$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/E0BC0B4C011411EAAB0EF153C4F9AE02.roa File: E0BC0B4C011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: bcKs3JCB0Pnfj/bjvQqBTGxWS9Rxr52rn9mWhFguD3k= Subject key identifier: 77:D4:A2:DD:31:8B:21:2D:B6:99:36:93:2F:F0:55:30:F9:7F:20:91 Certificate issuer: /CN=A91E4023/serialNumber=6727B8F433EF2FE080842C6EE8A6CC3DC244626F Certificate serial: 0C7A Authority key identifier: 67:27:B8:F4:33:EF:2F:E0:80:84:2C:6E:E8:A6:CC:3D:C2:44:62:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zye49DPvL-CAhCxu6KbMPcJEYm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/E0BC0B4C011411EAAB0EF153C4F9AE02.roa Signing time: Tue 08 Jul 2025 18:58:01 +0000 ROA not before: Tue 08 Jul 2025 18:58:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131996 IP address blocks: 103.69.208.0/24 maxlen: 24 103.69.209.0/24 maxlen: 24 103.69.210.0/24 maxlen: 24 2001:df3:5a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/Zye49DPvL-CAhCxu6KbMPcJEYm8.crl rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/Zye49DPvL-CAhCxu6KbMPcJEYm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zye49DPvL-CAhCxu6KbMPcJEYm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4023, serialNumber=6727B8F433EF2FE080842C6EE8A6CC3DC244626F Validity Not Before: Jul 8 18:58:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686d6a38-cc0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:17:18:4e:a5:68:6e:e8:70:4e:44:cd:77:3c: fb:8b:a4:cb:71:27:ef:0b:39:b6:6c:75:c1:b8:46: 88:5b:e6:46:cb:29:9c:26:7f:0b:f8:9c:3f:3a:99: 3b:d9:cd:79:3d:92:54:fd:00:27:71:ff:5b:34:6d: 35:35:5b:ab:bb:38:69:d9:a3:4c:03:b3:ee:a9:2b: 2f:74:94:3b:ce:67:22:70:2c:e6:59:a5:84:57:8b: bf:c0:2c:05:84:39:a3:db:4f:bd:2e:8e:d1:df:bf: 93:a7:31:3f:a9:ce:5f:45:06:ea:70:80:71:59:cd: 69:7e:1b:33:a2:7f:55:14:82:ab:04:a3:21:76:23: 71:9b:7f:52:36:85:74:78:b0:18:5d:ad:11:8c:00: 80:96:47:7c:72:80:8e:35:bf:de:f9:59:c1:6b:18: e3:8f:af:f1:79:0e:f7:af:b0:47:2b:24:86:20:03: 56:0d:ec:70:cd:69:2c:7e:9e:8d:1d:e9:9a:3f:4c: 87:08:f5:dd:2c:7d:98:c1:e0:ec:73:b7:11:db:fa: 58:fb:a5:31:68:71:af:97:13:bf:75:7f:b6:5c:b3: 17:6a:37:53:a7:38:fc:55:5c:4a:30:d9:07:57:8e: 97:7f:1c:28:7f:1e:18:fe:ac:01:3b:d2:5d:12:e3: 5d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D4:A2:DD:31:8B:21:2D:B6:99:36:93:2F:F0:55:30:F9:7F:20:91 X509v3 Authority Key Identifier: keyid:67:27:B8:F4:33:EF:2F:E0:80:84:2C:6E:E8:A6:CC:3D:C2:44:62:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/Zye49DPvL-CAhCxu6KbMPcJEYm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zye49DPvL-CAhCxu6KbMPcJEYm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4023/613E3E9E011411EAAADAB253C4F9AE02/E0BC0B4C011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.208.0-103.69.210.255 