$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/67F4BD64519811F092842D60C4F9AE02.roa File: 67F4BD64519811F092842D60C4F9AE02.roa (raw, json) Hash identifier: 88Jh5coMAVPJSUCnQAmSwbUiu0xU/3P6Y2QChRKwELo= Subject key identifier: 91:E5:78:22:E2:80:8F:1D:D9:78:29:22:0D:F4:FD:5F:86:D8:17:29 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 0793 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/67F4BD64519811F092842D60C4F9AE02.roa Signing time: Wed 25 Jun 2025 07:47:35 +0000 ROA not before: Wed 25 Jun 2025 07:47:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.205.208.0/24 maxlen: 24 103.205.209.0/24 maxlen: 24 103.205.210.0/24 maxlen: 24 103.205.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1939 (0x793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF, serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Jun 25 07:47:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=685ba997-82dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9e:f9:22:7c:99:34:fc:40:66:44:ef:9a:47: c8:4d:d4:b3:00:0f:32:28:f9:78:a3:b4:ac:b4:c7: 6b:ba:c3:f2:0b:0a:ab:0d:9b:7e:9a:3b:01:64:3b: 98:f7:81:cb:e3:10:8e:b3:9f:35:30:a2:fc:23:6b: 6a:61:b1:e3:56:b8:65:80:98:aa:a6:30:bf:5f:58: 5f:74:08:d2:d2:51:c2:65:9b:ea:0a:3b:5b:30:66: 78:67:b1:76:a1:ac:f8:9e:04:df:78:e3:4a:50:4f: da:2f:77:ff:f6:9c:c7:50:59:87:0c:29:87:f1:e2: ac:0d:36:77:8d:ac:96:cd:6f:5a:35:62:1d:f5:bd: 5b:2e:3e:b4:25:cc:fa:be:5c:ce:ed:6d:df:f9:50: 4a:7c:87:0c:c0:07:12:25:41:0a:bc:2f:46:30:63: 59:38:66:3b:18:88:5f:f9:48:bf:ee:a8:5f:58:3d: 98:5a:e6:55:71:65:8a:d7:fd:78:cf:52:37:aa:b9: e4:33:77:f8:9f:e0:86:00:9a:19:e9:d3:83:11:8b: 05:47:34:ad:2b:c3:95:ce:56:e2:20:3a:f3:c8:91: 63:f0:4a:c2:65:f3:eb:cf:ff:1f:69:5a:12:ba:ef: 1c:1c:03:4d:99:e0:b6:93:57:4f:14:2d:0e:a5:7a: f8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E5:78:22:E2:80:8F:1D:D9:78:29:22:0D:F4:FD:5F:86:D8:17:29 X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/67F4BD64519811F092842D60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.208.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:38:86:74:0d:1e:92:ec:49:4d:e6:c6:12:ed:45:be:98:86: ec:8f:31:9b:54:81:b6:42:43:ac:a6:c5:02:e2:be:4f:92:6b: ac:17:b3:a9:32:6e:f4:d6:c3:65:30:a9:02:b6:21:6d:a2:f1: 66:b3:62:77:0a:e3:99:29:43:fe:9d:f3:db:5c:63:c0:d3:0d: 53:a0:a2:65:ad:6e:7a:8f:b2:b0:41:24:7b:ab:28:78:52:33: 15:4c:d8:f0:6c:42:e4:c3:49:ea:e1:ee:47:34:b1:9b:3c:75: cb:f0:5a:e2:ef:5f:5c:4c:4e:ba:f7:40:13:b9:ca:da:91:1f: 64:92:c3:5d:40:86:b5:85:34:9a:96:0c:8b:39:0b:6e:3e:c7: ec:4f:9f:6a:0a:90:d8:9a:cb:7e:8e:25:f6:27:f2:b7:63:21: bf:18:6e:ac:21:d6:b5:6f:2b:5e:dd:27:e5:a8:7b:68:f1:ea: 88:31:96:82:e8:f5:dc:be:a6:18:91:cd:66:88:6b:41:4e:bb: 9d:0c:ca:6c:d6:df:74:fd:21:34:80:4e:c7:23:3a:d2:8c:b2: 06:b8:83:b0:29:60:5e:9f:58:00:18:3f:01:02:ac:2f:42:dc: 4f:ea:21:5f:41:53:0f:ec:28:cc:15:da:bf:2a:80:6a:c6:9e: d0:95:05:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjUwNjI1MDc0NzM1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViYTk5Ny04MmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJ75InyZNPxAZkTvmkfITdSzAA8yKPl4o7SstMdrusPyCwqrDZt+mjsBZDuY 94HL4xCOs581MKL8I2tqYbHjVrhlgJiqpjC/X1hfdAjS0lHCZZvqCjtbMGZ4Z7F2 oaz4ngTfeONKUE/aL3f/9pzHUFmHDCmH8eKsDTZ3jayWzW9aNWId9b1bLj60Jcz6 vlzO7W3f+VBKfIcMwAcSJUEKvC9GMGNZOGY7GIhf+Ui/7qhfWD2YWuZVcWWK1/14 z1I3qrnkM3f4n+CGAJoZ6dODEYsFRzStK8OVzlbiIDrzyJFj8ErCZfPrz/8faVoS uu8cHANNmeC2k1dPFC0OpXr4nwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJHleCLi gI8d2XgpIg30/V+G2BcpMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1QkYvRjEzM0JEQUMxM0YyMTFFQjlCRUZDRDUxQzRGOUFFMDIvNjdGNEJENjQ1 MTk4MTFGMDkyODQyRDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzdAwDQYJKoZIhvcNAQELBQADggEBAE44hnQNHpLsSU3m xhLtRb6YhuyPMZtUgbZCQ6ymxQLivk+Sa6wXs6kybvTWw2UwqQK2IW2i8WazYncK 45kpQ/6d89tcY8DTDVOgomWtbnqPsrBBJHurKHhSMxVM2PBsQuTDSerh7kc0sZs8 dcvwWuLvX1xMTrr3QBO5ytqRH2SSw11AhrWFNJqWDIs5C24+x+xPn2oKkNiay36O JfYn8rdjIb8Ybqwh1rVvK17dJ+Woe2jx6ogxloLo9dy+phiRzWaIa0FOu50MymzW 33T9ITSATscjOtKMsga4g7ApYF6fWAAYPwECrC9C3E/qIV9BUw/sKMwV2r8qgGrG ntCVBWk= -----END CERTIFICATE-----Generated at Tue Nov 4 16:37:29 2025 by rpki-client