$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/98536A8A8D1811EBA3DEC15BC4F9AE02.roa File: 98536A8A8D1811EBA3DEC15BC4F9AE02.roa (raw, json) Hash identifier: GZC1H6bkYz3KSM38VOTZVhfdcChKVhr9TmELY8NJ80g= Subject key identifier: 70:03:1C:81:D8:B7:94:19:D3:FF:94:11:97:EC:15:D8:5A:76:90:BB Certificate issuer: /CN=A91C0FF9/serialNumber=EEFD3E86AF74F9483464016B934FC3EF14C82D46 Certificate serial: 0671 Authority key identifier: EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/98536A8A8D1811EBA3DEC15BC4F9AE02.roa Signing time: Tue 10 Jun 2025 22:51:01 +0000 ROA not before: Tue 10 Jun 2025 22:51:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4826 IP address blocks: 103.9.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FF9, serialNumber=EEFD3E86AF74F9483464016B934FC3EF14C82D46 Validity Not Before: Jun 10 22:51:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6848b6d4-64a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:2f:34:c4:59:fe:b7:4d:95:52:26:65:10:1f: 2d:97:ed:7b:8a:4f:98:f6:1b:19:b0:a4:95:64:b8: 1a:ef:1d:70:c4:62:29:9f:9a:05:bf:ce:4f:47:ec: b2:ed:38:e8:fa:93:8d:45:13:78:62:35:22:2a:40: a1:a2:a5:50:58:42:c5:bb:bf:b0:e0:77:14:bd:d1: f7:56:24:70:34:c5:31:a1:61:87:4f:1c:51:64:71: d2:b7:d8:7a:42:42:20:0d:e9:06:f1:12:d6:55:f7: 9f:dc:29:f9:14:08:e0:cf:d3:28:6c:57:63:83:2c: 97:69:82:90:bc:5e:8f:d7:91:35:cd:64:8c:79:86: d6:b1:c1:db:6d:e6:98:1f:17:c9:89:45:40:44:8f: 63:b1:15:67:d4:24:c1:f3:8e:89:a6:16:c1:48:10: e5:0d:c7:e9:30:d9:de:37:dd:28:84:fa:29:29:37: d3:0d:d8:2f:a1:39:b4:f6:bd:0d:2c:61:bd:d2:f2: f5:0d:4f:01:7a:32:ee:6d:4c:a0:b3:58:bb:5a:44: a7:55:29:55:5e:4a:1f:06:51:1c:68:c0:38:eb:f6: b3:9e:d1:00:38:0e:6f:2b:cd:3f:4d:26:9b:7e:04: ac:cd:3b:b7:06:e4:ca:dd:6b:31:1d:56:25:b2:13: 83:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:03:1C:81:D8:B7:94:19:D3:FF:94:11:97:EC:15:D8:5A:76:90:BB X509v3 Authority Key Identifier: keyid:EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/98536A8A8D1811EBA3DEC15BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.64.0/22 Signature Algorithm: sha256WithRSAEncryption 63:6e:04:86:01:2f:a5:4e:4c:ad:51:c2:0d:8b:7b:c2:14:1b: e0:11:b4:1a:b0:df:3f:f4:27:69:a4:90:39:d2:ab:c1:51:b4: 70:b2:ee:fc:9c:8a:bc:5c:02:8b:87:22:25:52:6a:83:3b:dd: 5b:af:74:1d:78:a7:fc:19:95:fc:94:6f:5e:d0:29:e3:c2:6f: eb:71:6b:52:0e:38:59:bc:e5:7e:9f:29:f7:f2:b5:cf:70:75: 14:b5:c7:e9:29:12:05:7a:c6:03:6c:79:20:b9:3f:00:bf:ed: dc:58:06:b9:03:11:b8:c7:14:8f:46:6a:db:f3:f8:dd:61:75: 73:03:89:7e:59:ad:7a:64:23:26:1f:b7:34:4a:2a:15:c9:21: a2:3a:be:ad:c6:fa:b2:e0:3b:5c:f3:e3:91:c7:3f:9d:65:b4: f9:67:5b:84:22:61:7b:b7:13:f6:a5:27:a5:bf:1e:41:f5:ae: 32:06:2b:f1:bf:b0:fa:a4:9e:e3:6f:64:49:be:b8:81:e5:4e: 81:9a:31:95:d4:22:34:c9:bc:08:ce:7b:f9:c0:e2:15:cb:75: 62:1e:4a:0a:35:b6:da:1c:d8:5e:f9:14:3a:78:24:51:d3:6e: 38:40:c3:1b:bc:1a:d2:ef:b3:9c:e9:5c:40:f0:9f:a8:dc:56: f8:08:4c:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGRjkxMTAvBgNVBAUTKEVFRkQzRTg2QUY3NEY5NDgzNDY0MDE2QjkzNEZDM0VG MTRDODJENDYwHhcNMjUwNjEwMjI1MTAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4YjZkNC02NGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5i80xFn+t02VUiZlEB8tl+17ik+Y9hsZsKSVZLga7x1wxGIpn5oFv85PR+yy 7Tjo+pONRRN4YjUiKkChoqVQWELFu7+w4HcUvdH3ViRwNMUxoWGHTxxRZHHSt9h6 QkIgDekG8RLWVfef3Cn5FAjgz9MobFdjgyyXaYKQvF6P15E1zWSMeYbWscHbbeaY HxfJiUVARI9jsRVn1CTB846JphbBSBDlDcfpMNneN90ohPopKTfTDdgvoTm09r0N LGG90vL1DU8BejLubUygs1i7WkSnVSlVXkofBlEcaMA46/azntEAOA5vK80/TSab fgSszTu3BuTK3WsxHVYlshODLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHADHIHY t5QZ0/+UEZfsFdhadpC7MB8GA1UdIwQYMBaAFO79PoavdPlINGQBa5NPw+8UyC1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZGOS9ERDZBNzY1MDgw Q0UxMUVCOTM1MDE4NjhDNEY5QUUwMi83djAtaHE5MC1VZzBaQUZyazBfRDd4VElM VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd2MC1ocTkwLVVnMFpBRnJrMF9EN3hUSUxVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBGRjkvREQ2QTc2NTA4MENFMTFFQjkzNTAxODY4QzRGOUFFMDIvOTg1MzZBOEE4 RDE4MTFFQkEzREVDMTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnCUAwDQYJKoZIhvcNAQELBQADggEBAGNuBIYBL6VOTK1R wg2Le8IUG+ARtBqw3z/0J2mkkDnSq8FRtHCy7vycirxcAouHIiVSaoM73VuvdB14 p/wZlfyUb17QKePCb+txa1IOOFm85X6fKffytc9wdRS1x+kpEgV6xgNseSC5PwC/ 7dxYBrkDEbjHFI9Gatvz+N1hdXMDiX5ZrXpkIyYftzRKKhXJIaI6vq3G+rLgO1zz 45HHP51ltPlnW4QiYXu3E/alJ6W/HkH1rjIGK/G/sPqknuNvZEm+uIHlToGaMZXU IjTJvAjOe/nA4hXLdWIeSgo1ttoc2F75FDp4JFHTbjhAwxu8GtLvs5zpXEDwn6jc VvgITL4= -----END CERTIFICATE-----Generated at Sun Jun 15 18:45:05 2025 by rpki-client