$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/3BBD8AE8620811F091BDA035C4F9AE02.roa File: 3BBD8AE8620811F091BDA035C4F9AE02.roa (raw, json) Hash identifier: l81KZYm8B7McIqBnNG7M2LbcnjjotjoHq+OGQq2Xixo= Subject key identifier: 5A:E3:54:4B:BA:46:FC:83:74:B7:A3:5C:6D:B0:66:E2:2D:33:D5:84 Certificate issuer: /CN=A91F731E/serialNumber=2585243D6805F2EA8BC3F63B82364BA991F330B9 Certificate serial: 1FB0 Authority key identifier: 25:85:24:3D:68:05:F2:EA:8B:C3:F6:3B:82:36:4B:A9:91:F3:30:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/3BBD8AE8620811F091BDA035C4F9AE02.roa Signing time: Fri 08 Aug 2025 16:24:13 +0000 ROA not before: Fri 08 Aug 2025 16:24:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137187 IP address blocks: 103.211.150.0/23 maxlen: 24 124.41.244.0/22 maxlen: 22 124.41.244.0/24 maxlen: 24 124.41.245.0/24 maxlen: 24 124.41.246.0/24 maxlen: 24 124.41.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.crl rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8112 (0x1fb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=2585243D6805F2EA8BC3F63B82364BA991F330B9 Validity Not Before: Aug 8 16:24:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689624ac-a347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:48:d6:57:eb:19:70:58:ce:8b:35:17:11:66: 9f:ce:49:9f:ba:0b:6c:19:6f:f1:76:b0:6a:9e:8e: 86:e2:95:89:92:ab:1a:45:74:e2:42:b4:b6:a3:df: a9:1b:db:a5:b5:37:11:8e:b4:2d:62:23:f3:ee:83: 12:c7:c5:fb:63:40:cd:9f:78:f1:47:70:61:cf:7e: 39:ba:b1:41:b1:0d:29:2d:3f:91:af:f0:84:9a:12: 6f:3b:bd:2b:37:19:6d:d7:cf:6b:11:74:bb:80:08: 44:9a:88:5c:d1:78:33:b0:cc:d9:be:de:7c:2d:99: b9:1b:4e:57:7b:a0:44:e1:a7:8b:1e:70:e5:31:f2: e8:b3:8b:7d:d8:65:ce:9e:d9:dc:42:ef:e6:00:d1: ff:27:5a:41:54:89:e1:e7:fc:7a:18:b3:3e:36:a0: db:86:b9:f5:f5:74:dc:b9:c2:ec:b7:45:7d:fe:34: 68:bb:22:d1:ae:89:8f:90:53:b8:29:9a:2d:6f:f9: 06:cd:58:1e:92:52:38:24:09:0a:01:9d:9a:a4:bb: 78:3d:36:8f:63:53:82:ef:f4:0f:99:75:aa:49:91: c8:9b:48:ee:e5:be:c1:cd:24:9c:eb:01:c5:11:a0: d7:5b:0e:ec:f8:5c:80:8c:00:68:2a:8a:c1:8a:9d: 3a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E3:54:4B:BA:46:FC:83:74:B7:A3:5C:6D:B0:66:E2:2D:33:D5:84 X509v3 Authority Key Identifier: keyid:25:85:24:3D:68:05:F2:EA:8B:C3:F6:3B:82:36:4B:A9:91:F3:30:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/3BBD8AE8620811F091BDA035C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.150.0/23 124.41.244.0/22 Signature Algorithm: sha256WithRSAEncryption 