$ rpki-client -vvf rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/7C0FB3666B7F11F0A9B64752C4F9AE02.roa File: 7C0FB3666B7F11F0A9B64752C4F9AE02.roa (raw, json) Hash identifier: JpEedTIu1/puLNj2dYSgai3OZfNC92ySYcXZkBGbOE8= Subject key identifier: FC:D6:86:3D:5F:04:D4:43:3B:1C:97:A7:FD:B3:1F:B3:26:B3:52:49 Certificate issuer: /CN=A91C612E/serialNumber=BEA7E98C5A3FB5FBD830A4359441B4224727C72D Certificate serial: 3E Authority key identifier: BE:A7:E9:8C:5A:3F:B5:FB:D8:30:A4:35:94:41:B4:22:47:27:C7:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/7C0FB3666B7F11F0A9B64752C4F9AE02.roa Signing time: Mon 28 Jul 2025 06:52:54 +0000 ROA not before: Mon 28 Jul 2025 06:52:53 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 149994 IP address blocks: 103.77.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C612E, serialNumber=BEA7E98C5A3FB5FBD830A4359441B4224727C72D Validity Not Before: Jul 28 06:52:53 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68871e45-2660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bf:ad:36:f8:87:35:40:9d:cf:21:64:5d:d9: 6f:c6:59:60:60:cf:9d:c6:45:9c:ab:3c:e9:37:8b: a8:4a:eb:df:a1:6f:30:b6:02:6e:4f:4c:9c:cf:18: 9f:8e:8e:d1:68:71:a3:49:09:54:c4:6c:76:37:72: a4:9e:b4:ac:53:1c:15:1c:29:b3:26:ca:85:fa:1d: f2:91:c9:97:6c:b1:8e:c1:bf:52:df:bf:3e:ec:f2: 9d:8c:1c:db:42:4f:55:11:ed:6a:c5:2b:9f:ac:1e: b0:b0:65:0f:26:b5:4a:14:13:c3:a3:c0:9a:6c:9b: a0:fb:96:c6:c9:bd:f5:d2:dd:dd:ba:7f:63:d9:d4: c0:59:82:73:37:ba:1d:cb:17:c9:9b:ac:24:68:2d: b8:67:42:6d:74:00:6c:29:bc:33:7b:a6:7e:4c:cd: fa:63:a5:a3:a0:0f:cd:a9:09:9f:80:56:7b:f6:59: 8c:b4:d7:8a:0c:d5:38:17:f1:71:b5:d7:e6:f1:f2: 84:e0:ad:45:9c:84:35:ef:60:47:00:cc:d0:50:b1: 52:6d:cd:2b:c4:66:5d:70:9e:b5:96:9d:82:55:62: 93:61:22:aa:1b:83:ef:1c:e0:1f:a0:38:d2:05:0d: e0:d7:b6:f1:8d:2a:cc:27:90:9c:e4:c9:0f:3b:f4: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D6:86:3D:5F:04:D4:43:3B:1C:97:A7:FD:B3:1F:B3:26:B3:52:49 X509v3 Authority Key Identifier: keyid:BE:A7:E9:8C:5A:3F:B5:FB:D8:30:A4:35:94:41:B4:22:47:27:C7:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/7C0FB3666B7F11F0A9B64752C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.101.