$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/0A918056D24C11EFB8B5C95EC4F9AE02.roa File: 0A918056D24C11EFB8B5C95EC4F9AE02.roa (raw, json) Hash identifier: cBGezkS6P+KbPVWAkP/GyV+QTZO+g5cPSzSssSv6zII= Subject key identifier: AE:24:CD:26:67:F4:83:02:AB:54:93:98:09:53:4F:7A:A5:EA:79:56 Certificate issuer: /CN=A91B0380/serialNumber=5BD324A69BD26EDDADF5129CD18F77A1D80523B6 Certificate serial: 98 Authority key identifier: 5B:D3:24:A6:9B:D2:6E:DD:AD:F5:12:9C:D1:8F:77:A1:D8:05:23:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/0A918056D24C11EFB8B5C95EC4F9AE02.roa Signing time: Sat 05 Jul 2025 06:43:10 +0000 ROA not before: Sat 05 Jul 2025 06:43:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.239.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/W9MkppvSbt2t9RKc0Y93odgFI7Y.crl rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/W9MkppvSbt2t9RKc0Y93odgFI7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0380, serialNumber=5BD324A69BD26EDDADF5129CD18F77A1D80523B6 Validity Not Before: Jul 5 06:43:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6868c97e-299b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:5d:6b:ed:d6:80:08:7d:90:3e:09:a3:2e: 62:fd:30:03:90:27:cd:ab:a0:99:b1:93:21:26:9a: f4:8e:7e:ff:7d:6b:48:37:fc:a0:fc:c5:d8:b0:a7: 10:1c:51:91:a4:47:23:36:4e:5d:a0:99:49:26:46: b7:07:42:52:65:ac:36:17:c3:a9:26:dc:42:5d:96: 29:b7:53:e8:a3:c4:ed:9c:4f:82:61:85:2a:6c:8e: ab:21:25:c2:90:4b:79:33:f9:e7:9b:92:1f:ef:71: e3:a3:f9:08:75:b6:89:7c:d2:12:4c:5f:fe:8d:14: bf:b7:7d:74:56:37:57:ec:f5:b6:29:29:5f:c8:5f: 38:25:05:32:f2:fb:c2:4b:78:5d:7f:b4:12:cb:bb: 41:d1:1a:df:a2:89:73:0a:c1:dc:5b:11:df:7f:3f: 76:9e:4c:06:a2:bc:0f:b8:e2:26:bd:94:3c:e6:93: df:07:c4:84:43:69:bd:cc:bf:c4:31:f5:22:ed:cf: 98:91:28:e6:37:8d:05:01:f6:f6:ad:78:c9:4a:2f: 09:d6:e7:55:62:19:1f:21:53:64:83:78:6d:9f:c5: 57:cf:38:3d:6c:bb:1c:71:88:73:94:67:5d:a8:ae: 11:16:5a:d4:06:e4:67:72:98:b5:55:7d:23:24:5c: 95:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:24:CD:26:67:F4:83:02:AB:54:93:98:09:53:4F:7A:A5:EA:79:56 X509v3 Authority Key Identifier: keyid:5B:D3:24:A6:9B:D2:6E:DD:AD:F5:12:9C:D1:8F:77:A1:D8:05:23:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/W9MkppvSbt2t9RKc0Y93odgFI7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/0A918056D24C11EFB8B5C95EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.128.