$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/8FADE73CA49B11EEB19E774BC4F9AE02.roa File: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (raw, json) Hash identifier: j94hdqhS8hEZkUNMK0Gy0/wMaWkISNSvPZJQcef/86U= Subject key identifier: D7:D7:51:F5:6E:F2:33:FE:37:54:07:20:69:BF:3F:AE:31:24:20:0E Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 0835 Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/8FADE73CA49B11EEB19E774BC4F9AE02.roa Signing time: Mon 02 Jun 2025 21:08:17 +0000 ROA not before: Mon 02 Jun 2025 21:08:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9541 IP address blocks: 103.139.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2101 (0x835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Jun 2 21:08:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e12c0-f8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ce:b5:f3:c3:bf:17:1e:96:64:b0:27:1f:15: 32:09:fc:8b:d7:44:08:9a:a7:23:bd:20:c6:e2:de: 5c:eb:a9:33:69:7a:9f:1a:e4:c6:24:30:56:32:e8: bb:5e:ee:b6:b1:7f:17:0c:f2:33:4f:25:5e:d5:ce: c1:76:98:42:ac:93:a0:cf:21:9e:6a:82:79:64:96: ce:c8:fa:12:f3:8b:b5:1b:ea:bb:cd:47:bb:47:3a: 00:b9:62:ee:3f:0b:95:e3:d2:01:5f:70:db:f7:38: 2c:f6:44:65:e6:a8:13:70:fd:73:3f:42:dd:08:5c: b5:af:3a:80:08:26:71:2d:8f:57:bc:df:7b:2b:88: 55:2e:12:08:cb:48:f1:c2:4d:f2:12:da:90:60:d3: 84:15:6b:f3:3c:2b:78:1b:45:a2:18:54:24:21:a9: b3:b0:17:09:61:ef:6a:b3:63:d3:de:2e:40:55:11: 4c:dc:74:d5:d9:e5:82:d6:13:f0:f7:0f:6f:da:5d: 11:91:df:1e:4c:03:15:eb:8f:30:f1:ff:04:c4:ea: 71:82:d5:8f:dd:e7:10:2b:7a:0a:f4:72:66:7d:aa: a2:f4:62:41:82:83:f9:01:74:39:82:27:59:fe:2a: f2:63:16:a1:68:ef:55:a0:57:4a:63:ab:06:d8:a0: b8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D7:51:F5:6E:F2:33:FE:37:54:07:20:69:BF:3F:AE:31:24:20:0E X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/8FADE73CA49B11EEB19E774BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.62.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:38:35:0d:d9:a2:a9:a2:15:70:c0:cd:18:7c:e1:b5:38:b1: 1a:de:e0:06:84:5c:fb:a9:82:d3:00:eb:b3:de:cc:d3:9f:9b: a9:4b:15:c3:5c:3b:32:5f:35:e8:76:c2:bd:31:fa:55:51:2c: 36:f1:82:91:b8:b8:f1:b6:6f:8f:ac:77:89:c2:66:58:83:4f: b4:4c:ae:f1:17:c4:db:3f:64:f7:c6:ca:c9:ad:68:a7:e2:f1: e8:84:48:16:a3:cd:11:71:b7:42:a3:04:47:b3:41:0f:f9:4d: 34:e5:09:b2:cc:5e:d9:2b:fc:cb:ce:f1:b0:9b:d4:bf:4c:d9: 54:d3:6c:68:ca:76:6d:9e:6c:fe:df:f7:8d:28:69:98:34:6a: 8a:9e:50:be:3b:74:e8:1d:7d:aa:da:76:3c:25:5d:40:23:ea: 0f:e1:5d:8f:df:d6:3f:06:63:e9:96:19:95:55:64:9c:09:bc: cc:ea:f6:87:72:52:95:ec:bf:c6:26:f7:76:ae:06:dd:a5:e5: 0d:60:66:d7:33:18:8f:f8:aa:92:8b:09:cf:a2:8e:a1:eb:9d: b5:67:61:f7:0a:42:88:b8:f7:4d:5f:5c:35:4d:fb:cd:ba:f6: 1b:8c:8f:c1:52:91:5d:b2:89:f7:4b:88:ab:7f:06:f7:b6:be: 14:6d:a0:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUwNjAyMjEwODE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTJjMC1mOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArs6188O/Fx6WZLAnHxUyCfyL10QImqcjvSDG4t5c66kzaXqfGuTGJDBWMui7 Xu62sX8XDPIzTyVe1c7BdphCrJOgzyGeaoJ5ZJbOyPoS84u1G+q7zUe7RzoAuWLu PwuV49IBX3Db9zgs9kRl5qgTcP1zP0LdCFy1rzqACCZxLY9XvN97K4hVLhIIy0jx wk3yEtqQYNOEFWvzPCt4G0WiGFQkIamzsBcJYe9qs2PT3i5AVRFM3HTV2eWC1hPw 9w9v2l0Rkd8eTAMV648w8f8ExOpxgtWP3ecQK3oK9HJmfaqi9GJBgoP5AXQ5gidZ /iryYxahaO9VoFdKY6sG2KC46wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNfXUfVu 8jP+N1QHIGm/P64xJCAOMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y3N0QvMTFFMjU5RDBEMjJEMTFFQThBRTczRDI3QzRGOUFFMDIvOEZBREU3M0NB NDlCMTFFRUIxOUU3NzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniz4wDQYJKoZIhvcNAQELBQADggEBAJw4NQ3ZoqmiFXDA zRh84bU4sRre4AaEXPupgtMA67PezNOfm6lLFcNcOzJfNeh2wr0x+lVRLDbxgpG4 uPG2b4+sd4nCZliDT7RMrvEXxNs/ZPfGysmtaKfi8eiESBajzRFxt0KjBEezQQ/5 TTTlCbLMXtkr/MvO8bCb1L9M2VTTbGjKdm2ebP7f940oaZg0aoqeUL47dOgdfara djwlXUAj6g/hXY/f1j8GY+mWGZVVZJwJvMzq9odyUpXsv8Ym93auBt2l5Q1gZtcz GI/4qpKLCc+ijqHrnbVnYfcKQoi4901fXDVN+8269huMj8FSkV2yifdLiKt/Bve2 vhRtoK8= -----END CERTIFICATE-----Generated at Wed Nov 5 10:04:57 2025 by rpki-client