$ rpki-client -vvf rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/F30B07CE705011F0A5A44E86C4F9AE02.roa File: F30B07CE705011F0A5A44E86C4F9AE02.roa (raw, json) Hash identifier: kwV8hhlNLXw0fqo5GXhukzzyuE6LyZO1Y35yZzYd4Pk= Subject key identifier: AF:76:BB:BC:11:EB:2B:A8:FE:B1:E9:3C:14:25:22:47:99:8A:4F:A2 Certificate issuer: /CN=A91871C2/serialNumber=A9EABC2465116ED11D6C8CDAE2011237CF1F59DF Certificate serial: 0785 Authority key identifier: A9:EA:BC:24:65:11:6E:D1:1D:6C:8C:DA:E2:01:12:37:CF:1F:59:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/F30B07CE705011F0A5A44E86C4F9AE02.roa Signing time: Sun 03 Aug 2025 10:02:23 +0000 ROA not before: Sun 03 Aug 2025 10:02:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138397 IP address blocks: 103.124.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.crl rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1925 (0x785) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91871C2, serialNumber=A9EABC2465116ED11D6C8CDAE2011237CF1F59DF Validity Not Before: Aug 3 10:02:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=688f33ae-00b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:a6:b7:ff:56:78:29:7a:87:f3:58:e7:49: d0:eb:69:eb:1e:0d:d7:1a:96:b7:91:3d:b6:ca:4d: b4:48:5d:67:2a:92:9d:dd:c4:48:07:e5:5a:e5:9e: 6f:f8:c0:fb:31:13:1c:0f:c0:6f:50:6a:f1:72:f1: a4:9a:58:dc:b7:b6:f3:e4:1d:74:d0:6f:a4:b9:5f: 36:fa:4e:2e:17:2f:cd:9e:e7:5b:36:4d:37:a9:1c: 9f:42:ec:dc:64:d0:c4:5d:6e:4d:42:f4:8e:5b:d8: a4:0c:ef:29:46:51:a7:bf:7a:aa:93:d3:bb:2f:47: c4:a1:bd:64:92:80:b1:27:a1:5f:24:69:92:aa:97: 5d:ae:4d:ab:14:16:15:ae:7c:90:3b:2c:cb:b5:64: 6d:96:09:84:81:4b:4d:08:2e:83:fd:6b:8e:2a:ac: ff:72:cd:25:91:90:58:82:f8:8c:c6:14:3e:84:ab: 20:af:8e:e6:69:5d:bf:37:0d:26:27:f1:da:ad:3e: 2d:db:ea:56:02:6c:ef:7c:f2:75:1e:74:3b:03:13: 43:b5:5a:2d:f9:81:1d:76:fe:d4:eb:88:e3:4c:a9: 89:a7:67:6b:5e:f5:19:d3:65:87:a0:10:07:79:cc: 56:4b:0a:9f:4a:a6:79:fd:86:ab:bd:8d:62:9e:8b: 17:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:76:BB:BC:11:EB:2B:A8:FE:B1:E9:3C:14:25:22:47:99:8A:4F:A2 X509v3 Authority Key Identifier: keyid:A9:EA:BC:24:65:11:6E:D1:1D:6C:8C:DA:E2:01:12:37:CF:1F:59:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/F30B07CE705011F0A5A44E86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.111.0/24 Signature Algorithm: sha256WithRSAEncryption 76:91:04:f2:96:3c:94:3d:68:2e:de:6c:95:0f:90:a1:6e:ec: 