$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3A964BE6AEBC11EF876B6A5AC4F9AE02.roa File: 3A964BE6AEBC11EF876B6A5AC4F9AE02.roa (raw, json) Hash identifier: mLHQ8FPso+ZmAaHO2o/MCAMgyAvNWTYy5WsKEiwbpt0= Subject key identifier: 83:90:8E:79:11:64:35:FE:BC:EF:F9:46:94:31:4C:37:E9:49:B1:CB Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 0578 Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3A964BE6AEBC11EF876B6A5AC4F9AE02.roa Signing time: Fri 15 Aug 2025 00:05:25 +0000 ROA not before: Fri 15 Aug 2025 00:05:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134176 IP address blocks: 103.170.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1400 (0x578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3, serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Validity Not Before: Aug 15 00:05:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689e79c4-271c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:43:32:93:2f:04:9d:d0:3b:ff:65:41:19:3f: 27:c9:0f:36:be:52:4e:0b:16:76:ca:04:48:68:b0: cc:85:f2:e6:9c:fa:93:f5:f4:93:35:b4:ca:61:9c: 80:df:90:e2:d4:06:aa:1b:8c:fb:ab:d1:88:e1:e3: 80:bf:81:af:96:31:6d:04:56:ab:d4:1a:16:b7:3a: 27:e5:da:41:7d:e6:62:ff:13:15:f6:e9:c2:2c:04: 93:a2:b0:97:69:b5:34:fb:e9:51:0c:83:eb:0a:16: 08:bf:f8:3b:a5:dc:70:25:42:08:65:24:d7:11:9d: 7e:e6:04:d4:e5:63:b2:8c:68:57:c9:e0:98:ae:67: 4f:85:5b:6f:98:a2:9e:79:19:af:29:2e:cc:ad:21: 02:3e:33:b9:74:b3:c6:e5:ec:1f:65:05:39:bf:83: 1d:a6:ae:0c:09:81:73:46:12:38:4d:89:92:19:d1: c3:02:03:b7:ac:05:9d:f6:3a:97:c5:67:0c:de:af: 58:1d:49:dc:e5:9c:18:81:7a:78:53:b3:2f:e7:9f: f2:ac:e2:c8:3a:92:b9:30:5d:92:bc:7a:35:d0:f0: ba:b6:78:d9:4d:ea:76:ba:55:20:70:03:01:d8:31: 4c:de:b2:9f:9b:53:cf:36:71:8d:12:49:a9:32:ea: 79:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:90:8E:79:11:64:35:FE:BC:EF:F9:46:94:31:4C:37:E9:49:B1:CB X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3A964BE6AEBC11EF876B6A5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.72.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:f8:87:68:cb:f4:c0:77:4d:36:f9:bd:cc:49:61:be:56:8d: cf:df:24:af:89:51:c6:8d:ef:35:58:37:ea:ff:19:21:18:56: 35:dd:ad:df:b2:e3:b5:f2:37:8e:9f:86:22:ba:d1:35:1b:ac: e2:99:38:25:91:7d:dc:e0:9f:e9:44:70:39:cb:8a:9b:5f:3f: 1f:79:33:71:0e:80:88:b8:1b:f7:4e:28:28:47:30:90:39:e9: 10:f0:8d:a1:79:ba:7e:fb:fd:d5:d0:70:c4:15:30:3e:a0:fe: e2:47:52:6c:e0:f4:8c:b6:e3:cc:45:12:b3:33:a1:2f:e7:6b: 02:96:cd:91:08:28:0e:31:3e:de:ad:1a:e6:8d:bc:ee:bf:07: 77:71:23:4a:8c:7e:e7:a1:2b:98:a7:d2:a7:3e:53:9a:95:af: 6b:f7:11:b4:0b:c1:7f:1f:29:4b:2f:66:17:9e:9f:74:76:ef: 8e:68:d5:55:f7:d9:5c:90:ed:46:9e:2e:40:d3:67:46:52:8b: 17:d6:5c:71:a7:04:da:83:a7:63:b9:69:27:cb:7f:45:cd:45: e4:8e:47:38:46:0a:51:f6:9e:4e:33:7b:cb:bd:e3:ab:ee:ed: a7:79:30:af:b7:97:5e:0b:ad:22:46:ec:75:c0:4c:fd:3e:b0: ca:6b:48:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjUwODE1MDAwNTI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNzljNC0yNzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUMyky8EndA7/2VBGT8nyQ82vlJOCxZ2ygRIaLDMhfLmnPqT9fSTNbTKYZyA 35Di1AaqG4z7q9GI4eOAv4GvljFtBFar1BoWtzon5dpBfeZi/xMV9unCLASTorCX abU0++lRDIPrChYIv/g7pdxwJUIIZSTXEZ1+5gTU5WOyjGhXyeCYrmdPhVtvmKKe eRmvKS7MrSECPjO5dLPG5ewfZQU5v4Mdpq4MCYFzRhI4TYmSGdHDAgO3rAWd9jqX xWcM3q9YHUnc5ZwYgXp4U7Mv55/yrOLIOpK5MF2SvHo10PC6tnjZTep2ulUgcAMB 2DFM3rKfm1PPNnGNEkmpMup50wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIOQjnkR ZDX+vO/5RpQxTDfpSbHLMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4RTMvNTM5M0MwRUUwMDI2MTFFQ0E0MDYxNjE0QzRGOUFFMDIvM0E5NjRCRTZB RUJDMTFFRjg3NkI2QTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqkgwDQYJKoZIhvcNAQELBQADggEBAC/4h2jL9MB3TTb5 vcxJYb5Wjc/fJK+JUcaN7zVYN+r/GSEYVjXdrd+y47XyN46fhiK60TUbrOKZOCWR fdzgn+lEcDnLiptfPx95M3EOgIi4G/dOKChHMJA56RDwjaF5un77/dXQcMQVMD6g /uJHUmzg9Iy248xFErMzoS/nawKWzZEIKA4xPt6tGuaNvO6/B3dxI0qMfuehK5in 0qc+U5qVr2v3EbQLwX8fKUsvZheen3R2745o1VX32VyQ7UaeLkDTZ0ZSixfWXHGn BNqDp2O5aSfLf0XNReSORzhGClH2nk4ze8u946vu7ad5MK+3l14LrSJG7HXATP0+ sMprSJs= -----END CERTIFICATE-----Generated at Sun Aug 24 01:25:56 2025 by rpki-client