$ rpki-client -vvf rpki.apnic.net/member_repository/A91A532D/EAA979FA0AC311EB964A8924C4F9AE02/8C6AAF380AC511EB890DE026C4F9AE02.roa File: 8C6AAF380AC511EB890DE026C4F9AE02.roa (raw, json) Hash identifier: +LCAkAjuOva0wvpdg8eQD1RUB4/36WnSyP1+IZjx2KI= Subject key identifier: A5:A5:1C:09:7A:59:B5:B9:48:DD:89:DD:73:55:81:83:00:39:00:4C Certificate issuer: /CN=A91A532D/serialNumber=875B42F7C62725778F56D951B712EB8879348A45 Certificate serial: 07C2 Authority key identifier: 87:5B:42:F7:C6:27:25:77:8F:56:D9:51:B7:12:EB:88:79:34:8A:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1tC98YnJXePVtlRtxLriHk0ikU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A532D/EAA979FA0AC311EB964A8924C4F9AE02/8C6AAF380AC511EB890DE026C4F9AE02.roa Signing time: Wed 30 Jul 2025 22:02:19 +0000 ROA not before: Wed 30 Jul 2025 22:02:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134226 IP address blocks: 103.59.176.0/22 maxlen: 22 103.59.176.0/24 maxlen: 24 103.59.177.0/24 maxlen: 24 103.59.178.0/24 maxlen: 24 103.59.179.0/24 maxlen: 24 2404:2d80::/32 maxlen: 32 2404:2d80::/40 maxlen: 40 2404:2d80::/48 maxlen: 48 2404:2d80::/64 maxlen: 64 2404:2d80:10::/48 maxlen: 48 2404:2d80:11::/48 maxlen: 48 2404:2d80:12::/48 maxlen: 48 2404:2d80:13::/48 maxlen: 48 2404:2d80:14::/48 maxlen: 48 2404:2d80:15::/48 maxlen: 48 2404:2d80:16::/48 maxlen: 48 2404:2d80:17::/48 maxlen: 48 2404:2d80:18::/48 maxlen: 48 2404:2d80:19::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A532D/EAA979FA0AC311EB964A8924C4F9AE02/h1tC98YnJXePVtlRtxLriHk0ikU.crl rsync://rpki.apnic.net/member_repository/A91A532D/EAA979FA0AC311EB964A8924C4F9AE02/h1tC98YnJXePVtlRtxLriHk0ikU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1tC98YnJXePVtlRtxLriHk0ikU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1986 (0x7c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A532D, serialNumber=875B42F7C62725778F56D951B712EB8879348A45 Validity Not Before: Jul 30 22:02:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688a966a-da35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cc:15:0d:92:43:06:24:00:ad:29:b1:d8:1c: c2:6c:c4:4e:24:94:a6:dc:fd:35:67:a3:87:df:b0: d8:4c:b3:b1:88:3f:d9:c3:32:80:42:59:81:d9:3a: 54:56:77:6c:53:4c:a5:79:d3:ee:6e:15:f6:f1:b9: 3e:ee:e2:81:7f:21:34:87:a6:1d:55:e0:95:f3:f7: f7:2f:a5:5e:b6:a3:70:39:1e:83:c4:c4:8f:91:d8: 5c:95:2f:4e:29:fe:9d:24:3e:0a:b6:bd:b2:c9:a1: 84:b9:e9:02:65:f8:bc:0e:53:90:3e:2a:0e:ca:72: 97:2e:b2:ec:a6:49:4d:db:8d:19:35:fa:60:81:06: 05:07:9e:00:48:c5:1a:34:b9:79:f3:a3:b6:89:e7: 6f:97:32:16:51:70:80:a5:c6:99:e8:e4:7d:25:53: 4e:eb:77:9c:51:c2:92:fc:25:9c:47:c7:c4:c3:93: 88:54:3b:c6:e3:2a:30:39:91:94:8c:14:eb:a8:ab: 32:69:4c:5a:7d:7d:e7:d5:3a:e9:72:94:13:3e:ee: ed:98:cc:c1:87:8a:35:ff:b0:86:d1:ab:4a:a8:ed: 8d:bf:c1:3d:07:82:31:ff:82:b4:bc:fc:f7:a8:23: 3c:9c:c8:29:2f:13:84:29:e4:3a:13:65:ea:0b:b0: 56:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A5:1C:09:7A:59:B5:B9:48:DD:89:DD:73:55:81:83:00:39:00:4C