$ rpki-client -vvf rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/D0BC8E28C4B511EA8323912BC4F9AE02.roa File: D0BC8E28C4B511EA8323912BC4F9AE02.roa (raw, json) Hash identifier: MIyBunftYkQco/m/ADmv4S1fyRxTgeEhYhl9wBxnLIc= Subject key identifier: 15:D1:06:2E:E4:97:C0:7B:F4:ED:70:0B:AF:01:6E:8E:B3:10:3C:11 Certificate issuer: /CN=A91931EA/serialNumber=6BF9637C581C534B4BA638CDC879C0A7EA7A4F02 Certificate serial: 089B Authority key identifier: 6B:F9:63:7C:58:1C:53:4B:4B:A6:38:CD:C8:79:C0:A7:EA:7A:4F:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a_ljfFgcU0tLpjjNyHnAp-p6TwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/D0BC8E28C4B511EA8323912BC4F9AE02.roa Signing time: Sat 16 Aug 2025 21:01:33 +0000 ROA not before: Sat 16 Aug 2025 21:01:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131475 IP address blocks: 103.31.24.0/23 maxlen: 24 2001:df0:425::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/a_ljfFgcU0tLpjjNyHnAp-p6TwI.crl rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/a_ljfFgcU0tLpjjNyHnAp-p6TwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a_ljfFgcU0tLpjjNyHnAp-p6TwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2203 (0x89b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91931EA, serialNumber=6BF9637C581C534B4BA638CDC879C0A7EA7A4F02 Validity Not Before: Aug 16 21:01:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a0f1ac-7d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9a:80:4d:3d:a7:98:28:da:ec:57:52:0f:12: 8c:be:79:71:96:6c:ce:b4:7f:a2:a4:5a:c1:d4:03: 5a:32:10:55:70:3f:a3:ef:b4:82:4c:51:bc:00:f7: 1e:c8:84:79:29:6f:0c:32:f9:49:ed:65:fa:71:48: b3:2b:ee:db:ce:04:84:44:57:29:81:6d:82:01:dc: c7:04:30:30:e1:e1:91:df:2f:8e:6a:56:1e:5f:e1: 50:63:d4:8c:60:36:b2:c4:23:37:6d:1a:5c:c5:a4: 96:d8:98:60:c8:f7:8a:28:fb:c4:16:ae:06:b0:37: e5:ab:ef:24:18:40:6c:ba:4c:3e:bb:9a:a9:19:a2: 45:05:75:de:05:f7:2d:7c:31:ba:d8:06:43:5c:bd: b7:30:e3:ec:ab:cf:be:36:a1:3c:73:a0:6c:be:52: 00:7d:2e:36:58:52:06:9f:b7:a1:d1:d9:f2:32:8b: cb:62:06:37:4b:12:51:78:11:7e:97:bf:05:ad:5d: b5:25:7b:31:f3:fd:af:0a:7a:68:3d:58:af:cd:76: 34:fe:01:a4:ca:67:32:bb:5d:23:bd:d9:18:a0:8a: f3:67:9d:18:54:f4:32:13:91:44:00:d4:be:2b:c1: 51:5f:cc:83:3d:aa:e3:f3:61:a2:f8:32:97:09:04: 35:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D1:06:2E:E4:97:C0:7B:F4:ED:70:0B:AF:01:6E:8E:B3:10:3C:11 X509v3 Authority Key Identifier: keyid:6B:F9:63:7C:58:1C:53:4B:4B:A6:38:CD:C8:79:C0:A7:EA:7A:4F:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/a_ljfFgcU0tLpjjNyHnAp-p6TwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a_ljfFgcU0tLpjjNyHnAp-p6TwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91931EA/A2398F20C4B411EAA78B422AC4F9AE02/D0BC8E28C4B511EA8323912BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.24.0/23 