$ rpki-client -vvf rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/7112985C4DE711EC92010E61C4F9AE02.roa File: 7112985C4DE711EC92010E61C4F9AE02.roa (raw, json) Hash identifier: M1i4rWrbGKWHBYp62z8SKmnQxpHNlWERMJQXrk6a0Go= Subject key identifier: 0C:94:EC:1D:53:00:02:A4:A5:79:17:9D:21:35:4E:2E:DB:6F:DD:7D Certificate issuer: /CN=A91E90DD/serialNumber=1AB89EF5B28EC82D6AE210FC29BDE8A71756B1B0 Certificate serial: 0498 Authority key identifier: 1A:B8:9E:F5:B2:8E:C8:2D:6A:E2:10:FC:29:BD:E8:A7:17:56:B1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Grie9bKOyC1q4hD8Kb3opxdWsbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/7112985C4DE711EC92010E61C4F9AE02.roa Signing time: Wed 06 Aug 2025 17:05:09 +0000 ROA not before: Wed 06 Aug 2025 17:05:09 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137078 IP address blocks: 103.175.130.0/23 maxlen: 23 103.175.130.0/24 maxlen: 24 103.175.131.0/24 maxlen: 24 2400:1a20::/32 maxlen: 32 2400:1a20::/48 maxlen: 48 2400:1a20:1::/48 maxlen: 48 2400:1a20:2::/48 maxlen: 48 2400:1a20:3::/48 maxlen: 48 2400:1a20:4::/48 maxlen: 48 2400:1a20:5::/48 maxlen: 48 2400:1a20:6::/48 maxlen: 48 2400:1a20:7::/48 maxlen: 48 2400:1a20:8::/48 maxlen: 48 2400:1a20:9::/48 maxlen: 48 2400:1a20:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/Grie9bKOyC1q4hD8Kb3opxdWsbA.crl rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/Grie9bKOyC1q4hD8Kb3opxdWsbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Grie9bKOyC1q4hD8Kb3opxdWsbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:31:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E90DD, serialNumber=1AB89EF5B28EC82D6AE210FC29BDE8A71756B1B0 Validity Not Before: Aug 6 17:05:09 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68938b44-7904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ee:2f:07:1d:95:e6:e6:cb:fa:8d:8a:ad:1b: 0a:d0:0c:44:74:90:96:54:63:dc:3f:9e:ee:71:fe: 45:c5:12:2c:75:1c:af:79:ea:58:ec:2a:d0:20:13: b1:69:1b:65:38:bf:f0:7c:bc:05:be:a1:fc:61:18: fd:7f:2b:da:57:d9:ff:77:17:73:ee:03:fd:f8:fb: e0:38:c7:c4:eb:2c:1c:91:0c:4d:f0:f1:41:c8:59: 31:83:55:a0:ec:cc:08:69:c6:c2:31:74:a3:89:43: e6:db:71:c2:1d:ba:bb:fe:f6:05:39:19:36:c8:1d: cc:c5:3e:57:06:2a:8f:fb:09:91:66:e3:af:a4:b4: ff:bf:05:b7:3f:c8:bb:ee:70:76:95:59:ab:2c:49: 12:21:18:9d:f4:fe:e5:5c:4c:ac:5d:df:91:84:ea: 34:1a:b6:cb:ba:95:88:28:f5:b1:39:54:34:94:12: 4a:83:51:c2:13:2d:50:d1:d2:34:93:1e:bc:c7:cf: 59:87:d7:d7:ba:e0:13:f5:83:ee:9e:30:2b:22:b4: fe:43:94:6d:80:e9:fc:e4:81:1e:6b:49:53:78:f7: a4:e3:93:58:70:73:20:f2:10:83:cc:53:dd:0b:bf: 09:af:62:47:08:fe:9e:8e:22:00:05:b5:59:29:45: 7f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:94:EC:1D:53:00:02:A4:A5:79:17:9D:21:35:4E:2E:DB:6F:DD:7D X509v3 Authority Key Identifier: