$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/5CA72CF82A6911EC94518740C4F9AE02.roa File: 5CA72CF82A6911EC94518740C4F9AE02.roa (raw, json) Hash identifier: 0jqnSn+Cm10EtK5JT/NKDy8k+JGjQ6fCGa+uxrmRYyw= Subject key identifier: FA:AF:DF:75:04:E6:80:F1:5B:FA:2A:5A:2F:20:62:EB:5D:8F:DD:04 Certificate issuer: /CN=A91FF7FC/serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Certificate serial: 04F3 Authority key identifier: 08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/5CA72CF82A6911EC94518740C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:16:06 +0000 ROA not before: Wed 03 Sep 2025 00:16:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9723 IP address blocks: 103.38.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF7FC, serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Validity Not Before: Sep 3 00:16:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b788c5-c3f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:93:74:5e:20:e6:b5:11:e4:ac:69:b6:20:37: d0:81:76:fb:ea:85:22:77:f3:1e:3b:b9:71:ca:70: 07:9f:96:51:2f:6f:e1:31:58:ba:27:42:79:a0:ca: 74:54:fb:57:93:98:7a:46:3c:07:d4:e4:85:8b:19: c9:4c:ef:b7:65:25:ea:56:ff:d4:32:d3:ba:67:8f: d0:0c:3b:ff:e7:af:5d:4c:a3:81:31:4f:cf:4e:7a: db:3a:21:b4:62:ae:88:81:1c:c3:e9:e9:5e:e1:14: 72:a4:b0:b1:34:8e:2a:fc:d1:73:d0:3a:d6:a0:7d: 63:75:85:f3:7d:af:78:51:c4:3e:48:47:91:de:9f: 04:04:ff:c1:22:71:bd:1b:2c:65:bd:6d:40:27:88: e3:aa:bf:9d:15:de:fc:cd:dd:a2:b3:61:25:81:0e: bb:c1:d0:e4:45:1f:82:d5:73:21:72:48:b1:b5:a5: 26:5d:71:d9:22:20:23:46:ae:19:55:d2:3a:75:bb: 8d:f3:1a:32:40:9d:ba:d3:5c:c9:9a:89:2b:5f:1d: f8:50:f5:df:bb:20:7a:59:6b:10:e5:91:e2:ee:c0: f6:f1:58:76:12:3c:a8:b6:3a:77:97:01:ad:05:df: 5b:5b:89:8f:cd:2b:78:3e:9d:cf:0e:87:59:f5:5c: 21:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AF:DF:75:04:E6:80:F1:5B:FA:2A:5A:2F:20:62:EB:5D:8F:DD:04 X509v3 Authority Key Identifier: keyid:08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/5CA72CF82A6911EC94518740C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.10.0/23 Signature Algorithm: sha256WithRSAEncryption 22:df:85:c3:87:c1:89:5e:4d:a0:69:38:2b:69:4b:19:51:2b: 48:c5:39:2e:ed:34:27:da:49:db:e1:ec:9c:a9:3f:8f:d9:8f: b6:09:31:1a:ae:0f:99:ee:5a:4e:ee:6f:68:5d:59:9d:ac:8e: f0:d6:60:b9:64:66:5f:2f:51:7b:29:cf:db:f1:d0:c9:db:6f: 62:6d:8b:14:61:c1:4a:ce:14:01:d7:ad:78:e6:e5:28:66:18: 43:ce:6c:79:f1:cd:42:b9:b3:09:94:b2:4b:87:0f:4b:ae:52: 12:7c:56:5d:dd:68:ef:1c:c8:d5:46:86:94:47:f0:25:7a:84: 53:78:d7:0f:0b:7b:13:c1:14:b0:ac:21:ed:5e:82:d6:c2:fd: 63:75:9c:d5:36:a2:4e:34:78:a4:0f:92:bf:4a:e5:d4:29:1d: f3:6f:0e:50:e4:00:ed:d1:63:af:69:98:27:7c:c7:2b:50:47: 1a:29:13:68:0f:95:47:cb:3f:d5:ad:7e:98:d8:df:e7:9f:db: bd:fc:64:38:07:2f:8e:e9:1f:2f:7e:a2:81:9f:9f:a5:50:51: 65:0c:05:58:6d:59:2f:bf:5c:08:e8:b2:0f:cc:b2:68:92:2e: 09:7f:a8:d0:b0:0e:9d:a3:a2:0b:4d:f4:fe:f9:2c:fd:21:af: b5:b3:e3:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3RkMxMTAvBgNVBAUTKDA4RDlGNDgzRTQ1NDIxNThGNjJDQkU3MDU4NjlFQkVE NzdGQjkyN0YwHhcNMjUwOTAzMDAxNjA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODhjNS1jM2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5N0XiDmtRHkrGm2IDfQgXb76oUid/MeO7lxynAHn5ZRL2/hMVi6J0J5oMp0 VPtXk5h6RjwH1OSFixnJTO+3ZSXqVv/UMtO6Z4/QDDv/569dTKOBMU/PTnrbOiG0 Yq6IgRzD6ele4RRypLCxNI4q/NFz0DrWoH1jdYXzfa94UcQ+SEeR3p8EBP/BInG9 GyxlvW1AJ4jjqr+dFd78zd2is2ElgQ67wdDkRR+C1XMhckixtaUmXXHZIiAjRq4Z VdI6dbuN8xoyQJ2601zJmokrXx34UPXfuyB6WWsQ5ZHi7sD28Vh2Ejyotjp3lwGt Bd9bW4mPzSt4Pp3PDodZ9VwhwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPqv33UE 5oDxW/oqWi8gYutdj90EMB8GA1UdIwQYMBaAFAjZ9IPkVCFY9iy+cFhp6+13+5J/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjdGQy80RTIzQjM5QzJB NjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlWajJMTDV3V0ducjdYZjdr bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NObjBnLVJVSVZqMkxMNXdXR25yN1hmN2tuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY3RkMvNEUyM0IzOUMyQTYyMTFFQ0E5QTY3QzMwQzRGOUFFMDIvNUNBNzJDRjgy QTY5MTFFQzk0NTE4NzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnJgowDQYJKoZIhvcNAQELBQADggEBACLfhcOHwYleTaBp OCtpSxlRK0jFOS7tNCfaSdvh7JypP4/Zj7YJMRquD5nuWk7ub2hdWZ2sjvDWYLlk Zl8vUXspz9vx0Mnbb2JtixRhwUrOFAHXrXjm5ShmGEPObHnxzUK5swmUskuHD0uu UhJ8Vl3daO8cyNVGhpRH8CV6hFN41w8LexPBFLCsIe1egtbC/WN1nNU2ok40eKQP kr9K5dQpHfNvDlDkAO3RY69pmCd8xytQRxopE2gPlUfLP9WtfpjY3+ef2738ZDgH L47pHy9+ooGfn6VQUWUMBVhtWS+/XAjosg/MsmiSLgl/qNCwDp2jogtN9P75LP0h r7Wz4yU= -----END CERTIFICATE-----Generated at Sun Sep 7 09:10:04 2025 by rpki-client