$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/675707260BDA11F0A768300AC4F9AE02.roa File: 675707260BDA11F0A768300AC4F9AE02.roa (raw, json) Hash identifier: LFQa37q/cBpLbTU9VfVNZw79cN64ozdrBS9Unjdq4XE= Subject key identifier: 7C:22:B7:85:FA:A3:2C:4E:17:AD:6D:30:7D:44:59:EA:E0:25:D1:96 Certificate issuer: /CN=A91820CC/serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Certificate serial: 35 Authority key identifier: B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/675707260BDA11F0A768300AC4F9AE02.roa Signing time: Tue 01 Jul 2025 08:43:07 +0000 ROA not before: Tue 01 Jul 2025 08:43:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 30967 IP address blocks: 103.94.214.0/24 maxlen: 24 103.94.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Validity Not Before: Jul 1 08:43:07 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68639f9a-884b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0b:c8:34:a4:1f:71:09:01:2d:ad:2d:db:8c: 59:9d:e8:55:31:09:2a:0d:60:29:4c:b6:57:24:e9: 99:72:10:ba:09:51:7e:19:ce:95:fa:96:8d:27:83: d3:95:19:d3:0f:7d:5f:0d:0b:49:4a:6f:49:42:9e: 07:75:8d:95:c1:f0:5e:0c:e0:e7:3d:d9:e5:b3:b5: 9e:dc:36:cc:5b:8f:34:9b:b5:2d:7f:54:d4:a5:21: 07:08:22:e9:eb:18:5e:84:45:83:53:fb:33:c0:64: 74:41:d7:27:e6:57:b9:50:07:0a:0b:06:98:cb:96: 08:ca:e6:b9:06:33:db:89:32:5a:44:19:16:a4:d4: 4e:ea:39:83:4b:88:89:38:48:8c:9d:67:c4:75:ec: f7:dd:80:5b:6c:72:da:39:15:3d:27:c4:53:63:15: 51:18:1e:ef:92:f8:0b:4a:5b:a0:c0:c2:f6:89:ed: 8a:ac:82:56:da:3c:6d:b1:31:77:f6:4a:8a:2d:ab: 7c:50:f8:b5:b5:62:2a:fe:92:3c:32:24:ed:ab:34: 8c:31:6a:c0:e8:fd:04:62:ec:11:ef:ef:2b:25:ee: 5e:35:a4:c2:10:c3:4a:e0:05:03:26:85:02:09:4a: 15:fb:57:80:5f:25:45:3c:21:63:4b:2f:cd:a5:28: bf:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:22:B7:85:FA:A3:2C:4E:17:AD:6D:30:7D:44:59:EA:E0:25:D1:96 X509v3 Authority Key Identifier: keyid:B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/675707260BDA11F0A768300AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.214.0/23 Signature Algorithm: sha256WithRSAEncryption 50:0c:12:82:3f:80:34:13:ca:69:ee:63:eb:ee:dd:a9:54:b9: e3:46:01:f5:44:a8:95:b1:f0:af:dc:2a:c5:b9:07:01:08:8b: 22:ba:67:80:2d:b6:db:2c:fc:02:1a:f9:2b:00:bd:37:d0:d9: e6:12:be:f0:69:25:9b:64:7d:39:e2:46:ee:ac:d6:08:ed:c1: 51:99:72:ef:c0:49:e0:ae:0a:d5:73:bd:66:bd:1b:74:f0:d6: 2a:92:f4:0f:53:ac:90:20:9e:74:70:3c:8f:c4:d9:85:05:e6: f1:9d:79:74:50:e0:2f:22:39:d0:a1:cd:60:41:17:16:76:c3: 9b:af:e4:dc:e4:b1:89:a1:ed:5e:af:62:08:cf:7a:19:86:da: 27:f5:99:e9:66:dd:da:6c:59:5c:00:6e:a5:df:77:34:fd:35: 4d:60:e0:b4:e8:dc:a0:6c:eb:ed:ac:ae:ae:08:c2:3a:b2:05: 78:3b:eb:b5:54:cc:85:64:c8:d6:af:63:b3:67:a9:98:0a:ff: 83:a6:8e:94:e6:06:a5:44:ec:f3:d9:49:e9:4e:0b:9b:1a:7d: 74:18:77:d8:85:09:f3:44:e5:23:07:9e:f1:05:cd:9a:4e:ab: 28:90:23:a2:15:0d:de:29:de:d6:70:f5:05:3d:4b:09:a4:b3: 37:31:de:60 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoQjc0NjQyNEUzNEU4OTlFMTRDRDMzOUQwNzNCQjVGNDkx OEZEMDc4NzAeFw0yNTA3MDEwODQzMDdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjM5ZjlhLTg4NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7C8g0pB9xCQEtrS3bjFmd6FUxCSoNYClMtlck6ZlyELoJUX4ZzpX6lo0ng9OV GdMPfV8NC0lKb0lCngd1jZXB8F4M4Oc92eWztZ7cNsxbjzSbtS1/VNSlIQcIIunr GF6ERYNT+zPAZHRB1yfmV7lQBwoLBpjLlgjK5rkGM9uJMlpEGRak1E7qOYNLiIk4 SIydZ8R17PfdgFtscto5FT0nxFNjFVEYHu+S+AtKW6DAwvaJ7YqsglbaPG2xMXf2 Sootq3xQ+LW1Yir+kjwyJO2rNIwxasDo/QRi7BHv7ysl7l41pMIQw0rgBQMmhQIJ ShX7V4BfJUU8IWNLL82lKL/xAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfCK3hfqj LE4XrW0wfURZ6uAl0ZYwHwYDVR0jBBgwFoAUt0ZCTjTomeFM0znQc7tfSRj9B4cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDLzkzNkI0MzMyMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVGTTB6blFjN3RmU1JqOUI0 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdDBaQ1RqVG9tZUZNMHpuUWM3dGZTUmo5QjRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy85MzZCNDMzMjBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi82NzU3MDcyNjBC REExMUYwQTc2ODMwMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWde1jANBgkqhkiG9w0BAQsFAAOCAQEAUAwSgj+ANBPKae5j 6+7dqVS540YB9USolbHwr9wqxbkHAQiLIrpngC222yz8Ahr5KwC9N9DZ5hK+8Gkl m2R9OeJG7qzWCO3BUZly78BJ4K4K1XO9Zr0bdPDWKpL0D1OskCCedHA8j8TZhQXm 8Z15dFDgLyI50KHNYEEXFnbDm6/k3OSxiaHtXq9iCM96GYbaJ/WZ6Wbd2mxZXABu pd93NP01TWDgtOjcoGzr7ayurgjCOrIFeDvrtVTMhWTI1q9js2epmAr/g6aOlOYG pUTs89lJ6U4Lmxp9dBh32IUJ80TlIwee8QXNmk6rKJAjohUN3ine1nD1BT1LCaSz NzHeYA== -----END CERTIFICATE-----Generated at Thu Jul 3 10:34:22 2025 by rpki-client