$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/ED7FCE247F6A11F08CC2EF09C4F9AE02.roa File: ED7FCE247F6A11F08CC2EF09C4F9AE02.roa (raw, json) Hash identifier: 4xO0M3A8eWj3l1woS8d1c3cyXJ3kJ09e5TpdtfjybXY= Subject key identifier: 94:F9:0F:9A:D9:85:E8:6E:EF:A5:E8:88:7F:19:C1:1A:31:BE:7D:B6 Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 051D Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/ED7FCE247F6A11F08CC2EF09C4F9AE02.roa Signing time: Fri 22 Aug 2025 15:16:08 +0000 ROA not before: Fri 22 Aug 2025 15:16:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 834 IP address blocks: 103.73.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1309 (0x51d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Aug 22 15:16:08 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68a889b7-c49d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:33:d0:9b:82:6c:fe:30:0e:2d:25:3a:a5:8c: 5e:c8:27:d8:53:45:66:4b:33:6c:60:6a:43:71:9e: ec:f0:3b:20:b6:4a:e5:a6:44:ec:dc:94:83:41:7e: 31:0a:1a:2a:65:96:b7:1f:18:f9:7f:78:fe:63:4f: 3f:30:ed:ab:4c:cc:e7:02:33:9e:f9:5e:3b:a2:a5: 9e:42:fe:c5:5b:da:95:85:7e:48:a5:42:99:a9:c4: fa:86:8b:83:60:d4:60:fc:42:0b:fe:b3:57:7c:67: 90:78:e8:7c:04:58:ea:91:80:fb:2f:65:ae:8b:8f: fe:a4:76:28:a8:e3:6c:01:50:14:09:44:f7:9c:04: c3:74:83:17:c4:97:9a:b8:51:e0:7c:e0:27:22:c7: 8a:21:ab:8d:24:19:a6:cb:11:e4:b9:00:7a:6f:fe: 90:7a:aa:7d:f5:56:3a:45:ba:90:71:f4:77:ef:b9: 4a:c6:4c:46:ce:2f:9a:76:0a:a7:85:e9:7b:ad:0a: cc:ee:07:2a:b4:55:e4:87:7b:30:8e:5c:10:05:a4: 62:7f:73:d8:b2:26:a5:10:7b:6d:fa:20:b1:ac:88: 5e:12:26:81:72:74:02:a3:47:19:26:68:4b:c1:86: dd:03:f1:f3:62:20:6b:a8:2d:57:bd:42:60:5f:8e: 44:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F9:0F:9A:D9:85:E8:6E:EF:A5:E8:88:7F:19:C1:1A:31:BE:7D:B6 X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/ED7FCE247F6A11F08CC2EF09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.220.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:1b:52:11:d0:1d:8d:40:93:e9:31:d3:b3:b1:e9:cd:d5:4c: 7f:d1:1f:94:3b:51:84:74:46:ec:73:39:f2:74:92:3d:22:16: e3:9c:80:b9:76:05:7f:14:79:c6:3f:d3:ee:56:ff:f5:11:c7: 52:da:f7:a3:0c:af:24:2f:ba:b9:79:54:84:6b:8e:e4:e3:de: 65:dc:85:d5:33:fe:ee:b8:0d:7e:0a:63:73:03:4e:c5:b8:b3: e9:ed:04:5e:b9:06:23:d6:a3:74:84:fc:77:2b:8f:9e:b7:e0: 5b:92:dd:b0:cc:30:77:03:07:52:ac:61:f6:88:a4:4d:34:aa: c7:77:2f:a1:3f:80:5c:53:72:0b:ee:c9:ca:40:42:83:c4:e2: 1b:07:b0:ce:59:b7:f1:54:b1:37:98:8f:8f:a5:96:b5:b7:b3: 71:62:94:5e:3b:7e:aa:fa:8a:ce:8d:2f:78:7d:92:47:1d:f3: 88:50:82:34:82:eb:27:ec:47:03:93:a7:97:63:a8:68:6a:e9: 54:a3:64:10:b4:fa:ee:a0:8f:05:7a:85:a6:44:e8:3e:8f:b2: ce:e0:44:c2:f8:a1:ec:4d:a6:11:8c:be:18:98:02:ef:ee:54: f1:b3:d7:17:60:c7:3b:07:86:9c:58:7b:c2:77:24:de:07:15: 8d:94:ab:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUwODIyMTUxNjA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4ODliNy1jNDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTPQm4Js/jAOLSU6pYxeyCfYU0VmSzNsYGpDcZ7s8DsgtkrlpkTs3JSDQX4x ChoqZZa3Hxj5f3j+Y08/MO2rTMznAjOe+V47oqWeQv7FW9qVhX5IpUKZqcT6houD YNRg/EIL/rNXfGeQeOh8BFjqkYD7L2Wui4/+pHYoqONsAVAUCUT3nATDdIMXxJea uFHgfOAnIseKIauNJBmmyxHkuQB6b/6Qeqp99VY6RbqQcfR377lKxkxGzi+adgqn hel7rQrM7gcqtFXkh3swjlwQBaRif3PYsialEHtt+iCxrIheEiaBcnQCo0cZJmhL wYbdA/HzYiBrqC1XvUJgX45EPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJT5D5rZ hehu76XoiH8ZwRoxvn22MB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4RDQvMkY1OEU0NzIyRTUwMTFFQ0EwNEI2QzI1QzRGOUFFMDIvRUQ3RkNFMjQ3 RjZBMTFGMDhDQzJFRjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSdwwDQYJKoZIhvcNAQELBQADggEBAI4bUhHQHY1Ak+kx 07Ox6c3VTH/RH5Q7UYR0RuxzOfJ0kj0iFuOcgLl2BX8UecY/0+5W//URx1La96MM ryQvurl5VIRrjuTj3mXchdUz/u64DX4KY3MDTsW4s+ntBF65BiPWo3SE/Hcrj563 4FuS3bDMMHcDB1KsYfaIpE00qsd3L6E/gFxTcgvuycpAQoPE4hsHsM5Zt/FUsTeY j4+llrW3s3FilF47fqr6is6NL3h9kkcd84hQgjSC6yfsRwOTp5djqGhq6VSjZBC0 +u6gjwV6haZE6D6Pss7gRML4oexNphGMvhiYAu/uVPGz1xdgxzsHhpxYe8J3JN4H FY2Uqzs= -----END CERTIFICATE-----Generated at Sat Aug 23 06:54:10 2025 by rpki-client