$ rpki-client -vvf rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/0834FF2C2F4C11EDB0375D6CC4F9AE02.roa File: 0834FF2C2F4C11EDB0375D6CC4F9AE02.roa (raw, json) Hash identifier: zDo3tedfdMOEsVe84vVrZx7v1JGUP/8LspCoxSCfVr8= Subject key identifier: 8D:5B:22:95:73:3B:E0:37:72:A0:0B:2D:A1:72:A3:A4:FC:77:AC:FC Certificate issuer: /CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Certificate serial: 0906 Authority key identifier: 9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/0834FF2C2F4C11EDB0375D6CC4F9AE02.roa Signing time: Fri 22 Aug 2025 21:00:40 +0000 ROA not before: Fri 22 Aug 2025 21:00:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149010 IP address blocks: 103.253.24.0/24 maxlen: 24 103.253.25.0/24 maxlen: 24 103.253.26.0/24 maxlen: 24 103.253.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813F1, serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Validity Not Before: Aug 22 21:00:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a8da77-f9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:ff:c5:49:b0:69:bd:9c:34:c6:c4:22:a2: b4:3f:31:ca:43:41:98:cd:7b:d2:67:37:a2:bc:f5: d7:03:9b:dc:40:ac:ee:84:c3:8a:c0:c8:9c:70:4f: da:ab:0c:f1:56:4f:76:bc:2e:56:32:51:31:87:07: 69:12:9f:50:54:97:bc:23:2d:44:91:7d:4a:5a:97: b1:a3:2b:a7:e1:e2:6f:f1:73:00:f8:73:5f:de:07: 20:e7:d0:32:63:e9:22:b4:ed:92:25:31:a3:99:03: e7:b8:13:ad:33:f8:b3:7d:31:f2:99:22:6b:00:ef: e8:4e:d7:35:59:a0:c7:63:c1:b6:31:a7:e6:dd:8b: 5b:ce:a8:25:c7:96:c7:ed:a2:cb:37:60:f9:77:43: 81:71:70:32:67:9d:61:7c:f8:5a:74:cf:fb:8f:e9: 21:9c:c6:4b:fc:6b:43:34:97:5d:b8:e0:98:b8:e3: c5:90:82:1a:f4:05:ff:d2:f2:20:44:df:5f:64:19: f3:f0:c9:04:c3:23:6c:4f:5a:6b:0a:65:13:4c:61: 11:19:1d:ca:f1:83:51:36:97:5c:74:7c:24:54:db: b6:0c:14:62:b2:e0:39:dc:b9:d1:5b:8d:1c:b7:8e: bf:ae:a4:d1:8b:eb:71:68:cf:b6:c7:3c:19:f2:b6: f0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:5B:22:95:73:3B:E0:37:72:A0:0B:2D:A1:72:A3:A4:FC:77:AC:FC X509v3 Authority Key Identifier: keyid:9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/0834FF2C2F4C11EDB0375D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.24.0/22 Signature Algorithm: sha256WithRSAEncryption a9:19:48:a6:d7:22:ba:6d:d7:71:f1:0f:be:91:47:6a:b8:ea: a1:b6:88:52:c8:e0:5a:8f:20:26:0f:28:41:9b:00:3d:96:38: ff:81:22:b8:85:59:38:e4:09:e9:d6:60:5a:84:64:bf:e2:e7: a5:39:db:40:c9:77:67:e6:a2:f5:f2:5e:bd:06:49:10:49:a0: d9:c0:0d:1d:33:09:c2:56:ed:ee:77:c6:98:90:a8:34:6d:6a: a6:89:70:84:a7:69:4c:5f:50:28:a9:f0:3e:a7:88:ea:43:1f: 24:9f:ce:db:6f:40:ee:31:f2:cb:4f:89:05:e7:b3:d5:ae:e9: 4b:da:69:69:f3:2b:74:a4:46:85:ec:e8:9e:9a:0c:47:6f:60: 47:eb:c0:1e:0e:16:d1:91:bc:e1:a3:8e:bd:f6:d7:91:ea:db: 0a:3e:90:22:23:99:b9:57:f8:1a:f7:a5:47:65:ae:1f:49:98: 0b:c2:2b:cc:96:8a:66:89:15:cb:48:bf:4c:6e:a3:fd:87:69: 46:6d:5b:9e:9f:bf:c7:fa:94:a1:f7:78:cc:3c:9e:dd:e2:a1: 3b:b0:f8:13:e2:87:65:0a:e7:eb:19:93:13:3e:8a:78:0e:3e: 73:e6:c3:8c:8f:7e:d8:dd:01:24:74:56:b2:fe:a9:0c:9a:2f: 93:8d:a0:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRjExMTAvBgNVBAUTKDlFRkVBQTcyNEQ3MDhDRkU4MkM2QjZCRjI3MENCQjVE RDQzMDZGMjAwHhcNMjUwODIyMjEwMDQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4ZGE3Ny1mOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBz/xUmwab2cNMbEIqK0PzHKQ0GYzXvSZzeivPXXA5vcQKzuhMOKwMiccE/a qwzxVk92vC5WMlExhwdpEp9QVJe8Iy1EkX1KWpexoyun4eJv8XMA+HNf3gcg59Ay Y+kitO2SJTGjmQPnuBOtM/izfTHymSJrAO/oTtc1WaDHY8G2Mafm3Ytbzqglx5bH 7aLLN2D5d0OBcXAyZ51hfPhadM/7j+khnMZL/GtDNJdduOCYuOPFkIIa9AX/0vIg RN9fZBnz8MkEwyNsT1prCmUTTGERGR3K8YNRNpdcdHwkVNu2DBRisuA53LnRW40c t46/rqTRi+txaM+2xzwZ8rbwnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI1bIpVz O+A3cqALLaFyo6T8d6z8MB8GA1UdIwQYMBaAFJ7+qnJNcIz+gsa2vycMu13UMG8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNGMS9EMENBRjM4NEJB NTkxMUVBOTA0RkY5MURDNEY5QUUwMi9udjZxY2sxd2pQNkN4cmFfSnd5N1hkUXdi eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252NnFjazF3alA2Q3hyYV9Kd3k3WGRRd2J5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRjEvRDBDQUYzODRCQTU5MTFFQTkwNEZGOTFEQzRGOUFFMDIvMDgzNEZGMkMy RjRDMTFFREIwMzc1RDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn/RgwDQYJKoZIhvcNAQELBQADggEBAKkZSKbXIrpt13Hx D76RR2q46qG2iFLI4FqPICYPKEGbAD2WOP+BIriFWTjkCenWYFqEZL/i56U520DJ d2fmovXyXr0GSRBJoNnADR0zCcJW7e53xpiQqDRtaqaJcISnaUxfUCip8D6niOpD HySfzttvQO4x8stPiQXns9Wu6UvaaWnzK3SkRoXs6J6aDEdvYEfrwB4OFtGRvOGj jr3215Hq2wo+kCIjmblX+Br3pUdlrh9JmAvCK8yWimaJFctIv0xuo/2HaUZtW56f v8f6lKH3eMw8nt3ioTuw+BPih2UK5+sZkxM+ingOPnPmw4yPftjdASR0VrL+qQya L5ONoJw= -----END CERTIFICATE-----Generated at Sun Aug 24 01:26:30 2025 by rpki-client