$ rpki-client -vvf rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/8B7BD7CC700211EF9FEC365AC4F9AE02.roa File: 8B7BD7CC700211EF9FEC365AC4F9AE02.roa (raw, json) Hash identifier: tWu30mK1rtW914jLoVkC7fN3rjLvGIdCamq6YbBhF8k= Subject key identifier: AB:D3:AD:6B:23:BE:40:9F:88:EE:C1:69:D9:A1:EA:F0:78:61:62:7B Certificate issuer: /CN=A91E42AA/serialNumber=73EB8AD2A3A5F38ABFE1AE28074F2831C2731BA9 Certificate serial: A9 Authority key identifier: 73:EB:8A:D2:A3:A5:F3:8A:BF:E1:AE:28:07:4F:28:31:C2:73:1B:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c-uK0qOl84q_4a4oB08oMcJzG6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/8B7BD7CC700211EF9FEC365AC4F9AE02.roa Signing time: Fri 01 Aug 2025 07:43:45 +0000 ROA not before: Fri 01 Aug 2025 07:43:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56290 IP address blocks: 103.5.70.0/24 maxlen: 24 103.39.5.0/24 maxlen: 24 103.247.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/c-uK0qOl84q_4a4oB08oMcJzG6k.crl rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/c-uK0qOl84q_4a4oB08oMcJzG6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c-uK0qOl84q_4a4oB08oMcJzG6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E42AA, serialNumber=73EB8AD2A3A5F38ABFE1AE28074F2831C2731BA9 Validity Not Before: Aug 1 07:43:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688c7031-847b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:68:94:8f:46:0e:62:a1:6a:61:eb:f4:c8:7c: 1a:0b:5b:41:bc:d5:32:20:42:92:50:e1:51:0c:31: 52:d1:2c:71:c2:25:80:cb:ed:41:f6:b3:b4:9b:22: 0e:ef:1b:da:b7:b9:4b:f9:58:27:d7:c8:b5:c8:5a: 2a:fd:91:40:3d:4d:5c:0c:33:11:57:40:63:23:34: 68:f4:a2:bd:b4:ed:0b:33:6a:07:65:d2:5d:5b:c2: 05:e4:7b:b6:3a:3e:7c:6c:2b:c9:39:36:1c:cf:e0: ac:5b:0e:f4:d7:08:62:6b:8d:f3:8e:6a:0e:72:fb: 8c:75:eb:25:65:b8:20:c3:13:3c:a4:c6:0e:3d:44: 71:64:b8:90:93:22:81:2d:3e:66:b0:36:b7:81:33: 60:dd:bb:bd:7b:a0:ea:6b:76:59:e6:00:89:82:aa: c1:2c:c8:fd:61:88:e2:17:87:c3:25:4a:b8:f7:29: e9:4d:69:3f:fa:3a:43:ac:2c:56:c4:f8:ee:4e:2a: 47:fd:68:0f:84:0a:b6:d3:41:14:37:40:55:78:11: 5f:43:d8:f5:08:a3:e5:18:bc:46:41:ec:bd:71:7e: 8c:e7:8b:09:a6:97:e0:8d:67:15:e8:b8:86:3f:da: 58:63:cc:36:09:ad:16:b3:6a:7b:05:b3:10:18:06: 56:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D3:AD:6B:23:BE:40:9F:88:EE:C1:69:D9:A1:EA:F0:78:61:62:7B X509v3 Authority Key Identifier: keyid:73:EB:8A:D2:A3:A5:F3:8A:BF:E1:AE:28:07:4F:28:31:C2:73:1B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/c-uK0qOl84q_4a4oB08oMcJzG6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c-uK0qOl84q_4a4oB08oMcJzG6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/8B7BD7CC700211EF9FEC365AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.70.0/24 