$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/1C7AC7FE4B0711EFBB12B717C4F9AE02.roa File: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (raw, json) Hash identifier: 2FTQfXCf5iEijrWaIGoqW7OkD23cYHWReHvkr3RdiVo= Subject key identifier: BF:37:DD:F6:B4:65:1F:C2:A7:CD:DA:AB:E7:FB:B4:E1:FF:92:53:65 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 02DF Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/1C7AC7FE4B0711EFBB12B717C4F9AE02.roa Signing time: Sun 27 Jul 2025 02:06:49 +0000 ROA not before: Sun 27 Jul 2025 02:06:49 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132335 IP address blocks: 103.67.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Jul 27 02:06:49 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688589b9-b5d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:33:57:56:78:9e:89:c0:34:63:97:63:0a:4b: e6:d0:16:a8:fd:dc:81:9d:fa:c6:0a:c2:f9:2d:fd: 0e:54:be:53:20:27:62:0b:52:95:0d:02:26:b5:3b: b2:2f:b2:b2:be:11:89:c7:ee:a0:b5:e7:b0:59:a2: de:2f:c8:d5:2e:b6:1f:50:64:0b:26:7a:86:81:e0: 9d:16:a6:8d:68:74:40:09:59:11:94:3d:2c:ae:9a: ef:70:d7:93:57:b4:6b:16:b2:21:16:b2:73:51:36: 98:6e:62:67:eb:c4:1a:dd:df:11:cb:c2:e4:27:85: e7:70:b2:d2:0c:23:f6:ed:6d:d6:cd:51:54:a3:a2: 90:2e:69:11:c6:75:75:4c:3f:8b:2f:d4:6c:ce:5d: 5a:a4:d2:94:aa:73:24:ac:7e:88:e7:87:fd:54:60: 0d:fe:3f:3b:e0:69:69:39:d7:5b:1b:eb:ce:a0:fb: 52:c9:15:ec:e9:73:bb:fd:dc:b6:9b:94:0e:0e:e1: ca:4e:11:cf:86:95:38:90:21:5b:4c:e2:64:9c:9d: a9:4b:9a:04:18:ff:76:32:65:4d:35:9b:ef:30:da: 0c:c9:1d:3e:66:35:f5:00:27:e7:e7:56:a9:68:0f: 3f:9c:78:9c:01:aa:c2:43:7f:f8:55:d1:5d:5b:d6: 5b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:37:DD:F6:B4:65:1F:C2:A7:CD:DA:AB:E7:FB:B4:E1:FF:92:53:65 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/1C7AC7FE4B0711EFBB12B717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.246.0/24 Signature Algorithm: sha256WithRSAEncryption a5:85:e3:c6:2d:63:72:b4:06:bf:b5:31:c0:85:d8:71:72:23: 68:83:bc:63:f8:01:ea:a8:43:59:e2:f5:03:fa:f8:38:43:56: 53:53:8c:a5:78:e8:b3:c4:bf:a3:92:ac:7a:77:9b:f4:77:b3: ea:6e:5c:ce:63:d4:69:5e:ef:56:82:77:3d:04:ba:e2:bf:df: 9a:75:6b:8c:51:66:35:d2:dc:d8:3f:c2:cc:d5:44:8b:83:82: f1:e9:b8:9a:00:23:58:83:a4:9e:4e:85:b0:65:3b:ef:db:3b: b6:9f:e4:d8:a0:ca:b5:a8:d8:c5:df:98:db:5d:4f:bb:59:3c: 53:86:59:90:c5:53:7d:4e:1e:df:ec:9d:c6:09:b9:ff:cd:0c: 54:11:3f:2b:85:bb:2f:eb:22:1c:ad:68:19:f4:7e:95:52:d9: cd:d1:3b:4b:da:6d:a1:16:ec:a2:f1:de:a6:b3:af:c2:c9:a2: d4:ff:b3:c4:f1:5a:5f:71:b2:52:62:b2:86:68:59:bb:59:91: 50:95:b2:ec:6a:57:6b:d0:9f:4b:b0:80:fc:99:3a:88:79:ca: dc:44:b1:c4:06:c4:5f:f6:44:f0:fd:50:45:b6:19:78:87:7a: 0c:96:86:14:dd:66:ab:e7:44:bd:83:30:f6:96:58:52:19:34: c5:7a:f0:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUwNzI3MDIwNjQ5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1ODliOS1iNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDNXVnieicA0Y5djCkvm0Bao/dyBnfrGCsL5Lf0OVL5TICdiC1KVDQImtTuy L7KyvhGJx+6gteewWaLeL8jVLrYfUGQLJnqGgeCdFqaNaHRACVkRlD0srprvcNeT V7RrFrIhFrJzUTaYbmJn68Qa3d8Ry8LkJ4XncLLSDCP27W3WzVFUo6KQLmkRxnV1 TD+LL9Rszl1apNKUqnMkrH6I54f9VGAN/j874GlpOddbG+vOoPtSyRXs6XO7/dy2 m5QODuHKThHPhpU4kCFbTOJknJ2pS5oEGP92MmVNNZvvMNoMyR0+ZjX1ACfn51ap aA8/nHicAarCQ3/4VdFdW9Zb5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFL833fa0 ZR/Cp83aq+f7tOH/klNlMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0N0MvN0UwRjU4NzIwMUU5MTFFREFGOEJERTMwQzRGOUFFMDIvMUM3QUM3RkU0 QjA3MTFFRkJCMTJCNzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQ/YwDQYJKoZIhvcNAQELBQADggEBAKWF48YtY3K0Br+1 McCF2HFyI2iDvGP4AeqoQ1ni9QP6+DhDVlNTjKV46LPEv6OSrHp3m/R3s+puXM5j 1Gle71aCdz0EuuK/35p1a4xRZjXS3Ng/wszVRIuDgvHpuJoAI1iDpJ5OhbBlO+/b O7af5NigyrWo2MXfmNtdT7tZPFOGWZDFU31OHt/sncYJuf/NDFQRPyuFuy/rIhyt aBn0fpVS2c3RO0vabaEW7KLx3qazr8LJotT/s8TxWl9xslJisoZoWbtZkVCVsuxq V2vQn0uwgPyZOoh5ytxEscQGxF/2RPD9UEW2GXiHegyWhhTdZqvnRL2DMPaWWFIZ NMV68Bw= -----END CERTIFICATE-----Generated at Sun Aug 10 05:51:25 2025 by rpki-client