$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/06CD7DF074F211F09D01EA15C4F9AE02.roa File: 06CD7DF074F211F09D01EA15C4F9AE02.roa (raw, json) Hash identifier: wlIu/nl9TYANb0F4m3+htDbTyhazmTRCofxCf5SqanI= Subject key identifier: 8D:89:A3:CE:0B:B8:26:C6:84:00:61:65:E1:82:66:92:37:4F:7E:B6 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 01E3 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/06CD7DF074F211F09D01EA15C4F9AE02.roa Signing time: Sat 09 Aug 2025 07:25:30 +0000 ROA not before: Sat 09 Aug 2025 07:25:30 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 398478 IP address blocks: 103.88.188.0/22 maxlen: 22 116.204.236.0/22 maxlen: 22 116.204.236.0/24 maxlen: 24 116.204.237.0/24 maxlen: 24 116.204.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD, serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Aug 9 07:25:30 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6896f7e9-89a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:96:58:19:3c:8c:2c:63:e7:bc:94:66:c3:46: c9:9d:ad:35:ec:91:ff:d9:ff:2a:6f:af:fa:65:8f: 1c:37:f0:26:4e:3c:6e:11:3e:96:75:12:de:48:a5: db:2b:49:4d:ec:31:c8:89:33:05:e2:7d:5d:67:ac: 0f:7a:b9:90:32:37:09:ea:30:4f:7a:d0:6f:80:e3: b4:1c:bd:50:82:ac:06:bd:73:6e:45:3b:5d:9b:8b: 61:04:e6:b5:09:a2:18:89:22:c9:63:83:6e:79:ac: f9:8d:ef:b3:76:9c:5a:e6:fa:3e:10:da:34:ed:c7: 3a:d2:70:ea:8e:93:d7:fe:6d:0a:b4:22:1b:b5:46: 6d:8a:a5:c4:52:eb:2c:c6:e5:a5:9e:54:45:29:b9: d9:67:48:75:31:e1:ce:3b:11:f0:0b:a9:c0:4a:88: 64:d1:1e:11:b7:60:69:9a:8d:86:35:64:59:c9:d5: 3b:6f:e0:7c:b3:72:cc:d9:0e:5e:0f:29:5b:36:bf: fe:9e:bf:8c:f5:38:53:ff:66:66:cb:b1:58:81:dd: 43:a3:4a:6c:ba:40:d3:88:6e:db:35:cc:e7:14:27: 0b:e0:6c:4f:c4:60:64:3e:a7:66:f9:ac:62:c7:2d: c1:44:1b:4b:19:8b:9f:9d:5c:2d:98:63:b3:f6:8d: 0e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:89:A3:CE:0B:B8:26:C6:84:00:61:65:E1:82:66:92:37:4F:7E:B6 X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/06CD7DF074F211F09D01EA15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.188.0/22 116.204.236.0/22 Signature Algorithm: sha256WithRSAEncryption 25:e8:11:fb:85:d6:5f:02:ae:b9:3a:37:f0:38:87:74:d0:48: 46:2c:9f:15:a6:1f:79:93:9e:1c:e4:90:11:be:0d:ca:c4:87: fe:3f:86:92:a0:40:37:e8:2c:df:a6:7d:5c:90:31:42:ac:3e: a5:4f:6e:31:b1:af:01:6e:89:87:c9:cf:0e:49:01:95:5c:f1: 6d:59:e4:2e:ba:f4:a8:95:d4:17:f9:62:5f:15:3d:cf:e9:e1: 17:aa:3d:36:62:34:62:09:6e:0e:e7:5b:29:63:f3:74:c4:9e: 8d:a8:11:97:45:71:62:7c:ca:09:06:79:a5:48:9c:7c:72:4c: 24:b3:df:8a:17:69:15:74:e6:e6:68:6a:bf:46:b3:75:ad:d7: 8c:b7:8e:3c:17:c5:16:61:72:78:bc:a3:59:a7:bc:4b:bc:5c: bb:16:ff:8d:a2:a6:49:aa:47:0b:d2:87:8b:27:c0:2b:b3:93: 0f:0e:38:c3:56:b2:70:cb:4c:f4:02:76:ca:6e:47:68:4f:9c: 61:96:a8:b3:ed:9f:a8:93:a2:ba:c5:24:c0:6f:28:17:81:50: bf:6a:cf:ef:83:2a:4b:b6:73:75:00:79:96:0f:7c:a3:cb:05: dc:65:0d:b9:a1:33:94:e4:10:92:9e:21:b2:c0:c7:2f:ec:df: 92:b8:19:d3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjUwODA5MDcyNTMwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2ZjdlOS04OWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJZYGTyMLGPnvJRmw0bJna017JH/2f8qb6/6ZY8cN/AmTjxuET6WdRLeSKXb K0lN7DHIiTMF4n1dZ6wPermQMjcJ6jBPetBvgOO0HL1QgqwGvXNuRTtdm4thBOa1 CaIYiSLJY4Nueaz5je+zdpxa5vo+ENo07cc60nDqjpPX/m0KtCIbtUZtiqXEUuss xuWlnlRFKbnZZ0h1MeHOOxHwC6nASohk0R4Rt2Bpmo2GNWRZydU7b+B8s3LM2Q5e DylbNr/+nr+M9ThT/2Zmy7FYgd1Do0psukDTiG7bNcznFCcL4GxPxGBkPqdm+axi xy3BRBtLGYufnVwtmGOz9o0OzwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI2Jo84L uCbGhABhZeGCZpI3T362MB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYyQ0QvNEZDQkFDMDBENDRDMTFFRDg2MjcxNTgyQzRGOUFFMDIvMDZDRDdERjA3 NEYyMTFGMDlEMDFFQTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWLwDBAJ0zOwwDQYJKoZIhvcNAQELBQADggEBACXoEfuF 1l8Crrk6N/A4h3TQSEYsnxWmH3mTnhzkkBG+DcrEh/4/hpKgQDfoLN+mfVyQMUKs PqVPbjGxrwFuiYfJzw5JAZVc8W1Z5C669KiV1Bf5Yl8VPc/p4ReqPTZiNGIJbg7n Wylj83TEno2oEZdFcWJ8ygkGeaVInHxyTCSz34oXaRV05uZoar9Gs3Wt14y3jjwX xRZhcni8o1mnvEu8XLsW/42ipkmqRwvSh4snwCuzkw8OOMNWsnDLTPQCdspuR2hP nGGWqLPtn6iTorrFJMBvKBeBUL9qz++DKku2c3UAeZYPfKPLBdxlDbmhM5TkEJKe IbLAxy/s35K4GdM= -----END CERTIFICATE-----Generated at Sat Aug 23 14:16:18 2025 by rpki-client