$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa File: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (raw, json) Hash identifier: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY= Subject key identifier: 99:F2:1D:1F:68:0F:2A:18:80:C2:4F:95:E7:48:1A:77:B2:CF:CC:55 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 02D0 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa Signing time: Wed 23 Jul 2025 02:09:21 +0000 ROA not before: Wed 23 Jul 2025 02:09:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133368 IP address blocks: 103.189.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 01:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Jul 23 02:09:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68804451-2fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b6:6a:2d:96:fa:2a:90:9a:28:fa:31:1e:25: d3:39:3e:81:d4:75:8c:8a:a5:d3:f2:60:3a:7a:fb: 9d:57:44:f9:87:4b:11:b9:69:76:28:b5:2d:a4:54: d7:3a:1b:b7:95:88:49:f2:3d:94:9f:f7:21:01:10: 41:94:ba:f9:11:46:37:1c:12:c6:d4:51:45:ee:5f: 54:6f:61:4f:ad:0b:ca:30:2a:1f:0b:24:05:cb:22: c0:34:78:4d:17:3e:a9:c9:84:e0:97:94:7d:b0:be: 01:c7:05:37:a9:8e:ae:c8:3c:f9:57:7c:c4:35:95: ef:c6:8d:ba:98:47:0c:17:96:01:65:e7:f8:40:d6: 61:75:7f:d0:93:c0:d8:84:26:6d:be:05:aa:69:9d: e4:d0:80:fc:b4:14:72:8a:bc:a2:c8:90:c7:6c:04: 68:09:26:b8:67:c3:29:0b:ed:17:8c:bd:70:89:6d: 06:29:c6:ea:fc:42:91:01:7a:d7:8c:d8:90:85:3b: 5f:41:10:74:28:33:53:4a:af:aa:b8:48:70:47:4e: cf:16:d8:8e:2a:35:20:7b:47:4b:c6:61:19:9f:5c: b4:f2:5b:92:75:70:85:27:f8:9b:cb:5c:8d:16:6a: e5:4c:0b:5f:93:d4:c2:8e:00:e5:c2:36:75:a3:44: 4d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F2:1D:1F:68:0F:2A:18:80:C2:4F:95:E7:48:1A:77:B2:CF:CC:55 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.176.0/23 Signature Algorithm: sha256WithRSAEncryption 29:87:b2:75:a6:8d:7c:a5:3c:6a:35:08:82:c4:35:93:80:1f: 2e:50:bf:50:99:dc:cf:55:09:b5:7c:2a:f2:a8:b2:ff:0b:fe: 58:9e:09:e1:3c:48:2a:6f:b0:4b:9b:16:e9:d3:39:25:a2:62: a7:5a:5e:c1:23:9d:55:9a:a3:9f:74:82:2e:9a:2b:f4:4b:0e: ab:39:ef:8f:ad:81:59:10:69:85:bb:2b:9c:ed:08:c9:88:e7: c5:fd:d3:c2:d1:dd:ff:0c:f6:84:00:56:0b:1f:9a:2e:db:0d: 6c:31:2e:32:08:66:7b:de:02:ad:65:0e:f7:74:d5:97:98:bb: 5a:2a:ea:b3:a1:db:f6:cd:e2:e7:5a:f3:c9:3b:fa:7d:d0:19: 72:f1:ee:26:72:d6:19:c2:f4:52:79:91:df:77:18:b7:b7:27: 9a:79:1c:65:f2:ad:3a:bc:12:c8:a0:7e:36:dd:13:10:1b:bb: ba:82:4a:e0:f1:66:96:15:75:8a:04:bf:ab:00:6b:a0:50:fb: 1a:e6:b1:57:b8:e1:e2:52:c6:4f:c5:2f:51:87:ae:14:82:b8: 73:29:5e:c9:98:c5:14:29:e9:97:c6:a9:31:80:1f:80:9d:a5: 35:eb:d0:14:b6:cc:68:69:e5:26:ea:57:6a:a3:5a:28:ae:1b: 7a:44:93:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUwNzIzMDIwOTIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwNDQ1MS0yZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrZqLZb6KpCaKPoxHiXTOT6B1HWMiqXT8mA6evudV0T5h0sRuWl2KLUtpFTX Ohu3lYhJ8j2Un/chARBBlLr5EUY3HBLG1FFF7l9Ub2FPrQvKMCofCyQFyyLANHhN Fz6pyYTgl5R9sL4BxwU3qY6uyDz5V3zENZXvxo26mEcMF5YBZef4QNZhdX/Qk8DY hCZtvgWqaZ3k0ID8tBRyiryiyJDHbARoCSa4Z8MpC+0XjL1wiW0GKcbq/EKRAXrX jNiQhTtfQRB0KDNTSq+quEhwR07PFtiOKjUge0dLxmEZn1y08luSdXCFJ/iby1yN FmrlTAtfk9TCjgDlwjZ1o0RNXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJnyHR9o DyoYgMJPledIGneyz8xVMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCRjIvNTA5MDk2QThGNkMzMTFFQzgzM0FFRjM5QzRGOUFFMDIvNkI3QzMzQzhG NkM4MTFFQ0JERjdERDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvbAwDQYJKoZIhvcNAQELBQADggEBACmHsnWmjXylPGo1 CILENZOAHy5Qv1CZ3M9VCbV8KvKosv8L/lieCeE8SCpvsEubFunTOSWiYqdaXsEj nVWao590gi6aK/RLDqs574+tgVkQaYW7K5ztCMmI58X908LR3f8M9oQAVgsfmi7b DWwxLjIIZnveAq1lDvd01ZeYu1oq6rOh2/bN4uda88k7+n3QGXLx7iZy1hnC9FJ5 kd93GLe3J5p5HGXyrTq8EsigfjbdExAbu7qCSuDxZpYVdYoEv6sAa6BQ+xrmsVe4 4eJSxk/FL1GHrhSCuHMpXsmYxRQp6ZfGqTGAH4CdpTXr0BS2zGhp5SbqV2qjWiiu G3pEk+c= -----END CERTIFICATE-----Generated at Wed Aug 13 05:51:35 2025 by rpki-client