$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/9DB6EBB4972E11E9B776A755C4F9AE02.roa File: 9DB6EBB4972E11E9B776A755C4F9AE02.roa (raw, json) Hash identifier: xHKRgZRt4qbSzDPZH6wkR/9CWnhDd6W1bLMRhJgSvfc= Subject key identifier: 0D:17:78:B5:32:70:62:09:A4:82:D6:90:F9:EA:ED:58:B9:2B:D3:16 Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 35DC Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/9DB6EBB4972E11E9B776A755C4F9AE02.roa Signing time: Thu 24 Jul 2025 14:50:37 +0000 ROA not before: Thu 24 Jul 2025 14:50:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55407 IP address blocks: 103.19.104.0/24 maxlen: 24 103.19.105.0/24 maxlen: 24 103.19.106.0/24 maxlen: 24 203.209.97.0/24 maxlen: 24 203.209.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13788 (0x35dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jul 24 14:50:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6882483d-0b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8e:0b:9b:6f:49:4f:04:01:0c:ef:c2:b1:ef: 7d:0c:f0:89:91:17:74:89:b9:dc:c7:7c:58:10:a5: 8b:7c:a0:4c:95:e5:da:c1:a1:f9:94:f3:43:44:eb: 5b:59:2b:5d:0a:2d:90:b5:ed:90:b9:a1:36:b6:2b: a2:50:21:64:8b:59:23:30:be:52:80:df:66:b2:07: 2b:9e:55:6a:c8:52:fb:4c:e0:18:49:c7:eb:be:8d: d1:64:dc:13:7a:04:e6:f2:20:79:7b:0e:b8:15:69: 9e:4b:9b:22:dd:47:ed:01:41:54:96:a8:60:48:a1: e7:ba:e8:d3:83:cb:98:62:52:10:db:16:94:20:ff: 7c:90:a4:b8:09:c9:44:26:cf:a8:66:c7:e7:c5:07: 04:55:1e:b6:73:b0:4f:59:31:0e:4d:71:c1:b4:a6: cb:29:cf:f4:bf:3d:79:8b:3d:3e:25:75:16:bc:18: 70:73:30:0e:3d:a6:19:a1:e5:50:7a:1b:a7:10:c8: fc:23:81:ca:50:bf:10:14:ce:8b:f9:e5:be:94:e5: c2:04:cc:5f:8e:37:14:3f:69:07:7d:b4:a5:60:30: ab:f9:30:b8:06:dc:28:32:00:e6:15:50:0d:f4:89: f4:84:e7:60:e8:98:2c:c4:0a:f1:47:6f:06:f6:5b: 5b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:17:78:B5:32:70:62:09:A4:82:D6:90:F9:EA:ED:58:B9:2B:D3:16 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/9DB6EBB4972E11E9B776A755C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.104.0-103.19.106.255 203.209.97.0-203.209.98.255 Signature Algorithm: sha256WithRSAEncryption 3d:46:02:e7:d7:6c:48:6f:59:08:18:14:73:ab:c4:13:6c:57: b3:84:d0:99:7b:a0:06:60:87:fa:b5:c1:5c:8e:6a:37:a1:4e: 3e:cc:4c:a4:51:25:26:95:c3:39:16:50:1a:ef:1e:64:c5:c0: 77:76:ab:9d:19:42:e4:2a:e0:5c:e3:f2:ce:d1:88:1f:a8:99: a9:f3:6a:bc:bb:e2:1a:56:80:ae:0b:41:8a:19:ea:99:5f:90: 25:ec:91:02:df:51:3e:d0:48:a7:ae:d5:e6:64:fd:31:ef:c7: 24:3c:ca:23:0b:e0:a3:ca:61:2c:9b:9b:d3:63:fa:d8:6b:ab: d3:36:ce:87:47:60:34:01:3b:5d:f3:7a:22:c3:12:a3:a7:15: bd:b5:b9:bf:47:ab:40:4b:cb:26:2d:10:cd:8e:85:42:dc:ae: 0d:02:31:29:34:b2:ed:37:b1:cc:48:8b:17:d8:d4:d0:32:ea: 7d:d8:98:c6:79:14:e7:49:3b:ff:47:90:42:65:03:13:e3:19: 35:21:e4:ad:d8:bf:08:ce:6c:d8:9f:21:21:ad:0b:01:fd:ee: f9:f6:19:9d:85:11:b3:50:48:55:29:e0:25:5c:f1:3c:3a:f6: 73:c8:01:e2:02:4d:d3:5f:aa:59:c0:b8:40:89:14:97:6f:eb: ae:88:8b:03 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICNdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNzI0MTQ1MDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyNDgzZC0wYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAno4Lm29JTwQBDO/Cse99DPCJkRd0ibncx3xYEKWLfKBMleXawaH5lPNDROtb WStdCi2Qte2QuaE2tiuiUCFki1kjML5SgN9msgcrnlVqyFL7TOAYScfrvo3RZNwT egTm8iB5ew64FWmeS5si3UftAUFUlqhgSKHnuujTg8uYYlIQ2xaUIP98kKS4CclE Js+oZsfnxQcEVR62c7BPWTEOTXHBtKbLKc/0vz15iz0+JXUWvBhwczAOPaYZoeVQ ehunEMj8I4HKUL8QFM6L+eW+lOXCBMxfjjcUP2kHfbSlYDCr+TC4BtwoMgDmFVAN 9In0hOdg6JgsxArxR28G9ltbSQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFA0XeLUy cGIJpILWkPnq7Vi5K9MWMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvOURCNkVCQjQ5 NzJFMTFFOUI3NzZBNzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEA2cTaAMEAGcTajAMAwQAy9FhAwQAy9FiMA0GCSqGSIb3 DQEBCwUAA4IBAQA9RgLn12xIb1kIGBRzq8QTbFezhNCZe6AGYIf6tcFcjmo3oU4+ zEykUSUmlcM5FlAa7x5kxcB3dqudGULkKuBc4/LO0YgfqJmp82q8u+IaVoCuC0GK GeqZX5Al7JEC31E+0EinrtXmZP0x78ckPMojC+CjymEsm5vTY/rYa6vTNs6HR2A0 ATtd83oiwxKjpxW9tbm/R6tAS8smLRDNjoVC3K4NAjEpNLLtN7HMSIsX2NTQMup9 2JjGeRTnSTv/R5BCZQMT4xk1IeSt2L8IzmzYnyEhrQsB/e759hmdhRGzUEhVKeAl XPE8OvZzyAHiAk3TX6pZwLhAiRSXb+uuiIsD -----END CERTIFICATE-----Generated at Mon Aug 11 04:31:09 2025 by rpki-client