keyid:1A:B8:9E:F5:B2:8E:C8:2D:6A:E2:10:FC:29:BD:E8:A7:17:56:B1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/Grie9bKOyC1q4hD8Kb3opxdWsbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Grie9bKOyC1q4hD8Kb3opxdWsbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/7112985C4DE711EC92010E61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.130.0/23 IPv6: 2400:1a20::/32 Signature Algorithm: sha256WithRSAEncryption 0f:af:01:cf:cb:4d:37:3a:37:37:61:1c:01:9a:f0:a1:55:2a: c2:7f:a8:40:2e:43:34:49:66:34:4f:4f:60:27:81:fe:2e:4b: 1c:15:c0:50:e9:dc:20:da:2c:01:3e:bb:c1:f7:d1:62:56:39: f4:47:34:eb:88:6f:00:71:1e:c3:38:1b:63:cc:0d:02:1b:71: 25:d0:12:29:1f:84:a5:51:d5:2b:11:53:aa:4b:ad:f1:14:ec: 87:fc:fa:e0:b0:a5:14:aa:6e:00:45:22:4c:2d:3a:ee:d6:e2: 95:12:e6:64:fd:e8:e7:10:e8:0f:51:e2:d5:51:48:ea:98:9c: c7:82:c4:23:0f:ca:34:e9:36:b3:c6:cd:03:10:be:be:12:fc: d1:cf:c6:07:65:29:90:24:6e:0e:20:de:85:ef:2f:0d:27:90: 6f:26:72:c8:8b:fd:31:6b:ff:c4:8e:73:d7:6e:59:44:b2:ca: d7:21:65:89:10:b9:e3:22:e9:08:e9:75:13:f3:7e:4b:b5:c2: c0:ca:41:a0:3c:15:09:3d:ad:9c:92:e7:9c:2c:b6:06:b1:1c: 0a:55:3b:e7:74:c9:98:14:13:d0:2d:dd:ee:fd:a8:19:f0:9f: 11:f4:4a:f6:b1:46:69:80:79:38:b1:b9:5d:3c:54:70:d9:f7: 13:29:26:34 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkwREQxMTAvBgNVBAUTKDFBQjg5RUY1QjI4RUM4MkQ2QUUyMTBGQzI5QkRFOEE3 MTc1NkIxQjAwHhcNMjUwODA2MTcwNTA5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzOGI0NC03OTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqu4vBx2V5ubL+o2KrRsK0AxEdJCWVGPcP57ucf5FxRIsdRyveepY7CrQIBOx aRtlOL/wfLwFvqH8YRj9fyvaV9n/dxdz7gP9+PvgOMfE6ywckQxN8PFByFkxg1Wg 7MwIacbCMXSjiUPm23HCHbq7/vYFORk2yB3MxT5XBiqP+wmRZuOvpLT/vwW3P8i7 7nB2lVmrLEkSIRid9P7lXEysXd+RhOo0GrbLupWIKPWxOVQ0lBJKg1HCEy1Q0dI0 kx68x89Zh9fXuuAT9YPunjArIrT+Q5RtgOn85IEea0lTePek45NYcHMg8hCDzFPd C78Jr2JHCP6ejiIABbVZKUV/pQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAyU7B1T AAKkpXkXnSE1Ti7bb919MB8GA1UdIwQYMBaAFBq4nvWyjsgtauIQ/Cm96KcXVrGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTBERC82RDg3RUQwMjRE RTQxMUVDQTMxNzkxNURDNEY5QUUwMi9HcmllOWJLT3lDMXE0aEQ4S2Izb3B4ZFdz YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dyaWU5YktPeUMxcTRoRDhLYjNvcHhkV3NiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkwREQvNkQ4N0VEMDI0REU0MTFFQ0EzMTc5MTVEQzRGOUFFMDIvNzExMjk4NUM0 REU3MTFFQzkyMDEwRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnr4IwDQQCAAIwBwMFACQAGiAwDQYJKoZIhvcNAQELBQAD ggEBAA+vAc/LTTc6NzdhHAGa8KFVKsJ/qEAuQzRJZjRPT2Angf4uSxwVwFDp3CDa LAE+u8H30WJWOfRHNOuIbwBxHsM4G2PMDQIbcSXQEikfhKVR1SsRU6pLrfEU7If8 +uCwpRSqbgBFIkwtOu7W4pUS5mT96OcQ6A9R4tVRSOqYnMeCxCMPyjTpNrPGzQMQ vr4S/NHPxgdlKZAkbg4g3oXvLw0nkG8mcsiL/TFr/8SOc9duWUSyytchZYkQueMi 6QjpdRPzfku1wsDKQaA8FQk9rZyS55wstgaxHApVO+d0yZgUE9At3e79qBnwnxH0 SvaxRmmAeTixuV08VHDZ9xMpJjQ= -----END CERTIFICATE-----Generated at Wed Aug 13 20:21:18 2025 by rpki-client