$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa File: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (raw, json) Hash identifier: nZ6WbCIcnJ/FBBpCbBgjvy3HpKuHRhBq1WSGZ+ZBH8Y= Subject key identifier: 69:57:37:94:C3:79:FF:2E:06:69:14:85:8C:90:3A:98:3E:F6:2E:BB Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 02DC Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa Signing time: Sat 05 Jul 2025 02:09:37 +0000 ROA not before: Sat 05 Jul 2025 02:09:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58057 IP address blocks: 103.189.238.0/23 maxlen: 24 2001:df0:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 01:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Jul 5 02:09:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68688960-a5f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ee:3a:aa:9d:9d:9d:8a:fa:83:2c:0c:69:18: e7:b3:0d:e0:e2:45:78:fc:a0:80:29:9f:4c:0a:d2: 10:f5:24:ba:15:e0:ff:87:80:d4:cc:a2:ea:c1:a1: 36:21:80:9e:61:9e:d3:c9:73:7e:78:8b:38:c9:91: 8c:dc:1f:0a:07:7c:38:13:01:fd:db:69:87:85:e2: 86:e3:ae:15:fa:60:6f:0a:ab:b8:07:b9:3d:cc:8b: 21:2b:02:ea:01:f3:fe:09:75:17:49:4e:42:a3:78: 7a:c8:f9:00:8c:5f:d5:a3:e3:7d:f2:d7:2a:a6:f8: 5c:f1:6c:4c:5a:f5:70:e4:f4:c9:b9:0d:07:c7:44: c7:9a:8c:f5:95:f8:32:8b:8e:20:58:6c:02:dc:f9: 83:a7:f6:5e:4c:0c:83:dd:da:06:38:30:20:55:fc: bc:67:37:95:60:01:63:fe:39:d3:6a:69:8f:fe:98: 14:12:10:b1:56:a6:f5:86:b6:15:0d:78:de:57:41: 91:43:5b:56:f7:bb:08:84:7d:0c:fb:ca:45:82:9a: ec:25:bc:cd:f0:da:38:3f:df:ba:bd:a8:62:af:9f: d0:02:29:7c:9f:6c:20:80:ad:63:6b:e3:18:63:54: fc:39:dd:b0:d8:47:5d:11:89:57:9f:aa:a8:20:55: 42:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:57:37:94:C3:79:FF:2E:06:69:14:85:8C:90:3A:98:3E:F6:2E:BB X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.238.0/23 IPv6: 2001:df0:de40::/48 Signature Algorithm: sha256WithRSAEncryption 49:54:ce:1f:cd:4d:c6:11:df:b3:93:64:99:b9:92:6a:cb:38: 68:93:bc:ee:ee:7a:d2:7c:a0:c5:5b:a1:e9:6d:b5:6a:7d:b7: 09:fd:a5:c4:50:96:6b:80:9f:55:9c:8c:69:6a:75:54:a7:a6: c0:f9:91:7d:94:f7:77:da:ea:0a:e3:7f:01:fb:7e:7e:a3:24: 4c:18:a4:8b:f2:32:bb:2c:8f:a4:ea:cf:2d:ed:c9:d8:90:41: bb:33:0b:28:b6:dc:79:3b:ca:31:a9:47:35:bc:55:25:48:3a: 6b:71:fe:14:6d:89:b4:40:0c:2c:98:04:e6:fb:61:2c:a4:37: 71:8d:fd:85:e4:b4:70:e8:ef:a7:65:1b:62:18:56:c8:69:0d: cc:ec:36:b0:b8:94:f3:85:21:fc:44:ee:61:f1:6a:ca:4b:50: 12:05:54:5c:67:54:a5:c4:fe:ba:ba:9c:d1:0c:23:55:53:b5: 1b:0e:38:22:3f:99:1a:b5:c4:f7:1b:05:7d:11:c5:11:7e:a8: ec:6f:e1:dd:73:3e:b4:d8:6c:f8:9c:3e:b9:c2:e8:d7:1e:a5: 5e:d2:0c:46:16:61:84:62:e7:70:22:f3:5f:5d:6b:93:9f:d6: 57:92:e3:bf:20:88:82:02:76:62:7f:3e:75:21:f9:8f:75:0f: 6f:da:30:d3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwNzA1MDIwOTM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4ODk2MC1hNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO46qp2dnYr6gywMaRjnsw3g4kV4/KCAKZ9MCtIQ9SS6FeD/h4DUzKLqwaE2 IYCeYZ7TyXN+eIs4yZGM3B8KB3w4EwH922mHheKG464V+mBvCqu4B7k9zIshKwLq AfP+CXUXSU5Co3h6yPkAjF/Vo+N98tcqpvhc8WxMWvVw5PTJuQ0Hx0THmoz1lfgy i44gWGwC3PmDp/ZeTAyD3doGODAgVfy8ZzeVYAFj/jnTammP/pgUEhCxVqb1hrYV DXjeV0GRQ1tW97sIhH0M+8pFgprsJbzN8No4P9+6vahir5/QAil8n2wggK1ja+MY Y1T8Od2w2EddEYlXn6qoIFVCTwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGlXN5TD ef8uBmkUhYyQOpg+9i67MB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBDNzMvODIxNDU3RDJGMTM3MTFFQzk3Rjc0RjBDQzRGOUFFMDIvRkEzRkYxRDRG MTNEMTFFQzlCNjczQTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnve4wDwQCAAIwCQMHACABDfDeQDANBgkqhkiG9w0BAQsF AAOCAQEASVTOH81NxhHfs5NkmbmSass4aJO87u560nygxVuh6W21an23Cf2lxFCW a4CfVZyMaWp1VKemwPmRfZT3d9rqCuN/Aft+fqMkTBiki/IyuyyPpOrPLe3J2JBB uzMLKLbceTvKMalHNbxVJUg6a3H+FG2JtEAMLJgE5vthLKQ3cY39heS0cOjvp2Ub YhhWyGkNzOw2sLiU84Uh/ETuYfFqyktQEgVUXGdUpcT+urqc0QwjVVO1Gw44Ij+Z GrXE9xsFfRHFEX6o7G/h3XM+tNhs+Jw+ucLo1x6lXtIMRhZhhGLncCLzX11rk5/W V5LjvyCIggJ2Yn8+dSH5j3UPb9ow0w== -----END CERTIFICATE-----Generated at Sat Aug 9 02:51:51 2025 by rpki-client