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:56:55:71:9c:2a:a3:c4:a8:9a:ee:2c:60:47:37:f1:68:87: 6a:b8:f0:15:ca:d4:63:f3:7d:e7:79:8e:9a:fe:75:1b:81:ca: 21:fc:75:51:1d:af:b1:b1:e2:45:ac:40:cb:04:b0:29:92:9b: 11:5f:ad:ff:93:8e:db:f7:eb:42:13:55:e3:3f:39:a5:2b:3f: ed:a8:51:76:2e:ce:cc:22:fc:ce:05:5d:fa:8f:25:61:90:2c: ea:13:57:73:2e:59:bb:51:b3:fc:87:f2:ab:9b:ab:5c:a6:16: 2a:2f:4f:e1:79:b1:0e:2c:59:a9:62:29:1a:15:44:79:0e:0f: 0d:0a:28:fe:b0:80:55:28:bc:5f:91:8b:bb:52:48:0a:3a:f8: 33:fb:94:a6:b5:20:16:72:fc:f3:49:86:7b:05:0a:b1:05:89: cc:74:96:c9:77:7d:7d:a4:49:f3:3f:da:0e:25:de:82:a0:b3: 3b:de:2d:42:b1:7e:f0:af:94:e0:2c:cb:5f:3e:d7:21:8a:63: 3e:ea:e5:78:51:a1:b2:2e:c1:47:66:71:cb:b7:5d:d2:b5:74: 09:e9:ff:e7:0b:a7:d5:31:9e:62:1c:6f:9e:63:f2:23:41:a5: ed:fe:e4:d3:55:1d:34:ce:7a:0a:9c:b4:95:6c:e5:80:a2:18: ba:90:e6:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzODAxMTAvBgNVBAUTKDVCRDMyNEE2OUJEMjZFRERBREY1MTI5Q0QxOEY3N0Ex RDgwNTIzQjYwHhcNMjUwNzA1MDY0MzEwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4Yzk3ZS0yOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmtda+3WgAh9kD4Joy5i/TADkCfNq6CZsZMhJpr0jn7/fWtIN/yg/MXYsKcQ HFGRpEcjNk5doJlJJka3B0JSZaw2F8OpJtxCXZYpt1Poo8TtnE+CYYUqbI6rISXC kEt5M/nnm5If73Hjo/kIdbaJfNISTF/+jRS/t310VjdX7PW2KSlfyF84JQUy8vvC S3hdf7QSy7tB0RrfoolzCsHcWxHffz92nkwGorwPuOImvZQ85pPfB8SEQ2m9zL/E MfUi7c+YkSjmN40FAfb2rXjJSi8J1udVYhkfIVNkg3htn8VXzzg9bLsccYhzlGdd qK4RFlrUBuRncpi1VX0jJFyVpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK4kzSZn 9IMCq1STmAlTT3ql6nlWMB8GA1UdIwQYMBaAFFvTJKab0m7drfUSnNGPd6HYBSO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM4MC83NzIyNEU5NDdC Q0IxMUVGQTI0ODkyMTFDNEY5QUUwMi9XOU1rcHB2U2J0MnQ5UktjMFk5M29kZ0ZJ N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c5TWtwcHZTYnQydDlSS2MwWTkzb2RnRkk3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAzODAvNzcyMjRFOTQ3QkNCMTFFRkEyNDg5MjExQzRGOUFFMDIvMEE5MTgwNTZE MjRDMTFFRkI4QjVDOTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn74AwDQYJKoZIhvcNAQELBQADggEBAHxWVXGcKqPEqJru LGBHN/Foh2q48BXK1GPzfed5jpr+dRuByiH8dVEdr7Gx4kWsQMsEsCmSmxFfrf+T jtv360ITVeM/OaUrP+2oUXYuzswi/M4FXfqPJWGQLOoTV3MuWbtRs/yH8qubq1ym FiovT+F5sQ4sWaliKRoVRHkODw0KKP6wgFUovF+Ri7tSSAo6+DP7lKa1IBZy/PNJ hnsFCrEFicx0lsl3fX2kSfM/2g4l3oKgszveLUKxfvCvlOAsy18+1yGKYz7q5XhR obIuwUdmccu3XdK1dAnp/+cLp9UxnmIcb55j8iNBpe3+5NNVHTTOegqctJVs5YCi GLqQ5nQ= -----END CERTIFICATE-----Generated at Sun Aug 10 05:50:26 2025 by rpki-client