$ rpki-client -vvf rpki.apnic.net/member_repository/A91F57D9/0717E9EE9F5D11ECBBCA9618C4F9AE02/F8071E24DC1111EC80AE816DC4F9AE02.roa File: F8071E24DC1111EC80AE816DC4F9AE02.roa (raw, json) Hash identifier: OCdNpCgeUfuyWeLKRdqmiCW32PlQusQy1i0JweMZuFo= Subject key identifier: 43:FE:60:B7:E7:76:CF:C0:70:B4:84:94:74:83:F8:37:46:E8:C4:C5 Certificate issuer: /CN=A91F57D9/serialNumber=1439BCE4D7A22AE8036CEB2EE6E6AF18F21BB593 Certificate serial: 036C Authority key identifier: 14:39:BC:E4:D7:A2:2A:E8:03:6C:EB:2E:E6:E6:AF:18:F2:1B:B5:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDm85NeiKugDbOsu5uavGPIbtZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F57D9/0717E9EE9F5D11ECBBCA9618C4F9AE02/F8071E24DC1111EC80AE816DC4F9AE02.roa Signing time: Thu 27 Feb 2025 02:26:20 +0000 ROA not before: Thu 27 Feb 2025 02:26:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135097 IP address blocks: 103.233.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F57D9/0717E9EE9F5D11ECBBCA9618C4F9AE02/FDm85NeiKugDbOsu5uavGPIbtZM.crl rsync://rpki.apnic.net/member_repository/A91F57D9/0717E9EE9F5D11ECBBCA9618C4F9AE02/FDm85NeiKugDbOsu5uavGPIbtZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDm85NeiKugDbOsu5uavGPIbtZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 876 (0x36c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F57D9, serialNumber=1439BCE4D7A22AE8036CEB2EE6E6AF18F21BB593 Validity Not Before: Feb 27 02:26:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bfcd4b-97e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:ea:f3:e2:ee:94:66:aa:d3:39:95:c6:9c: b3:1a:03:7a:60:84:fe:ef:5f:db:e9:82:14:99:17: b0:ff:c9:43:6c:bb:9c:3e:75:8b:07:32:eb:b1:31: 58:56:96:53:21:0e:11:ef:8d:59:59:6a:41:a8:cc: 16:e8:9a:48:07:66:64:96:36:4e:7f:e7:2c:c2:a8: ba:f3:51:14:d5:6f:8a:07:d2:46:b0:cf:74:51:cc: 60:8d:d6:f7:f7:65:76:3d:b4:bf:94:58:29:a5:a7: 34:6b:8f:b1:51:09:8a:73:8e:86:8c:b2:ef:f5:c2: fb:38:df:d8:9f:a9:b3:ec:ae:d0:8a:76:5b:3f:20: 92:61:ee:81:ec:71:21:c8:38:d0:3e:14:6a:56:0f: 88:4e:f0:c8:33:f6:33:ce:7c:a4:21:f1:15:6a:6f: 72:30:e5:63:69:2e:14:d3:94:25:5f:34:f1:a8:be: 6d:24:af:89:9e:aa:74:92:74:85:8f:5f:e9:04:19: 93:55:7c:63:14:82:9f:08:bc:7e:99:24:e3:7c:27: 08:ae:0c:19:02:88:71:91:ef:54:d0:86:cb:e0:d3: b2:c8:ce:30:8e:c6:78:a0:e2:28:cf:af:9a:9d:8e: 78:fc:bf:60:6d:06:2d:42:24:53:0b:22:d8:ac:94: 9f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FE:60:B7:E7:76:CF:C0:70:B4:84:94:74:83:F8:37:46:E8:C4:C5 X509v3 Authority Key Identifier: keyid:14:39:BC:E4:D7:A2:2A:E8:03:6C:EB:2E:E6:E6:AF:18:F2:1B:B5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F57D9/0717E9EE9F5D11ECBBCA9618C4F9AE02/FDm85NeiKugDbOsu5uavGPIbtZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDm85NeiKugDbOsu5uavGPIbtZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F57D9/0717E9EE9F5D11ECBBCA9618C4F9AE02/F8071E24DC1111EC80AE816DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.8.