$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/F87DB8B440C811EEB681DC40C4F9AE02.roa File: F87DB8B440C811EEB681DC40C4F9AE02.roa (raw, json) Hash identifier: a03YccLD26+EVq1g9SXKvWZ2v+EmXltyBYT+9f1nANI= Subject key identifier: 8F:4A:24:14:62:F9:E8:E8:BE:CE:C7:22:4A:20:57:72:49:8C:D2:9A Certificate issuer: /CN=A91E8BAF/serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Certificate serial: 34C9 Authority key identifier: 24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/F87DB8B440C811EEB681DC40C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:51:07 +0000 ROA not before: Sat 02 Aug 2025 15:51:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 396904 IP address blocks: 103.14.96.0/24 maxlen: 24 103.14.97.0/24 maxlen: 24 103.14.98.0/24 maxlen: 24 103.14.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13513 (0x34c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BAF, serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Validity Not Before: Aug 2 15:51:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688e33eb-1c5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:57:45:e7:fa:e3:cd:20:6c:75:f0:92:20:25: 7a:b3:e5:a8:83:79:f2:87:27:a1:24:05:2d:bd:1b: a3:2e:1b:7a:c0:c3:60:e6:91:aa:45:53:88:89:31: 2e:4d:15:49:83:4b:3b:a2:7f:9f:9e:af:04:e1:35: 19:b8:1d:82:0e:9e:e5:0f:f5:48:49:b3:0d:8d:c7: 8a:85:bf:05:6b:69:9c:54:05:a5:5e:4a:a3:c3:3c: 1b:c6:d2:5c:d5:71:e6:70:0e:d5:1d:a5:16:80:b7: 21:d5:bf:ad:21:2e:34:66:3e:3f:10:eb:b4:9b:45: ba:6c:7a:c7:4d:c8:72:09:f5:5d:50:e4:f0:fe:87: 09:e4:e0:c5:3f:15:fa:74:2d:bb:8a:cb:16:c9:ab: 91:7b:1a:7b:f0:a7:cd:5a:e6:f1:1c:89:37:9b:85: f5:24:f6:8e:eb:34:aa:14:56:f6:6f:52:3a:5b:bb: d5:8b:fa:0a:c1:af:d0:7d:99:79:be:b9:64:ec:9d: 70:79:16:63:ba:6b:9d:05:30:dc:f7:5e:cc:4a:dc: d8:e0:68:7b:07:5b:cb:1d:c2:e1:b8:2f:be:8d:45: 54:ad:43:9a:b0:5f:e7:ee:22:db:eb:27:36:6e:d9: 35:35:6c:b1:4f:4c:d6:f1:79:f4:fc:2e:7e:47:8b: b3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4A:24:14:62:F9:E8:E8:BE:CE:C7:22:4A:20:57:72:49:8C:D2:9A X509v3 Authority Key Identifier: keyid:24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/F87DB8B440C811EEB681DC40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.96.0/22 Signature Algorithm: sha256WithRSAEncryption 11:96:ab:48:9e:57:de:ff:d5:9d:05:90:c0:64:2a:d3:79:7b: da:b9:c3:c8:b5:b0:20:a1:b3:f5:c0:a9:d7:fe:b9:0f:cd:e6: 00:ca:be:b6:c6:9c:7f:bf:6b:66:3c:d9:9c:6b:e7:ad:a3:4b: 94:00:bf:d8:e2:18:96:29:b8:1b:9b:45:22:90:3d:d9:9c:01: e1:8b:bf:0a:0d:75:9b:d5:4e:47:0f:ee:ad:3d:ef:0a:ec:8d: 54:00:66:c6:dc:a7:64:2d:91:11:f4:d3:d0:ab:53:91:0a:83: ff:2f:0c:09:16:f0:17:74:69:57:ff:5a:2b:cd:af:df:c7:07: fd:6f:8e:78:8a:8d:35:a5:cf:15:38:5a:bb:43:20:a5:a6:6e: 76:c0:81:02:9e:36:57:cf:94:13:17:ef:69:eb:2c:90:5e:4a: 33:46:9c:ed:a6:c5:55:ea:fb:c3:f4:af:48:5d:df:90:73:41: b4:4a:d6:4d:36:b2:db:fd:7e:46:e7:9a:97:af:05:6a:e0:75: 02:0b:a5:f1:84:f8:67:f2:5a:4c:f2:76:b8:1a:64:e9:18:93: fa:d5:c1:df:85:eb:ee:56:4c:25:48:b9:cb:d9:5c:99:ba:70: 47:72:31:a9:e0:f7:33:51:1d:70:5d:6b:e3:ef:ff:32:81:cc: d7:88:45:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCQUYxMTAvBgNVBAUTKDI0OERCMUZFRTU1MTBDOEE2QUY4NUVBQzgxMEVDNEND QUU4QkY5MEQwHhcNMjUwODAyMTU1MTA3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzNlYi0xYzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsldF5/rjzSBsdfCSICV6s+Wog3nyhyehJAUtvRujLht6wMNg5pGqRVOIiTEu TRVJg0s7on+fnq8E4TUZuB2CDp7lD/VISbMNjceKhb8Fa2mcVAWlXkqjwzwbxtJc 1XHmcA7VHaUWgLch1b+tIS40Zj4/EOu0m0W6bHrHTchyCfVdUOTw/ocJ5ODFPxX6 dC27issWyauRexp78KfNWubxHIk3m4X1JPaO6zSqFFb2b1I6W7vVi/oKwa/QfZl5 vrlk7J1weRZjumudBTDc917MStzY4Gh7B1vLHcLhuC++jUVUrUOasF/n7iLb6yc2 btk1NWyxT0zW8Xn0/C5+R4uzDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI9KJBRi +ejovs7HIkogV3JJjNKaMB8GA1UdIwQYMBaAFCSNsf7lUQyKavherIEOxMyui/kN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJBRi8zMkQ4RTIyRTFE QUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJcHEtRjZzZ1E3RXpLNkwt UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJMnhfdVZSRElwcS1GNnNnUTdFeks2TC1RMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThCQUYvMzJEOEUyMkUxREFCMTFFMkE5N0QyM0E5MDhCMDJDRDIvRjg3REI4QjQ0 MEM4MTFFRUI2ODFEQzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDmAwDQYJKoZIhvcNAQELBQADggEBABGWq0ieV97/1Z0F kMBkKtN5e9q5w8i1sCChs/XAqdf+uQ/N5gDKvrbGnH+/a2Y82Zxr562jS5QAv9ji GJYpuBubRSKQPdmcAeGLvwoNdZvVTkcP7q097wrsjVQAZsbcp2QtkRH009CrU5EK g/8vDAkW8Bd0aVf/WivNr9/HB/1vjniKjTWlzxU4WrtDIKWmbnbAgQKeNlfPlBMX 72nrLJBeSjNGnO2mxVXq+8P0r0hd35BzQbRK1k02stv9fkbnmpevBWrgdQILpfGE +GfyWkzydrgaZOkYk/rVwd+F6+5WTCVIucvZXJm6cEdyMang9zNRHXBda+Pv/zKB zNeIRb0= -----END CERTIFICATE-----Generated at Sun Aug 10 21:18:17 2025 by rpki-client