$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/02F1850E45A611EA81CD145AC4F9AE02.roa File: 02F1850E45A611EA81CD145AC4F9AE02.roa (raw, json) Hash identifier: 58+0TyNKJb4Dhk7ED+Dg5ahFyoV+/K06n+R45NAzh68= Subject key identifier: CE:E4:C5:08:99:1A:20:23:CB:3D:8C:82:30:59:4F:82:F4:6A:7C:E1 Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B2A Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/02F1850E45A611EA81CD145AC4F9AE02.roa Signing time: Thu 14 Aug 2025 19:59:29 +0000 ROA not before: Thu 14 Aug 2025 19:59:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134601 IP address blocks: 103.120.220.0/22 maxlen: 22 103.120.220.0/24 maxlen: 24 103.120.221.0/24 maxlen: 24 103.120.222.0/24 maxlen: 24 103.120.223.0/24 maxlen: 24 2404:ef40::/32 maxlen: 32 2404:ef40:220::/48 maxlen: 48 2404:ef40:221::/48 maxlen: 48 2404:ef40:222::/48 maxlen: 48 2404:ef40:223::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Aug 14 19:59:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689e4020-a460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:00:17:dd:3b:89:95:fb:83:67:e2:f9:01:23: 62:e4:28:b8:d0:71:bc:ac:c5:71:f3:46:76:98:d6: 66:82:2b:15:18:a8:31:29:74:da:ff:fd:00:86:3f: c9:3f:60:2a:c4:41:60:d5:c4:76:6b:47:9a:9f:de: e1:60:30:60:3d:b9:87:46:35:56:00:12:a1:db:de: a6:3c:f5:36:c9:81:9c:70:fd:3b:2a:fa:78:9b:37: c1:a3:62:64:b9:12:35:aa:1d:05:0e:59:4c:de:42: 8c:6c:31:88:0a:cb:80:56:a1:fb:96:39:b1:b4:8d: 1d:29:34:a8:12:df:c4:3c:cd:5e:ff:1a:76:20:83: 48:cd:c4:3d:bb:e2:c3:e7:da:e5:01:53:48:31:dc: e2:69:86:ba:61:74:2e:2d:67:a5:b7:e2:82:50:1a: f8:72:87:6f:f5:ef:74:14:70:4f:73:93:6e:54:ea: f8:81:47:39:cf:4a:fa:a2:8a:44:68:04:44:32:ce: 04:ac:82:dc:92:22:9d:58:aa:26:ee:bb:a2:ed:0e: a0:a0:e7:ca:8c:2a:41:d4:f6:d5:39:b0:f2:bb:48: 55:cf:09:20:f3:3c:59:79:ec:54:c8:ad:41:09:56: 23:d3:45:c1:7b:01:8e:4d:25:23:fb:64:20:be:0f: 24:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E4:C5:08:99:1A:20:23:CB:3D:8C:82:30:59:4F:82:F4:6A:7C:E1 X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/02F1850E45A611EA81CD145AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.220.0/22 IPv6: 2404:ef40::/32 Signature Algorithm: sha256WithRSAEncryption 67:37:8f:3a:d5:5b:66:18:29:b2:80:4e:6e:2a:a0:a4:f8:a2: 13:2a:d1:93:a0:a6:12:8b:c8:c4:af:e4:fb:19:d2:80:66:8f: b0:de:51:64:7a:99:00:64:05:c9:23:ba:75:13:7a:fd:bc:49: 12:74:00:89:72:5d:11:e1:8e:ce:08:c2:4d:19:fe:1b:1a:d3: 79:dc:f2:9d:fd:dd:17:5f:22:aa:1c:27:75:8d:0e:d3:73:0c: 03:08:55:67:56:6e:a4:de:9c:c1:d0:e9:c6:a1:0a:d0:cb:9a: f4:bf:7e:b5:c8:81:73:f8:4e:19:98:61:8f:e0:6f:45:19:c0: b3:99:3f:ae:d4:ba:3e:b9:7d:ee:57:96:05:32:6a:b7:12:74: f6:79:44:70:5b:36:75:08:17:95:14:31:69:fc:f3:20:10:42: 75:a7:fa:8f:01:7a:4d:59:af:f2:87:7b:52:22:ba:a0:bc:f0: 0c:92:53:9a:72:bf:d6:77:87:51:40:0f:22:87:37:01:89:67: 5c:e0:eb:af:07:1a:a7:f6:ca:41:cb:72:c2:e6:b2:c5:ec:dc: 3a:a1:e8:a7:67:2e:a3:2e:bd:a3:9a:e3:82:28:9a:49:70:98: ff:5b:bf:38:01:e6:26:db:dc:10:ad:5b:0d:74:6e:a5:b3:67: 92:60:13:c5 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUwODE0MTk1OTI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNDAyMC1hNDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwAX3TuJlfuDZ+L5ASNi5Ci40HG8rMVx80Z2mNZmgisVGKgxKXTa//0Ahj/J P2AqxEFg1cR2a0ean97hYDBgPbmHRjVWABKh296mPPU2yYGccP07Kvp4mzfBo2Jk uRI1qh0FDllM3kKMbDGICsuAVqH7ljmxtI0dKTSoEt/EPM1e/xp2IINIzcQ9u+LD 59rlAVNIMdziaYa6YXQuLWelt+KCUBr4codv9e90FHBPc5NuVOr4gUc5z0r6oopE aAREMs4ErILckiKdWKom7rui7Q6goOfKjCpB1PbVObDyu0hVzwkg8zxZeexUyK1B CVYj00XBewGOTSUj+2Qgvg8kRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM7kxQiZ GiAjyz2MgjBZT4L0anzhMB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVFNEIvNjNERkY4MDI0NUE0MTFFQTk0MkUwOTU3QzRGOUFFMDIvMDJGMTg1MEU0 NUE2MTFFQTgxQ0QxNDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneNwwDQQCAAIwBwMFACQE70AwDQYJKoZIhvcNAQELBQAD ggEBAGc3jzrVW2YYKbKATm4qoKT4ohMq0ZOgphKLyMSv5PsZ0oBmj7DeUWR6mQBk BckjunUTev28SRJ0AIlyXRHhjs4Iwk0Z/hsa03nc8p393RdfIqocJ3WNDtNzDAMI VWdWbqTenMHQ6cahCtDLmvS/frXIgXP4ThmYYY/gb0UZwLOZP67Uuj65fe5XlgUy arcSdPZ5RHBbNnUIF5UUMWn88yAQQnWn+o8Bek1Zr/KHe1IiuqC88AySU5pyv9Z3 h1FADyKHNwGJZ1zg668HGqf2ykHLcsLmssXs3Dqh6KdnLqMuvaOa44IomklwmP9b vzgB5ibb3BCtWw10bqWzZ5JgE8U= -----END CERTIFICATE-----Generated at Sun Aug 24 04:45:57 2025 by rpki-client