$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/950791DAD0D811EC8DF4377FC4F9AE02.roa File: 950791DAD0D811EC8DF4377FC4F9AE02.roa (raw, json) Hash identifier: zdS6UJyOMrd7sf5VOERZBIPIuQqnE9ZtKbgVQwDnTWY= Subject key identifier: B3:49:F3:79:53:DD:53:16:F1:D7:62:A6:97:AF:F6:93:77:62:59:9D Certificate issuer: /CN=A91D2ADD/serialNumber=B4F262F99857E120CC9CBC4BFC17ED54ABABE2BB Certificate serial: 0341 Authority key identifier: B4:F2:62:F9:98:57:E1:20:CC:9C:BC:4B:FC:17:ED:54:AB:AB:E2:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPJi-ZhX4SDMnLxL_BftVKur4rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/950791DAD0D811EC8DF4377FC4F9AE02.roa Signing time: Tue 05 Aug 2025 02:09:00 +0000 ROA not before: Tue 05 Aug 2025 02:09:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 31972 IP address blocks: 45.121.48.0/22 maxlen: 24 103.61.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/tPJi-ZhX4SDMnLxL_BftVKur4rs.crl rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/tPJi-ZhX4SDMnLxL_BftVKur4rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPJi-ZhX4SDMnLxL_BftVKur4rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ADD, serialNumber=B4F262F99857E120CC9CBC4BFC17ED54ABABE2BB Validity Not Before: Aug 5 02:09:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689167bb-00f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fe:3a:ce:18:4c:e6:cb:3e:0f:7d:e6:f7:9c: cb:38:c4:5b:4a:b3:7b:0f:70:e7:a0:d8:3b:ea:a1: 87:4e:0a:61:8b:20:ab:a3:c1:98:57:31:03:52:e8: 61:60:bc:01:db:c0:2d:e3:ac:96:8f:d7:63:3d:32: b8:2d:e8:2b:de:33:3e:3d:82:08:cb:92:e6:25:db: af:a2:2d:b2:6e:f8:fb:51:24:6b:dc:ee:82:5e:5b: 12:77:15:17:04:86:ff:8d:d6:71:8f:4a:59:90:a0: 4c:2b:c5:b7:60:74:02:61:9c:6b:be:6c:da:cf:42: 32:88:3c:58:b7:76:18:2b:3a:8d:40:41:37:d1:e1: fc:39:9b:82:3e:40:83:49:ff:bb:5e:0c:a6:81:01: fc:4f:f8:80:bb:24:aa:e5:3e:2d:cc:c1:0f:35:a0: 62:39:57:8e:cf:78:2b:48:1a:05:61:dc:95:51:bc: fa:8e:b9:da:6a:14:6d:ba:75:49:ad:0f:09:b2:51: 84:44:38:23:e9:82:86:57:ab:d9:2b:52:31:a8:27: 58:9e:d6:97:fc:7d:6a:fa:5a:9d:ba:bb:6d:c3:e1: 45:46:c5:99:3b:d0:cd:ab:0f:3c:66:2e:b7:3b:5f: fc:4e:d9:95:84:95:31:06:fe:53:8c:6f:94:d8:83: 7c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:49:F3:79:53:DD:53:16:F1:D7:62:A6:97:AF:F6:93:77:62:59:9D X509v3 Authority Key Identifier: keyid:B4:F2:62:F9:98:57:E1:20:CC:9C:BC:4B:FC:17:ED:54:AB:AB:E2:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/tPJi-ZhX4SDMnLxL_BftVKur4rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPJi-ZhX4SDMnLxL_BftVKur4rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/950791DAD0D811EC8DF4377FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.48.0/22 103.61.136.