$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DFBF8CDC6AF911F08AB48F35C4F9AE02.roa File: DFBF8CDC6AF911F08AB48F35C4F9AE02.roa (raw, json) Hash identifier: 5kegnTpZ/e+xuAVwbs9IIOILhqAXZ4oODiLdY0U9IMQ= Subject key identifier: E3:A3:73:81:72:43:E9:55:47:D9:C8:AE:34:28:8C:61:95:14:2E:0A Certificate issuer: /CN=A91EDB37/serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Certificate serial: 06D6 Authority key identifier: BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DFBF8CDC6AF911F08AB48F35C4F9AE02.roa Signing time: Fri 08 Aug 2025 15:08:13 +0000 ROA not before: Fri 08 Aug 2025 15:08:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135377 IP address blocks: 103.72.144.0/24 maxlen: 24 103.210.21.0/24 maxlen: 24 103.210.22.0/24 maxlen: 24 122.10.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Validity Not Before: Aug 8 15:08:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689612dc-5a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9c:99:c0:aa:5f:ee:0b:fa:e9:ea:a8:6b:45: c4:de:ed:06:ee:fb:2c:38:3a:2d:32:ad:c1:87:fa: 42:94:8e:8b:a1:e9:7b:2b:38:19:e1:80:d5:8b:59: 03:68:34:f5:bb:e9:de:d9:84:a0:f4:e3:d8:56:94: a7:6a:31:79:9b:47:ca:a6:04:12:0f:88:5a:6b:b2: bf:a8:0c:5f:92:ba:b7:9b:3a:77:8e:8b:a7:9e:a7: 6c:f9:d7:a0:46:f1:17:8e:76:d2:aa:1c:1c:3c:f2: 4a:86:dd:23:50:1c:cf:18:f1:b0:6f:12:bd:e0:07: a9:da:e3:03:e1:4e:99:45:ed:c0:f6:53:20:81:01: 37:4e:86:d1:79:18:3c:48:d9:7c:a0:9a:73:b5:ef: e0:3b:a0:6d:51:fc:ac:df:ed:01:da:40:07:7d:c6: c7:d3:d4:0d:42:ce:21:a6:ae:af:cf:1f:64:39:af: 81:94:34:c2:c3:8b:34:79:76:d5:b9:62:9f:f7:7d: 9b:ef:84:df:95:da:a2:fc:39:a7:95:d5:2d:97:ea: 92:8c:a2:64:b6:ce:f6:87:ea:df:7f:b7:cc:fb:34: b3:46:18:bd:9d:20:36:0a:9d:95:e8:0d:64:46:5e: 8a:53:2c:33:16:19:4f:1e:7f:c4:e9:90:5a:2b:5a: a7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A3:73:81:72:43:E9:55:47:D9:C8:AE:34:28:8C:61:95:14:2E:0A X509v3 Authority Key Identifier: keyid:BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DFBF8CDC6AF911F08AB48F35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.144.0/24 103.210.21.0-103.210.22.255 122.10.161.0/24 Signature Algorithm: sha256WithRSAEncryption 44:ae:59:9f:e8:30:65:b4:96:ec:2d:b7:00:1b:85:f3:50:d6: 62:70:d7:28:c9:f6:e0:27:38:f3:7d:27:6d:67:25:71:65:a5: 31:d5:a5:cc:87:72:f7:6f:dd:47:8b:ea:61:bf:18:c0:ee:94: 75:12:c4:2b:42:94:aa:0a:80:9a:f1:ae:a9:1b:34:29:38:f2: 74:b3:dd:12:12:81:03:a6:79:e1:30:f8:ef:b7:40:c2:c0:7c: 67:56:1b:89:d7:f2:5b:4b:9b:51:7d:10:1f:fd:3c:54:8f:d7: 0d:f4:d8:fa:80:66:03:68:7c:1d:2d:d8:9f:55:db:8c:af:b9: df:f6:b5:1a:d0:2a:52:62:13:0c:fb:34:71:3c:68:f9:75:2b: 4d:e8:59:e7:c9:94:52:5a:92:7c:e2:16:23:c5:f7:c6:7e:6e: 3e:be:b8:71:df:5f:c8:4c:6e:45:fc:22:9b:7c:ec:b3:bf:d3: a5:ed:d0:d3:56:18:74:e7:64:95:60:c9:86:ed:49:46:96:f0: 9a:84:c5:8f:d9:d6:23:82:75:bc:9f:43:0a:ab:d7:6c:fb:02: ba:e2:78:26:23:eb:42:29:82:1a:3f:1b:82:7f:80:d7:64:fd: d0:3f:c1:2b:46:03:36:7a:dc:f3:57:2c:d9:7e:69:0d:72:ce: d3:dc:52:32 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKEJCNTQ0MTc2RERFNjhFMzU4MUM1QzQzRjRGQzdDQzJD RjY4RDY5MjQwHhcNMjUwODA4MTUwODEzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MTJkYy01YTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JyZwKpf7gv66eqoa0XE3u0G7vssODotMq3Bh/pClI6Loel7KzgZ4YDVi1kD aDT1u+ne2YSg9OPYVpSnajF5m0fKpgQSD4haa7K/qAxfkrq3mzp3jounnqds+deg RvEXjnbSqhwcPPJKht0jUBzPGPGwbxK94Aep2uMD4U6ZRe3A9lMggQE3TobReRg8 SNl8oJpzte/gO6BtUfys3+0B2kAHfcbH09QNQs4hpq6vzx9kOa+BlDTCw4s0eXbV uWKf932b74Tfldqi/DmnldUtl+qSjKJkts72h+rff7fM+zSzRhi9nSA2Cp2V6A1k Rl6KUywzFhlPHn/E6ZBaK1qnGwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFOOjc4Fy Q+lVR9nIrjQojGGVFC4KMB8GA1UdIwQYMBaAFLtUQXbd5o41gcXEP0/HzCz2jWkk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy81NzY0NzM3QTc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi91MVJCZHQzbWpqV0J4Y1FfVDhmTUxQYU5h U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxUkJkdDNtampXQnhjUV9UOGZNTFBhTmFTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNTc2NDczN0E3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvREZCRjhDREM2 QUY5MTFGMDhBQjQ4RjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABnSJAwDAMEAGfSFQMEAGfSFgMEAHoKoTANBgkqhkiG9w0B AQsFAAOCAQEARK5Zn+gwZbSW7C23ABuF81DWYnDXKMn24Cc4830nbWclcWWlMdWl zIdy92/dR4vqYb8YwO6UdRLEK0KUqgqAmvGuqRs0KTjydLPdEhKBA6Z54TD477dA wsB8Z1YbidfyW0ubUX0QH/08VI/XDfTY+oBmA2h8HS3Yn1XbjK+53/a1GtAqUmIT DPs0cTxo+XUrTehZ58mUUlqSfOIWI8X3xn5uPr64cd9fyExuRfwim3zss7/Tpe3Q 01YYdOdklWDJhu1JRpbwmoTFj9nWI4J1vJ9DCqvXbPsCuuJ4JiPrQimCGj8bgn+A 12T90D/BK0YDNnrc81cs2X5pDXLO09xSMg== -----END CERTIFICATE-----Generated at Sat Aug 9 14:33:00 2025 by rpki-client