$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/067B1AAA70C611EF8080566DC4F9AE02.roa File: 067B1AAA70C611EF8080566DC4F9AE02.roa (raw, json) Hash identifier: lvr0OAzbavcL7ZcKfVmoFVXnJpXDxxz4atlqt/QjZh4= Subject key identifier: 9E:36:D2:1E:F9:E2:91:2E:81:7D:BC:59:0D:3A:E0:FD:53:05:47:6C Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 07E4 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/067B1AAA70C611EF8080566DC4F9AE02.roa Signing time: Sat 02 Aug 2025 21:33:01 +0000 ROA not before: Sat 02 Aug 2025 21:33:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17408 IP address blocks: 103.154.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2020 (0x7e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Aug 2 21:33:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688e840d-57dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3a:5a:f1:4f:59:79:87:ea:f0:e4:57:bc:96: 87:5d:d2:fe:25:b3:91:90:24:bf:27:44:af:a8:b4: fc:bf:e6:e0:58:60:09:1a:e2:69:8f:c7:d9:92:c6: 1f:ae:20:f0:7e:45:6e:fd:ea:d2:e5:50:8f:d3:8d: cd:21:32:c0:7b:74:5d:ce:ca:7b:c5:a8:d2:8f:8c: 97:3f:fe:19:80:a6:0a:5b:7b:91:92:ac:22:28:7d: d4:20:bd:ea:4e:c6:c8:ac:a2:c2:7a:45:c7:cd:c5: c2:37:2a:00:7b:69:4f:21:88:15:c9:0b:c9:75:fe: cc:a6:60:3d:21:5d:6f:2a:9f:6f:85:69:6a:a8:4b: 65:a8:39:41:23:4a:6f:76:ec:2a:c8:30:ce:f2:d3: ac:53:70:ba:16:f4:83:b9:9a:f2:08:7b:92:1f:d7: a7:ca:63:5e:b3:df:5e:0b:3c:97:30:6f:c0:e8:71: 23:82:72:eb:8a:85:fd:2e:67:53:09:80:f3:de:f9: d5:a8:50:25:7e:01:ad:6b:6d:70:f5:08:c1:b2:a6: 9d:b9:e8:a9:d6:02:d2:93:ea:05:b3:f0:15:e9:d5: dc:a0:c5:d6:55:2b:d3:cd:4d:66:13:bf:95:f5:59: 53:08:d4:04:ad:11:80:11:12:80:87:cf:67:71:59: 00:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:36:D2:1E:F9:E2:91:2E:81:7D:BC:59:0D:3A:E0:FD:53:05:47:6C X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/067B1AAA70C611EF8080566DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.21.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:c1:c5:45:f4:70:1a:22:da:d6:53:4c:9b:99:75:c6:8d:53: 46:31:7d:0d:b8:67:50:4b:91:03:49:6d:33:23:f1:1f:31:61: 04:72:6a:8d:c5:09:54:3a:e9:e7:b5:ef:ce:10:d4:ba:a8:d2: c0:93:e9:c1:2a:e4:ad:d0:12:79:bb:1b:b6:c6:4e:2c:e3:e7: 95:ab:1d:fb:4e:28:3e:0d:17:15:e5:54:e8:2b:88:36:a8:1e: 26:2a:75:cc:e6:12:ea:4a:a7:fc:78:84:5b:5a:b2:0b:43:5c: ad:04:a0:18:da:0b:34:32:8b:fe:9c:db:e5:8b:9d:d6:40:c9: 66:d4:24:3d:95:bb:f3:b3:f5:38:ad:f6:86:e0:ea:90:99:93: 48:99:67:81:83:d6:c6:8b:77:ac:51:53:f7:8c:8e:9b:17:25: 1b:d6:4a:a7:91:08:2c:42:70:ea:8a:90:5d:3c:98:26:d3:fe: c5:0a:fa:e3:70:fe:f1:7f:35:ac:f8:6c:bd:5e:ea:65:dd:6e: 68:20:0c:d3:dd:74:17:fa:ab:a8:e3:f4:95:fe:05:cc:a5:10: 7d:06:8e:95:14:b8:33:c8:2a:99:c4:a3:31:0c:69:c6:b7:01: ab:75:f0:05:af:de:2d:40:1a:2c:75:63:09:a3:a3:44:e4:2f: 73:1f:b3:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUwODAyMjEzMzAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlODQwZC01N2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDpa8U9ZeYfq8ORXvJaHXdL+JbORkCS/J0SvqLT8v+bgWGAJGuJpj8fZksYf riDwfkVu/erS5VCP043NITLAe3Rdzsp7xajSj4yXP/4ZgKYKW3uRkqwiKH3UIL3q TsbIrKLCekXHzcXCNyoAe2lPIYgVyQvJdf7MpmA9IV1vKp9vhWlqqEtlqDlBI0pv duwqyDDO8tOsU3C6FvSDuZryCHuSH9enymNes99eCzyXMG/A6HEjgnLrioX9LmdT CYDz3vnVqFAlfgGta21w9QjBsqadueip1gLSk+oFs/AV6dXcoMXWVSvTzU1mE7+V 9VlTCNQErRGAERKAh89ncVkAiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ420h75 4pEugX28WQ064P1TBUdsMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvMDY3QjFBQUE3 MEM2MTFFRjgwODA1NjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhUwDQYJKoZIhvcNAQELBQADggEBAA7BxUX0cBoi2tZT TJuZdcaNU0YxfQ24Z1BLkQNJbTMj8R8xYQRyao3FCVQ66ee1784Q1Lqo0sCT6cEq 5K3QEnm7G7bGTizj55WrHftOKD4NFxXlVOgriDaoHiYqdczmEupKp/x4hFtasgtD XK0EoBjaCzQyi/6c2+WLndZAyWbUJD2Vu/Oz9Tit9obg6pCZk0iZZ4GD1saLd6xR U/eMjpsXJRvWSqeRCCxCcOqKkF08mCbT/sUK+uNw/vF/Naz4bL1e6mXdbmggDNPd dBf6q6jj9JX+BcylEH0GjpUUuDPIKpnEozEMaca3Aat18AWv3i1AGix1Ywmjo0Tk L3MfswI= -----END CERTIFICATE-----Generated at Mon Aug 11 04:27:44 2025 by rpki-client