$ rpki-client -vvf rpki.apnic.net/member_repository/A91283E7/73960CC41ADB11EC93D06C60C4F9AE02/9F7C20921ADD11EC80226B61C4F9AE02.roa File: 9F7C20921ADD11EC80226B61C4F9AE02.roa (raw, json) Hash identifier: bsEiEpYevuZ2yI/lTaWJ4XTDfNWpo5EoBNfwBtnxRKA= Subject key identifier: A6:D2:E1:5A:54:CF:46:01:B1:B5:87:4D:A0:2A:74:46:6C:43:89:C9 Certificate issuer: /CN=A91283E7/serialNumber=30F2DC001BD658CD163E23771F41476972E0D14F Certificate serial: 0508 Authority key identifier: 30:F2:DC:00:1B:D6:58:CD:16:3E:23:77:1F:41:47:69:72:E0:D1:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPLcABvWWM0WPiN3H0FHaXLg0U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91283E7/73960CC41ADB11EC93D06C60C4F9AE02/9F7C20921ADD11EC80226B61C4F9AE02.roa Signing time: Sat 09 Aug 2025 00:35:47 +0000 ROA not before: Sat 09 Aug 2025 00:35:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136735 IP address blocks: 103.94.207.0/24 maxlen: 24 103.163.5.0/24 maxlen: 24 2001:df1:8700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91283E7/73960CC41ADB11EC93D06C60C4F9AE02/MPLcABvWWM0WPiN3H0FHaXLg0U8.crl rsync://rpki.apnic.net/member_repository/A91283E7/73960CC41ADB11EC93D06C60C4F9AE02/MPLcABvWWM0WPiN3H0FHaXLg0U8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPLcABvWWM0WPiN3H0FHaXLg0U8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91283E7, serialNumber=30F2DC001BD658CD163E23771F41476972E0D14F Validity Not Before: Aug 9 00:35:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689697e3-58b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:35:b3:a5:92:f1:7a:8d:d5:43:4a:cd:7e:e2: 21:b5:0a:c9:12:bb:61:7b:62:3a:03:14:40:a7:c9: 44:7d:fc:96:17:29:b6:04:9d:a1:55:a5:2c:da:14: 4a:29:0c:d6:d0:89:70:47:36:7b:7e:f2:86:10:a6: 5a:ef:3c:4c:be:7e:b8:8a:40:12:b6:22:d6:55:7f: a3:76:b6:6b:9a:9f:c5:51:69:57:31:95:88:c8:2c: 13:a8:d2:24:b7:fe:94:b0:e8:e4:fa:dc:ae:28:60: 08:1f:50:ab:98:93:24:bd:17:27:a0:2b:56:03:02: 69:97:76:fc:81:d4:be:fc:06:66:7a:ba:8d:05:9b: 59:e1:b8:ee:62:48:4a:54:4f:e6:25:85:cb:df:08: 93:7c:98:ec:cf:1c:09:73:da:d9:f1:60:2f:7a:5f: 3b:7a:0d:67:21:4f:9a:f8:69:ea:e5:64:f7:a8:96: 08:b8:47:cd:a7:10:61:96:9f:7e:ea:2d:6f:50:ef: 62:c5:20:c4:5b:1a:1f:59:20:77:1a:73:e5:be:f2: 0c:a2:82:c2:84:9a:ce:e0:85:31:7a:d7:e5:db:98: d4:ff:61:90:21:84:b2:e6:1a:34:53:76:ab:a3:52: 22:c6:e6:69:ac:b4:36:48:08:cb:e2:c9:9a:06:c6: de:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:D2:E1:5A:54:CF:46:01:B1:B5:87:4D:A0:2A:74:46:6C:43:89:C9 X509v3 Authority Key Identifier: keyid:30:F2:DC:00:1B:D6:58:CD:16:3E:23:77:1F:41:47:69:72:E0:D1:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91283E7/73960CC41ADB11EC93D06C60C4F9AE02/MPLcABvWWM0WPiN3H0FHaXLg0U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPLcABvWWM0WPiN3H0FHaXLg0U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91283E7/73960CC41ADB11EC93D06C60C4F9AE02/9F7C20921ADD11EC80226B61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.207.0/24 