$ rpki-client -vvf rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/76D38708D64611EE98C44371C4F9AE02.roa File: 76D38708D64611EE98C44371C4F9AE02.roa (raw, json) Hash identifier: Qz146VM4QvlDNRuGBcUC54NXkp571EsnSbuspPg45Lo= Subject key identifier: 97:92:53:B0:50:F3:8D:B2:C4:9A:8D:AE:1F:83:5E:D0:EA:FA:B4:10 Certificate issuer: /CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Certificate serial: 0AFB Authority key identifier: E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/76D38708D64611EE98C44371C4F9AE02.roa Signing time: Fri 22 Aug 2025 19:59:11 +0000 ROA not before: Fri 22 Aug 2025 19:59:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135341 IP address blocks: 103.120.44.0/24 maxlen: 24 103.120.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2811 (0xafb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91278D5, serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Validity Not Before: Aug 22 19:59:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a8cc0f-077f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:aa:20:e3:d0:28:aa:3a:29:31:fd:8b:4b: 3f:49:95:aa:73:56:99:cb:cb:03:8d:59:9c:1e:b7: c3:ca:60:25:76:a8:5c:0f:62:38:0f:8e:3e:79:e4: a8:da:23:05:82:b4:70:c3:81:75:6d:46:e6:a5:b8: 4e:f4:c2:ac:dc:d2:83:b6:ea:0c:58:51:2d:2f:30: 7f:8a:5c:f7:0f:69:2b:d8:13:87:b9:f9:9c:86:97: 06:25:9c:01:43:3a:09:b8:93:28:ef:7f:d4:20:c5: 54:73:f9:a4:a3:07:87:9f:07:85:14:39:14:df:64: 66:62:21:7c:51:b7:0b:44:71:89:fe:6d:da:46:c3: f0:64:79:41:93:1b:ae:b0:0a:97:e3:3d:32:d2:5e: 0f:35:2c:82:2e:0c:48:43:3c:ce:e0:d2:88:c3:cd: a8:b0:c2:ca:e1:c3:cc:18:f3:7c:7c:06:30:d9:e0: 7b:9f:53:59:e7:6f:48:2d:6c:c3:50:b6:3b:1c:83: cc:f4:b0:19:f9:94:53:3a:55:4c:fc:62:27:b9:0f: e1:d5:e3:e3:82:9f:bb:01:ad:50:e9:04:e0:c1:a0: ea:0e:46:19:f8:41:63:d1:74:d8:9d:00:25:66:24: e0:c8:87:9e:94:08:ae:86:05:96:ae:7b:77:a2:06: 75:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:92:53:B0:50:F3:8D:B2:C4:9A:8D:AE:1F:83:5E:D0:EA:FA:B4:10 X509v3 Authority Key Identifier: keyid:E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/76D38708D64611EE98C44371C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.44.0/23 Signature Algorithm: sha256WithRSAEncryption 65:95:68:ae:5a:00:53:e6:b8:b1:53:f7:8c:c0:a5:bc:9d:28: 1d:a5:6a:aa:3e:19:62:cc:80:78:ff:87:07:3b:56:50:49:94: cd:15:e6:cc:63:30:81:de:3a:4f:8b:f6:ff:6f:b0:54:55:2f: 89:49:13:f0:6d:5b:a6:cd:23:cc:d6:73:55:42:6b:77:27:e7: 7e:37:61:01:cd:39:42:7d:c5:bf:f9:cd:68:1f:e7:9c:83:b1: 2a:44:fd:e9:ae:5a:0e:a5:0e:4a:37:62:ac:93:fd:63:d1:28: 69:ab:41:64:ef:b3:e8:fd:99:dd:15:fd:f8:46:d8:06:c2:55: 88:4d:a6:b2:66:62:19:38:df:0b:1a:0a:a3:9d:37:b1:a0:3e: 92:b8:29:64:23:6e:0f:95:a8:d0:39:01:f1:c8:f2:cb:f1:d8: e5:67:93:6f:3f:8d:b6:53:0c:8c:08:d0:7e:6b:54:04:58:26: e0:9f:f7:31:86:42:e2:d4:96:71:8b:d6:27:36:6b:1a:e0:eb: 35:1f:45:ec:55:d1:f6:e2:45:13:3b:84:f9:e4:20:cf:5f:9e: b9:d0:9c:45:12:88:e5:85:27:17:35:11:f1:00:bf:a9:3f:a1: 51:57:79:8a:9f:99:bb:4c:aa:6b:ec:16:52:c1:0a:10:31:99: 74:17:2a:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc4RDUxMTAvBgNVBAUTKEUwMTBBRjJFMTE0QTRBOUZENTA4NUJFNDQ2NjA1MjEz OTBGQjEzMzEwHhcNMjUwODIyMTk1OTExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4Y2MwZi0wNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriCqIOPQKKo6KTH9i0s/SZWqc1aZy8sDjVmcHrfDymAldqhcD2I4D44+eeSo 2iMFgrRww4F1bUbmpbhO9MKs3NKDtuoMWFEtLzB/ilz3D2kr2BOHufmchpcGJZwB QzoJuJMo73/UIMVUc/mkoweHnweFFDkU32RmYiF8UbcLRHGJ/m3aRsPwZHlBkxuu sAqX4z0y0l4PNSyCLgxIQzzO4NKIw82osMLK4cPMGPN8fAYw2eB7n1NZ529ILWzD ULY7HIPM9LAZ+ZRTOlVM/GInuQ/h1ePjgp+7Aa1Q6QTgwaDqDkYZ+EFj0XTYnQAl ZiTgyIeelAiuhgWWrnt3ogZ1TwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJeSU7BQ 842yxJqNrh+DXtDq+rQQMB8GA1UdIwQYMBaAFOAQry4RSkqf1Qhb5EZgUhOQ+xMx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzhENS82MDEzMjE2MDU2 QzgxMUVBQjY2NTdBNDBDNEY5QUUwMi80QkN2TGhGS1NwX1ZDRnZrUm1CU0U1RDdF ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCQ3ZMaEZLU3BfVkNGdmtSbUJTRTVEN0V6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc4RDUvNjAxMzIxNjA1NkM4MTFFQUI2NjU3QTQwQzRGOUFFMDIvNzZEMzg3MDhE NjQ2MTFFRTk4QzQ0MzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFneCwwDQYJKoZIhvcNAQELBQADggEBAGWVaK5aAFPmuLFT 94zApbydKB2laqo+GWLMgHj/hwc7VlBJlM0V5sxjMIHeOk+L9v9vsFRVL4lJE/Bt W6bNI8zWc1VCa3cn5343YQHNOUJ9xb/5zWgf55yDsSpE/emuWg6lDko3YqyT/WPR KGmrQWTvs+j9md0V/fhG2AbCVYhNprJmYhk43wsaCqOdN7GgPpK4KWQjbg+VqNA5 AfHI8svx2OVnk28/jbZTDIwI0H5rVARYJuCf9zGGQuLUlnGL1ic2axrg6zUfRexV 0fbiRRM7hPnkIM9fnrnQnEUSiOWFJxc1EfEAv6k/oVFXeYqfmbtMqmvsFlLBChAx mXQXKtE= -----END CERTIFICATE-----Generated at Sun Aug 24 04:48:22 2025 by rpki-client