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:3d:03:c5:77:5c:e6:00:89:69:ee:97:ee:76:ce:fa:a3:9d: c2:a0:f1:1d:66:74:e9:e7:5e:3e:ce:27:08:17:e3:8f:c6:fb: 32:24:1e:29:61:11:65:2e:c6:ba:64:17:11:06:05:4f:41:8f: bd:00:eb:92:50:d4:22:38:28:aa:4d:16:1a:d0:d0:79:9c:97: 05:71:61:82:39:2c:83:64:93:92:ac:23:0a:1f:9b:37:1d:f8: 87:e6:60:ef:22:2d:30:c4:93:c8:75:20:4e:a8:b4:e5:14:07: 68:39:49:b9:42:4e:82:11:60:71:ef:32:a7:7b:66:06:4f:2e: 7f:da:c8:9a:3d:33:a4:78:51:8a:41:e4:53:d8:2b:1a:0d:e8: 89:da:31:68:db:37:cd:71:bd:65:1a:d7:2f:f4:75:1c:a0:04: 84:df:54:14:bd:5f:43:c9:dc:d1:64:42:17:cd:b8:79:58:85: 38:d7:de:d3:bc:d5:20:62:81:b7:54:08:cc:7c:28:7b:80:42: 36:86:c5:3d:66:96:98:6c:9c:c1:21:77:52:09:f1:93:7d:e5: 13:fa:02:d6:73:d7:d9:24:77:8a:cd:16:c9:8f:4f:39:58:b2: db:a4:66:58:3f:9a:f9:42:bf:fa:80:1f:5b:1c:09:73:45:9a: c9:8e:fa:87 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBREQxMTAvBgNVBAUTKEI0RjI2MkY5OTg1N0UxMjBDQzlDQkM0QkZDMTdFRDU0 QUJBQkUyQkIwHhcNMjUwODA1MDIwOTAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxNjdiYi0wMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyP46zhhM5ss+D33m95zLOMRbSrN7D3DnoNg76qGHTgphiyCro8GYVzEDUuhh YLwB28At46yWj9djPTK4Legr3jM+PYIIy5LmJduvoi2ybvj7USRr3O6CXlsSdxUX BIb/jdZxj0pZkKBMK8W3YHQCYZxrvmzaz0IyiDxYt3YYKzqNQEE30eH8OZuCPkCD Sf+7XgymgQH8T/iAuySq5T4tzMEPNaBiOVeOz3grSBoFYdyVUbz6jrnaahRtunVJ rQ8JslGERDgj6YKGV6vZK1IxqCdYntaX/H1q+lqdurttw+FFRsWZO9DNqw88Zi63 O1/8TtmVhJUxBv5TjG+U2IN8/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLNJ83lT 3VMW8ddippev9pN3YlmdMB8GA1UdIwQYMBaAFLTyYvmYV+EgzJy8S/wX7VSrq+K7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFERC9FREM2NzYxNEQw RDQxMUVDQTI0OTRBNzdDNEY5QUUwMi90UEppLVpoWDRTRE1uTHhMX0JmdFZLdXI0 cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RQSmktWmhYNFNETW5MeExfQmZ0Vkt1cjRycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJBREQvRURDNjc2MTREMEQ0MTFFQ0EyNDk0QTc3QzRGOUFFMDIvOTUwNzkxREFE MEQ4MTFFQzhERjQzNzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteTADBAJnPYgwDQYJKoZIhvcNAQELBQADggEBACo9A8V3 XOYAiWnul+52zvqjncKg8R1mdOnnXj7OJwgX44/G+zIkHilhEWUuxrpkFxEGBU9B j70A65JQ1CI4KKpNFhrQ0HmclwVxYYI5LINkk5KsIwofmzcd+IfmYO8iLTDEk8h1 IE6otOUUB2g5SblCToIRYHHvMqd7ZgZPLn/ayJo9M6R4UYpB5FPYKxoN6InaMWjb N81xvWUa1y/0dRygBITfVBS9X0PJ3NFkQhfNuHlYhTjX3tO81SBigbdUCMx8KHuA QjaGxT1mlphsnMEhd1IJ8ZN95RP6AtZz19kkd4rNFsmPTzlYstukZlg/mvlCv/qA H1scCXNFmsmO+oc= -----END CERTIFICATE-----Generated at Sat Aug 9 23:25:34 2025 by rpki-client