$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/7AFCC818E38611EB8BC17765C4F9AE02.roa File: 7AFCC818E38611EB8BC17765C4F9AE02.roa (raw, json) Hash identifier: yhFTvnQ9OnQm5YRLzb7trt3j3jJDg72T+yloJnYuUVI= Subject key identifier: F8:31:22:35:63:A5:63:8D:57:DF:9E:68:9A:B9:08:25:3B:58:D8:41 Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 05A4 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/7AFCC818E38611EB8BC17765C4F9AE02.roa Signing time: Mon 04 Aug 2025 05:13:09 +0000 ROA not before: Mon 04 Aug 2025 05:13:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7551 IP address blocks: 103.82.108.0/24 maxlen: 24 103.82.109.0/24 maxlen: 24 111.125.177.0/24 maxlen: 24 111.125.178.0/24 maxlen: 24 111.125.180.0/24 maxlen: 24 111.125.181.0/24 maxlen: 24 111.125.184.0/24 maxlen: 24 111.125.185.0/24 maxlen: 24 119.63.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 05:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1444 (0x5a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Aug 4 05:13:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68904165-d847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7f:40:9f:67:52:67:85:6d:1d:e5:4f:c2:95: f4:df:9e:e0:66:8e:e0:7a:00:97:30:16:65:11:9a: 7e:17:a5:84:57:14:c8:c0:82:8c:81:21:ec:dc:a9: 5c:a5:ca:9e:65:52:45:8e:0b:2a:54:de:7a:d5:9b: 43:37:54:66:a1:b4:00:26:fc:bd:8b:16:86:ee:b6: 77:2a:66:ff:10:f5:c0:fe:de:d5:dd:0f:77:85:aa: 55:09:a7:25:f7:a7:14:a4:a9:5b:77:e5:5c:2e:74: 60:84:bc:69:a2:e1:f3:8d:16:91:ae:49:37:f2:a0: 01:c1:fd:a3:72:c9:61:be:e6:44:49:ee:d0:ab:50: f8:ba:d6:d5:3d:c1:c4:bd:89:10:cc:83:7e:09:bf: 63:0b:19:9b:93:26:5b:a1:c2:0b:08:17:b8:a3:d3: fc:2d:4c:e5:d9:54:cd:df:a4:08:3e:8e:f3:6d:ee: f9:08:b8:3c:8c:7f:5c:d0:1e:46:ad:94:fd:2c:dc: 22:4d:0a:72:8a:43:b5:67:38:0f:00:b1:84:b9:0d: 4b:13:21:ce:9c:67:e4:2b:f6:4f:ca:22:90:01:67: 08:ce:49:b6:2a:c6:08:84:4f:c7:99:eb:ef:4e:b3: d5:a1:ae:b2:a8:a3:8d:f4:0f:ef:47:2a:c1:e3:17: 30:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:31:22:35:63:A5:63:8D:57:DF:9E:68:9A:B9:08:25:3B:58:D8:41 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/7AFCC818E38611EB8BC17765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.108.0/23 111.125.177.0-111.125.178.255 111.125.180.0/23 111.125.184.0/23 119.63.209.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:7e:a8:61:74:40:3f:5b:c5:26:ac:6b:3a:ca:55:41:a8:e6: 3d:8e:04:40:6a:7e:6b:72:d7:01:ca:ff:ff:2e:be:60:d0:f3: ee:5d:1b:a0:aa:07:60:d3:93:cc:e0:ad:df:ea:e3:aa:91:df: 56:fd:94:56:ac:c1:20:46:e4:c4:18:05:60:05:8f:73:23:23: b1:34:d6:56:5e:26:8b:f6:59:07:74:3b:e8:5d:96:91:fd:e6: 5a:8f:e0:c9:56:03:2d:20:a9:b9:2b:54:8a:1e:f2:92:ee:a4: 05:17:9e:f4:6a:4d:1d:b1:e3:60:d7:7c:34:08:6e:c2:3d:f8: 9f:be:20:68:eb:28:43:36:f0:61:d8:55:04:b7:bd:44:51:15: bc:7e:cf:21:57:73:ac:64:f6:e9:33:15:a2:fb:50:aa:b3:6b: b4:37:c3:ac:ec:42:f8:72:c1:99:30:cc:4a:e1:f4:dc:6f:e2: b8:6c:4c:35:e0:f7:be:6a:0a:34:da:59:e5:90:ab:7f:18:39: 99:52:2d:4c:0c:cb:49:42:6a:ab:5d:20:28:59:45:c0:b5:ff: 64:cf:75:3a:68:8b:6b:03:9d:a9:28:c0:7f:87:2d:be:1b:27: b0:c9:5c:e8:4e:36:7a:bb:47:34:36:32:c0:97:d3:cb:33:7c: ba:af:03:7c -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICBaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwODA0MDUxMzA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwNDE2NS1kODQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx39An2dSZ4VtHeVPwpX0357gZo7gegCXMBZlEZp+F6WEVxTIwIKMgSHs3Klc pcqeZVJFjgsqVN561ZtDN1RmobQAJvy9ixaG7rZ3Kmb/EPXA/t7V3Q93hapVCacl 96cUpKlbd+VcLnRghLxpouHzjRaRrkk38qABwf2jcslhvuZESe7Qq1D4utbVPcHE vYkQzIN+Cb9jCxmbkyZbocILCBe4o9P8LUzl2VTN36QIPo7zbe75CLg8jH9c0B5G rZT9LNwiTQpyikO1ZzgPALGEuQ1LEyHOnGfkK/ZPyiKQAWcIzkm2KsYIhE/Hmevv TrPVoa6yqKON9A/vRyrB4xcwIwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFPgxIjVj pWONV9+eaJq5CCU7WNhBMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvN0FGQ0M4MThF Mzg2MTFFQjhCQzE3NzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAFnUmwwDAMEAG99sQMEAG99sgMEAW99tAMEAW99uAMEAHc/ 0TANBgkqhkiG9w0BAQsFAAOCAQEAfn6oYXRAP1vFJqxrOspVQajmPY4EQGp+a3LX Acr//y6+YNDz7l0boKoHYNOTzOCt3+rjqpHfVv2UVqzBIEbkxBgFYAWPcyMjsTTW Vl4mi/ZZB3Q76F2Wkf3mWo/gyVYDLSCpuStUih7yku6kBRee9GpNHbHjYNd8NAhu wj34n74gaOsoQzbwYdhVBLe9RFEVvH7PIVdzrGT26TMVovtQqrNrtDfDrOxC+HLB mTDMSuH03G/iuGxMNeD3vmoKNNpZ5ZCrfxg5mVItTAzLSUJqq10gKFlFwLX/ZM91 OmiLawOdqSjAf4ctvhsnsMlc6E42ertHNDYywJfTyzN8uq8DfA== -----END CERTIFICATE-----Generated at Mon Aug 4 15:33:15 2025 by rpki-client