IPv6: 2001:df3:5a00::/48 Signature Algorithm: sha256WithRSAEncryption 7f:7e:35:83:26:22:e7:11:30:7c:24:dc:4a:f1:11:ca:97:d3: b9:1d:c2:a5:91:1c:f7:0e:e0:2c:ca:08:2c:31:d5:69:d5:e5: 05:b5:62:0e:6b:7a:a5:31:04:f7:b9:2e:54:c2:10:c5:72:55: e8:46:54:fc:2e:56:da:45:82:9e:85:5f:26:d0:27:97:1f:37: b8:bc:eb:4b:07:44:a8:01:22:89:cd:a8:ee:39:ae:4b:91:05: 85:4d:91:bb:0b:09:ad:a8:9d:8d:3e:ad:30:fa:b3:74:8e:12: 46:87:ba:96:ff:a2:71:13:2e:1d:0d:76:67:fc:fe:6d:a5:5e: 9d:93:b2:79:0a:74:74:1a:20:f2:29:e6:25:3f:54:97:e8:b5: 82:0d:e3:1a:8b:33:a6:d6:ce:9c:0c:78:33:10:7a:97:ac:d4: f0:da:4a:56:19:3c:4e:70:74:59:ee:87:d8:2e:4a:3c:bc:cb: 39:c7:ce:20:21:de:d1:75:39:27:ed:23:f0:79:a1:57:3a:ef: 26:1c:5d:8a:47:a5:cb:b1:1e:7b:4e:f5:95:75:4e:f7:67:87: eb:c6:2f:8f:e9:c0:62:ef:d4:9d:67:ef:ef:c0:d9:a6:b8:f3: 89:91:cb:e6:3b:4e:e7:83:06:eb:ce:e7:cc:c3:e8:53:68:8e: aa:08:a6:2d -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQwMjMxMTAvBgNVBAUTKDY3MjdCOEY0MzNFRjJGRTA4MDg0MkM2RUU4QTZDQzNE QzI0NDYyNkYwHhcNMjUwNzA4MTg1ODAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkNmEzOC1jYzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxcYTqVobuhwTkTNdzz7i6TLcSfvCzm2bHXBuEaIW+ZGyymcJn8L+Jw/Opk7 2c15PZJU/QAncf9bNG01NVuruzhp2aNMA7PuqSsvdJQ7zmcicCzmWaWEV4u/wCwF hDmj20+9Lo7R37+TpzE/qc5fRQbqcIBxWc1pfhszon9VFIKrBKMhdiNxm39SNoV0 eLAYXa0RjACAlkd8coCONb/e+VnBaxjjj6/xeQ73r7BHKySGIANWDexwzWksfp6N HemaP0yHCPXdLH2YweDsc7cR2/pY+6UxaHGvlxO/dX+2XLMXajdTpzj8VVxKMNkH V46Xfxwofx4Y/qwBO9JdEuNdTQIDAQABo4ICrjCCAqowHQYDVR0OBBYEFHfUot0x iyEttpk2ky/wVTD5fyCRMB8GA1UdIwQYMBaAFGcnuPQz7y/ggIQsbuimzD3CRGJv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDAyMy82MTNFM0U5RTAx MTQxMUVBQUFEQUIyNTNDNEY5QUUwMi9aeWU0OURQdkwtQ0FoQ3h1NktiTVBjSkVZ bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5ZTQ5RFB2TC1DQWhDeHU2S2JNUGNKRVltOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQwMjMvNjEzRTNFOUUwMTE0MTFFQUFBREFCMjUzQzRGOUFFMDIvRTBCQzBCNEMw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEBGdF0AMEAGdF0jAPBAIAAjAJAwcAIAEN81oAMA0GCSqG SIb3DQEBCwUAA4IBAQB/fjWDJiLnETB8JNxK8RHKl9O5HcKlkRz3DuAsyggsMdVp 1eUFtWIOa3qlMQT3uS5UwhDFclXoRlT8LlbaRYKehV8m0CeXHze4vOtLB0SoASKJ zajuOa5LkQWFTZG7CwmtqJ2NPq0w+rN0jhJGh7qW/6JxEy4dDXZn/P5tpV6dk7J5 CnR0GiDyKeYlP1SX6LWCDeMaizOm1s6cDHgzEHqXrNTw2kpWGTxOcHRZ7ofYLko8 vMs5x84gId7RdTkn7SPweaFXOu8mHF2KR6XLsR57TvWVdU73Z4frxi+P6cBi79Sd Z+/vwNmmuPOJkcvmO07ngwbrzufMw+hTaI6qCKYt -----END CERTIFICATE-----Generated at Sun Aug 10 19:53:39 2025 by rpki-client