$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/8D9FFB3EEB2911EB9891D01DC4F9AE02.roa File: 8D9FFB3EEB2911EB9891D01DC4F9AE02.roa (raw, json) Hash identifier: LD0ithX2780J0eLYJ+pZjxCf/VO5UT20hM3rBP9oW8s= Subject key identifier: 35:69:16:45:2E:76:FB:42:A3:8A:06:16:69:9A:E5:73:09:9C:7B:51 Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0D0C Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/8D9FFB3EEB2911EB9891D01DC4F9AE02.roa Signing time: Wed 30 Jul 2025 18:28:19 +0000 ROA not before: Wed 30 Jul 2025 18:28:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.80.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3340 (0xd0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED, serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Jul 30 18:28:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688a6442-50ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:73:9b:47:5d:eb:28:b1:ed:df:45:67:20:d6: 63:8b:50:10:24:53:dc:ae:31:bb:6b:51:2b:1d:e5: d6:f8:1c:d0:53:f6:ba:7c:bb:87:34:09:ec:9e:f2: 20:29:b8:c8:1d:de:b6:53:1c:9e:69:ba:79:40:f7: b6:52:0c:b7:1a:1c:86:05:a0:4c:2d:a8:7e:e4:3e: f4:8a:c7:be:a8:3d:7c:a6:90:09:0f:51:6b:d6:7b: 51:80:80:9b:aa:69:fe:1d:e7:40:b6:86:c0:74:7f: 2c:4d:ec:b6:0d:87:41:6a:bd:c8:42:00:21:51:1c: 96:f1:07:a2:d9:9f:91:e9:2e:dc:5e:1d:9e:84:44: e0:de:cf:0d:7c:0f:18:cd:16:03:fb:ea:77:6d:45: 74:fc:ae:6b:34:39:36:37:11:67:f3:c1:fb:e5:54: ce:37:07:6a:5f:9a:de:2f:1f:e8:cd:c8:8e:9f:bc: 81:95:95:4e:16:7a:3a:4a:6e:72:01:63:c3:cf:f2: 3e:7e:9d:5e:5d:f9:3b:4e:dd:e7:39:16:47:5d:79: f9:8c:d4:cd:da:be:5d:5f:23:3f:55:df:39:bf:1d: f8:79:d0:5b:08:b2:5b:00:29:66:83:30:b4:7e:25: 7a:0a:53:c5:97:2e:06:20:1b:b4:fa:41:18:ed:c4: b6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:69:16:45:2E:76:FB:42:A3:8A:06:16:69:9A:E5:73:09:9C:7B:51 X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/8D9FFB3EEB2911EB9891D01DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.6.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:84:93:03:64:74:ec:aa:5e:fe:23:c2:d6:9c:82:eb:c7:32: cc:8c:bb:07:e4:64:48:1f:16:ca:b5:90:54:34:1b:f9:5e:71: 00:94:3a:6b:8b:8b:01:6d:e1:b6:79:97:90:fa:b4:70:9b:66: 04:31:e8:7a:cc:ff:bd:d7:22:94:77:38:8f:ba:37:0b:33:3e: dc:cb:1e:55:e8:d0:f1:9d:b4:96:20:d6:c3:77:aa:46:66:40: 49:78:56:d0:67:97:0d:93:6d:f5:1b:c7:88:ea:9b:3c:00:3c: b6:fe:52:97:79:be:2b:85:23:51:87:4a:27:68:66:e7:ba:75: 8e:52:c5:5c:e6:15:32:5d:e2:89:74:be:0f:32:ce:2b:ee:39: 32:a6:56:59:7b:48:c3:db:1c:1b:37:db:01:17:a9:8d:26:88: 22:2f:20:da:f2:01:b6:fc:97:40:d4:db:db:e8:07:60:b7:77: 56:8c:ed:a6:df:9e:23:51:57:68:6a:0e:f1:d6:35:b3:14:8a: 84:97:59:5f:e3:03:6b:dd:d5:9f:39:ea:51:7d:8b:01:28:40: 0c:b6:e6:5b:db:3a:6f:cb:c6:75:10:bf:ee:ec:d7:e0:93:d2: ad:55:f7:66:db:1f:9a:aa:b7:48:0a:85:2d:a0:bb:00:55:f5: b2:d7:e4:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjUwNzMwMTgyODE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhNjQ0Mi01MGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHObR13rKLHt30VnINZji1AQJFPcrjG7a1ErHeXW+BzQU/a6fLuHNAnsnvIg KbjIHd62Uxyeabp5QPe2Ugy3GhyGBaBMLah+5D70ise+qD18ppAJD1Fr1ntRgICb qmn+HedAtobAdH8sTey2DYdBar3IQgAhURyW8Qei2Z+R6S7cXh2ehETg3s8NfA8Y zRYD++p3bUV0/K5rNDk2NxFn88H75VTONwdqX5reLx/ozciOn7yBlZVOFno6Sm5y AWPDz/I+fp1eXfk7Tt3nORZHXXn5jNTN2r5dXyM/Vd85vx34edBbCLJbAClmgzC0 fiV6ClPFly4GIBu0+kEY7cS2wQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDVpFkUu dvtCo4oGFmma5XMJnHtRMB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcwRUQvRTYyNzdBM0VFOUUxMTFFOUE1OTg3RTFGQzRGOUFFMDIvOEQ5RkZCM0VF QjI5MTFFQjk4OTFEMDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnUAYwDQYJKoZIhvcNAQELBQADggEBAHqEkwNkdOyqXv4j wtacguvHMsyMuwfkZEgfFsq1kFQ0G/lecQCUOmuLiwFt4bZ5l5D6tHCbZgQx6HrM /73XIpR3OI+6NwszPtzLHlXo0PGdtJYg1sN3qkZmQEl4VtBnlw2TbfUbx4jqmzwA PLb+Upd5viuFI1GHSidoZue6dY5SxVzmFTJd4ol0vg8yzivuOTKmVll7SMPbHBs3 2wEXqY0miCIvINryAbb8l0DU29voB2C3d1aM7abfniNRV2hqDvHWNbMUioSXWV/j A2vd1Z856lF9iwEoQAy25lvbOm/LxnUQv+7s1+CT0q1V92bbH5qqt0gKhS2guwBV 9bLX5MA= -----END CERTIFICATE-----Generated at Sun Aug 10 16:00:29 2025 by rpki-client