$ rpki-client -vvf rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/D45022C8CEC211EE80F08B36C4F9AE02.roa File: D45022C8CEC211EE80F08B36C4F9AE02.roa (raw, json) Hash identifier: lCLpkvr+Mt+EalvdDtGgIkdudrmtSBSHV/CQh7RNEBw= Subject key identifier: E0:96:4B:48:26:B3:53:C1:F8:74:D7:C6:32:38:6B:DC:D6:34:9A:AB Certificate issuer: /CN=A91A47B6/serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Certificate serial: 0117 Authority key identifier: 0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/D45022C8CEC211EE80F08B36C4F9AE02.roa Signing time: Mon 11 Aug 2025 05:13:09 +0000 ROA not before: Mon 11 Aug 2025 05:13:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24225 IP address blocks: 103.67.240.0/23 maxlen: 24 103.67.242.0/24 maxlen: 24 103.67.243.0/24 maxlen: 24 203.160.48.0/24 maxlen: 24 203.160.50.0/23 maxlen: 24 2405:da80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A47B6, serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Validity Not Before: Aug 11 05:13:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68997be4-8e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:df:79:75:ad:3e:15:43:f3:81:42:e8:a3:b6: a3:47:0c:d9:c2:78:35:c8:60:04:6f:b0:b6:c9:77: 58:71:25:8b:8c:37:ce:3d:e3:9f:a3:d3:17:7e:f4: 46:75:80:b7:c0:08:d9:53:5b:d1:90:35:92:ee:fa: 68:37:c8:d3:b1:d2:e8:45:eb:33:fd:be:c3:13:55: 94:ee:d1:0e:43:35:52:f3:74:c3:db:26:a0:5e:98: 8f:7e:74:c5:7b:71:43:08:0e:4e:8d:d9:3b:d9:43: c2:3f:40:f3:35:f4:0f:9e:60:fa:0f:02:37:82:d1: 3d:f8:2b:96:19:9e:3d:4e:ff:ab:d2:a0:8c:d2:9e: b6:16:ce:34:e1:5b:b2:88:2d:b7:c7:2c:b2:cb:5b: ca:40:fa:c2:74:6a:35:18:e9:cf:06:4e:21:e3:0a: 3b:44:dd:14:bb:8a:b8:f6:98:2c:53:86:08:11:91: 5f:3e:1c:85:05:59:88:32:38:83:db:bf:b9:75:a3: 2f:69:65:89:40:5e:5c:68:17:48:be:07:c5:85:a7: f3:e0:1d:26:19:a1:ea:7e:f4:b9:25:15:3d:16:3b: b1:75:ab:94:26:66:c1:b6:1f:da:c7:18:79:6a:af: 36:8d:02:d5:47:da:ad:45:ac:c2:fd:c7:c3:21:6c: 58:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:96:4B:48:26:B3:53:C1:F8:74:D7:C6:32:38:6B:DC:D6:34:9A:AB X509v3 Authority Key Identifier: keyid:0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/D45022C8CEC211EE80F08B36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.240.0/22 203.160.48.0/24 203.160.50.0/23 IPv6: 2405:da80::/32 Signature Algorithm: sha256WithRSAEncryption 87:eb:45:77:54:37:8c:8d:fb:b8:a6:ad:99:46:54:e1:f1:8a: e2:fc:fc:b5:98:23:12:f8:fa:71:df:e4:0a:19:51:df:a7:04: f9:58:ce:6b:d2:fb:96:c9:64:82:aa:20:57:50:7f:d6:58:21: 10:e0:25:14:13:cc:d9:55:16:a5:aa:d1:e6:67:d7:17:03:ad: f7:13:10:0c:92:42:84:27:2c:a5:dd:5c:6a:35:ce:fa:2a:cb: e8:b6:10:41:87:0c:82:19:a5:ac:15:92:8d:73:15:d7:97:ed: 91:ed:84:5b:b5:15:16:f0:46:1c:81:9f:7b:3c:94:3a:7b:15: ca:77:24:72:74:34:27:2f:41:20:46:65:2b:d8:57:0f:c8:7c: 02:e6:01:dd:2d:c9:fb:ec:4e:23:cf:7d:fb:b9:b8:d5:8a:cd: b9:78:99:b0:2e:d9:49:26:75:32:ad:ed:a8:23:a3:dd:d4:ad: 39:b9:54:1c:73:4c:27:6f:5f:36:48:11:30:0a:09:27:ef:7a: 2c:2b:6e:b1:1e:4b:46:92:ce:8d:84:4f:c1:de:8a:17:c6:29: 75:69:7f:91:b9:05:a7:86:a3:5d:a8:94:6f:c1:55:33:01:cd: 08:8c:2d:da:26:5b:59:7e:88:07:f5:62:f4:36:1d:e1:ce:a9: 2d:08:2a:81 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ3QjYxMTAvBgNVBAUTKDBDRDkwNEM3RUIzOTBBRDFBNTVEQkFGNEZDNTAwNTRD MDg1NDZFMkIwHhcNMjUwODExMDUxMzA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5N2JlNC04ZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN95da0+FUPzgULoo7ajRwzZwng1yGAEb7C2yXdYcSWLjDfOPeOfo9MXfvRG dYC3wAjZU1vRkDWS7vpoN8jTsdLoResz/b7DE1WU7tEOQzVS83TD2yagXpiPfnTF e3FDCA5Ojdk72UPCP0DzNfQPnmD6DwI3gtE9+CuWGZ49Tv+r0qCM0p62Fs404Vuy iC23xyyyy1vKQPrCdGo1GOnPBk4h4wo7RN0Uu4q49pgsU4YIEZFfPhyFBVmIMjiD 27+5daMvaWWJQF5caBdIvgfFhafz4B0mGaHqfvS5JRU9FjuxdauUJmbBth/axxh5 aq82jQLVR9qtRazC/cfDIWxYwQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFOCWS0gm s1PB+HTXxjI4a9zWNJqrMB8GA1UdIwQYMBaAFAzZBMfrOQrRpV269PxQBUwIVG4r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDdCNi85MDVEN0ZFRUNF QzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0R2xYYnIwX0ZBRlRBaFVi aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROa0V4LXM1Q3RHbFhicjBfRkFGVEFoVWJpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ3QjYvOTA1RDdGRUVDRUMxMTFFRThDRjAxNzQwQzRGOUFFMDIvRDQ1MDIyQzhD RUMyMTFFRTgwRjA4QjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnQ/ADBADLoDADBAHLoDIwDQQCAAIwBwMFACQF2oAwDQYJ KoZIhvcNAQELBQADggEBAIfrRXdUN4yN+7imrZlGVOHxiuL8/LWYIxL4+nHf5AoZ Ud+nBPlYzmvS+5bJZIKqIFdQf9ZYIRDgJRQTzNlVFqWq0eZn1xcDrfcTEAySQoQn LKXdXGo1zvoqy+i2EEGHDIIZpawVko1zFdeX7ZHthFu1FRbwRhyBn3s8lDp7Fcp3 JHJ0NCcvQSBGZSvYVw/IfALmAd0tyfvsTiPPffu5uNWKzbl4mbAu2UkmdTKt7agj o93UrTm5VBxzTCdvXzZIETAKCSfveiwrbrEeS0aSzo2ET8HeihfGKXVpf5G5BaeG o12olG/BVTMBzQiMLdomW1l+iAf1YvQ2HeHOqS0IKoE= -----END CERTIFICATE-----Generated at Sun Aug 24 04:28:59 2025 by rpki-client