$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/FC486232736B11F09A4B592FC4F9AE02.roa File: FC486232736B11F09A4B592FC4F9AE02.roa (raw, json) Hash identifier: GJj987mcyemhe86huNqoL1bW0xxlYiZaflQLLJS4GO0= Subject key identifier: CE:41:7D:14:77:AB:4B:9F:1F:32:E9:61:AF:E3:E5:54:C7:AA:AA:BA Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 0520 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/FC486232736B11F09A4B592FC4F9AE02.roa Signing time: Thu 07 Aug 2025 08:53:28 +0000 ROA not before: Thu 07 Aug 2025 08:53:28 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 834 IP address blocks: 103.204.21.0/24 maxlen: 24 103.204.22.0/24 maxlen: 24 103.204.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Aug 7 08:53:28 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68946988-2906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1d:a0:de:72:d8:d0:54:5f:40:54:7b:aa:24: 3a:79:42:fa:36:ca:40:71:f3:41:93:89:cb:5c:c2: eb:58:2e:ef:4f:5a:7e:42:6e:08:fc:f3:ce:ac:50: a5:52:e7:a7:60:59:74:9b:a5:3f:51:4e:e7:23:fe: 67:54:98:d2:35:68:c0:ae:c9:be:4e:d4:0d:88:bd: 77:5a:10:20:55:f8:17:f6:da:e6:a6:fb:98:67:50: f8:5b:0f:2b:41:66:9e:c4:ea:8b:57:f8:35:db:a8: 35:2e:16:f2:8e:71:50:f8:4e:33:30:07:3b:a1:9d: 51:c5:59:fc:5c:02:46:42:e0:f3:a7:32:54:9d:13: f7:8f:6b:e9:28:56:e6:40:83:ce:8a:cc:1b:a7:a5: c9:13:fd:f8:60:12:68:1e:44:28:0a:b4:0a:78:fc: e6:4f:07:55:ac:b5:42:cd:d0:3f:32:8e:be:da:e7: ae:bd:88:8b:38:aa:84:0f:f3:20:0b:43:b4:fa:8d: 8b:e5:27:29:d1:94:66:a1:16:94:d3:57:48:d9:1e: c5:d0:9d:88:f5:22:57:4a:7c:82:85:9c:c8:f9:60: 58:24:5f:ad:7c:ef:96:43:c3:6d:3b:5e:ed:8d:35: 7b:53:39:08:97:a8:f4:eb:1c:2b:19:a6:d5:a0:7f: df:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:41:7D:14:77:AB:4B:9F:1F:32:E9:61:AF:E3:E5:54:C7:AA:AA:BA X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/FC486232736B11F09A4B592FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.21.0-103.204.23.255 Signature Algorithm: sha256WithRSAEncryption 8a:7c:7b:15:e8:e8:85:6f:6f:08:a6:7e:61:25:9c:63:e2:24: e8:50:6b:93:25:52:9d:e9:03:63:b9:5c:d9:b8:26:63:68:76: 54:54:61:26:7a:17:dd:6d:53:bd:54:b0:8b:1d:ad:c1:21:2c: 5f:80:0c:03:76:ac:51:29:7e:ec:09:0f:88:a2:e4:ae:4d:f2: b5:5d:e2:93:53:33:2f:9e:6b:d9:4c:e4:23:0f:5e:cf:29:94: b9:9e:b8:67:c0:07:83:7d:9a:df:8e:0e:2b:af:8e:5c:33:a9: 17:4f:3e:cf:ea:95:0d:ac:d8:a3:db:92:bf:68:42:5c:0b:43: 0e:20:56:35:1a:62:5e:29:72:7e:a3:5d:bb:ce:58:c9:00:ef: 4d:64:83:95:d6:10:e2:ea:11:16:39:cb:1a:07:d1:21:49:5d: c6:2f:e5:e3:56:2c:7e:98:30:4b:1f:3c:22:eb:b0:96:42:d0: f0:ac:8e:98:ef:49:62:78:d7:42:87:df:45:e4:1f:83:95:12: 7d:72:66:3f:d5:6b:76:37:5c:0e:4e:52:51:fb:ea:94:3b:91: 0e:79:bd:de:bb:7d:48:0d:76:93:10:9a:64:ba:1c:07:83:3d: 14:44:17:f5:3a:b1:5c:6f:60:98:23:a4:c3:51:39:34:d6:b8: 85:64:7e:c9 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjUwODA3MDg1MzI4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0Njk4OC0yOTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAph2g3nLY0FRfQFR7qiQ6eUL6NspAcfNBk4nLXMLrWC7vT1p+Qm4I/PPOrFCl UuenYFl0m6U/UU7nI/5nVJjSNWjArsm+TtQNiL13WhAgVfgX9trmpvuYZ1D4Ww8r QWaexOqLV/g126g1LhbyjnFQ+E4zMAc7oZ1RxVn8XAJGQuDzpzJUnRP3j2vpKFbm QIPOiswbp6XJE/34YBJoHkQoCrQKePzmTwdVrLVCzdA/Mo6+2ueuvYiLOKqED/Mg C0O0+o2L5Scp0ZRmoRaU01dI2R7F0J2I9SJXSnyChZzI+WBYJF+tfO+WQ8NtO17t jTV7UzkIl6j06xwrGabVoH/f4QIDAQABo4ICnTCCApkwHQYDVR0OBBYEFM5BfRR3 q0ufHzLpYa/j5VTHqqq6MB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBEODcvRjY4M0NFRjIyMUVCMTFFQzkyNTAxODE5QzRGOUFFMDIvRkM0ODYyMzI3 MzZCMTFGMDlBNEI1OTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfMFQMEA2fMEDANBgkqhkiG9w0BAQsFAAOCAQEAinx7 FejohW9vCKZ+YSWcY+Ik6FBrkyVSnekDY7lc2bgmY2h2VFRhJnoX3W1TvVSwix2t wSEsX4AMA3asUSl+7AkPiKLkrk3ytV3ik1MzL55r2UzkIw9ezymUuZ64Z8AHg32a 344OK6+OXDOpF08+z+qVDazYo9uSv2hCXAtDDiBWNRpiXilyfqNdu85YyQDvTWSD ldYQ4uoRFjnLGgfRIUldxi/l41YsfpgwSx88IuuwlkLQ8KyOmO9JYnjXQoffReQf g5USfXJmP9VrdjdcDk5SUfvqlDuRDnm93rt9SA12kxCaZLocB4M9FEQX9TqxXG9g mCOkw1E5NNa4hWR+yQ== -----END CERTIFICATE-----Generated at Mon Aug 11 01:51:15 2025 by rpki-client