$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/F77C1438964111EDAAB8E74AC4F9AE02.roa File: F77C1438964111EDAAB8E74AC4F9AE02.roa (raw, json) Hash identifier: 4yRhL9kVMGnZbWA+LNDehvbTaP/J/shZ+9q9XJ0iuQs= Subject key identifier: 1C:E5:17:BC:DF:4B:9E:1D:2C:0A:4E:E2:D6:73:E5:25:65:E3:6E:57 Certificate issuer: /CN=A91CCCDD/serialNumber=3A8A6A2EE5DC09FCAA82FF018F09C1AF84B41196 Certificate serial: 01E7 Authority key identifier: 3A:8A:6A:2E:E5:DC:09:FC:AA:82:FF:01:8F:09:C1:AF:84:B4:11:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OopqLuXcCfyqgv8BjwnBr4S0EZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/F77C1438964111EDAAB8E74AC4F9AE02.roa Signing time: Mon 11 Aug 2025 03:10:42 +0000 ROA not before: Mon 11 Aug 2025 03:10:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149777 IP address blocks: 103.186.50.0/23 maxlen: 23 103.186.50.0/24 maxlen: 24 103.186.51.0/24 maxlen: 24 2400:6e20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/OopqLuXcCfyqgv8BjwnBr4S0EZY.crl rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/OopqLuXcCfyqgv8BjwnBr4S0EZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OopqLuXcCfyqgv8BjwnBr4S0EZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCCDD, serialNumber=3A8A6A2EE5DC09FCAA82FF018F09C1AF84B41196 Validity Not Before: Aug 11 03:10:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68995f32-1e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:eb:6e:c5:fe:40:dd:21:3d:8c:01:5d:48:d1: c9:0c:ff:92:11:cd:39:4e:15:2c:89:fa:22:2c:f2: 1e:a3:ac:43:92:69:ba:c9:3f:2a:18:dc:35:8a:04: a2:fb:b0:b7:ec:a9:c7:e1:65:e3:41:a1:c1:56:c5: 05:08:3c:3c:83:45:5b:8c:02:01:c4:4d:f9:f6:ed: 36:07:cb:b4:a0:29:96:c4:40:d2:b5:33:c0:d9:d6: 17:0f:6c:c1:ad:cb:ac:23:19:86:18:30:e5:1c:c8: 7e:85:ee:94:b1:c3:b6:2a:cd:30:95:2c:fa:56:67: 02:31:1d:34:93:1b:44:1c:99:17:5c:2e:40:6d:6d: 39:ee:58:64:45:18:71:77:3e:2b:14:c0:83:5a:ea: ff:92:5e:59:e4:09:fd:9e:24:9e:df:55:e8:b1:3c: f4:bc:b9:0f:f9:60:36:09:e9:46:16:5f:ee:c6:e1: db:72:c3:16:fb:17:b9:74:27:04:ff:18:ac:d7:64: eb:9f:59:3c:bb:e7:65:50:e9:de:51:d0:61:2f:73: ad:b1:f3:3b:a4:e6:52:80:87:dd:74:22:f5:94:d5: 18:06:15:d3:68:8a:3d:b9:35:ce:46:49:3d:b0:71: 27:bb:ff:64:36:61:a6:1e:20:78:a2:b5:69:5b:47: a2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E5:17:BC:DF:4B:9E:1D:2C:0A:4E:E2:D6:73:E5:25:65:E3:6E:57 X509v3 Authority Key Identifier: keyid:3A:8A:6A:2E:E5:DC:09:FC:AA:82:FF:01:8F:09:C1:AF:84:B4:11:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/OopqLuXcCfyqgv8BjwnBr4S0EZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OopqLuXcCfyqgv8BjwnBr4S0EZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/F77C1438964111EDAAB8E74AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.50.0/23 