$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa File: F68AC4D84D9B11EC9CF19624C4F9AE02.roa (raw, json) Hash identifier: Y+TyRCz2epQVzbUxRdYB5HCaazSHrTMoJJH/3WgfqIU= Subject key identifier: FF:85:DA:91:16:54:22:9B:B6:4E:59:87:C5:B0:0C:55:6F:07:3F:6A Certificate issuer: /CN=A91EFC72/serialNumber=B7A7A9FFBEC713F84E0B5180AF76DEB16E729229 Certificate serial: 05A9 Authority key identifier: B7:A7:A9:FF:BE:C7:13:F8:4E:0B:51:80:AF:76:DE:B1:6E:72:92:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa Signing time: Thu 07 Aug 2025 00:05:27 +0000 ROA not before: Thu 07 Aug 2025 00:05:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 10098 IP address blocks: 103.55.200.0/22 maxlen: 22 103.55.200.0/23 maxlen: 23 103.55.200.0/24 maxlen: 24 103.55.201.0/24 maxlen: 24 103.55.202.0/23 maxlen: 23 103.55.202.0/24 maxlen: 24 103.55.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.crl rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1449 (0x5a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC72, serialNumber=B7A7A9FFBEC713F84E0B5180AF76DEB16E729229 Validity Not Before: Aug 7 00:05:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6893edc7-e63c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:71:67:b8:f3:ca:7e:3f:60:0b:e5:26:d7:f2: ef:e2:57:2c:20:92:5e:6d:8b:aa:85:63:1e:82:50: e5:7b:d5:26:88:5f:f3:49:6d:fa:da:56:cb:ae:24: 01:db:90:3b:e9:4d:5b:c1:d9:36:68:be:5b:0a:bf: 4e:b5:2d:1d:22:c6:d6:7b:26:f2:66:b2:b8:7d:1c: a7:77:6e:71:f6:4d:05:5f:a6:76:d3:46:1c:21:66: 65:08:75:ee:f4:64:b3:d5:51:c4:04:ef:18:17:3d: f2:0c:de:64:d9:0e:73:ce:11:93:6d:f7:9c:55:13: ee:a8:f7:57:bc:06:40:31:93:2e:53:1b:6c:c5:af: f1:21:dd:4d:0b:7f:1a:2c:3c:20:61:ab:af:5a:13: 15:07:18:38:59:95:b0:6f:fe:97:ff:b1:91:6d:8f: 5e:5a:f9:fc:bf:22:46:9c:ea:df:0f:c7:7a:57:f2: 01:37:06:09:8e:2c:51:a7:e9:4c:8a:09:7b:85:df: 5b:b6:d5:4b:d6:bf:dd:85:25:0a:f4:e7:01:43:39: ee:ea:6f:a2:b7:f0:a7:16:e9:90:a0:f6:be:b1:4d: 73:f4:61:75:63:e4:ce:e1:df:a2:3d:a9:64:4e:0c: b5:54:e3:1f:03:fe:35:92:96:bd:6d:54:c9:f2:10: b9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:85:DA:91:16:54:22:9B:B6:4E:59:87:C5:B0:0C:55:6F:07:3F:6A X509v3 Authority Key Identifier: keyid:B7:A7:A9:FF:BE:C7:13:F8:4E:0B:51:80:AF:76:DE:B1:6E:72:92:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.200.0/22 Signature Algorithm: sha256WithRSAEncryption 95:6c:4e:b4:3e:88:d2:59:21:8e:ea:c3:4d:00:09:6b:7b:b1: