$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/85BF2BE4710111F093C54468C4F9AE02.roa File: 85BF2BE4710111F093C54468C4F9AE02.roa (raw, json) Hash identifier: DHeUh6Boki6/Qn0u9RFENX6qUoDb9jI1NIN7RVH9Vfk= Subject key identifier: 92:0F:6E:30:DA:D2:5D:CB:B5:46:0F:A6:F4:62:F9:BE:57:0B:D3:7E Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 0159 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/85BF2BE4710111F093C54468C4F9AE02.roa Signing time: Mon 04 Aug 2025 07:06:20 +0000 ROA not before: Mon 04 Aug 2025 07:06:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45905 IP address blocks: 103.65.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Aug 4 07:06:20 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68905bec-903c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:69:ca:3e:e0:15:48:f8:64:b1:e8:e8:c8:4e: 9b:f4:f4:e6:44:ef:36:1e:32:56:7f:bd:f4:4e:9b: a6:32:e3:47:39:ab:a1:5a:c6:d2:2f:6d:db:b6:82: a0:65:b5:aa:48:0e:58:00:1e:8e:32:87:eb:77:7e: 7b:f4:cf:8b:2c:7b:d5:d7:9c:d2:75:b0:d2:7e:4d: a3:1c:f7:a2:f7:ad:c9:aa:57:7b:18:0f:0e:b2:14: 1e:d7:f2:61:5c:e8:98:83:5c:63:d8:6d:fd:b7:ad: 02:7f:18:d2:ac:92:51:15:33:59:b6:80:07:70:54: 56:d0:e4:30:60:97:97:9c:8b:3d:c1:5e:16:f4:9b: 90:e9:be:ee:8c:69:d3:38:6c:0e:c9:1c:e9:2f:4e: 81:90:e3:fe:e1:2c:16:63:73:8b:21:38:54:6d:07: 9e:8c:eb:fc:37:e9:1f:8e:20:df:b0:d7:58:76:5f: 51:a8:2e:57:81:2d:da:7d:0f:f7:03:3d:92:fa:91: 1d:15:64:84:3e:e6:7f:4c:bc:bc:5c:0f:38:ac:58: 43:66:02:f7:c4:41:ed:14:7d:e3:09:4c:45:33:40: ac:47:68:e0:69:d9:d9:5f:a0:be:d5:37:1f:c6:e7: d7:d6:e1:11:5e:03:04:df:6c:34:6e:42:65:15:f0: 13:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0F:6E:30:DA:D2:5D:CB:B5:46:0F:A6:F4:62:F9:BE:57:0B:D3:7E X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/85BF2BE4710111F093C54468C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.134.0/23 Signature Algorithm: sha256WithRSAEncryption 27:af:69:87:90:1e:5d:36:78:cb:eb:7a:c7:7b:29:8a:66:be: 26:60:c1:27:96:7f:ae:39:07:6e:95:94:21:e8:8a:84:34:04: 41:a0:ca:4c:7f:44:66:6a:21:0e:36:e8:76:2b:b5:f3:78:74: 7c:3e:84:ab:5a:81:70:cc:44:aa:8c:5c:7d:6b:49:d5:c2:98: ea:95:1f:85:c8:d8:84:78:aa:41:f3:9d:63:fa:d1:ad:ce:52: 08:26:79:89:13:39:c1:6b:aa:fc:04:62:75:27:4b:a5:6b:77: aa:63:64:f9:43:56:20:7d:ba:78:d3:7c:9d:90:c8:fb:fe:80: f0:89:b6:7c:d4:9a:2c:ef:a3:5b:32:0c:7c:76:1b:3e:03:a1: 6c:7e:dd:25:e2:54:95:10:e9:5e:58:cc:9e:48:8e:5d:96:d0: 51:fd:a8:4b:11:8e:45:b5:28:a6:c8:e0:c0:bb:b2:e3:7a:94: 45:ab:fa:16:69:09:51:3d:35:32:69:4a:be:3d:61:d6:5c:f6: 37:81:55:15:bc:8d:0c:a4:da:c1:a3:ac:18:d0:57:00:76:a2: bd:f4:01:09:94:8c:7e:a6:b1:3c:ca:0e:c7:15:e9:a6:ba:25: 9d:a4:d5:4d:31:3a:0b:ab:c9:ad:99:59:1d:a5:cb:95:b9:98: 55:8b:ff:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUwODA0MDcwNjIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwNWJlYy05MDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmnKPuAVSPhksejoyE6b9PTmRO82HjJWf730TpumMuNHOauhWsbSL23btoKg ZbWqSA5YAB6OMofrd3579M+LLHvV15zSdbDSfk2jHPei963Jqld7GA8OshQe1/Jh XOiYg1xj2G39t60CfxjSrJJRFTNZtoAHcFRW0OQwYJeXnIs9wV4W9JuQ6b7ujGnT OGwOyRzpL06BkOP+4SwWY3OLIThUbQeejOv8N+kfjiDfsNdYdl9RqC5XgS3afQ/3 Az2S+pEdFWSEPuZ/TLy8XA84rFhDZgL3xEHtFH3jCUxFM0CsR2jgadnZX6C+1Tcf xufX1uERXgME32w0bkJlFfATzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJIPbjDa 0l3LtUYPpvRi+b5XC9N+MB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBEODYvNjhFNzk3OEE2Q0JEMTFFRUI4NDZGMzc5QzRGOUFFMDIvODVCRjJCRTQ3 MTAxMTFGMDkzQzU0NDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQYYwDQYJKoZIhvcNAQELBQADggEBACevaYeQHl02eMvr esd7KYpmviZgwSeWf645B26VlCHoioQ0BEGgykx/RGZqIQ426HYrtfN4dHw+hKta gXDMRKqMXH1rSdXCmOqVH4XI2IR4qkHznWP60a3OUggmeYkTOcFrqvwEYnUnS6Vr d6pjZPlDViB9unjTfJ2QyPv+gPCJtnzUmizvo1syDHx2Gz4DoWx+3SXiVJUQ6V5Y zJ5Ijl2W0FH9qEsRjkW1KKbI4MC7suN6lEWr+hZpCVE9NTJpSr49YdZc9jeBVRW8 jQyk2sGjrBjQVwB2or30AQmUjH6msTzKDscV6aa6JZ2k1U0xOgurya2ZWR2ly5W5 mFWL/3Q= -----END CERTIFICATE-----Generated at Sun Aug 10 04:47:08 2025 by rpki-client