IPv6: 2400:6e20::/32 Signature Algorithm: sha256WithRSAEncryption 79:a6:d2:8a:0d:38:fc:46:6f:e0:40:8a:96:90:05:42:59:66: e4:fb:19:b9:41:0b:99:6b:2e:1b:c5:9d:9b:4c:92:d1:99:61: 38:f6:b1:ff:44:57:a1:90:a3:f0:84:0f:94:06:1f:f3:1b:3b: ba:7e:78:4a:dc:b4:9f:ad:ba:93:f0:ea:84:38:5b:82:63:72: ea:69:ec:44:3e:ff:85:ac:98:5d:4b:26:11:64:6a:1a:d7:76: fc:6e:a1:5f:0b:75:8c:92:b4:71:5b:11:e1:c5:52:d5:2f:0f: 6b:d9:ce:ca:74:2d:e1:87:98:58:ce:39:ae:31:90:5e:8b:cd: d6:a5:9e:16:f1:64:64:61:60:c7:b6:b8:28:b6:f5:26:58:d4: a8:64:ad:f6:9e:f9:b3:be:bf:86:2a:a8:bf:56:f4:bc:e9:87: 70:7c:69:58:b4:0e:09:fa:2f:65:1a:fa:34:da:dd:1b:72:de: 58:54:69:f5:3e:42:24:0c:ed:9e:2e:b9:46:87:b9:41:ca:2b: 63:6d:8e:a4:76:36:4f:6b:f2:df:aa:f6:1d:c0:cd:d9:ca:43: ff:33:c5:6b:44:83:00:1c:64:1e:d3:e8:4a:52:96:d6:4e:a3: 31:70:98:b3:df:2e:2f:57:99:af:c7:6d:0f:68:84:3e:f4:cd: e9:02:27:3a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NDREQxMTAvBgNVBAUTKDNBOEE2QTJFRTVEQzA5RkNBQTgyRkYwMThGMDlDMUFG ODRCNDExOTYwHhcNMjUwODExMDMxMDQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5NWYzMi0xZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxutuxf5A3SE9jAFdSNHJDP+SEc05ThUsifoiLPIeo6xDkmm6yT8qGNw1igSi +7C37KnH4WXjQaHBVsUFCDw8g0VbjAIBxE359u02B8u0oCmWxEDStTPA2dYXD2zB rcusIxmGGDDlHMh+he6UscO2Ks0wlSz6VmcCMR00kxtEHJkXXC5AbW057lhkRRhx dz4rFMCDWur/kl5Z5An9niSe31XosTz0vLkP+WA2CelGFl/uxuHbcsMW+xe5dCcE /xis12Trn1k8u+dlUOneUdBhL3OtsfM7pOZSgIfddCL1lNUYBhXTaIo9uTXORkk9 sHEnu/9kNmGmHiB4orVpW0ei5QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBzlF7zf S54dLApO4tZz5SVl425XMB8GA1UdIwQYMBaAFDqKai7l3An8qoL/AY8Jwa+EtBGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0NERC9GM0JCRTc2RTk2 M0QxMUVEQkUzRkQwMUFDNEY5QUUwMi9Pb3BxTHVYY0NmeXFndjhCanduQnI0UzBF WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09vcHFMdVhjQ2Z5cWd2OEJqd25CcjRTMEVaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NDREQvRjNCQkU3NkU5NjNEMTFFREJFM0ZEMDFBQzRGOUFFMDIvRjc3QzE0Mzg5 NjQxMTFFREFBQjhFNzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnujIwDQQCAAIwBwMFACQAbiAwDQYJKoZIhvcNAQELBQAD ggEBAHmm0ooNOPxGb+BAipaQBUJZZuT7GblBC5lrLhvFnZtMktGZYTj2sf9EV6GQ o/CED5QGH/MbO7p+eErctJ+tupPw6oQ4W4Jjcupp7EQ+/4WsmF1LJhFkahrXdvxu oV8LdYyStHFbEeHFUtUvD2vZzsp0LeGHmFjOOa4xkF6LzdalnhbxZGRhYMe2uCi2 9SZY1Khkrfae+bO+v4YqqL9W9Lzph3B8aVi0Dgn6L2Ua+jTa3Rty3lhUafU+QiQM 7Z4uuUaHuUHKK2NtjqR2Nk9r8t+q9h3AzdnKQ/8zxWtEgwAcZB7T6EpSltZOozFw mLPfLi9Xma/HbQ9ohD70zekCJzo= -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:42 2025 by rpki-client