$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/3A3E36B6631811F089107C4AC4F9AE02.roa File: 3A3E36B6631811F089107C4AC4F9AE02.roa (raw, json) Hash identifier: LItmSY3Ra1Iy4gmT11d9DvsCigq7vdXD6JtTRrSnrY4= Subject key identifier: 07:11:CC:2E:3F:5F:A6:F1:F0:04:8B:DF:B6:85:B0:60:C2:E8:09:0E Certificate issuer: /CN=A91D7771/serialNumber=30C582B6799252BAAC3B381ABA4CC337ABF97DE3 Certificate serial: 03BA Authority key identifier: 30:C5:82:B6:79:92:52:BA:AC:3B:38:1A:BA:4C:C3:37:AB:F9:7D:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMWCtnmSUrqsOzgaukzDN6v5feM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/3A3E36B6631811F089107C4AC4F9AE02.roa Signing time: Sun 03 Aug 2025 21:29:36 +0000 ROA not before: Sun 03 Aug 2025 21:29:36 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 142063 IP address blocks: 103.172.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/MMWCtnmSUrqsOzgaukzDN6v5feM.crl rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/MMWCtnmSUrqsOzgaukzDN6v5feM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMWCtnmSUrqsOzgaukzDN6v5feM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7771, serialNumber=30C582B6799252BAAC3B381ABA4CC337ABF97DE3 Validity Not Before: Aug 3 21:29:36 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688fd4bf-0678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:f5:3c:ec:53:3e:3f:40:09:21:ca:57:7a: e3:4b:21:0a:e2:66:49:7e:98:a6:01:a2:f0:8c:a8: c6:75:da:78:48:a6:5e:fb:eb:76:0b:0d:e6:53:25: ba:ae:ec:c1:d7:9b:f4:10:72:2e:1d:3e:c6:46:e7: 37:62:7a:21:72:0f:ed:47:63:bf:d0:fa:85:e3:e8: ca:ae:b7:20:d1:f0:62:71:f0:d7:d0:2f:9a:1a:6d: 8d:3a:cf:63:de:e1:86:3c:b2:4f:da:d0:4e:1d:43: c0:53:c4:f1:be:21:ba:07:e5:6d:50:04:ba:d9:29: 00:87:7e:c7:73:b3:41:b1:21:cb:e8:0c:6a:a1:9f: 81:69:83:18:01:b6:7e:90:9c:3c:44:35:93:d7:ed: 0b:c5:b8:e8:e7:47:85:0f:99:2b:d7:62:62:bd:75: 6f:5e:0a:07:ea:79:0d:26:36:c0:77:8b:58:81:bd: 71:48:26:bd:f8:3f:c1:46:9c:89:26:e8:95:c5:fd: 67:e8:bc:82:59:e4:c0:c5:68:93:a1:46:cc:68:9d: de:3f:79:f5:56:bc:7c:e0:6d:31:5f:39:5c:45:28: 17:2b:48:e0:10:57:54:c9:62:42:c8:a0:80:3a:1a: 9b:af:bc:44:15:6d:d8:ee:1e:f2:39:01:49:00:6a: 2b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:11:CC:2E:3F:5F:A6:F1:F0:04:8B:DF:B6:85:B0:60:C2:E8:09:0E X509v3 Authority Key Identifier: keyid:30:C5:82:B6:79:92:52:BA:AC:3B:38:1A:BA:4C:C3:37:AB:F9:7D:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/MMWCtnmSUrqsOzgaukzDN6v5feM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMWCtnmSUrqsOzgaukzDN6v5feM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7771/55F2F0FEB17D11ECB9736241C4F9AE02/3A3E36B6631811F089107C4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.166.