$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/6DDABFB26CD511ED9EC9CF83C4F9AE02.roa File: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (raw, json) Hash identifier: SkBXJ2Cg15YTINlEK8cWxPkVEnzJM9DWZ0n7aJtqwN0= Subject key identifier: 0A:9D:4D:68:A1:37:68:B1:51:14:37:D1:8B:23:CD:07:F6:19:79:6A Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0D7E Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/6DDABFB26CD511ED9EC9CF83C4F9AE02.roa Signing time: Mon 18 Aug 2025 18:27:48 +0000 ROA not before: Mon 18 Aug 2025 18:27:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137828 IP address blocks: 103.115.72.0/22 maxlen: 22 103.115.72.0/23 maxlen: 23 103.115.72.0/24 maxlen: 24 103.115.73.0/24 maxlen: 24 103.115.74.0/23 maxlen: 23 103.115.74.0/24 maxlen: 24 103.115.75.0/24 maxlen: 24 2402:e1c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Aug 18 18:27:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a370a4-ed72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ee:87:77:b1:75:9d:b3:a8:12:5c:ca:20:3e: 7b:f3:b6:12:c3:e0:2d:ac:3c:a0:e5:32:07:ac:49: b7:bc:18:cb:78:ae:4d:65:f7:06:53:19:51:89:5e: c2:19:5c:e3:f6:5f:c3:bd:7c:1e:04:ea:d3:62:7f: 51:01:0b:d5:b8:ca:7f:33:01:43:af:bf:09:00:37: ba:98:d3:60:54:98:6a:1a:46:99:72:5f:b3:3a:b5: be:fe:e2:ef:91:25:2f:be:de:a9:a3:8c:14:8a:d5: 7e:53:70:1d:22:8e:8e:18:d3:7d:cf:d6:30:06:f0: ec:e0:b2:98:2a:b3:6a:36:47:7a:4f:45:11:8a:a5: b8:7e:49:13:ab:91:fc:ce:2f:a6:97:6a:82:56:68: cc:00:c6:77:50:54:47:bc:6f:df:7e:24:fe:e7:c5: 59:9d:61:d6:fc:9e:26:90:d1:99:65:30:dd:99:c9: 53:68:a5:99:0b:95:01:9b:f3:81:f0:f9:9b:5a:74: 95:35:a0:58:05:22:f0:19:5f:2b:8c:62:93:40:d6: c4:6a:5f:2f:7c:27:a9:61:75:1a:30:59:28:48:b0: a0:d3:5e:04:09:87:c8:55:22:f5:70:90:1e:d9:a9: 92:2e:05:fc:3d:94:29:5d:58:90:7e:c1:85:66:36: 17:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9D:4D:68:A1:37:68:B1:51:14:37:D1:8B:23:CD:07:F6:19:79:6A X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/6DDABFB26CD511ED9EC9CF83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.72.0/22 IPv6: 2402:e1c0::/32 Signature Algorithm: sha256WithRSAEncryption ba:d3:14:34:36:eb:f6:43:06:ee:18:3a:73:09:e6:e0:55:bc: d5:20:8e:86:6c:ed:86:f0:f4:31:d0:39:f2:22:22:06:04:6d: 50:c7:49:9c:a6:8f:b6:2b:22:a1:b0:97:32:5a:12:fb:ba:f6: 5e:b5:be:9c:1c:6d:95:de:90:c8:08:c8:89:a0:24:a3:78:cb: e8:b2:5e:95:da:a1:9c:68:9e:03:3b:50:e1:07:b3:15:63:9a: c3:dd:24:89:b7:8d:ab:16:4d:46:78:3a:e4:8d:fc:68:55:29: 89:f0:93:45:5d:e9:14:f9:6d:6e:f3:b6:b1:43:1a:26:0d:20: 53:fb:64:62:55:d9:90:42:23:22:9c:a6:a7:1b:c1:3c:04:93: ca:1d:9f:a1:72:b4:7a:74:8f:93:3b:53:04:aa:6f:72:b5:57: de:98:df:4e:83:f2:cf:15:f7:dc:65:bc:ab:3a:e4:f7:d0:f4: 6a:6c:38:5f:b0:8a:8e:89:52:b2:c7:84:34:77:3c:ca:a8:06: 90:f7:f4:09:0f:d3:6d:a7:00:e4:94:1c:05:bf:d6:4f:4c:d8: 73:9c:5c:23:be:12:22:01:6b:52:fc:ff:65:d8:24:5c:92:49: 35:af:6e:d4:fd:8a:46:d2:67:94:e9:19:c6:b3:aa:bf:de:02: 6f:dc:b1:c3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUwODE4MTgyNzQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzNzBhNC1lZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve6Hd7F1nbOoElzKID5787YSw+AtrDyg5TIHrEm3vBjLeK5NZfcGUxlRiV7C GVzj9l/DvXweBOrTYn9RAQvVuMp/MwFDr78JADe6mNNgVJhqGkaZcl+zOrW+/uLv kSUvvt6po4wUitV+U3AdIo6OGNN9z9YwBvDs4LKYKrNqNkd6T0URiqW4fkkTq5H8 zi+ml2qCVmjMAMZ3UFRHvG/ffiT+58VZnWHW/J4mkNGZZTDdmclTaKWZC5UBm/OB 8PmbWnSVNaBYBSLwGV8rjGKTQNbEal8vfCepYXUaMFkoSLCg014ECYfIVSL1cJAe 2amSLgX8PZQpXViQfsGFZjYXbQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAqdTWih N2ixURQ30YsjzQf2GXlqMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUY5QTEvRDI2MDE1Q0FEMzdFMTFFOThBMTk2QjY3QzRGOUFFMDIvNkREQUJGQjI2 Q0Q1MTFFRDlFQzlDRjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnc0gwDQQCAAIwBwMFACQC4cAwDQYJKoZIhvcNAQELBQAD ggEBALrTFDQ26/ZDBu4YOnMJ5uBVvNUgjoZs7Ybw9DHQOfIiIgYEbVDHSZymj7Yr IqGwlzJaEvu69l61vpwcbZXekMgIyImgJKN4y+iyXpXaoZxongM7UOEHsxVjmsPd JIm3jasWTUZ4OuSN/GhVKYnwk0Vd6RT5bW7ztrFDGiYNIFP7ZGJV2ZBCIyKcpqcb wTwEk8odn6FytHp0j5M7UwSqb3K1V96Y306D8s8V99xlvKs65PfQ9GpsOF+wio6J UrLHhDR3PMqoBpD39AkP022nAOSUHAW/1k9M2HOcXCO+EiIBa1L8/2XYJFySSTWv btT9ikbSZ5TpGcazqr/eAm/cscM= -----END CERTIFICATE-----Generated at Sun Aug 24 07:54:45 2025 by rpki-client