bf:e8:20:fd:85:f7:a7:7c:7a:10:ee:79:07:36:1c:e6:03:9f: 29:d5:2a:44:3c:18:4d:5b:be:f2:1e:6c:2b:74:ad:c9:6d:38: 3b:33:d8:89:8d:e8:4b:6d:62:3d:38:b6:98:e0:b3:69:3f:39: 83:e8:85:73:08:8b:c0:4b:79:c8:8c:e8:b0:95:a6:f2:8b:62: 63:1f:f4:52:08:40:d4:d6:31:ae:d3:b1:89:d2:34:50:0b:53: 5c:e0:39:6b:f9:6a:b4:e4:12:bc:b9:40:ac:f0:ee:8b:b8:71: ab:60:77:42:9f:92:21:82:29:a0:9c:d8:5c:78:6a:33:74:6f: d5:ab:78:0e:84:7e:bc:05:8d:05:46:0c:6e:c4:6c:b1:4c:5e: ed:e4:6c:87:b5:0d:a3:79:99:23:b7:c3:d7:9b:03:46:06:ad: 75:7b:f1:00:f6:37:fe:91:8a:b9:de:09:f4:b6:fc:ac:23:07: f4:f3:15:b2:58:5f:f8:cb:8e:b4:0e:15:eb:5d:4b:56:9a:9b: da:4b:77:45:a8:bd:2e:e2:04:8b:50:3a:ca:0e:e5:7d:47:0e: d5:30:7d:89:d7:48:31:45:f3:c3:ed:8f:19:2d:24:72:e2:d2: 9d:22:47:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDNzIxMTAvBgNVBAUTKEI3QTdBOUZGQkVDNzEzRjg0RTBCNTE4MEFGNzZERUIx NkU3MjkyMjkwHhcNMjUwODA3MDAwNTI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzZWRjNy1lNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXFnuPPKfj9gC+Um1/Lv4lcsIJJebYuqhWMeglDle9UmiF/zSW362lbLriQB 25A76U1bwdk2aL5bCr9OtS0dIsbWeybyZrK4fRynd25x9k0FX6Z200YcIWZlCHXu 9GSz1VHEBO8YFz3yDN5k2Q5zzhGTbfecVRPuqPdXvAZAMZMuUxtsxa/xId1NC38a LDwgYauvWhMVBxg4WZWwb/6X/7GRbY9eWvn8vyJGnOrfD8d6V/IBNwYJjixRp+lM igl7hd9bttVL1r/dhSUK9OcBQznu6m+it/CnFumQoPa+sU1z9GF1Y+TO4d+iPalk Tgy1VOMfA/41kpa9bVTJ8hC5qwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP+F2pEW VCKbtk5Zh8WwDFVvBz9qMB8GA1UdIwQYMBaAFLenqf++xxP4TgtRgK923rFucpIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM3Mi8wNzVGNjk2OEU2 MEQxMUVCQjA5RjZBNjFDNEY5QUUwMi90NmVwXzc3SEVfaE9DMUdBcjNiZXNXNXlr aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q2ZXBfNzdIRV9oT0MxR0FyM2Jlc1c1eWtpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZDNzIvMDc1RjY5NjhFNjBEMTFFQkIwOUY2QTYxQzRGOUFFMDIvRjY4QUM0RDg0 RDlCMTFFQzlDRjE5NjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnN8gwDQYJKoZIhvcNAQELBQADggEBAJVsTrQ+iNJZIY7q w00ACWt7sb/oIP2F96d8ehDueQc2HOYDnynVKkQ8GE1bvvIebCt0rcltODsz2ImN 6EttYj04tpjgs2k/OYPohXMIi8BLeciM6LCVpvKLYmMf9FIIQNTWMa7TsYnSNFAL U1zgOWv5arTkEry5QKzw7ou4catgd0KfkiGCKaCc2Fx4ajN0b9WreA6EfrwFjQVG DG7EbLFMXu3kbIe1DaN5mSO3w9ebA0YGrXV78QD2N/6RirneCfS2/KwjB/TzFbJY X/jLjrQOFetdS1aam9pLd0WovS7iBItQOsoO5X1HDtUwfYnXSDFF88PtjxktJHLi 0p0iRyk= -----END CERTIFICATE-----Generated at Wed Aug 13 07:39:33 2025 by rpki-client