$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa File: 2F9887306F0D11EE9B369C60C4F9AE02.roa (raw, json) Hash identifier: aBiTKrdRm+ziRS/jKwG3ua8HiLf0c5Bx0y3taLaPOUU= Subject key identifier: 05:5F:9D:60:B0:EA:12:6A:2D:6B:73:1A:C1:DB:59:40:56:68:C5:0F Certificate issuer: /CN=A91554E6/serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Certificate serial: 0147 Authority key identifier: C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa Signing time: Wed 09 Jul 2025 02:38:06 +0000 ROA not before: Wed 09 Jul 2025 02:38:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149866 IP address blocks: 103.189.160.0/23 maxlen: 24 2400:8760::/32 maxlen: 32 2400:8760:5::/48 maxlen: 48 2400:8760:6::/48 maxlen: 48 2400:8760:11::/48 maxlen: 48 2400:8760:12::/48 maxlen: 48 2400:8760:13::/48 maxlen: 48 2400:8760:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6, serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Validity Not Before: Jul 9 02:38:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686dd60e-c0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fe:e9:1a:4b:d4:38:1b:0c:19:eb:0a:4c:d3: de:cd:85:cf:f0:be:f5:b2:5c:64:47:63:1f:b0:5d: f5:f5:86:e6:0d:0b:0a:b6:ec:95:34:1a:ff:93:ef: 6e:14:4d:fa:60:c4:5a:2d:5a:c7:51:d8:2b:0d:e7: 92:91:01:1d:21:03:dc:da:fe:5f:4c:6d:af:4d:bb: eb:25:9f:1b:29:9e:01:66:ed:0b:b6:92:69:2f:ab: a5:cd:63:ca:5e:7f:47:18:7b:2a:a8:60:70:38:1a: 1c:ef:47:32:47:cd:0d:57:46:e1:a2:83:6c:7c:2a: a1:65:6f:08:3d:c2:87:46:a5:35:bb:84:27:cd:6f: 16:72:cb:3d:d7:a8:51:6c:d8:bb:32:70:ab:b2:db: 4f:19:a3:6f:90:98:f0:5c:38:6a:21:ef:8d:3b:d0: 19:34:56:75:6e:ae:59:2c:d8:db:ec:7c:20:e6:98: 94:7e:ff:b5:4e:ee:28:ec:56:a6:f5:27:64:50:cf: 30:b8:82:52:5a:34:e3:88:87:79:88:3a:4d:2b:98: cb:9f:23:02:06:b4:2e:a9:63:87:48:62:70:34:13: 48:49:32:89:1a:a4:34:63:41:48:3c:fa:2f:dd:49: 40:77:82:e6:60:59:97:6a:31:4b:14:28:da:ca:48: d0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5F:9D:60:B0:EA:12:6A:2D:6B:73:1A:C1:DB:59:40:56:68:C5:0F X509v3 Authority Key Identifier: keyid:C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.160.0/23 IPv6: 2400:8760::/32 Signature Algorithm: sha256WithRSAEncryption 80:db:5b:64:24:f7:4d:c9:51:d5:b8:a6:f9:cd:9b:c0:99:9a: 14:ee:87:66:b4:8c:df:a6:c5:db:ba:11:96:10:79:99:cb:c2: e9:0e:c3:66:ec:c7:53:d7:d7:ce:60:2f:90:73:44:fa:63:b7: f8:ec:60:b9:e2:f6:df:73:0b:8d:68:66:ad:3b:3d:50:d2:fd: 3d:27:1a:b2:0b:5c:51:6b:6e:79:2b:79:fd:e3:75:98:f3:df: 64:b0:13:31:1e:3d:b3:ad:5a:4d:bd:16:9e:f3:cd:51:ba:44: 9f:c3:4c:03:1d:b4:f3:19:cb:b1:ea:f9:b7:94:c0:43:a7:69: 99:39:6b:54:84:a1:67:c8:c5:39:20:5b:af:4c:d7:5e:15:9c: b7:3d:ac:c3:71:0f:6c:05:3d:d7:e8:ac:3b:c6:66:00:64:e2: 66:5a:aa:2f:db:f3:e6:77:01:4b:80:3d:a4:11:70:de:3d:7f: 75:67:ab:67:32:de:57:1a:82:12:18:d5:48:c4:4f:05:5a:e6: 4d:2e:d3:e4:7c:06:12:71:51:7a:3e:51:c6:01:3b:3b:90:81: e2:c1:92:f2:a0:b2:52:af:3e:d9:1c:2f:6b:e4:7c:2b:e5:28: cf:74:44:90:8e:75:3a:78:11:11:f7:d4:18:fc:2c:54:76:ce: 8b:7c:78:8a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEM3OEQxRTU5NTkxQkUwQzc1MjREMzZCREY4NUM4QUM2 RUExOTBGOEUwHhcNMjUwNzA5MDIzODA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkZDYwZS1jMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/7pGkvUOBsMGesKTNPezYXP8L71slxkR2MfsF319YbmDQsKtuyVNBr/k+9u FE36YMRaLVrHUdgrDeeSkQEdIQPc2v5fTG2vTbvrJZ8bKZ4BZu0LtpJpL6ulzWPK Xn9HGHsqqGBwOBoc70cyR80NV0bhooNsfCqhZW8IPcKHRqU1u4QnzW8Wcss916hR bNi7MnCrsttPGaNvkJjwXDhqIe+NO9AZNFZ1bq5ZLNjb7Hwg5piUfv+1Tu4o7Fam 9SdkUM8wuIJSWjTjiId5iDpNK5jLnyMCBrQuqWOHSGJwNBNISTKJGqQ0Y0FIPPov 3UlAd4LmYFmXajFLFCjaykjQrQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAVfnWCw 6hJqLWtzGsHbWUBWaMUPMB8GA1UdIwQYMBaAFMeNHllZG+DHUk02vfhcisbqGQ+O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi94NDBlV1ZrYjRNZFNUVGE5LUZ5S3h1b1pE NDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g0MGVXVmtiNE1kU1RUYTktRnlLeHVvWkQ0NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU0RTYvOUYwNjc3NDhFRDRCMTFFQ0FCOEZBQTc3QzRGOUFFMDIvMkY5ODg3MzA2 RjBEMTFFRTlCMzY5QzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnvaAwDQQCAAIwBwMFACQAh2AwDQYJKoZIhvcNAQELBQAD ggEBAIDbW2Qk903JUdW4pvnNm8CZmhTuh2a0jN+mxdu6EZYQeZnLwukOw2bsx1PX 185gL5BzRPpjt/jsYLni9t9zC41oZq07PVDS/T0nGrILXFFrbnkref3jdZjz32Sw EzEePbOtWk29Fp7zzVG6RJ/DTAMdtPMZy7Hq+beUwEOnaZk5a1SEoWfIxTkgW69M 114VnLc9rMNxD2wFPdforDvGZgBk4mZaqi/b8+Z3AUuAPaQRcN49f3Vnq2cy3lca ghIY1UjETwVa5k0u0+R8BhJxUXo+UcYBOzuQgeLBkvKgslKvPtkcL2vkfCvlKM90 RJCOdTp4ERH31Bj8LFR2zot8eIo= -----END CERTIFICATE-----Generated at Sun Aug 10 21:02:31 2025 by rpki-client