$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa File: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (raw, json) Hash identifier: 5YYK0YKoDCpaklYir4k5rIBA5wPjwgrEAbtRskRmQT8= Subject key identifier: 19:48:B8:D0:28:6C:76:13:C9:1E:24:76:4E:06:6B:F4:AF:25:F8:42 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 07D9 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa Signing time: Wed 02 Jul 2025 22:01:25 +0000 ROA not before: Wed 02 Jul 2025 22:01:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150172 IP address blocks: 103.2.80.0/24 maxlen: 24 103.10.78.0/24 maxlen: 24 103.27.72.0/23 maxlen: 24 103.27.75.0/24 maxlen: 24 220.158.202.0/24 maxlen: 24 2407:5d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2009 (0x7d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Jul 2 22:01:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865ac34-0787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f2:5a:14:6e:68:5d:5f:34:28:66:c1:d4:d5: cc:13:c6:80:74:8b:fb:7c:15:93:6f:c9:f7:48:67: e3:2f:9e:bf:ab:82:1d:27:ab:43:dd:24:07:a0:46: 8c:75:94:b7:b4:e2:c5:01:2c:f5:e0:ab:f0:33:e2: 24:4f:e0:7e:11:e9:65:ee:de:76:cf:11:cb:54:90: e7:d1:52:f7:2a:48:cc:7e:6a:c3:b8:c1:a7:76:f3: 1b:eb:ef:af:de:85:ce:23:05:d7:d5:ee:48:5b:31: da:95:c8:2c:16:dc:f3:0d:de:96:39:c2:d3:a0:d8: 6c:1e:a4:02:1d:f8:28:a8:db:19:81:08:f5:f9:bb: d1:7a:41:36:a8:19:fc:d4:2c:90:42:59:69:5d:6c: 82:ce:65:a0:47:a5:07:5d:59:5c:b8:ca:b0:08:76: 2e:96:83:f4:17:6a:69:e4:6e:ac:56:37:3c:9b:8f: 18:5e:36:4c:1a:cb:10:16:ff:6c:b8:42:2d:c1:25: 85:ab:be:7e:a5:85:e5:5a:1b:4c:10:48:80:48:50: e9:62:62:ed:e6:17:f0:72:dc:86:97:b4:5e:74:0a: 86:d6:b7:fb:ed:ad:b6:3f:49:9d:80:8a:7c:04:a8: 22:78:a3:8d:d2:81:5d:a8:ea:9c:85:78:7d:d9:e0: 41:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:48:B8:D0:28:6C:76:13:C9:1E:24:76:4E:06:6B:F4:AF:25:F8:42 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.80.0/24 103.10.78.0/24 103.27.72.0/23 103.27.75.0/24 220.158.202.0/24 IPv6: 2407:5d00::/48 Signature Algorithm: sha256WithRSAEncryption 82:60:13:e6:fb:7b:7e:ed:6d:b8:6f:e1:ad:9e:de:2e:95:e9: 8a:72:6d:b0:9a:83:95:b2:5f:cb:2c:3e:c7:b1:bd:fa:f1:bd: f2:f1:de:04:fd:c7:96:8f:de:fe:ab:16:8e:0d:43:71:10:86: f9:fe:ff:66:6d:47:cb:d7:f9:23:ab:d5:d5:26:f1:58:9a:b9: 5c:2e:60:37:78:b3:8e:60:2e:28:b3:e5:8f:75:78:e3:d2:c6: af:18:67:09:86:00:0a:25:8b:66:dc:89:04:e4:e4:d4:eb:11: 24:07:36:e7:c3:a2:68:4f:21:55:7b:a2:fb:30:1d:62:74:68: 43:6c:37:26:65:7e:23:59:08:e4:73:e5:0d:88:8d:a8:70:fa: 90:ef:8b:72:dd:b4:be:08:6c:8f:ab:b8:02:0b:a7:8f:c4:78: 42:0c:e2:48:13:16:0d:9e:17:4b:b4:af:9d:51:75:c7:68:97: 0a:2f:26:3e:7b:48:6a:19:ab:1a:b3:39:78:64:6a:2b:c5:33: c2:d9:6d:8e:88:12:d3:a6:bf:c8:08:3a:0d:75:fc:45:c0:f1: 16:cc:08:11:bc:ee:8d:8a:7d:e9:3a:92:d6:c2:78:78:39:22: e6:c4:29:42:02:8d:e9:62:fe:97:17:80:73:aa:0e:09:1e:cc: 24:95:17:d1 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICB9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwNzAyMjIwMTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YWMzNC0wNzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/JaFG5oXV80KGbB1NXME8aAdIv7fBWTb8n3SGfjL56/q4IdJ6tD3SQHoEaM dZS3tOLFASz14KvwM+IkT+B+Eell7t52zxHLVJDn0VL3KkjMfmrDuMGndvMb6++v 3oXOIwXX1e5IWzHalcgsFtzzDd6WOcLToNhsHqQCHfgoqNsZgQj1+bvRekE2qBn8 1CyQQllpXWyCzmWgR6UHXVlcuMqwCHYuloP0F2pp5G6sVjc8m48YXjZMGssQFv9s uEItwSWFq75+pYXlWhtMEEiASFDpYmLt5hfwctyGl7RedAqG1rf77a22P0mdgIp8 BKgieKON0oFdqOqchXh92eBBnwIDAQABo4ICvjCCArowHQYDVR0OBBYEFBlIuNAo bHYTyR4kdk4Ga/SvJfhCMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExM0UvNTRENkE1MEUwNkI1MTFFQjkzNzJEMzJCQzRGOUFFMDIvQjlBNTFCMUFG QTRGMTFFREI4MkZDQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBABnAlADBABnCk4DBAFnG0gDBABnG0sDBADcnsowDwQCAAIw CQMHACQHXQAAADANBgkqhkiG9w0BAQsFAAOCAQEAgmAT5vt7fu1tuG/hrZ7eLpXp inJtsJqDlbJfyyw+x7G9+vG98vHeBP3Hlo/e/qsWjg1DcRCG+f7/Zm1Hy9f5I6vV 1SbxWJq5XC5gN3izjmAuKLPlj3V449LGrxhnCYYACiWLZtyJBOTk1OsRJAc258Oi aE8hVXui+zAdYnRoQ2w3JmV+I1kI5HPlDYiNqHD6kO+Lct20vghsj6u4Agunj8R4 QgziSBMWDZ4XS7SvnVF1x2iXCi8mPntIahmrGrM5eGRqK8UzwtltjogS06a/yAg6 DXX8RcDxFswIEbzujYp96TqS1sJ4eDki5sQpQgKN6WL+lxeAc6oOCR7MJJUX0Q== -----END CERTIFICATE-----Generated at Sun Aug 10 03:53:37 2025 by rpki-client