$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa File: 308C5012BE4C11ED9598AC4EC4F9AE02.roa (raw, json) Hash identifier: Rld7UCHehApO8xnOhY9eLWlDhIsOxbWWFUaZg8mOgWQ= Subject key identifier: 27:46:05:7B:34:61:78:4E:1C:DA:EF:ED:82:70:E1:61:B1:31:70:26 Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 07E7 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa Signing time: Sat 02 Aug 2025 21:33:04 +0000 ROA not before: Sat 02 Aug 2025 21:33:04 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9311 IP address blocks: 103.154.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Aug 2 21:33:04 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688e8410-4e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3b:16:6b:00:bc:c9:26:51:ef:3f:84:98:52: a6:3b:69:32:6b:bc:56:fc:4f:d1:5d:96:b4:4a:43: 0d:fc:d0:3f:d3:4e:a9:85:6e:2a:7c:a3:86:8a:02: 47:86:46:61:13:ef:54:ff:f7:1c:70:f4:83:a0:f2: 32:d8:cc:f9:57:cf:f8:c0:17:9a:58:4c:1d:e7:3e: d9:94:d6:b1:ce:2e:72:3f:da:2c:74:20:d8:81:2c: 79:c7:4a:b6:9c:f1:d0:2c:e0:1c:4b:7f:3b:8a:92: 52:3a:69:cf:e8:a7:67:d5:b0:fd:1b:42:b5:42:b7: f5:60:84:bb:8f:d2:10:9b:25:de:7c:e1:a3:5c:19: ca:37:17:a0:1b:8f:42:09:84:0e:31:76:71:2f:3f: 57:fd:74:b6:92:fa:1d:e7:4f:d0:0b:88:28:db:e3: ad:07:40:c0:68:8d:30:b8:cb:2c:90:b5:89:0b:c5: ec:59:84:ca:8e:6b:7e:32:c6:a9:98:8b:f3:9d:66: 8c:ed:b5:70:af:34:40:f8:02:ee:54:8f:7d:ea:69: 54:9a:98:a7:ca:8e:a0:16:04:36:b6:9a:40:b3:5c: c6:7c:c2:19:f2:d7:8b:58:c5:22:ec:ac:4e:43:fc: 47:3e:03:06:e1:7e:ac:26:19:ad:45:66:16:18:d4: 6a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:46:05:7B:34:61:78:4E:1C:DA:EF:ED:82:70:E1:61:B1:31:70:26 X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.20.0/24 Signature Algorithm: sha256WithRSAEncryption 62:a1:50:23:41:e0:d6:c2:25:59:4f:73:55:09:92:e1:ee:23: b9:f0:52:55:33:50:93:f6:b8:d8:e1:84:84:60:56:68:05:67: 48:e2:08:a8:ca:11:f1:9d:f4:7a:22:e8:28:eb:c5:74:ad:48: 31:79:6f:e4:f1:e5:6c:01:2f:46:15:6e:ac:88:f9:86:c2:4e: e4:a4:ed:cb:00:17:a3:78:5e:76:a8:a8:a8:6a:b5:f1:d4:31: 59:13:81:f3:c1:ab:20:0f:c3:00:2e:f4:b2:b5:db:36:10:99: 46:33:ec:5d:fa:63:eb:14:14:69:e8:58:51:c7:48:0b:3d:6f: 2c:5e:52:97:13:ee:db:2e:30:db:b0:0a:a4:7b:1d:66:fe:29: 63:b9:0e:c2:1c:e2:97:3d:12:30:69:57:66:a1:93:21:fa:f5: b6:1b:2c:51:79:b8:d1:17:75:0d:5c:54:17:e8:b0:a4:cd:b7: 66:d9:47:29:2c:39:e4:5b:3a:ac:94:32:5c:bf:36:b6:ee:25: 12:7b:29:a8:96:94:3e:9c:78:b7:67:2f:6c:e0:3f:c9:50:88: cd:c1:53:9e:87:5f:d7:ea:66:b2:5e:cb:cf:f4:24:55:a9:8d: 0c:54:58:8a:a7:97:6f:fc:b0:c4:c2:b0:6d:0b:96:8e:3d:84: aa:f7:91:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUwODAyMjEzMzA0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlODQxMC00ZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDsWawC8ySZR7z+EmFKmO2kya7xW/E/RXZa0SkMN/NA/006phW4qfKOGigJH hkZhE+9U//cccPSDoPIy2Mz5V8/4wBeaWEwd5z7ZlNaxzi5yP9osdCDYgSx5x0q2 nPHQLOAcS387ipJSOmnP6Kdn1bD9G0K1Qrf1YIS7j9IQmyXefOGjXBnKNxegG49C CYQOMXZxLz9X/XS2kvod50/QC4go2+OtB0DAaI0wuMsskLWJC8XsWYTKjmt+Msap mIvznWaM7bVwrzRA+ALuVI996mlUmpinyo6gFgQ2tppAs1zGfMIZ8teLWMUi7KxO Q/xHPgMG4X6sJhmtRWYWGNRqYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCdGBXs0 YXhOHNrv7YJw4WGxMXAmMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvMzA4QzUwMTJC RTRDMTFFRDk1OThBQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhQwDQYJKoZIhvcNAQELBQADggEBAGKhUCNB4NbCJVlP c1UJkuHuI7nwUlUzUJP2uNjhhIRgVmgFZ0jiCKjKEfGd9Hoi6CjrxXStSDF5b+Tx 5WwBL0YVbqyI+YbCTuSk7csAF6N4XnaoqKhqtfHUMVkTgfPBqyAPwwAu9LK12zYQ mUYz7F36Y+sUFGnoWFHHSAs9byxeUpcT7tsuMNuwCqR7HWb+KWO5DsIc4pc9EjBp V2ahkyH69bYbLFF5uNEXdQ1cVBfosKTNt2bZRyksOeRbOqyUMly/NrbuJRJ7KaiW lD6ceLdnL2zgP8lQiM3BU56HX9fqZrJey8/0JFWpjQxUWIqnl2/8sMTCsG0Llo49 hKr3kf4= -----END CERTIFICATE-----Generated at Mon Aug 11 04:15:23 2025 by rpki-client