$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa File: 008C0876148311ED856EF438C4F9AE02.roa (raw, json) Hash identifier: P+roK1MWVCeuqJ3VqTzxEcvXNnpNsDkqcE1YQV3b+P8= Subject key identifier: FB:EE:99:E5:6F:3A:2D:18:47:B1:B9:CB:84:20:02:7D:52:2A:1E:E8 Certificate issuer: /CN=A91B9293/serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Certificate serial: 0294 Authority key identifier: 60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa Signing time: Wed 13 Aug 2025 02:38:52 +0000 ROA not before: Wed 13 Aug 2025 02:38:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150153 IP address blocks: 103.95.4.0/23 maxlen: 24 2400:9da0::/32 maxlen: 32 2400:9da0::/36 maxlen: 36 2400:9da0:1000::/36 maxlen: 36 2400:9da0:2000::/36 maxlen: 36 2400:9da0:3000::/36 maxlen: 36 2400:9da0:4000::/36 maxlen: 36 2400:9da0:5000::/36 maxlen: 36 2400:9da0:6000::/36 maxlen: 36 2400:9da0:7000::/36 maxlen: 36 2400:9da0:8000::/36 maxlen: 36 2400:9da0:9000::/36 maxlen: 36 2400:9da0:a000::/36 maxlen: 36 2400:9da0:b000::/36 maxlen: 36 2400:9da0:c000::/36 maxlen: 36 2400:9da0:d000::/36 maxlen: 36 2400:9da0:e000::/36 maxlen: 36 2400:9da0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 02:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9293, serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Validity Not Before: Aug 13 02:38:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689bfabc-462a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:21:dd:69:85:79:d2:8a:13:1c:a5:34:fb:ab: 8e:af:4d:f8:41:c0:76:b5:64:1f:46:86:8a:c2:e9: f2:cb:d5:8d:be:2c:be:03:c7:f4:54:2a:a3:a4:75: 03:db:e4:e1:d6:75:4e:8c:93:58:d9:3a:20:52:2e: d2:64:ed:4e:55:1e:1c:ed:06:31:c6:6d:d6:ca:3a: df:92:49:bc:13:a7:ce:cd:49:4f:74:9d:94:c8:67: 38:1c:40:fc:80:a1:7a:31:15:26:b0:b9:cc:2c:09: bb:74:5c:e1:38:c8:50:fd:77:02:10:5f:7f:44:d6: 9e:bc:b7:3e:c9:94:34:34:7d:fa:45:80:97:a2:1a: 33:eb:89:cf:4e:95:d3:49:ac:01:94:37:b8:a2:ae: d6:42:c3:c2:6a:65:46:48:5e:18:fc:7a:54:b9:90: 20:a2:11:0d:f5:7c:ad:e9:7e:b7:85:15:1f:3c:de: c6:66:05:6b:53:17:bc:e5:8d:a8:e3:3b:cb:00:da: e5:73:53:55:36:1f:68:d2:9e:a9:7d:66:a6:25:93: bf:be:8e:a5:f8:45:69:75:bb:27:40:19:3f:33:47: cc:ed:04:8b:a3:a0:f2:f7:c5:24:68:2b:5e:ab:12: d6:e8:61:95:17:64:22:5a:34:22:67:66:33:7e:0a: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:EE:99:E5:6F:3A:2D:18:47:B1:B9:CB:84:20:02:7D:52:2A:1E:E8 X509v3 Authority Key Identifier: keyid:60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.4.0/23 IPv6: 