$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa File: 61663178F88311EDB1DF555DC4F9AE02.roa (raw, json) Hash identifier: JGXotXKcvN14RzZ1/FR0xe9rQIXkWn3R4BtHRBxnL08= Subject key identifier: AA:80:7C:2A:BB:97:AC:CD:A9:8D:61:B8:15:04:0A:7E:4C:AC:D2:B4 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 01C7 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa Signing time: Wed 23 Jul 2025 09:24:29 +0000 ROA not before: Wed 23 Jul 2025 09:24:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 56309 IP address blocks: 43.229.148.0/22 maxlen: 24 43.249.32.0/23 maxlen: 24 103.13.28.0/22 maxlen: 24 103.40.118.0/23 maxlen: 24 103.99.11.0/24 maxlen: 24 103.107.52.0/22 maxlen: 24 103.114.203.0/24 maxlen: 24 103.117.148.0/22 maxlen: 24 117.18.124.0/22 maxlen: 24 199.21.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Jul 23 09:24:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6880aa4c-3a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7d:7b:da:4c:d1:60:46:eb:1c:4f:44:79:8f: 2d:93:0e:51:b5:1d:57:b4:23:52:c3:69:23:1e:05: 0e:9a:24:52:3a:47:4e:40:2e:e9:0d:d3:80:2a:ca: fd:47:68:e9:d9:46:a3:78:e2:4e:9a:73:ed:67:cc: 7d:b6:a3:62:1d:61:3d:4d:fb:03:2f:07:ec:5c:3d: 09:54:11:e6:f0:e7:cc:96:a8:74:ad:73:59:6a:9e: 1b:a0:6c:8c:e4:75:0e:98:48:04:25:d1:33:03:ab: 28:c5:f0:32:81:e5:b9:3d:17:cd:6b:46:87:10:23: df:a9:34:c6:70:89:17:f4:7c:19:b2:3c:20:31:cb: 3d:ed:1b:75:1d:2b:7f:77:98:4a:2d:5c:bb:16:a3: 95:7c:37:40:a1:d2:30:90:25:ee:04:6c:ff:24:db: 7c:b4:fa:36:24:f8:2c:c9:1d:54:98:a6:db:0a:11: e3:32:02:eb:da:d7:7c:85:ea:99:ef:ab:4b:0d:54: 48:2a:b5:9b:d4:e4:f4:dc:75:66:3e:9d:89:85:51: 56:5d:02:4f:2f:6b:f5:fd:a6:21:f4:ff:00:f6:ce: 8b:e0:81:b8:53:bc:ad:2c:01:54:7b:78:d7:4a:c9: a7:d8:75:cb:b4:30:27:85:41:01:a6:d7:9f:7a:18: 01:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:80:7C:2A:BB:97:AC:CD:A9:8D:61:B8:15:04:0A:7E:4C:AC:D2:B4 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.148.0/22 43.249.32.0/23 103.13.28.0/22 103.40.118.0/23 103.99.11.0/24 103.107.52.0/22 103.114.203.0/24 103.117.148.0/22 117.18.124.0/22 199.21.172.0/22 Signature Algorithm: sha256WithRSAEncryption 89:29:d6:4d:29:e5:c9:13:ab:ba:2a:40:50:53:60:0d:b6:8d: 72:68:6f:db:88:9c:5a:25:4f:02:a1:66:50:93:23:93:47:35: 9c:b1:96:52:63:44:22:05:b8:cb:8b:f3:33:1b:9d:52:5d:5f: f2:f3:d4:3a:d1:e6:72:dc:c1:51:92:cb:f1:59:c7:f4:54:2f: 60:54:16:5f:00:d6:af:5b:c2:c5:12:cc:8e:ea:17:bb:9f:32: a4:5a:65:07:69:48:bc:50:d1:d7:ad:13:b2:29:fc:16:15:50: ea:c1:c1:53:f5:a2:70:33:53:12:07:fa:2a:dc:e8:59:ae:7b: a1:76:08:bb:40:6e:6f:a1:e8:d0:fd:1e:ee:b6:35:93:c0:bc: 01:37:a7:b9:28:58:b0:83:70:3d:3c:70:d1:21:42:3f:62:74: 19:ce:62:67:f9:f1:0a:ca:2d:bb:e6:50:f7:9a:aa:20:44:c8: 6f:8f:63:ea:91:8b:6b:ec:b8:71:cd:42:ed:4f:aa:28:83:61: bf:2b:83:15:38:fd:05:68:b0:10:6e:86:94:5c:d3:33:7a:b5: bc:5d:0c:c8:53:84:59:2a:45:b7:e8:ef:25:f3:4a:e7:3a:c2: db:f5:eb:e0:b2:df:74:9b:eb:06:6a:cb:48:5b:3e:62:f8:29: 43:22:59:5e -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjUwNzIzMDkyNDI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwYWE0Yy0zYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX172kzRYEbrHE9EeY8tkw5RtR1XtCNSw2kjHgUOmiRSOkdOQC7pDdOAKsr9 R2jp2UajeOJOmnPtZ8x9tqNiHWE9TfsDLwfsXD0JVBHm8OfMlqh0rXNZap4boGyM 5HUOmEgEJdEzA6soxfAygeW5PRfNa0aHECPfqTTGcIkX9HwZsjwgMcs97Rt1HSt/ d5hKLVy7FqOVfDdAodIwkCXuBGz/JNt8tPo2JPgsyR1UmKbbChHjMgLr2td8heqZ 76tLDVRIKrWb1OT03HVmPp2JhVFWXQJPL2v1/aYh9P8A9s6L4IG4U7ytLAFUe3jX Ssmn2HXLtDAnhUEBptefehgBzQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFKqAfCq7 l6zNqY1huBUECn5MrNK0MB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBOEUvNjFCQUQ4RTBGODdFMTFFRDkwRDg0NDVDQzRGOUFFMDIvNjE2NjMxNzhG ODgzMTFFREIxREY1NTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMEIEAgABMDwDBAIr5ZQDBAEr+SADBAJnDRwDBAFnKHYDBABnYwsDBAJnazQD BABncssDBAJndZQDBAJ1EnwDBALHFawwDQYJKoZIhvcNAQELBQADggEBAIkp1k0p 5ckTq7oqQFBTYA22jXJob9uInFolTwKhZlCTI5NHNZyxllJjRCIFuMuL8zMbnVJd X/Lz1DrR5nLcwVGSy/FZx/RUL2BUFl8A1q9bwsUSzI7qF7ufMqRaZQdpSLxQ0det E7Ip/BYVUOrBwVP1onAzUxIH+irc6Fmue6F2CLtAbm+h6ND9Hu62NZPAvAE3p7ko WLCDcD08cNEhQj9idBnOYmf58QrKLbvmUPeaqiBEyG+PY+qRi2vsuHHNQu1PqiiD Yb8rgxU4/QVosBBuhpRc0zN6tbxdDMhThFkqRbfo7yXzSuc6wtv16+Cy33Sb6wZq y0hbPmL4KUMiWV4= -----END CERTIFICATE-----Generated at Mon Aug 11 07:46:21 2025 by rpki-client