$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa File: E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa (raw, json) Hash identifier: 2mKwnMpgR04h28Vp1kCMChznHcUKBjq3JV55A80+RxM= Subject key identifier: 3A:9A:15:4F:B8:9F:CA:BB:69:7F:45:AC:8F:77:60:DD:B2:DB:2E:DF Certificate issuer: /CN=A91ABD25/serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Certificate serial: 021D Authority key identifier: 7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa Signing time: Thu 31 Jul 2025 07:47:10 +0000 ROA not before: Thu 31 Jul 2025 07:47:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136522 IP address blocks: 103.91.185.128/25 maxlen: 25 103.91.193.0/24 maxlen: 24 202.124.202.0/24 maxlen: 24 203.22.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABD25, serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Validity Not Before: Jul 31 07:47:10 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=688b1f7d-7041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e3:15:d5:3a:03:dc:3c:f5:c7:99:82:59:47: 45:a7:01:bb:0e:c2:15:ca:23:c4:46:08:b4:c1:a7: 6c:e3:59:9c:48:f7:60:9b:ff:89:f5:e1:92:9b:cb: 32:b7:5d:67:d4:a6:55:d8:07:c3:8d:f9:8b:02:8e: ed:a9:92:6a:58:15:99:d1:13:d5:ee:c6:99:0c:1e: a3:cb:eb:2e:d0:e9:12:90:76:58:31:ea:1b:1c:25: 08:14:c9:46:dc:aa:d9:21:20:e9:b2:dd:ff:90:ff: e0:03:77:bf:ec:3d:2f:0a:68:06:02:6f:06:f7:40: 4f:29:d6:98:5b:12:de:62:ce:f8:47:7f:5b:40:9d: 93:6b:9e:8d:12:0e:f4:86:1f:fb:46:03:75:79:f7: 5c:77:a3:f2:ac:25:31:9a:46:3d:35:93:c6:d9:97: bd:7c:41:37:5d:4a:06:c7:fd:7a:0a:4e:83:f5:58: 32:b3:39:e3:5e:ea:9c:22:e0:a9:37:06:5c:05:3b: 0e:6c:18:71:f4:7d:ae:3c:cd:3c:d8:3b:23:a9:2e: 66:4a:62:a2:97:02:78:e5:75:f6:1f:b1:fb:ff:a1: b3:33:83:e4:be:34:e9:d0:ee:99:cd:6b:90:16:2e: dd:96:dc:31:89:0a:a9:aa:7d:40:44:87:7a:f0:5a: f9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9A:15:4F:B8:9F:CA:BB:69:7F:45:AC:8F:77:60:DD:B2:DB:2E:DF X509v3 Authority Key Identifier: keyid:7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.185.128/25 103.91.193.0/24 202.124.202.0/24 203.22.208.0/22 Signature Algorithm: sha256WithRSAEncryption af:12:bd:ae:07:6e:76:f1:f5:14:e4:40:59:b4:93:97:c9:4b: a0:2b:61:b8:d1:ae:ab:52:f9:9a:02:9f:55:06:df:cd:12:c4: 3e:c0:79:8a:08:2f:b1:41:0b:4b:13:11:f5:9c:59:1d:72:de: 4b:14:e7:7b:38:0f:60:30:6a:1d:41:af:f7:2f:7f:b2:68:e1: 47:7e:76:dc:a4:b6:5a:f7:fc:dd:78:ff:c8:62:ad:57:0c:0d: 8c:6d:28:83:6c:9d:ae:ba:81:2f:d3:82:cd:0b:ba:21:d6:ee: b4:bb:59:d4:ce:b4:e2:c3:b6:75:28:15:dd:76:5e:d7:1d:27: 5e:5a:6b:70:c4:28:01:02:60:5a:d6:6c:ff:2c:64:df:83:75: 29:94:07:f4:58:ed:62:65:67:d2:7d:cb:66:4f:ac:c5:04:61: c5:b1:21:77:6f:bc:80:ee:b2:1e:90:34:b6:a9:fc:1b:78:94: 09:d5:88:0d:52:d4:be:61:ff:da:2f:9a:1e:c6:65:67:14:6a: a9:f3:c7:f7:e1:e3:d5:80:fc:06:88:be:71:6c:f1:53:ea:d9: d6:3b:ca:c6:e9:e6:99:2d:40:1a:7a:31:a8:5e:39:08:60:7e: 31:7a:82:92:96:f4:6a:de:94:02:1a:06:01:9a:a4:c8:57:2c: 7f:08:1b:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJEMjUxMTAvBgNVBAUTKDdGRkM3QzU1Q0E0ODVDMzc2QTYxRUZFQzBFNTM3NzY1 M0EwNEMzQkQwHhcNMjUwNzMxMDc0NzEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiMWY3ZC03MDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueMV1ToD3Dz1x5mCWUdFpwG7DsIVyiPERgi0wads41mcSPdgm/+J9eGSm8sy t11n1KZV2AfDjfmLAo7tqZJqWBWZ0RPV7saZDB6jy+su0OkSkHZYMeobHCUIFMlG 3KrZISDpst3/kP/gA3e/7D0vCmgGAm8G90BPKdaYWxLeYs74R39bQJ2Ta56NEg70 hh/7RgN1efdcd6PyrCUxmkY9NZPG2Ze9fEE3XUoGx/16Ck6D9VgysznjXuqcIuCp NwZcBTsObBhx9H2uPM082DsjqS5mSmKilwJ45XX2H7H7/6GzM4PkvjTp0O6ZzWuQ Fi7dltwxiQqpqn1ARId68Fr5lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqaFU+4 n8q7aX9FrI93YN2y2y7fMB8GA1UdIwQYMBaAFH/8fFXKSFw3amHv7A5Td2U6BMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkQyNS81MjdERDI1QTRF QUMxMUVEQjRGNzFFMzhDNEY5QUUwMi9mX3g4VmNwSVhEZHFZZV9zRGxOM1pUb0V3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeDhWY3BJWERkcVllX3NEbE4zWlRvRXc3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJEMjUvNTI3REQyNUE0RUFDMTFFREI0RjcxRTM4QzRGOUFFMDIvRTdGQzZBMUE0 RUFFMTFFREJGMEQ4MjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMB8EAgABMBkDBQdnW7mAAwQAZ1vBAwQAynzKAwQCyxbQMA0GCSqGSIb3DQEB CwUAA4IBAQCvEr2uB2528fUU5EBZtJOXyUugK2G40a6rUvmaAp9VBt/NEsQ+wHmK CC+xQQtLExH1nFkdct5LFOd7OA9gMGodQa/3L3+yaOFHfnbcpLZa9/zdeP/IYq1X DA2MbSiDbJ2uuoEv04LNC7oh1u60u1nUzrTiw7Z1KBXddl7XHSdeWmtwxCgBAmBa 1mz/LGTfg3UplAf0WO1iZWfSfctmT6zFBGHFsSF3b7yA7rIekDS2qfwbeJQJ1YgN UtS+Yf/aL5oexmVnFGqp88f34ePVgPwGiL5xbPFT6tnWO8rG6eaZLUAaejGoXjkI YH4xeoKSlvRq3pQCGgYBmqTIVyx/CBsU -----END CERTIFICATE-----Generated at Mon Aug 11 04:20:22 2025 by rpki-client