$ rpki-client -vvf rpki.apnic.net/member_repository/A919BC76/F1AD3E3EE8BB11ED8538DA1FC4F9AE02/91A7AB90D79F11EE8DB3B465C4F9AE02.roa File: 91A7AB90D79F11EE8DB3B465C4F9AE02.roa (raw, json) Hash identifier: n0di+O7+GylznqMmKQghf9cohu3FMpp7o1cz70T0uvA= Subject key identifier: 62:E5:FF:53:17:3D:56:E2:BF:A8:E6:F3:2A:D4:8D:7B:86:1C:7A:63 Certificate issuer: /CN=A919BC76/serialNumber=87A12E75149B3D8A4D272A13093EF6AC9B252CF3 Certificate serial: 019F Authority key identifier: 87:A1:2E:75:14:9B:3D:8A:4D:27:2A:13:09:3E:F6:AC:9B:25:2C:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6EudRSbPYpNJyoTCT72rJslLPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BC76/F1AD3E3EE8BB11ED8538DA1FC4F9AE02/91A7AB90D79F11EE8DB3B465C4F9AE02.roa Signing time: Tue 01 Jul 2025 04:08:47 +0000 ROA not before: Tue 01 Jul 2025 04:08:47 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 151200 IP address blocks: 103.69.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BC76/F1AD3E3EE8BB11ED8538DA1FC4F9AE02/h6EudRSbPYpNJyoTCT72rJslLPM.crl rsync://rpki.apnic.net/member_repository/A919BC76/F1AD3E3EE8BB11ED8538DA1FC4F9AE02/h6EudRSbPYpNJyoTCT72rJslLPM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6EudRSbPYpNJyoTCT72rJslLPM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BC76, serialNumber=87A12E75149B3D8A4D272A13093EF6AC9B252CF3 Validity Not Before: Jul 1 04:08:47 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68635f4f-f548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:75:06:d3:34:0a:2e:27:88:c9:18:68:b9:95: 2c:31:47:83:00:ad:01:56:02:1b:d6:c3:ab:e6:ed: 1d:f9:d1:34:fb:8d:48:72:06:cf:71:2a:e7:74:e8: f5:49:f6:3e:74:9d:05:87:44:e3:f5:1e:4d:97:7d: 8e:af:8c:9d:62:24:65:eb:c1:0f:1b:b7:8e:45:bb: 4c:79:75:23:92:1b:9a:89:aa:39:9f:bb:9b:92:d8: 05:56:07:ce:c3:f9:ea:64:71:bb:69:8d:a4:56:6e: f3:2e:ca:0b:59:64:54:89:fe:1b:a9:74:14:78:61: 73:47:bd:85:38:43:1f:d2:c2:0e:51:c2:8f:a0:d2: 5c:a5:14:ff:7e:0c:a5:bc:a3:f2:86:d2:0e:54:0f: bb:3d:92:07:6c:71:57:31:5e:26:37:21:3c:ed:1c: d2:b0:76:d8:76:ba:1f:f4:a1:65:59:3a:4c:f2:90: b5:b2:37:f1:96:39:5f:61:de:e5:28:46:fd:34:a8: 93:06:80:af:d0:3d:f8:23:47:9c:ef:c5:44:2d:c9: c6:b2:5b:00:15:70:50:da:0d:07:8b:d2:7c:49:c8: c2:64:05:09:4a:2d:f0:43:cc:f2:0a:23:09:8d:f2: ca:20:18:7b:67:b5:85:65:ad:d5:eb:a3:bd:4d:e5: 2a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E5:FF:53:17:3D:56:E2:BF:A8:E6:F3:2A:D4:8D:7B:86:1C:7A:63 X509v3 Authority Key Identifier: keyid:87:A1:2E:75:14:9B:3D:8A:4D:27:2A:13:09:3E:F6:AC:9B:25:2C:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BC76/F1AD3E3EE8BB11ED8538DA1FC4F9AE02/h6EudRSbPYpNJyoTCT72rJslLPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6EudRSbPYpNJyoTCT72rJslLPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BC76/F1AD3E3EE8BB11ED8538DA1FC4F9AE02/91A7AB90D79F11EE8DB3B465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.76.0/24 