103.163.5.0/24 IPv6: 2001:df1:8700::/48 Signature Algorithm: sha256WithRSAEncryption 4b:f2:00:a0:3c:3e:0c:80:3e:62:ce:1d:25:2d:4a:26:49:6d: cf:18:3a:f2:f4:6f:ce:42:b4:2e:a6:3c:09:06:85:b5:c4:a8: eb:bd:d0:e5:24:1f:5c:9c:67:8b:9d:f8:c3:1b:26:e9:69:47: 8e:82:bf:07:39:c2:73:77:4f:8b:05:a6:8f:39:9f:c2:11:b4: 64:c8:50:45:6f:b6:c6:97:42:c3:be:b0:b6:be:8b:22:ed:4d: 57:46:94:7b:9f:e2:9e:cf:63:ae:75:17:8c:14:db:00:23:97: cd:23:e3:9d:46:41:e4:b2:0e:87:45:6b:60:2c:14:4b:d3:fc: 10:c7:cf:94:47:29:76:2f:87:e3:e1:27:9e:4b:6c:42:5e:00: 9d:69:6e:41:5a:76:ed:70:79:0c:d7:dc:bf:1e:76:c9:62:98: dc:22:cd:61:ad:39:cb:7b:54:60:95:1c:5b:72:cd:00:9e:11: 59:0d:90:01:3a:41:2c:38:3f:3a:2a:33:f9:68:c0:35:c6:9f: 80:a2:a8:7e:3c:9e:cb:29:80:45:9a:df:72:9d:23:59:84:4a: 3b:84:91:a5:97:82:78:46:30:12:5a:e0:5f:e0:b0:36:6c:6d: a8:8c:86:b8:c9:24:4e:3f:77:4d:fb:bd:9a:66:6e:fb:01:d0: 0a:4c:f8:33 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgzRTcxMTAvBgNVBAUTKDMwRjJEQzAwMUJENjU4Q0QxNjNFMjM3NzFGNDE0NzY5 NzJFMEQxNEYwHhcNMjUwODA5MDAzNTQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2OTdlMy01OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DWzpZLxeo3VQ0rNfuIhtQrJErthe2I6AxRAp8lEffyWFym2BJ2hVaUs2hRK KQzW0IlwRzZ7fvKGEKZa7zxMvn64ikAStiLWVX+jdrZrmp/FUWlXMZWIyCwTqNIk t/6UsOjk+tyuKGAIH1CrmJMkvRcnoCtWAwJpl3b8gdS+/AZmerqNBZtZ4bjuYkhK VE/mJYXL3wiTfJjszxwJc9rZ8WAvel87eg1nIU+a+Gnq5WT3qJYIuEfNpxBhlp9+ 6i1vUO9ixSDEWxofWSB3GnPlvvIMooLChJrO4IUxetfl25jU/2GQIYSy5ho0U3ar o1IixuZprLQ2SAjL4smaBsbe7wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFKbS4VpU z0YBsbWHTaAqdEZsQ4nJMB8GA1UdIwQYMBaAFDDy3AAb1ljNFj4jdx9BR2ly4NFP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODNFNy83Mzk2MENDNDFB REIxMUVDOTNEMDZDNjBDNEY5QUUwMi9NUExjQUJ2V1dNMFdQaU4zSDBGSGFYTGcw VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01QTGNBQnZXV00wV1BpTjNIMEZIYVhMZzBVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjgzRTcvNzM5NjBDQzQxQURCMTFFQzkzRDA2QzYwQzRGOUFFMDIvOUY3QzIwOTIx QUREMTFFQzgwMjI2QjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnXs8DBABnowUwDwQCAAIwCQMHACABDfGHADANBgkqhkiG 9w0BAQsFAAOCAQEAS/IAoDw+DIA+Ys4dJS1KJkltzxg68vRvzkK0LqY8CQaFtcSo 673Q5SQfXJxni534wxsm6WlHjoK/BznCc3dPiwWmjzmfwhG0ZMhQRW+2xpdCw76w tr6LIu1NV0aUe5/ins9jrnUXjBTbACOXzSPjnUZB5LIOh0VrYCwUS9P8EMfPlEcp di+H4+EnnktsQl4AnWluQVp27XB5DNfcvx52yWKY3CLNYa05y3tUYJUcW3LNAJ4R WQ2QATpBLDg/Oioz+WjANcafgKKofjyeyymARZrfcp0jWYRKO4SRpZeCeEYwElrg X+CwNmxtqIyGuMkkTj93Tfu9mmZu+wHQCkz4Mw== -----END CERTIFICATE-----Generated at Sat Aug 9 22:49:57 2025 by rpki-client