IPv6: 2001:df0:425::/48 Signature Algorithm: sha256WithRSAEncryption 16:a9:87:f5:7f:43:56:02:f4:72:9e:e1:36:5f:8b:2e:1d:08: 96:be:c1:27:6a:96:47:0f:b0:f2:64:4d:7d:59:f9:c9:9f:b7: ae:5c:c3:a4:2c:7d:61:b8:29:43:b8:24:b9:fa:c3:7c:81:bd: 10:64:0e:64:4f:25:81:ac:91:e7:ae:62:6b:46:a1:3c:0c:39: c2:8e:17:78:cf:f7:3c:0b:85:30:76:8f:71:9d:47:f1:d0:74: ab:fa:ed:31:30:ce:93:48:27:ef:ce:a5:bd:a7:1a:89:ac:fb: e0:f9:f4:a0:fb:db:f5:00:98:15:0b:0c:7b:ad:23:10:9b:52: a8:47:df:c5:7a:83:f7:05:a9:d3:de:79:7c:44:f0:ed:83:31: f7:1a:62:19:cc:ae:6d:83:65:bb:aa:9e:8b:76:86:58:4c:3c: 63:0f:87:23:f1:1e:24:ad:18:ed:fa:c5:6d:d7:6f:87:81:24: 32:ab:5d:91:b1:07:b9:1f:15:82:79:8c:76:bd:9c:9b:99:e1: 3b:68:fb:6b:2b:9f:e1:97:f5:e8:84:dd:72:1f:8f:7d:c9:1e: 54:63:db:1b:39:97:c7:ce:f8:3b:de:8a:24:fa:7a:6e:36:b2: e2:1e:27:80:8a:b1:f3:d5:64:11:83:a1:58:c0:ce:54:e0:86: e6:af:6f:bb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMxRUExMTAvBgNVBAUTKDZCRjk2MzdDNTgxQzUzNEI0QkE2MzhDREM4NzlDMEE3 RUE3QTRGMDIwHhcNMjUwODE2MjEwMTMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEwZjFhYy03ZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5qATT2nmCja7FdSDxKMvnlxlmzOtH+ipFrB1ANaMhBVcD+j77SCTFG8APce yIR5KW8MMvlJ7WX6cUizK+7bzgSERFcpgW2CAdzHBDAw4eGR3y+OalYeX+FQY9SM YDayxCM3bRpcxaSW2JhgyPeKKPvEFq4GsDflq+8kGEBsukw+u5qpGaJFBXXeBfct fDG62AZDXL23MOPsq8++NqE8c6BsvlIAfS42WFIGn7eh0dnyMovLYgY3SxJReBF+ l78FrV21JXsx8/2vCnpoPVivzXY0/gGkymcyu10jvdkYoIrzZ50YVPQyE5FEANS+ K8FRX8yDParj82Gi+DKXCQQ1nQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBXRBi7k l8B79O1wC68Bbo6zEDwRMB8GA1UdIwQYMBaAFGv5Y3xYHFNLS6Y4zch5wKfqek8C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzFFQS9BMjM5OEYyMEM0 QjQxMUVBQTc4QjQyMkFDNEY5QUUwMi9hX2xqZkZnY1UwdExwampOeUhuQXAtcDZU d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FfbGpmRmdjVTB0THBqak55SG5BcC1wNlR3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMxRUEvQTIzOThGMjBDNEI0MTFFQUE3OEI0MjJBQzRGOUFFMDIvRDBCQzhFMjhD NEI1MTFFQTgzMjM5MTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHxgwDwQCAAIwCQMHACABDfAEJTANBgkqhkiG9w0BAQsF AAOCAQEAFqmH9X9DVgL0cp7hNl+LLh0Ilr7BJ2qWRw+w8mRNfVn5yZ+3rlzDpCx9 YbgpQ7gkufrDfIG9EGQOZE8lgayR565ia0ahPAw5wo4XeM/3PAuFMHaPcZ1H8dB0 q/rtMTDOk0gn786lvacaiaz74Pn0oPvb9QCYFQsMe60jEJtSqEffxXqD9wWp0955 fETw7YMx9xpiGcyubYNlu6qei3aGWEw8Yw+HI/EeJK0Y7frFbddvh4EkMqtdkbEH uR8VgnmMdr2cm5nhO2j7ayuf4Zf16ITdch+PfckeVGPbGzmXx874O96KJPp6bjay 4h4ngIqx89VkEYOhWMDOVOCG5q9vuw== -----END CERTIFICATE-----Generated at Sun Aug 24 02:41:12 2025 by rpki-client