$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/D2D714387F6A11F0932D5109C4F9AE02.roa File: D2D714387F6A11F0932D5109C4F9AE02.roa (raw, json) Hash identifier: yUGreVj4o/HUDna6xAxmrZnhHq4vIsdMCondMWB4PTE= Subject key identifier: 30:8B:CD:0B:70:56:43:42:69:18:98:74:DC:DF:C8:29:8F:3E:6E:FA Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 051B Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/D2D714387F6A11F0932D5109C4F9AE02.roa Signing time: Fri 22 Aug 2025 15:15:23 +0000 ROA not before: Fri 22 Aug 2025 15:15:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9304 IP address blocks: 103.73.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Aug 22 15:15:23 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68a8898b-f8ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:6c:29:66:c9:a2:62:7f:3c:d6:bf:70:80: 94:82:dd:cf:e0:ae:c7:e2:fe:4d:95:1c:ea:ff:11: a6:80:3a:2e:b0:ff:ad:ca:d7:11:cb:94:10:ea:5e: 56:00:87:db:18:0e:c3:df:29:5f:c5:d5:af:a4:69: c0:68:75:c5:6c:bd:30:cb:25:f9:a6:67:3a:23:f5: 04:f7:e1:da:ee:78:7e:01:c1:a0:e8:62:85:6a:9e: c1:83:79:8f:98:28:3e:9b:6e:b7:83:2a:d9:f4:80: 2e:95:0f:b7:8e:b0:1d:97:4f:87:84:74:f9:b0:dd: d0:4e:ae:af:cc:b5:ec:1a:fb:1b:fc:0b:65:44:3d: 37:e1:c4:d5:d0:e6:c6:19:1e:0e:43:a3:47:62:c9: 91:a6:21:a0:51:bd:4e:ba:89:d3:5b:5a:9e:79:c8: b5:d1:80:77:a8:fb:02:41:f8:f2:e3:3b:8d:cd:d4: 2a:3b:ec:b6:47:70:78:72:c2:47:14:c5:bd:ec:9f: 1e:58:3f:df:52:a2:00:81:34:e8:ec:b7:64:19:44: c9:8a:d2:48:57:44:26:14:14:e8:fb:92:f5:04:71: 5d:7a:55:57:3e:55:fd:cb:b9:f4:eb:42:83:f9:b7: 9d:e7:1c:95:1a:8a:b6:7b:59:46:29:13:c7:b6:c7: 83:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8B:CD:0B:70:56:43:42:69:18:98:74:DC:DF:C8:29:8F:3E:6E:FA X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/D2D714387F6A11F0932D5109C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.221.0/24 Signature Algorithm: sha256WithRSAEncryption c4:17:8b:ab:8c:3c:c5:5b:b5:af:56:c7:1e:a9:72:6e:61:12: 91:12:98:b0:2f:44:6b:8c:44:cc:9c:e3:21:98:54:c7:f6:7c: b6:bc:c5:a9:4d:90:99:ed:6a:bd:25:b2:c2:d0:6a:8d:a9:a7: 66:f3:69:2f:03:88:9a:d5:cb:b5:be:c3:50:60:a1:b1:2c:58: 43:11:e7:ae:c4:aa:bd:0c:2d:63:f6:a2:89:20:2c:02:70:d6: 6c:5c:b8:f1:54:bc:e6:92:4a:73:6f:3c:7c:61:60:18:67:2c: 1b:31:f8:1b:17:e3:7e:03:80:64:a9:d5:cd:eb:bc:a2:46:f5: c4:11:fe:aa:fe:5b:25:80:1a:5c:85:e7:29:ae:ef:fd:fa:b2: 9c:4c:e1:68:49:2f:bf:20:0b:0b:20:fc:5c:a4:5f:67:da:7d: 4f:6a:6e:a5:96:f2:ba:54:9b:0b:94:10:90:7c:99:53:d9:bc: 43:7c:c2:ca:b1:93:10:ef:43:19:83:52:6f:70:e4:39:55:42: 9b:57:a4:bd:2b:2d:73:e8:83:69:42:29:92:af:b2:9e:a2:6b: 15:0b:3a:fe:ae:1e:f2:6c:55:68:77:87:be:63:80:cc:b6:ae: bb:0a:ff:db:65:4b:f5:47:c0:ad:56:34:04:64:f1:a9:3a:f6: 72:f1:88:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUwODIyMTUxNTIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4ODk4Yi1mOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWZsKWbJomJ/PNa/cICUgt3P4K7H4v5NlRzq/xGmgDousP+tytcRy5QQ6l5W AIfbGA7D3ylfxdWvpGnAaHXFbL0wyyX5pmc6I/UE9+Ha7nh+AcGg6GKFap7Bg3mP mCg+m263gyrZ9IAulQ+3jrAdl0+HhHT5sN3QTq6vzLXsGvsb/AtlRD034cTV0ObG GR4OQ6NHYsmRpiGgUb1OuonTW1qeeci10YB3qPsCQfjy4zuNzdQqO+y2R3B4csJH FMW97J8eWD/fUqIAgTTo7LdkGUTJitJIV0QmFBTo+5L1BHFdelVXPlX9y7n060KD +bed5xyVGoq2e1lGKRPHtseD8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDCLzQtw VkNCaRiYdNzfyCmPPm76MB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4RDQvMkY1OEU0NzIyRTUwMTFFQ0EwNEI2QzI1QzRGOUFFMDIvRDJENzE0Mzg3 RjZBMTFGMDkzMkQ1MTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSd0wDQYJKoZIhvcNAQELBQADggEBAMQXi6uMPMVbta9W xx6pcm5hEpESmLAvRGuMRMyc4yGYVMf2fLa8xalNkJntar0lssLQao2pp2bzaS8D iJrVy7W+w1BgobEsWEMR567Eqr0MLWP2ookgLAJw1mxcuPFUvOaSSnNvPHxhYBhn LBsx+BsX434DgGSp1c3rvKJG9cQR/qr+WyWAGlyF5ymu7/36spxM4WhJL78gCwsg /FykX2fafU9qbqWW8rpUmwuUEJB8mVPZvEN8wsqxkxDvQxmDUm9w5DlVQptXpL0r LXPog2lCKZKvsp6iaxULOv6uHvJsVWh3h75jgMy2rrsK/9tlS/VHwK1WNARk8ak6 9nLxiOk= -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:24 2025 by rpki-client