$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa File: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (raw, json) Hash identifier: 42NoXRc68AJI33l+b1k0SiSR1RteYpJ6pHpYeUhh2BI= Subject key identifier: 05:8A:87:5F:1C:B9:02:37:58:2D:B4:F8:41:67:C9:7C:60:45:F2:1C Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 02D6 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa Signing time: Fri 15 Aug 2025 02:07:58 +0000 ROA not before: Fri 15 Aug 2025 02:07:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132875 IP address blocks: 103.190.86.0/24 maxlen: 24 103.190.87.0/24 maxlen: 24 2001:df0:e840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 726 (0x2d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Aug 15 02:07:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689e967e-9678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7f:83:99:24:13:56:cd:2b:0d:e3:d2:72:13: c3:39:ae:e2:23:2c:57:bd:a8:2d:6d:30:54:6a:5f: 75:c4:cc:e6:f3:58:1a:eb:2e:90:96:90:88:8a:d9: 92:6e:95:74:59:00:44:a3:76:ac:c0:2c:a6:35:10: af:09:1e:a5:26:f1:e0:95:bc:2d:4b:9d:6b:fa:44: 92:54:db:c5:39:95:b5:b5:a4:6e:cf:3f:74:16:15: d5:89:94:6e:91:f8:42:f3:8d:5c:5e:0e:30:4e:1b: 32:3b:d6:e9:18:ab:47:2b:27:cb:b6:02:4e:f6:c1: c5:55:93:6f:8f:a0:8a:12:f6:e1:a9:da:ca:43:b1: 1f:74:87:57:b4:18:de:70:60:df:3a:90:61:34:94: b5:27:3f:1a:12:be:06:7c:40:c8:4a:02:a2:52:bc: 86:69:ae:2c:97:a9:57:a4:6b:6a:b1:36:4a:60:a3: da:a6:c1:0d:c5:1e:a5:a1:c3:74:91:c8:35:e9:39: 4d:d4:82:70:ab:54:4e:58:ce:33:f0:03:5c:fd:dd: 1f:72:3b:a0:0c:45:c9:aa:6a:c7:5a:ab:ed:0f:a0: 17:c9:0a:e7:ac:e7:30:df:7e:84:ab:26:c1:f7:96: 0b:5a:89:78:49:b9:1b:da:cc:90:31:59:95:fb:d2: 25:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8A:87:5F:1C:B9:02:37:58:2D:B4:F8:41:67:C9:7C:60:45:F2:1C X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.86.0/23 IPv6: 2001:df0:e840::/48 Signature Algorithm: sha256WithRSAEncryption 57:6f:e2:37:3c:44:17:11:a5:bf:2f:7a:67:32:a2:6b:d3:d1: 0c:db:46:f1:23:7a:9c:18:ca:d6:71:eb:4b:82:c1:4f:6a:45: fd:6e:07:21:ed:2f:c7:13:a6:68:45:83:e9:0b:d4:01:44:9b: 58:d8:16:df:1f:56:f0:fe:42:01:c3:a7:75:94:0d:4e:18:30: 3b:51:8c:ba:96:7c:af:c5:55:5d:39:5a:39:b0:2f:a9:64:11: b7:b0:e4:2b:18:c3:28:29:a1:d0:ef:1c:5d:63:9c:9d:44:e7: 89:1e:9f:f3:5e:c1:62:e1:1e:89:de:89:9e:a3:43:1e:c6:51: 73:5f:0a:55:c6:c2:cc:cf:61:61:70:38:82:84:61:48:d2:41: 4a:54:49:74:44:24:41:cb:77:1d:4f:f5:e1:3e:2a:5d:75:08: b5:1a:dc:d9:6d:53:57:75:26:f3:14:d1:95:8c:a3:39:d6:85: a8:5a:bb:18:d8:b8:03:42:16:44:67:6e:47:db:36:39:de:df: 8c:61:47:68:25:1a:cb:88:7f:5e:35:86:9f:44:e1:e4:d0:d8: f0:d7:2e:7e:41:11:8f:8c:d1:b5:b2:ad:b7:43:26:f8:a0:7c: da:c0:e5:99:76:12:89:08:91:95:36:0d:01:0e:bd:59:eb:ee: 89:e1:dc:75 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUwODE1MDIwNzU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllOTY3ZS05Njc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2H+DmSQTVs0rDePSchPDOa7iIyxXvagtbTBUal91xMzm81ga6y6QlpCIitmS bpV0WQBEo3aswCymNRCvCR6lJvHglbwtS51r+kSSVNvFOZW1taRuzz90FhXViZRu kfhC841cXg4wThsyO9bpGKtHKyfLtgJO9sHFVZNvj6CKEvbhqdrKQ7EfdIdXtBje cGDfOpBhNJS1Jz8aEr4GfEDISgKiUryGaa4sl6lXpGtqsTZKYKPapsENxR6locN0 kcg16TlN1IJwq1ROWM4z8ANc/d0fcjugDEXJqmrHWqvtD6AXyQrnrOcw336EqybB 95YLWol4Sbkb2syQMVmV+9IlFQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAWKh18c uQI3WC20+EFnyXxgRfIcMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE5RUEvRDI2QzQxMjhGOEU4MTFFQzhCNTc3MjcxQzRGOUFFMDIvQkZENUU4RUFG OEVCMTFFQzlDMzlDNjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvlYwDwQCAAIwCQMHACABDfDoQDANBgkqhkiG9w0BAQsF AAOCAQEAV2/iNzxEFxGlvy96ZzKia9PRDNtG8SN6nBjK1nHrS4LBT2pF/W4HIe0v xxOmaEWD6QvUAUSbWNgW3x9W8P5CAcOndZQNThgwO1GMupZ8r8VVXTlaObAvqWQR t7DkKxjDKCmh0O8cXWOcnUTniR6f817BYuEeid6JnqNDHsZRc18KVcbCzM9hYXA4 goRhSNJBSlRJdEQkQct3HU/14T4qXXUItRrc2W1TV3Um8xTRlYyjOdaFqFq7GNi4 A0IWRGduR9s2Od7fjGFHaCUay4h/XjWGn0Th5NDY8NcufkERj4zRtbKtt0Mm+KB8 2sDlmXYSiQiRlTYNAQ69WevuieHcdQ== -----END CERTIFICATE-----Generated at Sun Aug 24 11:01:39 2025 by rpki-client