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:22:0d:bf:ba:d0:f7:b5:2e:1d:3d:9f:57:60:de:e6:af:fd: 5c:a4:0f:ca:ec:2b:f1:0d:29:29:9c:a4:64:bf:6d:fe:e4:22: 4f:15:58:bf:6e:f0:c4:b1:59:4d:97:5f:f4:e4:50:54:41:98: 4f:84:db:52:cc:05:77:46:46:ca:3e:27:9a:56:fe:52:33:a2: 08:32:30:fc:78:a0:04:c3:58:a8:fd:7d:d9:a6:9c:6e:f3:87: 86:5b:b0:55:a8:73:84:b2:32:9c:0d:c7:c6:46:51:56:b1:99: 28:92:b5:67:b9:6b:88:b0:d2:67:b3:91:3a:4c:6f:88:7f:0f: 49:7e:63:c5:89:49:f3:e8:39:1b:07:57:9f:80:2d:ac:cb:53: 1f:d8:43:50:4a:5f:e7:b6:9b:c1:75:03:b7:25:b5:50:73:65: 95:65:7c:40:3a:5b:ad:6d:8b:dd:ea:6c:28:ce:08:e6:c2:68: e1:f8:bc:43:0d:76:51:32:0e:4b:05:5a:b7:79:c5:42:5e:77: 26:ec:ea:9d:c5:63:08:0f:3f:fa:98:85:b8:64:9f:81:a6:15: a4:b0:8a:8b:2f:56:fc:42:23:05:59:55:f0:56:e7:e0:5a:8e: a2:03:6a:3d:2c:e0:e1:0f:12:f6:79:a7:33:48:ac:21:64:a8: 0a:46:36:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc3NzExMTAvBgNVBAUTKDMwQzU4MkI2Nzk5MjUyQkFBQzNCMzgxQUJBNENDMzM3 QUJGOTdERTMwHhcNMjUwODAzMjEyOTM2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhmZDRiZi0wNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw531POxTPj9ACSHKV3rjSyEK4mZJfpimAaLwjKjGddp4SKZe++t2Cw3mUyW6 ruzB15v0EHIuHT7GRuc3Ynohcg/tR2O/0PqF4+jKrrcg0fBicfDX0C+aGm2NOs9j 3uGGPLJP2tBOHUPAU8TxviG6B+VtUAS62SkAh37Hc7NBsSHL6AxqoZ+BaYMYAbZ+ kJw8RDWT1+0Lxbjo50eFD5kr12JivXVvXgoH6nkNJjbAd4tYgb1xSCa9+D/BRpyJ JuiVxf1n6LyCWeTAxWiToUbMaJ3eP3n1Vrx84G0xXzlcRSgXK0jgEFdUyWJCyKCA Ohqbr7xEFW3Y7h7yOQFJAGorDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAcRzC4/ X6bx8ASL37aFsGDC6AkOMB8GA1UdIwQYMBaAFDDFgrZ5klK6rDs4GrpMwzer+X3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzc3MS81NUYyRjBGRUIx N0QxMUVDQjk3MzYyNDFDNEY5QUUwMi9NTVdDdG5tU1VycXNPemdhdWt6RE42djVm ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01NV0N0bm1TVXJxc096Z2F1a3pETjZ2NWZlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc3NzEvNTVGMkYwRkVCMTdEMTFFQ0I5NzM2MjQxQzRGOUFFMDIvM0EzRTM2QjY2 MzE4MTFGMDg5MTA3QzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrKYwDQYJKoZIhvcNAQELBQADggEBAE8iDb+60Pe1Lh09 n1dg3uav/VykD8rsK/ENKSmcpGS/bf7kIk8VWL9u8MSxWU2XX/TkUFRBmE+E21LM BXdGRso+J5pW/lIzoggyMPx4oATDWKj9fdmmnG7zh4ZbsFWoc4SyMpwNx8ZGUVax mSiStWe5a4iw0mezkTpMb4h/D0l+Y8WJSfPoORsHV5+ALazLUx/YQ1BKX+e2m8F1 A7cltVBzZZVlfEA6W61ti93qbCjOCObCaOH4vEMNdlEyDksFWrd5xUJedybs6p3F YwgPP/qYhbhkn4GmFaSwiosvVvxCIwVZVfBW5+BajqIDaj0s4OEPEvZ5pzNIrCFk qApGNoo= -----END CERTIFICATE-----Generated at Mon Aug 11 09:29:06 2025 by rpki-client