$ rpki-client -vvf rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa File: 3DC8B712E14411EFBECFB90BC4F9AE02.roa (raw, json) Hash identifier: DcZGy4PWZzTwOUNtpL1rLlMb1gqaFihjq3bAlb0Tfo4= Subject key identifier: 16:14:13:90:74:1F:C2:DB:4C:7B:2C:D2:13:5A:4D:AF:79:4E:8C:4D Certificate issuer: /CN=A91809AD/serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Certificate serial: 13AC Authority key identifier: 6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa Signing time: Thu 31 Jul 2025 17:26:20 +0000 ROA not before: Thu 31 Jul 2025 17:26:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138039 IP address blocks: 103.120.116.0/24 maxlen: 24 103.120.118.0/24 maxlen: 24 103.120.119.0/24 maxlen: 24 2407:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5036 (0x13ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91809AD, serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Validity Not Before: Jul 31 17:26:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688ba73c-5e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:77:41:71:f9:67:ab:6c:30:c9:cc:15:2e:b9: 97:71:ec:91:5c:ae:16:0b:18:56:8c:f8:95:80:c9: 56:c9:da:21:1d:d9:fb:74:3b:25:bb:85:81:bd:e3: 8a:cf:7a:23:19:c5:fd:ad:00:3e:0a:69:2f:f5:cc: 5f:60:57:63:09:1d:6a:ed:c9:9f:0b:ee:f7:1f:c3: fb:58:e8:c4:72:9c:f6:ca:a4:91:08:95:9e:c9:6b: e2:61:6e:fb:81:9e:dc:c9:4e:9b:62:b8:6c:e6:d1: 7d:20:a1:ae:76:00:b1:8f:6e:52:f2:4c:76:6e:a5: 24:f2:3d:b1:79:ca:64:bf:59:76:f6:2e:7f:e4:36: 80:1e:7c:13:f9:54:82:68:27:2b:52:14:63:79:5f: 6c:81:a9:a0:7a:1b:f8:0f:ff:ab:d9:a4:17:ac:fa: 9f:6b:62:09:3f:f2:88:eb:85:36:a1:59:67:aa:4b: da:13:5d:7f:74:4f:35:36:78:73:df:75:48:bc:38: 5a:e6:7f:5f:38:28:b7:55:fd:ad:f2:1f:f6:dd:9d: 1d:7a:cc:7a:f2:d2:0a:76:06:74:e7:ec:d3:28:7e: 30:35:33:74:af:9f:ca:de:61:93:a1:19:f8:3c:4d: c0:ea:60:ab:2c:44:eb:55:7d:1b:3c:47:b0:8c:11: 62:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:14:13:90:74:1F:C2:DB:4C:7B:2C:D2:13:5A:4D:AF:79:4E:8C:4D X509v3 Authority Key Identifier: keyid:6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.116.0/24 103.120.118.0/23 IPv6: 2407:1840::/32 Signature Algorithm: sha256WithRSAEncryption 70:67:ec:f8:80:bd:0f:0c:5e:95:f4:a0:a2:27:c0:f4:73:e4: 39:33:71:c6:0b:0a:b3:d3:9f:71:95:e0:6a:47:85:e9:78:78: 15:69:fc:62:7d:0e:e3:b8:a0:79:fb:57:c5:d1:e6:f8:c4:35: 04:c9:b6:bd:e1:90:e4:04:b7:53:6c:9a:69:ff:c9:04:fa:1b: f6:ee:80:9b:e2:4e:e2:db:91:98:83:e8:5d:ce:af:a4:d8:db: ec:94:bb:3b:37:f9:5c:a2:cf:6e:12:41:64:eb:d8:d0:42:21: a8:f4:a2:0e:e9:92:7e:0d:dd:07:cd:d8:2c:8e:e8:2c:5c:fa: 7a:c3:f8:1a:44:70:57:56:ec:d7:39:7f:46:19:d6:51:26:22: 56:ae:26:98:87:5e:f9:81:6c:53:3b:3e:a0:b3:e7:14:e5:44: 76:0b:00:42:a1:75:d5:5f:3c:12:fd:ae:49:9b:3b:0b:48:86: 16:df:48:8b:27:99:0e:fe:55:0f:41:b1:e6:d5:c8:53:aa:13: 8a:59:c9:ae:4f:bf:1d:ee:e4:7c:4e:70:53:2c:f5:80:2f:91: ac:5a:58:04:3e:c0:18:63:13:3a:6c:8d:f1:6f:2d:0e:ef:fc: 95:3c:82:bd:5f:3f:e1:41:e2:a5:87:78:25:21:a8:95:d3:63: c4:a9:59:49 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICE6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA5QUQxMTAvBgNVBAUTKDZEN0MyMjZBN0RDQjg1RjJGNDkyMTZCN0VCQjAwRDVG MDNBNjA1QzMwHhcNMjUwNzMxMTcyNjIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiYTczYy01ZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3dBcflnq2wwycwVLrmXceyRXK4WCxhWjPiVgMlWydohHdn7dDslu4WBveOK z3ojGcX9rQA+Cmkv9cxfYFdjCR1q7cmfC+73H8P7WOjEcpz2yqSRCJWeyWviYW77 gZ7cyU6bYrhs5tF9IKGudgCxj25S8kx2bqUk8j2xecpkv1l29i5/5DaAHnwT+VSC aCcrUhRjeV9sgamgehv4D/+r2aQXrPqfa2IJP/KI64U2oVlnqkvaE11/dE81Nnhz 33VIvDha5n9fOCi3Vf2t8h/23Z0desx68tIKdgZ05+zTKH4wNTN0r5/K3mGToRn4 PE3A6mCrLETrVX0bPEewjBFi5wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBYUE5B0 H8LbTHss0hNaTa95ToxNMB8GA1UdIwQYMBaAFG18Imp9y4Xy9JIWt+uwDV8DpgXD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDlBRC82NTZERDI2QUE3 NjgxMUU4OTMzM0M3MjVDNEY5QUUwMi9iWHdpYW4zTGhmTDBraGEzNjdBTlh3T21C Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYd2lhbjNMaGZMMGtoYTM2N0FOWHdPbUJjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA5QUQvNjU2REQyNkFBNzY4MTFFODkzMzNDNzI1QzRGOUFFMDIvM0RDOEI3MTJF MTQ0MTFFRkJFQ0ZCOTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABneHQDBAFneHYwDQQCAAIwBwMFACQHGEAwDQYJKoZIhvcN AQELBQADggEBAHBn7PiAvQ8MXpX0oKInwPRz5DkzccYLCrPTn3GV4GpHhel4eBVp /GJ9DuO4oHn7V8XR5vjENQTJtr3hkOQEt1Nsmmn/yQT6G/bugJviTuLbkZiD6F3O r6TY2+yUuzs3+Vyiz24SQWTr2NBCIaj0og7pkn4N3QfN2CyO6Cxc+nrD+BpEcFdW 7Nc5f0YZ1lEmIlauJpiHXvmBbFM7PqCz5xTlRHYLAEKhddVfPBL9rkmbOwtIhhbf SIsnmQ7+VQ9BsebVyFOqE4pZya5Pvx3u5HxOcFMs9YAvkaxaWAQ+wBhjEzpsjfFv LQ7v/JU8gr1fP+FB4qWHeCUhqJXTY8SpWUk= -----END CERTIFICATE-----Generated at Mon Aug 11 10:31:52 2025 by rpki-client