X509v3 Authority Key Identifier: keyid:87:5B:42:F7:C6:27:25:77:8F:56:D9:51:B7:12:EB:88:79:34:8A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A532D/EAA979FA0AC311EB964A8924C4F9AE02/h1tC98YnJXePVtlRtxLriHk0ikU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1tC98YnJXePVtlRtxLriHk0ikU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A532D/EAA979FA0AC311EB964A8924C4F9AE02/8C6AAF380AC511EB890DE026C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.59.176.0/22 IPv6: 2404:2d80::/32 Signature Algorithm: sha256WithRSAEncryption 4b:c4:89:31:12:5e:e3:e9:f9:e5:3a:58:09:b9:16:1e:11:bb: 69:6b:34:e3:78:82:f8:56:b4:90:e5:dc:6b:bc:df:62:94:52: 33:2d:4a:e9:3f:81:4f:12:f5:0c:d3:5b:b9:54:14:70:ba:ed: 85:df:99:bc:b8:70:94:28:19:bc:55:55:7b:a8:8a:27:a2:15: 94:89:a7:89:8d:3b:8e:ef:db:93:9c:9a:f1:7e:13:36:8d:ad: 33:01:ab:69:c5:b2:e0:f7:a5:21:2b:af:6a:c1:f7:9b:5c:95: 36:1f:22:91:16:e7:e3:4c:97:1b:35:9c:0d:11:df:db:64:dd: bb:8b:88:da:72:42:2d:de:14:db:78:a4:62:cd:72:3e:e0:58: c4:d4:07:d0:4c:d4:85:77:e3:59:67:17:57:36:5b:59:23:9d: 32:9b:db:5b:a2:aa:78:1b:98:c3:4d:aa:eb:55:c2:e3:a1:35: 9a:4f:5a:9c:3b:87:a3:d0:5f:a9:20:00:9d:63:33:67:e4:40: 1e:2b:01:33:7d:0a:c1:05:61:78:1e:86:25:63:8a:6d:05:3c: 50:8f:56:6d:00:6b:62:e8:c3:ee:0d:54:8a:93:a8:52:2e:f6: 14:77:b0:03:d0:23:b7:f0:59:7a:23:65:ad:00:96:35:33:be: 96:82:49:49 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMkQxMTAvBgNVBAUTKDg3NUI0MkY3QzYyNzI1Nzc4RjU2RDk1MUI3MTJFQjg4 NzkzNDhBNDUwHhcNMjUwNzMwMjIwMjE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhOTY2YS1kYTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MwVDZJDBiQArSmx2BzCbMROJJSm3P01Z6OH37DYTLOxiD/ZwzKAQlmB2TpU VndsU0yledPubhX28bk+7uKBfyE0h6YdVeCV8/f3L6VetqNwOR6DxMSPkdhclS9O Kf6dJD4Ktr2yyaGEuekCZfi8DlOQPioOynKXLrLspklN240ZNfpggQYFB54ASMUa NLl586O2iedvlzIWUXCApcaZ6OR9JVNO63ecUcKS/CWcR8fEw5OIVDvG4yowOZGU jBTrqKsyaUxafX3n1TrpcpQTPu7tmMzBh4o1/7CG0atKqO2Nv8E9B4Ix/4K0vPz3 qCM8nMgpLxOEKeQ6E2XqC7BWmwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKWlHAl6 WbW5SN2J3XNVgYMAOQBMMB8GA1UdIwQYMBaAFIdbQvfGJyV3j1bZUbcS64h5NIpF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMyRC9FQUE5NzlGQTBB QzMxMUVCOTY0QTg5MjRDNEY5QUUwMi9oMXRDOThZbkpYZVBWdGxSdHhMcmlIazBp a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxdEM5OFluSlhlUFZ0bFJ0eExyaUhrMGlrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUzMkQvRUFBOTc5RkEwQUMzMTFFQjk2NEE4OTI0QzRGOUFFMDIvOEM2QUFGMzgw QUM1MTFFQjg5MERFMDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnO7AwDQQCAAIwBwMFACQELYAwDQYJKoZIhvcNAQELBQAD ggEBAEvEiTESXuPp+eU6WAm5Fh4Ru2lrNON4gvhWtJDl3Gu832KUUjMtSuk/gU8S 9QzTW7lUFHC67YXfmby4cJQoGbxVVXuoiieiFZSJp4mNO47v25OcmvF+EzaNrTMB q2nFsuD3pSErr2rB95tclTYfIpEW5+NMlxs1nA0R39tk3buLiNpyQi3eFNt4pGLN cj7gWMTUB9BM1IV341lnF1c2W1kjnTKb21uiqngbmMNNqutVwuOhNZpPWpw7h6PQ X6kgAJ1jM2fkQB4rATN9CsEFYXgehiVjim0FPFCPVm0Aa2Low+4NVIqTqFIu9hR3 sAPQI7fwWXojZa0AljUzvpaCSUk= -----END CERTIFICATE-----Generated at Mon Aug 11 08:53:50 2025 by rpki-client