$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/C2EFC706CAAE11EBA95C5E64C4F9AE02.roa File: C2EFC706CAAE11EBA95C5E64C4F9AE02.roa (raw, json) Hash identifier: dMeJp28zx6FUq76ao4qK+ptEjKQRepLswYRFFIdTn7o= Subject key identifier: A9:1E:DE:17:9F:53:79:5C:A7:B7:DC:BE:E0:FA:52:5F:09:D0:F5:33 Certificate issuer: /CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Certificate serial: 05CD Authority key identifier: 71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/C2EFC706CAAE11EBA95C5E64C4F9AE02.roa Signing time: Tue 29 Jul 2025 00:05:37 +0000 ROA not before: Tue 29 Jul 2025 00:05:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138246 IP address blocks: 103.168.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1485 (0x5cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B61, serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Validity Not Before: Jul 29 00:05:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68881050-b34f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:01:1c:9e:82:ed:18:25:c9:2d:96:55:7c:0c: 69:6d:d1:22:11:88:76:df:a4:91:82:44:0f:c9:c2: ec:a0:07:c6:09:b6:6d:4f:9b:e7:1f:3f:c0:17:cd: f2:63:88:5b:c7:71:64:c3:8f:82:9c:f1:00:4f:46: db:70:fa:13:4e:39:2a:44:ed:72:0b:88:39:0b:49: 41:ca:5c:ed:46:40:66:af:f2:da:7d:9b:02:62:aa: 80:e3:64:26:98:63:72:bf:cb:76:0f:ad:a2:54:2f: 5c:88:7b:8e:96:5e:43:1f:32:09:5e:cb:40:6f:57: dd:6e:74:48:89:31:c0:20:f2:cb:50:c8:56:91:1b: e6:2c:d4:0e:f1:1b:07:8d:20:c1:fe:01:0a:48:88: 2c:4d:18:37:99:14:59:f3:cf:d6:b1:ef:9e:af:ea: 9d:15:ec:ef:de:7b:78:c6:93:6c:c0:cc:33:23:9d: 1d:bc:1b:b4:c7:99:d5:e2:6b:78:09:24:40:73:92: b2:ef:03:4d:8a:bf:fc:ad:54:d0:49:a5:a6:c7:0b: 07:4b:5c:f2:40:7e:45:c5:6e:2b:a0:68:85:22:01: 03:54:3b:cc:ef:5c:da:08:1d:37:9b:55:9e:07:3c: 92:64:24:84:42:21:0d:91:53:7f:a7:17:e8:f2:36: 82:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:1E:DE:17:9F:53:79:5C:A7:B7:DC:BE:E0:FA:52:5F:09:D0:F5:33 X509v3 Authority Key Identifier: keyid:71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/C2EFC706CAAE11EBA95C5E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.18.0/23 Signature Algorithm: sha256WithRSAEncryption 39:f2:ad:34:b0:d5:3c:45:d4:02:2b:d3:ce:67:78:5a:a5:7a: d8:a4:a7:e8:f9:09:0c:21:07:ad:6d:29:2f:2d:8c:bb:db:32: 9b:d2:a6:d7:e3:9e:0a:f9:96:fe:0b:b7:6b:b4:da:54:6b:6d: b7:f4:1e:9d:7e:3a:e3:a0:2b:27:cb:74:bf:85:7c:24:07:c9: f7:0d:6d:17:16:17:c6:78:6f:8b:b1:42:1c:50:64:ad:48:6a: 36:a0:45:7d:d7:c5:66:ca:70:50:e1:6b:80:bc:57:92:24:1e: 4b:8c:27:f1:fd:8c:ef:38:56:ec:35:e2:d1:36:85:fd:a2:74: da:e7:45:ae:75:99:61:a1:f4:54:d0:30:69:8a:3d:0a:ef:b0: 17:34:16:46:63:4e:22:62:16:b4:64:bf:be:ca:8d:98:0e:a0: 9b:86:52:a9:00:64:20:95:b5:04:7b:d8:3e:00:22:32:e1:22: d2:01:ed:5a:aa:22:20:5c:81:66:4d:61:13:1e:05:08:31:1b: 6a:a5:47:a4:8a:09:50:36:80:47:8a:2b:ca:d6:87:8b:7a:11: 72:d6:66:25:31:c6:b7:22:b3:29:30:99:3c:0b:41:bb:84:df: a4:8c:36:4b:ca:9b:f4:64:b2:b6:ae:2d:dc:d1:35:c5:48:4b: fa:c3:bb:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCNjExMTAvBgNVBAUTKDcxODQwRDdEOThDNUNGOUJENkJFQjQ0ODZBRDQ2NzQw NjVGMTQ3NDEwHhcNMjUwNzI5MDAwNTM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg4MTA1MC1iMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAEcnoLtGCXJLZZVfAxpbdEiEYh236SRgkQPycLsoAfGCbZtT5vnHz/AF83y Y4hbx3Fkw4+CnPEAT0bbcPoTTjkqRO1yC4g5C0lBylztRkBmr/LafZsCYqqA42Qm mGNyv8t2D62iVC9ciHuOll5DHzIJXstAb1fdbnRIiTHAIPLLUMhWkRvmLNQO8RsH jSDB/gEKSIgsTRg3mRRZ88/Wse+er+qdFezv3nt4xpNswMwzI50dvBu0x5nV4mt4 CSRAc5Ky7wNNir/8rVTQSaWmxwsHS1zyQH5FxW4roGiFIgEDVDvM71zaCB03m1We BzySZCSEQiENkVN/pxfo8jaCDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKke3hef U3lcp7fcvuD6Ul8J0PUzMB8GA1UdIwQYMBaAFHGEDX2Yxc+b1r60SGrUZ0Bl8UdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0I2MS9CRTY4RDMwMkNB QUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1dld2clJJYXRSblFHWHhS MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZUU5mWmpGejV2V3ZyUklhdFJuUUdYeFIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdCNjEvQkU2OEQzMDJDQUFBMTFFQkI4QzAyQjVDQzRGOUFFMDIvQzJFRkM3MDZD QUFFMTFFQkE5NUM1RTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqBIwDQYJKoZIhvcNAQELBQADggEBADnyrTSw1TxF1AIr 085neFqletikp+j5CQwhB61tKS8tjLvbMpvSptfjngr5lv4Lt2u02lRrbbf0Hp1+ OuOgKyfLdL+FfCQHyfcNbRcWF8Z4b4uxQhxQZK1IajagRX3XxWbKcFDha4C8V5Ik HkuMJ/H9jO84Vuw14tE2hf2idNrnRa51mWGh9FTQMGmKPQrvsBc0FkZjTiJiFrRk v77KjZgOoJuGUqkAZCCVtQR72D4AIjLhItIB7VqqIiBcgWZNYRMeBQgxG2qlR6SK CVA2gEeKK8rWh4t6EXLWZiUxxrcisykwmTwLQbuE36SMNkvKm/RksrauLdzRNcVI S/rDu3U= -----END CERTIFICATE-----Generated at Wed Aug 13 07:34:53 2025 by rpki-client