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:d3:b1:1e:38:86:a1:75:e9:f7:4c:1a:48:b4:4c:67:26:7c: 4e:20:9b:c8:a1:f9:76:71:dd:3e:fb:e5:7c:c5:1e:ce:a2:16: b9:ae:06:e9:3e:12:2e:9f:db:8b:a5:ae:35:8b:3f:bf:b2:a7: ea:90:64:38:9c:ce:ce:f8:ae:94:a3:f4:75:c8:91:7b:33:f7: e0:a9:27:ad:70:c2:0e:c7:d3:9b:0c:f2:c6:2e:78:91:7f:a7: 37:8b:71:1f:e1:20:47:86:87:a2:ad:32:6c:33:09:72:9b:c2: b3:ee:3a:82:ae:a2:43:22:f6:6c:b7:5e:6a:e5:0e:8b:5c:5b: 5a:7a:ba:b1:09:4a:d3:18:9f:96:35:e2:74:a7:ab:63:f2:2c: 80:6e:cb:89:83:98:2a:19:b4:fc:03:9d:5c:4d:19:81:b9:4e: 3d:7a:dc:f8:7d:5f:34:ed:0d:6b:21:03:12:1b:34:39:da:ef: 99:47:65:e5:cf:ef:59:3f:05:80:c2:f1:be:c2:f8:b0:35:af: 9d:5a:1a:7a:ae:d3:32:4c:45:10:4a:de:61:51:0e:01:25:73: e0:88:ab:02:99:ed:71:ab:65:b2:17:2a:04:df:b7:f7:f4:d0: 31:87:59:c6:c6:59:01:1a:0a:44:fb:da:db:e0:b4:e1:96:9f: cb:fe:99:ad -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjEyRTExMC8GA1UEBRMoQkVBN0U5OEM1QTNGQjVGQkQ4MzBBNDM1OTQ0MUI0MjI0 NzI3QzcyRDAeFw0yNTA3MjgwNjUyNTNaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ODcxZTQ1LTI2NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYv602+Ic1QJ3PIWRd2W/GWWBgz53GRZyrPOk3i6hK69+hbzC2Am5PTJzPGJ+O jtFocaNJCVTEbHY3cqSetKxTHBUcKbMmyoX6HfKRyZdssY7Bv1Lfvz7s8p2MHNtC T1UR7WrFK5+sHrCwZQ8mtUoUE8OjwJpsm6D7lsbJvfXS3d26f2PZ1MBZgnM3uh3L F8mbrCRoLbhnQm10AGwpvDN7pn5MzfpjpaOgD82pCZ+AVnv2WYy014oM1TgX8XG1 1+bx8oTgrUWchDXvYEcAzNBQsVJtzSvEZl1wnrWWnYJVYpNhIqobg+8c4B+gONIF DeDXtvGNKswnkJzkyQ879FElAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/NaGPV8E 1EM7HJen/bMfsyazUkkwHwYDVR0jBBgwFoAUvqfpjFo/tfvYMKQ1lEG0Ikcnxy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2MTJFLzY1QkMxN0QyMEI2 MTExRUFBRjA0MkY2OEM0RjlBRTAyL3ZxZnBqRm9fdGZ2WU1LUTFsRUcwSWtjbnh5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdnFmcGpGb190ZnZZTUtRMWxFRzBJa2NueHkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjEyRS82NUJDMTdEMjBCNjExMUVBQUYwNDJGNjhDNEY5QUUwMi83QzBGQjM2NjZC N0YxMUYwQTlCNjQ3NTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdNZTANBgkqhkiG9w0BAQsFAAOCAQEACtOxHjiGoXXp90wa SLRMZyZ8TiCbyKH5dnHdPvvlfMUezqIWua4G6T4SLp/bi6WuNYs/v7Kn6pBkOJzO zviulKP0dciRezP34KknrXDCDsfTmwzyxi54kX+nN4txH+EgR4aHoq0ybDMJcpvC s+46gq6iQyL2bLdeauUOi1xbWnq6sQlK0xifljXidKerY/IsgG7LiYOYKhm0/AOd XE0ZgblOPXrc+H1fNO0NayEDEhs0OdrvmUdl5c/vWT8FgMLxvsL4sDWvnVoaeq7T MkxFEEreYVEOASVz4IirApntcatlshcqBN+39/TQMYdZxsZZARoKRPva2+C04Zaf y/6ZrQ== -----END CERTIFICATE-----Generated at Mon Aug 11 04:28:33 2025 by rpki-client