2400:9da0::/32 Signature Algorithm: sha256WithRSAEncryption a5:af:1c:5a:dc:25:cd:1f:64:47:dc:70:d0:1e:df:ed:1e:1f: b8:2c:95:29:d2:d5:57:71:06:30:69:b7:c0:78:9c:ec:a8:0d: bb:a0:c7:4d:b2:19:fa:6b:0e:8b:f5:cc:02:8a:16:57:8c:14: 95:6e:50:18:03:5f:55:5b:4c:1a:5a:2d:18:67:c9:da:af:fc: 2c:d6:5a:f7:f6:17:c2:81:b8:9f:0d:b4:3e:65:57:af:11:92: be:54:c9:12:e4:6b:70:f5:ba:5a:2d:f7:e2:0b:3f:c1:d5:d0: b3:35:6e:d6:df:49:9a:cd:8b:90:64:a1:84:f0:a0:de:0c:64: 0c:c7:76:39:6c:a5:48:43:4b:7a:5b:6b:3b:9e:12:b1:10:74: 02:8a:84:db:7e:ea:0d:a1:d3:68:26:f0:01:ba:70:b0:df:6e: 8f:fc:ea:14:1c:cf:76:c5:d9:ab:31:95:24:7e:bb:1a:76:3b: b6:78:95:a6:ff:6c:1a:2d:c8:8c:81:09:c6:ab:2a:73:11:f2: af:1e:d1:5f:0e:c0:9a:4c:54:6b:7f:09:e2:81:a7:d9:c7:2d: ce:2d:ea:48:31:2c:bb:68:b7:55:de:9a:c3:41:67:80:62:47: 5b:f0:68:ce:15:fa:7d:d2:ca:f0:b0:fd:42:be:72:56:57:18: 34:eb:f5:22 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOTMxMTAvBgNVBAUTKDYwMkZGNEZBODBBMDAwQUM2MUU2RDRBQjJGNzJGQkQ5 NkE2MUY4ODIwHhcNMjUwODEzMDIzODUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliZmFiYy00NjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyHdaYV50ooTHKU0+6uOr034QcB2tWQfRoaKwunyy9WNviy+A8f0VCqjpHUD 2+Th1nVOjJNY2TogUi7SZO1OVR4c7QYxxm3Wyjrfkkm8E6fOzUlPdJ2UyGc4HED8 gKF6MRUmsLnMLAm7dFzhOMhQ/XcCEF9/RNaevLc+yZQ0NH36RYCXohoz64nPTpXT SawBlDe4oq7WQsPCamVGSF4Y/HpUuZAgohEN9Xyt6X63hRUfPN7GZgVrUxe85Y2o 4zvLANrlc1NVNh9o0p6pfWamJZO/vo6l+EVpdbsnQBk/M0fM7QSLo6Dy98UkaCte qxLW6GGVF2QiWjQiZ2YzfgolgQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPvumeVv Oi0YR7G5y4QgAn1SKh7oMB8GA1UdIwQYMBaAFGAv9PqAoACsYebUqy9y+9lqYfiC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5My9BOUEzOEJCRTE0 N0UxMUVEQTAyRkRCMTlDNEY5QUUwMi9ZQ18wLW9DZ0FLeGg1dFNyTDNMNzJXcGgt SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDXzAtb0NnQUt4aDV0U3JMM0w3MldwaC1JSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyOTMvQTlBMzhCQkUxNDdFMTFFREEwMkZEQjE5QzRGOUFFMDIvMDA4QzA4NzYx NDgzMTFFRDg1NkVGNDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnXwQwDQQCAAIwBwMFACQAnaAwDQYJKoZIhvcNAQELBQAD ggEBAKWvHFrcJc0fZEfccNAe3+0eH7gslSnS1VdxBjBpt8B4nOyoDbugx02yGfpr Dov1zAKKFleMFJVuUBgDX1VbTBpaLRhnydqv/CzWWvf2F8KBuJ8NtD5lV68Rkr5U yRLka3D1ulot9+ILP8HV0LM1btbfSZrNi5BkoYTwoN4MZAzHdjlspUhDS3pbazue ErEQdAKKhNt+6g2h02gm8AG6cLDfbo/86hQcz3bF2asxlSR+uxp2O7Z4lab/bBot yIyBCcarKnMR8q8e0V8OwJpMVGt/CeKBp9nHLc4t6kgxLLtot1XemsNBZ4BiR1vw aM4V+n3SyvCw/UK+clZXGDTr9SI= -----END CERTIFICATE-----Generated at Wed Aug 13 08:47:08 2025 by rpki-client