$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa File: F57B503EB05F11EEB6F38532C4F9AE02.roa (raw, json) Hash identifier: MOWmFDpIkvE9ZXw3XjwL/Gz8uOZnXK7NosAmPb+jAAg= Subject key identifier: 16:42:8F:F0:5C:E2:A0:5B:F8:77:2D:03:F6:B6:99:D7:11:E6:15:6B Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 0132 Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa Signing time: Sun 03 Aug 2025 05:12:19 +0000 ROA not before: Sun 03 Aug 2025 05:12:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151630 IP address blocks: 103.141.220.0/23 maxlen: 23 103.141.220.0/24 maxlen: 24 103.141.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1, serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Aug 3 05:12:19 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688eefb3-2387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:26:70:8f:f2:0a:38:a8:82:18:93:af:0a:e6: 64:a4:4a:52:09:54:91:f1:22:03:e3:34:28:13:1f: 9c:2b:7a:77:56:64:c9:70:9d:4f:2c:19:5b:14:c6: e1:7a:a1:b6:1b:d6:12:21:e2:45:07:94:3b:ee:d5: b2:db:0c:57:27:00:b0:23:ab:13:6d:96:fe:4b:ba: 87:84:58:b7:64:95:b0:97:fb:91:b0:60:8a:ce:3e: c9:58:d5:92:9b:43:09:0f:b7:a4:29:75:2d:57:79: be:90:7b:eb:6f:d2:d8:e3:d0:70:93:90:6e:f3:8d: 18:4e:3d:71:8b:ae:7a:b4:3e:ec:7e:36:24:d0:7d: a0:89:2c:2d:76:00:47:6f:44:5f:38:95:d8:92:6f: 8f:a7:fa:c3:22:d9:f1:d0:5b:9e:ab:ef:90:da:b1: 64:1f:cd:50:96:d8:ed:f8:a7:ec:2b:9e:48:c2:3b: 59:36:70:c5:02:55:c6:2b:83:9a:15:71:a0:f2:c5: ca:fd:af:07:41:1a:af:8d:72:52:34:7a:99:11:9c: 45:54:bb:4a:ea:88:e9:81:cd:76:f5:44:06:bb:12: ca:34:58:f3:9d:e3:cd:f6:56:6e:18:4c:87:ec:df: 10:c4:02:15:ca:6d:1b:f7:a5:1b:fe:be:24:00:73: 5f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:42:8F:F0:5C:E2:A0:5B:F8:77:2D:03:F6:B6:99:D7:11:E6:15:6B X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.220.0/23 Signature Algorithm: sha256WithRSAEncryption 32:e7:b9:8a:b7:48:97:51:0a:1e:ff:c8:f6:f7:22:cd:0d:d0: e2:79:8d:d6:8e:af:55:29:db:b4:94:a6:a2:5d:d9:4b:21:45: c3:f9:c5:e6:81:74:5c:c0:50:88:48:f1:4a:73:1f:5e:e8:84: cd:b1:ce:9f:82:25:3a:e5:06:62:a3:39:9d:42:77:7a:e0:13: 88:ca:0d:44:d5:73:9f:66:60:a5:46:4a:9e:6a:3c:2f:e1:c5: 65:09:ac:16:0d:f4:11:9e:15:eb:ec:bd:26:36:92:73:9f:02: b5:93:1b:e7:d4:e8:ff:f6:87:8e:54:ec:34:df:8f:c3:e1:07: eb:85:47:ba:d6:67:d3:39:6c:9c:b8:64:ab:a2:d7:47:a0:9e: 1b:dc:3d:b9:49:7a:9d:a3:60:87:bd:63:2b:e0:52:bd:9b:1f: ca:26:76:30:86:7e:75:dc:2e:e9:6f:d5:e0:ad:37:97:a2:06: 68:c8:e5:fa:71:c4:3b:99:ae:23:82:4b:2e:da:9d:d6:0f:52: 53:b1:c3:f6:9c:45:9c:88:e1:4a:17:15:44:24:72:e9:3b:bf: 26:3f:25:70:bd:e2:7c:a8:96:7d:32:6d:19:a9:b3:0d:04:40: 88:70:51:43:0b:0b:5a:ab:64:50:8e:7f:1f:c0:e0:b5:34:32: e3:97:ea:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjUwODAzMDUxMjE5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlZWZiMy0yMzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6iZwj/IKOKiCGJOvCuZkpEpSCVSR8SID4zQoEx+cK3p3VmTJcJ1PLBlbFMbh eqG2G9YSIeJFB5Q77tWy2wxXJwCwI6sTbZb+S7qHhFi3ZJWwl/uRsGCKzj7JWNWS m0MJD7ekKXUtV3m+kHvrb9LY49Bwk5Bu840YTj1xi656tD7sfjYk0H2giSwtdgBH b0RfOJXYkm+Pp/rDItnx0Fueq++Q2rFkH81Qltjt+KfsK55IwjtZNnDFAlXGK4Oa FXGg8sXK/a8HQRqvjXJSNHqZEZxFVLtK6ojpgc129UQGuxLKNFjznePN9lZuGEyH 7N8QxAIVym0b96Ub/r4kAHNfsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBZCj/Bc 4qBb+HctA/a2mdcR5hVrMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTExQTEvQTlCNzNDQThCMDVGMTFFRTk5QzY1NDc3QzRGOUFFMDIvRjU3QjUwM0VC MDVGMTFFRUI2RjM4NTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjdwwDQYJKoZIhvcNAQELBQADggEBADLnuYq3SJdRCh7/ yPb3Is0N0OJ5jdaOr1Up27SUpqJd2UshRcP5xeaBdFzAUIhI8UpzH17ohM2xzp+C JTrlBmKjOZ1Cd3rgE4jKDUTVc59mYKVGSp5qPC/hxWUJrBYN9BGeFevsvSY2knOf ArWTG+fU6P/2h45U7DTfj8PhB+uFR7rWZ9M5bJy4ZKui10egnhvcPblJep2jYIe9 YyvgUr2bH8omdjCGfnXcLulv1eCtN5eiBmjI5fpxxDuZriOCSy7andYPUlOxw/ac RZyI4UoXFUQkcuk7vyY/JXC94nyoln0ybRmpsw0EQIhwUUMLC1qrZFCOfx/A4LU0 MuOX6uk= -----END CERTIFICATE-----Generated at Sat Aug 9 14:25:15 2025 by rpki-client