$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa File: C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa (raw, json) Hash identifier: FuJ+0zC5emsysfIUM1yM5haaZPmnTrgVqP1fYVReGjo= Subject key identifier: B2:46:FB:8F:B1:40:F9:EB:18:17:80:C5:6F:24:2F:D6:F6:76:87:15 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C2A Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa Signing time: Mon 28 Jul 2025 06:26:16 +0000 ROA not before: Mon 28 Jul 2025 06:26:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17408 IP address blocks: 103.15.76.0/24 maxlen: 24 103.15.77.0/24 maxlen: 24 103.15.78.0/24 maxlen: 24 103.21.105.0/24 maxlen: 24 103.21.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jul 28 06:26:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68871808-8465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ce:78:2d:86:94:e5:54:c1:05:38:c4:ad:65: e3:97:39:04:05:de:f7:50:6e:d7:94:ee:ab:76:c2: 04:54:e4:1d:e0:be:44:5a:a5:90:4e:53:2f:ef:14: 9d:ed:92:ba:13:16:18:6b:1c:a1:13:15:b4:ad:42: 26:4d:33:86:d7:48:b0:da:e0:fb:42:14:81:30:02: 04:69:fd:dc:8c:33:dd:8b:dc:58:52:56:38:50:d2: 58:7e:c0:29:1f:7b:8e:51:c7:58:58:66:99:ad:42: b5:a6:20:59:76:e0:68:ce:16:a9:1d:a1:41:90:d4: 7d:10:18:a5:bf:51:2b:4b:12:d1:2d:73:5d:ba:2d: 69:33:fe:4a:80:3e:85:08:2d:19:51:ef:6e:0a:c4: d7:21:b3:dc:83:06:2f:97:f5:47:8d:09:d1:88:a7: 35:a6:69:fa:04:8e:63:a4:1b:3a:7a:b2:8f:27:e4: 71:e2:1a:1e:55:8b:62:9f:12:ce:f4:ee:72:7a:06: 39:93:3d:5a:f1:7d:d1:a1:f7:eb:27:53:2a:2c:97: 99:de:df:2d:71:fd:b4:81:11:29:0d:15:8a:87:8d: 91:9b:b4:fc:97:b4:21:b5:f1:83:0a:ae:a0:45:88: 51:82:d4:2d:6d:02:a8:41:d0:bc:6c:5d:ed:bc:a9: c5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:46:FB:8F:B1:40:F9:EB:18:17:80:C5:6F:24:2F:D6:F6:76:87:15 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.76.0-103.15.78.255 103.21.105.0/24 103.21.107.0/24 Signature Algorithm: sha256WithRSAEncryption e1:f4:29:4a:04:c7:56:f7:dd:c5:2b:02:27:e1:a2:69:3c:7f: 9d:8f:24:5f:07:67:b2:ec:9e:14:f8:09:c5:04:de:76:a8:e0: 59:a2:8e:31:dc:b3:2d:ff:47:b1:3f:0d:1b:a6:ee:0e:cb:a5: 82:5e:b1:d2:61:65:75:19:0e:92:2e:c2:6c:4c:d3:dd:d5:38: dd:67:77:f6:b0:f6:bf:ed:11:35:06:40:f7:9f:a3:5c:ce:54: 3b:64:31:72:70:ae:79:02:75:0f:62:c2:ae:71:02:98:2f:b6: a6:92:c2:0c:0e:b2:58:4a:6f:39:84:37:49:9e:a6:d6:ab:0e: f9:16:e7:6a:01:05:70:9f:64:fd:95:8c:6d:52:90:d9:d9:75: 05:ea:ce:e5:ca:c6:c2:cc:c9:b3:ed:74:58:78:53:40:7c:46: 4a:bb:ba:44:80:56:7f:84:cd:0b:87:cd:8e:ab:c1:73:bb:a2: ce:db:65:da:94:35:7b:36:f4:d7:1b:f8:ae:60:74:f6:59:5a: ba:f0:69:08:c8:9c:d5:0a:48:7a:ce:5b:4b:13:e6:d3:34:f7: a9:c8:0b:81:d5:65:27:b1:e3:33:33:8b:b3:e7:7d:15:b6:ce: c6:e7:77:25:c6:42:c1:b9:e6:6e:dc:4a:3e:f7:2f:71:b4:15: ae:2e:a3:40 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNzI4MDYyNjE2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODg3MTgwOC04NDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM54LYaU5VTBBTjErWXjlzkEBd73UG7XlO6rdsIEVOQd4L5EWqWQTlMv7xSd 7ZK6ExYYaxyhExW0rUImTTOG10iw2uD7QhSBMAIEaf3cjDPdi9xYUlY4UNJYfsAp H3uOUcdYWGaZrUK1piBZduBozhapHaFBkNR9EBilv1ErSxLRLXNdui1pM/5KgD6F CC0ZUe9uCsTXIbPcgwYvl/VHjQnRiKc1pmn6BI5jpBs6erKPJ+Rx4hoeVYtinxLO 9O5yegY5kz1a8X3RoffrJ1MqLJeZ3t8tcf20gREpDRWKh42Rm7T8l7QhtfGDCq6g RYhRgtQtbQKoQdC8bF3tvKnFqQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFLJG+4+x QPnrGBeAxW8kL9b2docVMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvQzNDRkU4QTA2 QjdCMTFGMEI2RDE2RTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAmcPTAMEAGcPTgMEAGcVaQMEAGcVazANBgkqhkiG9w0B AQsFAAOCAQEA4fQpSgTHVvfdxSsCJ+GiaTx/nY8kXwdnsuyeFPgJxQTedqjgWaKO MdyzLf9HsT8NG6buDsulgl6x0mFldRkOki7CbEzT3dU43Wd39rD2v+0RNQZA95+j XM5UO2QxcnCueQJ1D2LCrnECmC+2ppLCDA6yWEpvOYQ3SZ6m1qsO+RbnagEFcJ9k /ZWMbVKQ2dl1BerO5crGwszJs+10WHhTQHxGSru6RIBWf4TNC4fNjqvBc7uizttl 2pQ1ezb01xv4rmB09llauvBpCMic1QpIes5bSxPm0zT3qcgLgdVlJ7HjMzOLs+d9 FbbOxud3JcZCwbnmbtxKPvcvcbQVri6jQA== -----END CERTIFICATE-----Generated at Fri Aug 8 00:45:52 2025 by rpki-client