Signature Algorithm: sha256WithRSAEncryption 39:6a:16:78:b3:ef:4a:ca:33:c9:e9:15:d7:f0:38:67:e6:bd: cc:ae:b7:a4:80:3f:27:5e:d6:56:0a:08:48:db:74:e8:4a:f0: 08:50:3a:f6:c3:78:97:c8:fc:3a:e5:f8:9d:28:0b:c4:a2:8f: c6:d8:73:8e:87:51:40:86:5e:81:d9:d0:53:f4:26:16:e6:ec: 19:2a:3b:c3:09:64:16:19:9b:c8:5d:65:6c:8c:ad:57:c9:3a: 52:fc:81:00:79:08:c1:f2:7e:16:34:e5:4b:c8:02:8b:31:01: a7:dd:53:42:9a:ea:95:e1:16:7d:6a:4c:7d:bf:07:a2:41:f6: b3:dd:a6:16:0d:96:f4:e1:27:54:72:2e:08:1d:0a:37:e9:ce: 2a:d8:34:16:73:49:db:ce:d4:c0:45:13:68:71:61:6b:37:cd: 35:cf:41:3d:e7:50:16:f8:7e:90:66:ed:0b:05:87:89:5d:2d: fb:c0:44:b5:ea:3e:6d:3a:38:ae:9b:25:78:d6:9a:a6:4f:67: 1e:e8:b2:a5:be:f4:68:b6:08:d8:3a:80:b5:7b:f4:8b:c3:0c: ba:16:77:c3:fb:2c:66:ba:76:4e:48:c8:65:f9:83:f4:45:75: f3:3e:f0:f2:14:04:6a:f5:6a:d5:0b:53:4f:b2:00:0d:46:a1: a4:29:35:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJDNzYxMTAvBgNVBAUTKDg3QTEyRTc1MTQ5QjNEOEE0RDI3MkExMzA5M0VGNkFD OUIyNTJDRjMwHhcNMjUwNzAxMDQwODQ3WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNWY0Zi1mNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XUG0zQKLieIyRhouZUsMUeDAK0BVgIb1sOr5u0d+dE0+41IcgbPcSrndOj1 SfY+dJ0Fh0Tj9R5Nl32Or4ydYiRl68EPG7eORbtMeXUjkhuaiao5n7ubktgFVgfO w/nqZHG7aY2kVm7zLsoLWWRUif4bqXQUeGFzR72FOEMf0sIOUcKPoNJcpRT/fgyl vKPyhtIOVA+7PZIHbHFXMV4mNyE87RzSsHbYdrof9KFlWTpM8pC1sjfxljlfYd7l KEb9NKiTBoCv0D34I0ec78VELcnGslsAFXBQ2g0Hi9J8ScjCZAUJSi3wQ8zyCiMJ jfLKIBh7Z7WFZa3V66O9TeUqNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGLl/1MX PVbiv6jm8yrUjXuGHHpjMB8GA1UdIwQYMBaAFIehLnUUmz2KTScqEwk+9qybJSzz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkM3Ni9GMUFEM0UzRUU4 QkIxMUVEODUzOERBMUZDNEY5QUUwMi9oNkV1ZFJTYlBZcE5KeW9UQ1Q3MnJKc2xM UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2RXVkUlNiUFlwTkp5b1RDVDcyckpzbExQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJDNzYvRjFBRDNFM0VFOEJCMTFFRDg1MzhEQTFGQzRGOUFFMDIvOTFBN0FCOTBE NzlGMTFFRThEQjNCNDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRUwwDQYJKoZIhvcNAQELBQADggEBADlqFniz70rKM8np FdfwOGfmvcyut6SAPyde1lYKCEjbdOhK8AhQOvbDeJfI/Drl+J0oC8Sij8bYc46H UUCGXoHZ0FP0Jhbm7BkqO8MJZBYZm8hdZWyMrVfJOlL8gQB5CMHyfhY05UvIAosx AafdU0Ka6pXhFn1qTH2/B6JB9rPdphYNlvThJ1RyLggdCjfpzirYNBZzSdvO1MBF E2hxYWs3zTXPQT3nUBb4fpBm7QsFh4ldLfvARLXqPm06OK6bJXjWmqZPZx7osqW+ 9Gi2CNg6gLV79IvDDLoWd8P7LGa6dk5IyGX5g/RFdfM+8PIUBGr1atULU0+yAA1G oaQpNRU= -----END CERTIFICATE-----Generated at Thu Jul 3 00:10:28 2025 by rpki-client