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:f0:e0:e0:14:fe:e4:d4:c2:cd:ed:94:cc:db:f7:b5:46:5b: f3:ed:db:89:56:c6:61:cf:98:24:f6:a0:e6:43:7a:6d:b6:cb: c6:a2:70:11:b5:2e:39:9c:0c:b9:ec:c7:b5:83:7e:86:64:33: c2:46:24:b2:20:96:fc:da:4c:8f:57:5f:cc:ea:0b:62:97:ae: fa:28:ee:89:b0:85:b5:2c:ea:97:8e:06:f2:60:a1:72:17:0c: 1b:cf:c9:6d:11:e1:a0:91:79:29:9a:fd:ed:45:8d:f7:77:6b: 71:6b:4f:7d:32:0b:ad:85:db:df:90:20:db:f7:f1:42:b6:83: 96:1d:e3:ef:d3:06:be:9e:7d:cf:43:a4:01:20:31:1a:99:ec: eb:81:f9:5c:4e:a2:67:a1:95:59:6e:53:74:64:40:3d:17:4f: c8:4b:06:fb:be:31:70:4a:9e:48:53:58:41:f2:e4:9f:d0:f9: 76:92:45:62:89:8c:ba:92:48:1b:8a:bb:8a:77:96:58:02:4d: 7c:62:89:8b:4a:30:0c:d3:d1:d8:2b:13:a3:72:02:09:04:96: ac:a1:e6:da:92:2e:86:38:b4:08:32:d5:02:11:61:a4:f4:44: 99:4c:a2:3e:81:5b:23:ba:ae:c9:20:4d:93:09:d3:db:1e:4a: b9:0c:06:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3RDkxMTAvBgNVBAUTKDE0MzlCQ0U0RDdBMjJBRTgwMzZDRUIyRUU2RTZBRjE4 RjIxQkI1OTMwHhcNMjUwMjI3MDIyNjIwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmY2Q0Yi05N2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvR/q8+LulGaq0zmVxpyzGgN6YIT+71/b6YIUmRew/8lDbLucPnWLBzLrsTFY VpZTIQ4R741ZWWpBqMwW6JpIB2ZkljZOf+cswqi681EU1W+KB9JGsM90Ucxgjdb3 92V2PbS/lFgppac0a4+xUQmKc46GjLLv9cL7ON/Yn6mz7K7QinZbPyCSYe6B7HEh yDjQPhRqVg+ITvDIM/YzznykIfEVam9yMOVjaS4U05QlXzTxqL5tJK+Jnqp0knSF j1/pBBmTVXxjFIKfCLx+mSTjfCcIrgwZAohxke9U0IbL4NOyyM4wjsZ4oOIoz6+a nY54/L9gbQYtQiRTCyLYrJSfZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEP+YLfn ds/AcLSElHSD+DdG6MTFMB8GA1UdIwQYMBaAFBQ5vOTXoiroA2zrLubmrxjyG7WT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTdEOS8wNzE3RTlFRTlG NUQxMUVDQkJDQTk2MThDNEY5QUUwMi9GRG04NU5laUt1Z0RiT3N1NXVhdkdQSWJ0 Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEbTg1TmVpS3VnRGJPc3U1dWF2R1BJYnRaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU3RDkvMDcxN0U5RUU5RjVEMTFFQ0JCQ0E5NjE4QzRGOUFFMDIvRjgwNzFFMjRE QzExMTFFQzgwQUU4MTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn6QgwDQYJKoZIhvcNAQELBQADggEBAC3w4OAU/uTUws3t lMzb97VGW/Pt24lWxmHPmCT2oOZDem22y8aicBG1LjmcDLnsx7WDfoZkM8JGJLIg lvzaTI9XX8zqC2KXrvoo7omwhbUs6peOBvJgoXIXDBvPyW0R4aCReSma/e1Fjfd3 a3FrT30yC62F29+QINv38UK2g5Yd4+/TBr6efc9DpAEgMRqZ7OuB+VxOomehlVlu U3RkQD0XT8hLBvu+MXBKnkhTWEHy5J/Q+XaSRWKJjLqSSBuKu4p3llgCTXxiiYtK MAzT0dgrE6NyAgkElqyh5tqSLoY4tAgy1QIRYaT0RJlMoj6BWyO6rskgTZMJ09se SrkMBoE= -----END CERTIFICATE-----Generated at Tue Nov 4 16:41:29 2025 by rpki-client