11:e4:ad:fa:a7:92:ea:61:40:04:a1:dc:61:8e:87:de:03:2a: 74:82:02:ec:4b:68:e6:da:4e:f0:1a:df:ab:4c:e3:a3:ea:47: 9c:b4:21:26:fc:8f:b9:ab:41:b4:2b:4f:3f:4c:0e:18:d2:37: b5:3a:de:18:c9:43:3f:d4:53:d7:b4:5d:28:44:8c:00:db:e3: 81:c9:f2:ec:cf:9f:8d:6e:ad:3c:7a:08:37:ba:ef:59:9e:42: 08:fa:42:db:02:73:ad:43:33:f1:d8:0c:80:9f:eb:ef:b2:47: e4:cb:bc:d5:92:be:45:23:01:91:3f:ab:0f:de:67:e4:29:e7: 5e:74:60:53:e1:03:a8:d8:47:55:8f:77:40:91:de:07:c4:22: 2a:62:80:fe:8a:cf:b7:36:c9:0f:0e:b4:1d:d2:50:44:c7:fa: c6:51:94:64:15:a2:57:3d:8c:33:ee:62:55:88:8a:5a:42:77: a8:65:a0:2e:6a:aa:b7:2e:2f:f8:5f:ec:a8:e4:6a:7d:f5:2e: 69:20:2d:03:ca:91:7e:38:f7:85:ef:31:05:42:0c:bd:5d:5b: bc:3f:ca:e5:35:18:84:6a:6b:60:6b:44:7e:28:9d:1e:7f:4d: 27:64:14:36:56:4e:b3:b8:0a:3b:df:32:98:e5:b5:87:7d:29: 9c:19:64:a6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICH7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDI1ODUyNDNENjgwNUYyRUE4QkMzRjYzQjgyMzY0QkE5 OTFGMzMwQjkwHhcNMjUwODA4MTYyNDEzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MjRhYy1hMzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10jWV+sZcFjOizUXEWafzkmfugtsGW/xdrBqno6G4pWJkqsaRXTiQrS2o9+p G9ultTcRjrQtYiPz7oMSx8X7Y0DNn3jxR3Bhz345urFBsQ0pLT+Rr/CEmhJvO70r Nxlt189rEXS7gAhEmohc0XgzsMzZvt58LZm5G05Xe6BE4aeLHnDlMfLos4t92GXO ntncQu/mANH/J1pBVInh5/x6GLM+NqDbhrn19XTcucLst0V9/jRouyLRromPkFO4 KZotb/kGzVgeklI4JAkKAZ2apLt4PTaPY1OC7/QPmXWqSZHIm0ju5b7BzSSc6wHF EaDXWw7s+FyAjABoKorBip06EwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFrjVEu6 RvyDdLejXG2wZuItM9WEMB8GA1UdIwQYMBaAFCWFJD1oBfLqi8P2O4I2S6mR8zC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9GNTk2N0U2QzVF RjExMUU2QTdEMUFGMjZDNEY5QUUwMi9KWVVrUFdnRjh1cUx3X1k3Z2paTHFaSHpN TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZVWtQV2dGOHVxTHdfWTdnalpMcVpIek1May5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjczMUUvRjU5NjdFNkM1RUYxMTFFNkE3RDFBRjI2QzRGOUFFMDIvM0JCRDhBRTg2 MjA4MTFGMDkxQkRBMDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFn05YDBAJ8KfQwDQYJKoZIhvcNAQELBQADggEBABHkrfqn kuphQASh3GGOh94DKnSCAuxLaObaTvAa36tM46PqR5y0ISb8j7mrQbQrTz9MDhjS N7U63hjJQz/UU9e0XShEjADb44HJ8uzPn41urTx6CDe671meQgj6QtsCc61DM/HY DICf6++yR+TLvNWSvkUjAZE/qw/eZ+Qp5150YFPhA6jYR1WPd0CR3gfEIipigP6K z7c2yQ8OtB3SUETH+sZRlGQVolc9jDPuYlWIilpCd6hloC5qqrcuL/hf7Kjkan31 LmkgLQPKkX4494XvMQVCDL1dW7w/yuU1GIRqa2BrRH4onR5/TSdkFDZWTrO4Cjvf MpjltYd9KZwZZKY= -----END CERTIFICATE-----Generated at Sun Aug 10 04:14:56 2025 by rpki-client