$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/D8FCAB6C750611EFAE4AA240C4F9AE02.roa File: D8FCAB6C750611EFAE4AA240C4F9AE02.roa (raw, json) Hash identifier: XzA6WsRC9hlvmM64zUMDU/N8Gy2E6OXsLGweclcpbig= Subject key identifier: 39:3C:53:4F:75:60:AB:78:95:D4:D6:6B:34:4F:47:6B:87:F1:5C:9F Certificate issuer: /CN=A91A7D85/serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81 Certificate serial: 0B8F Authority key identifier: 58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/D8FCAB6C750611EFAE4AA240C4F9AE02.roa Signing time: Sat 02 Aug 2025 19:30:07 +0000 ROA not before: Sat 02 Aug 2025 19:30:07 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136469 IP address blocks: 103.20.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.crl rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 19:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2959 (0xb8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7D85, serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81 Validity Not Before: Aug 2 19:30:07 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688e673e-a494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:50:18:0c:e6:dc:08:34:0f:f1:51:b7:d8:98: c5:e3:ce:0c:5a:6f:82:de:75:3b:3f:8c:64:ba:e0: 72:e9:df:16:2a:b7:18:ca:2d:50:9f:ee:e0:8e:d4: 65:a6:71:34:1b:73:fa:ac:1d:4a:2f:69:50:19:95: 01:23:98:8f:a2:3e:60:c5:f7:f8:de:b0:a1:fa:91: 2f:68:fc:61:a5:43:13:01:e2:64:be:22:47:06:0f: 9b:35:72:32:47:9a:b2:2a:a1:87:83:94:c5:75:2a: 39:1f:18:03:de:ae:c6:f4:f9:7a:8c:0a:3f:07:c0: 07:bb:e8:4e:51:16:ae:3a:77:e4:f5:16:40:63:8c: b2:52:14:b6:97:21:25:a9:3e:93:7b:52:f2:8d:a8: dc:d4:67:d8:21:4b:b7:2d:71:85:04:bd:a3:80:51: 06:4f:0b:a0:ef:80:1a:33:ec:72:74:6d:31:1a:9e: 73:6c:d7:67:ae:97:69:26:aa:78:e0:c9:10:7f:a6: 9d:12:fc:ff:17:24:2e:61:22:0d:8b:f4:b4:af:04: ce:3b:1b:b0:a0:65:ec:2d:5e:ca:84:72:b3:93:4d: cc:a7:f7:91:90:cb:3c:d5:db:2f:a0:5b:4a:81:0f: 9f:36:d1:b2:b8:27:86:24:29:e3:2c:da:51:ea:c8: a5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3C:53:4F:75:60:AB:78:95:D4:D6:6B:34:4F:47:6B:87:F1:5C:9F X509v3 Authority Key Identifier: keyid:58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/D8FCAB6C750611EFAE4AA240C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.245.0/24 Signature Algorithm: sha256WithRSAEncryption 00:7d:94:bd:68:41:69:83:be:d5:05:7c:1e:f8:fa:da:72:45: b5:6e:3b:3d:ef:be:3f:94:a0:d4:f2:96:b1:98:a0:83:ad:99: 44:8c:ff:ba:81:2d:29:f0:8f:a8:4f:35:fd:ff:c9:26:ff:d6: dd:70:de:3d:3b:4f:c1:e6:b2:26:59:49:6a:ce:b4:31:48:5d: 74:c6:0c:7c:5f:e1:bc:8e:24:c0:1d:fc:f7:00:95:49:24:62: 14:63:b4:21:1d:56:6f:1b:de:11:33:9f:58:bd:1e:ea:7c:b3: 35:02:a2:c5:9e:99:71:96:11:fc:52:3d:48:91:30:9d:5a:ba: 41:33:08:67:f7:84:97:90:ad:6f:30:6d:4f:38:4c:74:6b:f9: 9a:ba:6d:8d:7c:49:de:c0:c9:8a:5a:35:01:f4:96:32:4a:76: e8:0c:ce:08:a3:b0:b4:fd:e5:e1:ff:58:e2:10:10:06:4f:b5: cc:29:c4:ac:28:14:17:c0:54:13:4c:a1:11:4a:43:6d:a1:cb: 8d:bf:eb:47:90:a9:c6:8f:92:57:fc:96:63:f5:63:c5:f4:da: 55:39:00:c8:69:e1:c7:8b:2f:e3:4f:f3:53:f7:11:d0:b3:b4: b8:c7:ed:9e:cf:75:e0:90:60:22:85:42:84:c8:4c:3d:9d:e0: 1e:4d:35:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdEODUxMTAvBgNVBAUTKDU4MjdFNEJEODcwMjc3RURGMEVCMTA1NjNBOUI0MUMx RTRCRTdDODEwHhcNMjUwODAyMTkzMDA3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlNjczZS1hNDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVAYDObcCDQP8VG32JjF484MWm+C3nU7P4xkuuBy6d8WKrcYyi1Qn+7gjtRl pnE0G3P6rB1KL2lQGZUBI5iPoj5gxff43rCh+pEvaPxhpUMTAeJkviJHBg+bNXIy R5qyKqGHg5TFdSo5HxgD3q7G9Pl6jAo/B8AHu+hOURauOnfk9RZAY4yyUhS2lyEl qT6Te1Lyjajc1GfYIUu3LXGFBL2jgFEGTwug74AaM+xydG0xGp5zbNdnrpdpJqp4 4MkQf6adEvz/FyQuYSINi/S0rwTOOxuwoGXsLV7KhHKzk03Mp/eRkMs81dsvoFtK gQ+fNtGyuCeGJCnjLNpR6silJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDk8U091 YKt4ldTWazRPR2uH8VyfMB8GA1UdIwQYMBaAFFgn5L2HAnft8OsQVjqbQcHkvnyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Q4NS82MkNFRDQ4RTMz RTIxMUVBQTQ5MzI4ODRDNEY5QUUwMi9XQ2ZrdlljQ2QtM3c2eEJXT3B0QndlUy1m SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dDZmt2WWNDZC0zdzZ4QldPcHRCd2VTLWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdEODUvNjJDRUQ0OEUzM0UyMTFFQUE0OTMyODg0QzRGOUFFMDIvRDhGQ0FCNkM3 NTA2MTFFRkFFNEFBMjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFPUwDQYJKoZIhvcNAQELBQADggEBAAB9lL1oQWmDvtUF fB74+tpyRbVuOz3vvj+UoNTylrGYoIOtmUSM/7qBLSnwj6hPNf3/ySb/1t1w3j07 T8HmsiZZSWrOtDFIXXTGDHxf4byOJMAd/PcAlUkkYhRjtCEdVm8b3hEzn1i9Hup8 szUCosWemXGWEfxSPUiRMJ1aukEzCGf3hJeQrW8wbU84THRr+Zq6bY18Sd7AyYpa NQH0ljJKdugMzgijsLT95eH/WOIQEAZPtcwpxKwoFBfAVBNMoRFKQ22hy42/60eQ qcaPklf8lmP1Y8X02lU5AMhp4ceLL+NP81P3EdCztLjH7Z7PdeCQYCKFQoTITD2d 4B5NNUQ= -----END CERTIFICATE-----Generated at Tue Aug 12 14:02:06 2025 by rpki-client