$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/D2E899F86EB511F0A3A63A59C4F9AE02.roa File: D2E899F86EB511F0A3A63A59C4F9AE02.roa (raw, json) Hash identifier: 0dFbZ0ducL2EHPg1wlqAHlDGhzD129B1kp1qJTYRuTU= Subject key identifier: C1:8A:57:24:D9:1C:FB:F0:4D:98:7D:A2:39:B2:30:23:6B:3A:7C:9A Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 66 Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/D2E899F86EB511F0A3A63A59C4F9AE02.roa Signing time: Fri 01 Aug 2025 09:02:42 +0000 ROA not before: Fri 01 Aug 2025 09:02:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151188 IP address blocks: 103.224.92.0/24 maxlen: 24 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: Aug 1 09:02:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=688c82b1-24dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:aa:6e:b7:33:13:28:50:1a:cb:d2:a3:74:ed: e8:8b:79:dd:86:04:c1:00:3d:6f:83:61:96:22:88: d9:f6:57:39:c7:4b:39:94:4c:bd:bb:8c:d2:48:6f: 9a:3a:f6:76:2b:b2:07:9b:22:e0:38:6a:33:0f:9f: e5:89:5f:78:5c:48:f0:21:e0:a8:a7:6e:3f:70:64: 57:73:88:41:f1:9e:47:7e:9e:7e:ff:53:3d:70:fb: c9:29:28:2e:1a:13:82:df:c1:59:72:7f:4b:ac:9f: 8e:07:26:cd:85:fe:51:d5:eb:b2:91:e5:9e:35:4b: e0:2d:c3:dd:c2:ce:c7:56:e6:81:93:57:79:c0:de: e3:07:3b:41:25:b1:6b:ae:97:25:c3:11:f6:5a:70: f1:64:34:61:01:b3:40:0e:98:4a:46:43:31:c1:a1: da:26:95:70:67:1a:fe:d2:04:87:f9:48:02:26:7a: c2:d7:9f:bc:b5:e3:f5:f3:05:f9:e9:a7:98:97:01: f4:40:be:95:06:2a:41:83:e4:76:11:3a:86:60:98: 97:5f:6d:00:83:eb:67:bc:56:c2:70:2b:cd:70:fa: b6:4b:2d:d3:8a:e2:ff:b3:e7:ce:51:7d:ba:01:ab: ae:3c:eb:40:3a:4b:b8:a0:4e:b4:41:53:68:56:30: 1d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:8A:57:24:D9:1C:FB:F0:4D:98:7D:A2:39:B2:30:23:6B:3A:7C:9A X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/D2E899F86EB511F0A3A63A59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.92.0/24 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption df:7a:c9:9c:7c:5b:8b:f3:14:ca:35:e0:8a:ee:81:7e:b0:31: ba:7a:d3:c0:c0:b3:31:5e:d1:c5:cf:07:fd:a4:22:79:eb:04: 37:dd:cb:6d:d0:15:83:0b:b0:fc:fd:64:0d:0c:7a:ce:92:fa: cb:78:1b:10:e2:46:3e:67:25:2c:12:a3:72:d0:84:fa:a3:5d: 0e:7c:4d:a9:ba:dd:04:2e:a1:32:74:76:93:0a:c8:e5:0d:0a: e1:0d:f0:14:d2:c6:e4:8c:53:d4:c2:34:5c:fc:30:96:ea:f3: 26:5d:24:31:3a:1c:b9:3a:bc:8c:37:90:78:34:e4:b5:ec:9e: d1:c9:b8:ab:42:b1:00:46:6e:69:fc:ca:88:45:7d:3b:eb:7c: 24:f8:0f:75:33:bb:ba:4c:02:72:da:11:77:4c:8b:5d:23:fe: 68:f6:12:65:05:d1:6f:5b:f5:fa:f1:36:05:93:1b:45:0f:3f: 79:f3:19:49:c4:a9:be:19:64:25:d5:9a:98:dc:0a:47:bf:95: aa:43:1a:e2:39:f5:e2:0b:2d:2d:f4:18:5a:cf:7a:c4:54:0e: 79:b9:bc:ac:93:22:fc:c0:b5:55:1f:c4:1a:5f:c7:5d:44:45: d4:d7:4d:ba:b1:c6:c9:51:24:39:c9:48:f6:cc:59:8b:9e:7f: fe:22:43:2d -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OERGNTExMC8GA1UEBRMoQzZGNzU4RUNEREM0QzlCMEY3MkYwNjVDMzVBRDU0Njk3 NDMyNzExQjAeFw0yNTA4MDEwOTAyNDJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGM4MmIxLTI0ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbqm63MxMoUBrL0qN07eiLed2GBMEAPW+DYZYiiNn2VznHSzmUTL27jNJIb5o6 9nYrsgebIuA4ajMPn+WJX3hcSPAh4Kinbj9wZFdziEHxnkd+nn7/Uz1w+8kpKC4a E4LfwVlyf0usn44HJs2F/lHV67KR5Z41S+Atw93CzsdW5oGTV3nA3uMHO0ElsWuu lyXDEfZacPFkNGEBs0AOmEpGQzHBodomlXBnGv7SBIf5SAImesLXn7y14/XzBfnp p5iXAfRAvpUGKkGD5HYROoZgmJdfbQCD62e8VsJwK81w+rZLLdOK4v+z585RfboB q64860A6S7igTrRBU2hWMB2PAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUwYpXJNkc +/BNmH2iObIwI2s6fJowHwYDVR0jBBgwFoAUxvdY7N3EybD3LwZcNa1UaXQycRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4REY1LzMxRTBGMTZBRjk2 MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHZkWTdOM0V5YkQzTHdaY05hMVVhWFF5Y1JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OERGNS8zMUUwRjE2QUY5NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi9EMkU4OTlGODZF QjUxMUYwQTNBNjNBNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGfgXAMEAGf0ozANBgkqhkiG9w0BAQsFAAOCAQEA33rJnHxb i/MUyjXgiu6BfrAxunrTwMCzMV7Rxc8H/aQieesEN93LbdAVgwuw/P1kDQx6zpL6 y3gbEOJGPmclLBKjctCE+qNdDnxNqbrdBC6hMnR2kwrI5Q0K4Q3wFNLG5IxT1MI0 XPwwlurzJl0kMTocuTq8jDeQeDTkteye0cm4q0KxAEZuafzKiEV9O+t8JPgPdTO7 ukwCctoRd0yLXSP+aPYSZQXRb1v1+vE2BZMbRQ8/efMZScSpvhlkJdWamNwKR7+V qkMa4jn14gstLfQYWs96xFQOebm8rJMi/MC1VR/EGl/HXURF1NdNurHGyVEkOclI 9sxZi55//iJDLQ== -----END CERTIFICATE-----Generated at Wed Aug 13 00:27:34 2025 by rpki-client