72:2a:f8:d6:4f:f0:76:4a:fa:7c:e2:02:d7:7d:90:e3:a4:5f: 10:67:14:d2:15:91:26:9e:64:9b:61:dd:1c:c3:2b:23:a3:5a: 4a:dd:0d:8b:19:56:c3:7d:bb:03:8d:7d:12:5e:5e:c7:65:6f: cd:2c:b4:60:ac:a6:50:e8:fc:87:fb:76:a2:17:51:ca:12:08: d8:44:0a:1f:a9:25:77:03:15:20:d2:a7:f9:0b:e0:8b:2c:b5: 82:0d:15:92:19:f1:3a:d7:f9:0b:bb:84:63:e2:27:2c:36:16: a3:60:ad:68:e5:40:0f:ff:48:22:57:09:93:30:bd:e4:4f:75: bb:05:6d:65:dd:0a:6e:3e:45:0c:4a:6f:0a:f5:7c:c2:5d:23: e6:fa:5f:a6:0b:a3:aa:46:88:76:0f:c4:b1:9e:2b:fa:cf:86: 60:59:16:0e:44:6c:5c:bd:5a:bc:fb:11:45:77:f1:f0:c8:57: 32:47:cf:5a:17:eb:f2:82:10:8a:74:c3:c0:a9:1d:b4:0d:2c: f4:34:ed:a2:a5:61:d9:66:99:ba:48:a1:83:22:54:d2:06:a9: 42:d9:4a:ad:28:8e:9a:93:dd:18:7a:88:20:4e:de:b6:e1:af: 81:fb:de:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcxQzIxMTAvBgNVBAUTKEE5RUFCQzI0NjUxMTZFRDExRDZDOENEQUUyMDExMjM3 Q0YxRjU5REYwHhcNMjUwODAzMTAwMjIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhmMzNhZS0wMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA086mt/9WeCl6h/NY50nQ62nrHg3XGpa3kT22yk20SF1nKpKd3cRIB+Va5Z5v +MD7MRMcD8BvUGrxcvGkmljct7bz5B100G+kuV82+k4uFy/NnudbNk03qRyfQuzc ZNDEXW5NQvSOW9ikDO8pRlGnv3qqk9O7L0fEob1kkoCxJ6FfJGmSqpddrk2rFBYV rnyQOyzLtWRtlgmEgUtNCC6D/WuOKqz/cs0lkZBYgviMxhQ+hKsgr47maV2/Nw0m J/HarT4t2+pWAmzvfPJ1HnQ7AxNDtVot+YEddv7U64jjTKmJp2drXvUZ02WHoBAH ecxWSwqfSqZ5/YarvY1inosXfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK92u7wR 6yuo/rHpPBQlIkeZik+iMB8GA1UdIwQYMBaAFKnqvCRlEW7RHWyM2uIBEjfPH1nf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzFDMi9ERTYxNjY2ODU1 QTkxMUVCOTlBRkRBNURDNEY5QUUwMi9xZXE4SkdVUmJ0RWRiSXphNGdFU044OGZX ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FlcThKR1VSYnRFZGJJemE0Z0VTTjg4ZldkOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODcxQzIvREU2MTY2Njg1NUE5MTFFQjk5QUZEQTVEQzRGOUFFMDIvRjMwQjA3Q0U3 MDUwMTFGMEE1QTQ0RTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnfG8wDQYJKoZIhvcNAQELBQADggEBAHaRBPKWPJQ9aC7e bJUPkKFu7HIq+NZP8HZK+nziAtd9kOOkXxBnFNIVkSaeZJth3RzDKyOjWkrdDYsZ VsN9uwONfRJeXsdlb80stGCsplDo/If7dqIXUcoSCNhECh+pJXcDFSDSp/kL4Iss tYINFZIZ8TrX+Qu7hGPiJyw2FqNgrWjlQA//SCJXCZMwveRPdbsFbWXdCm4+RQxK bwr1fMJdI+b6X6YLo6pGiHYPxLGeK/rPhmBZFg5EbFy9Wrz7EUV38fDIVzJHz1oX 6/KCEIp0w8CpHbQNLPQ07aKlYdlmmbpIoYMiVNIGqULZSq0ojpqT3Rh6iCBO3rbh r4H73hQ= -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:25 2025 by rpki-client