$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/2C0E544C6EB511F094E66857C4F9AE02.roa File: 2C0E544C6EB511F094E66857C4F9AE02.roa (raw, json) Hash identifier: MFMadZ9hIQ4pKDfnggH43mNknioivrdN+SzVsH0zBtQ= Subject key identifier: 47:77:4A:BB:83:F6:EF:94:14:3F:15:14:B0:49:CB:94:44:16:97:1B Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 62 Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/2C0E544C6EB511F094E66857C4F9AE02.roa Signing time: Fri 01 Aug 2025 08:55:45 +0000 ROA not before: Fri 01 Aug 2025 08:55:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 32595 IP address blocks: 103.224.92.0/24 maxlen: 24 2001:df2:45c0::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: Aug 1 08:55:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=688c8111-a75e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a9:25:c0:ac:a0:cf:a9:6e:58:95:c7:f8:37: 59:ad:7e:25:4f:81:c6:84:ab:4e:c2:0f:03:fe:46: 05:fa:fe:b3:b7:58:7a:78:da:08:f4:bd:78:7d:c9: 08:d4:57:05:fb:ff:26:1d:fe:bd:25:fa:d9:69:5d: a0:ec:ac:01:3d:a1:d4:2e:d1:54:19:59:e1:97:0d: 2b:3a:20:c1:93:62:c4:96:6b:ac:eb:56:2d:ab:d6: a6:00:de:fb:1d:44:e3:a8:b8:f2:ca:fa:ad:14:66: c7:d2:34:3e:44:7e:12:c6:8f:fa:a0:44:45:c8:b7: 70:cd:b2:b6:66:5f:40:a4:3a:d2:85:28:a2:0d:dd: 3a:ca:9e:75:02:bf:71:13:be:ac:f8:56:5d:b2:98: 7c:a2:f8:4f:37:e1:53:2d:d1:a8:96:60:0f:2c:9b: 67:aa:99:e5:33:c5:76:28:c6:b4:cf:3c:54:63:66: db:59:5a:13:a7:63:09:ed:94:a3:7c:20:b4:b1:9c: 6c:5c:48:ff:96:f5:02:77:df:91:f7:91:94:a9:de: f6:d3:31:ea:67:a4:5a:d8:ec:94:85:9b:b4:70:51: 27:b3:42:1b:9f:ea:3a:d7:db:a3:dd:87:9a:5a:58: 40:46:18:57:a6:ae:ce:5d:e3:c9:b2:56:e1:89:ea: 81:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:77:4A:BB:83:F6:EF:94:14:3F:15:14:B0:49:CB:94:44:16:97:1B X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/2C0E544C6EB511F094E66857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.92.0/24 IPv6: 2001:df2:45c0::/47 Signature Algorithm: sha256WithRSAEncryption 30:9e:03:f6:0c:12:63:1b:48:8a:5c:75:a4:77:43:45:0a:81: f1:45:9c:37:13:5d:08:86:68:3f:93:00:04:ab:e5:fc:d8:6d: a3:f8:37:31:ea:aa:b4:35:e1:7c:74:c0:46:1e:f8:20:3c:6b: 2c:50:46:29:4f:d4:66:87:24:1c:86:d8:09:fd:59:35:c0:fc: 01:d4:7c:5a:75:9c:8c:7d:29:8d:5b:35:9d:1f:36:04:bb:15: a9:c1:aa:c3:1a:0a:5d:1b:9e:11:1f:b5:1d:d6:fe:4e:c4:34: 1f:19:d6:10:7a:ae:11:8d:85:5f:aa:70:09:72:66:e1:d8:26: 7b:3f:c2:26:b2:af:fe:e7:e3:0f:3d:df:46:c3:da:96:f2:56: 55:16:68:f7:b1:26:b2:91:dc:3f:d8:07:37:82:a4:53:9d:fd: 10:a4:e1:d2:30:87:66:db:b2:b0:d4:84:76:6d:8d:28:01:22: 83:35:7a:5b:26:e5:46:0a:47:40:ea:5f:ed:f5:f2:a1:ca:a5: 0e:c8:2a:0a:91:35:d4:c7:6b:4f:ca:30:7d:88:38:e4:1c:19: 32:1d:7a:0e:18:9a:f6:15:d3:c7:4f:2a:c5:3d:7d:fd:d0:68: e2:aa:4e:e7:39:23:18:f3:5d:a4:19:0e:f7:9a:38:c3:27:4a: b8:96:56:0b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OERGNTExMC8GA1UEBRMoQzZGNzU4RUNEREM0QzlCMEY3MkYwNjVDMzVBRDU0Njk3 NDMyNzExQjAeFw0yNTA4MDEwODU1NDVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGM4MTExLWE3NWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgqSXArKDPqW5Ylcf4N1mtfiVPgcaEq07CDwP+RgX6/rO3WHp42gj0vXh9yQjU VwX7/yYd/r0l+tlpXaDsrAE9odQu0VQZWeGXDSs6IMGTYsSWa6zrVi2r1qYA3vsd ROOouPLK+q0UZsfSND5EfhLGj/qgREXIt3DNsrZmX0CkOtKFKKIN3TrKnnUCv3ET vqz4Vl2ymHyi+E834VMt0aiWYA8sm2eqmeUzxXYoxrTPPFRjZttZWhOnYwntlKN8 ILSxnGxcSP+W9QJ335H3kZSp3vbTMepnpFrY7JSFm7RwUSezQhuf6jrX26Pdh5pa WEBGGFemrs5d48myVuGJ6oFpAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUR3dKu4P2 75QUPxUUsEnLlEQWlxswHwYDVR0jBBgwFoAUxvdY7N3EybD3LwZcNa1UaXQycRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4REY1LzMxRTBGMTZBRjk2 MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHZkWTdOM0V5YkQzTHdaY05hMVVhWFF5Y1JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OERGNS8zMUUwRjE2QUY5NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi8yQzBFNTQ0QzZF QjUxMUYwOTRFNjY4NTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGfgXDAPBAIAAjAJAwcBIAEN8kXAMA0GCSqGSIb3DQEBCwUA A4IBAQAwngP2DBJjG0iKXHWkd0NFCoHxRZw3E10Ihmg/kwAEq+X82G2j+Dcx6qq0 NeF8dMBGHvggPGssUEYpT9RmhyQchtgJ/Vk1wPwB1HxadZyMfSmNWzWdHzYEuxWp warDGgpdG54RH7Ud1v5OxDQfGdYQeq4RjYVfqnAJcmbh2CZ7P8Imsq/+5+MPPd9G w9qW8lZVFmj3sSaykdw/2Ac3gqRTnf0QpOHSMIdm27Kw1IR2bY0oASKDNXpbJuVG CkdA6l/t9fKhyqUOyCoKkTXUx2tPyjB9iDjkHBkyHXoOGJr2FdPHTyrFPX390Gji qk7nOSMY812kGQ73mjjDJ0q4llYL -----END CERTIFICATE-----Generated at Sun Aug 10 18:25:21 2025 by rpki-client