103.39.5.0/24 103.247.210.0/24 Signature Algorithm: sha256WithRSAEncryption 53:15:cc:b1:8a:82:d1:64:e3:a6:6f:13:20:2c:3d:a2:10:f4: eb:81:97:78:49:92:31:b6:63:9f:dd:13:a6:8d:cc:e1:1c:34: a0:e3:ba:3b:91:70:9a:6a:08:1d:c8:e1:25:1a:92:70:81:36: e9:e7:b4:99:af:a5:67:7a:1f:11:97:a5:d4:2c:44:94:17:24: 69:b5:7f:1f:13:6d:23:58:1e:10:ae:e8:23:22:db:7f:41:18: b8:17:f2:ac:b1:54:d7:f4:5b:bc:d6:11:e7:1e:71:0c:a9:f9: 15:38:6f:02:b3:c8:a9:5a:53:08:48:26:f1:60:c2:4f:d2:dd: 23:39:23:5c:a1:97:5b:8c:8f:c4:06:2f:01:31:eb:1f:8d:b4: 87:15:e6:13:84:5e:88:41:b4:d7:11:08:c9:f7:ac:3f:38:be: 19:14:84:b7:86:92:81:b9:ee:32:21:f9:08:e8:db:6c:74:0e: 75:90:ec:0b:d0:92:83:f0:87:b5:44:ca:4d:39:10:d4:97:f4: 07:e8:e9:4b:ad:56:0a:e8:a6:42:a4:d6:74:2d:c9:8e:fb:01: 71:99:76:a1:93:47:70:e7:8d:6d:7c:f3:8d:a1:12:57:95:f7: db:93:69:07:ae:61:7d:a1:f6:7a:61:63:8d:71:6c:72:61:75: 89:8e:ee:b6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQyQUExMTAvBgNVBAUTKDczRUI4QUQyQTNBNUYzOEFCRkUxQUUyODA3NEYyODMx QzI3MzFCQTkwHhcNMjUwODAxMDc0MzQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNzAzMS04NDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWiUj0YOYqFqYev0yHwaC1tBvNUyIEKSUOFRDDFS0SxxwiWAy+1B9rO0myIO 7xvat7lL+Vgn18i1yFoq/ZFAPU1cDDMRV0BjIzRo9KK9tO0LM2oHZdJdW8IF5Hu2 Oj58bCvJOTYcz+CsWw701whia43zjmoOcvuMdeslZbggwxM8pMYOPURxZLiQkyKB LT5msDa3gTNg3bu9e6Dqa3ZZ5gCJgqrBLMj9YYjiF4fDJUq49ynpTWk/+jpDrCxW xPjuTipH/WgPhAq200EUN0BVeBFfQ9j1CKPlGLxGQey9cX6M54sJppfgjWcV6LiG P9pYY8w2Ca0Ws2p7BbMQGAZWEwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKvTrWsj vkCfiO7Badmh6vB4YWJ7MB8GA1UdIwQYMBaAFHPritKjpfOKv+GuKAdPKDHCcxup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDJBQS9FNDA3QjMzMDcw MDExMUVGQkJFOEExNThDNEY5QUUwMi9jLXVLMHFPbDg0cV80YTRvQjA4b01jSnpH NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MtdUswcU9sODRxXzRhNG9CMDhvTWNKekc2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQyQUEvRTQwN0IzMzA3MDAxMTFFRkJCRThBMTU4QzRGOUFFMDIvOEI3QkQ3Q0M3 MDAyMTFFRjlGRUMzNjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnBUYDBABnJwUDBABn99IwDQYJKoZIhvcNAQELBQADggEB AFMVzLGKgtFk46ZvEyAsPaIQ9OuBl3hJkjG2Y5/dE6aNzOEcNKDjujuRcJpqCB3I 4SUaknCBNunntJmvpWd6HxGXpdQsRJQXJGm1fx8TbSNYHhCu6CMi239BGLgX8qyx VNf0W7zWEececQyp+RU4bwKzyKlaUwhIJvFgwk/S3SM5I1yhl1uMj8QGLwEx6x+N tIcV5hOEXohBtNcRCMn3rD84vhkUhLeGkoG57jIh+Qjo22x0DnWQ7AvQkoPwh7VE yk05ENSX9Afo6UutVgropkKk1nQtyY77AXGZdqGTR3DnjW18842hEleV99uTaQeu YX2h9nphY41xbHJhdYmO7rY= -----END CERTIFICATE-----Generated at Mon Aug 11 10:06:52 2025 by rpki-client