75 hY9g06d6xo5yAeBxVX5b+zk4mtJnAdSPpGdJZs+cFHwRpNI5SEM8VjHi+DNjVX8t fPM2dkbrfN1vTWCOnuSgXX0d19bdvbmRJuZdy84a2Pb95FNP8GA2YKTJztpPTnPo 23ALyy2pY0gO8yeaBZ7uuduHVu+1PedgO0ABARau45HzpuWcL1T0Vyh//Bk1864u Q7UMkaQ= -----END CERTIFICATE-----Generated at Tue Sep 9 07:52:25 2025 by rpki-client