$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa File: 7321413EC22511E99FB7F225C4F9AE02.roa (raw, json) Hash identifier: H10nxhyS/VwDB93m2/HXj3BoCowkULE1EpiVOf28AL0= Subject key identifier: 1F:74:E8:69:B6:79:95:63:93:38:45:4C:7D:51:11:08:68:CB:EF:1F Certificate issuer: /CN=A91B0367/serialNumber=E15A360372DDAF1C5B218E8C4CF69F6F8BD7F59A Certificate serial: 0DA7 Authority key identifier: E1:5A:36:03:72:DD:AF:1C:5B:21:8E:8C:4C:F6:9F:6F:8B:D7:F5:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa Signing time: Fri 20 Jun 2025 18:41:51 +0000 ROA not before: Fri 20 Jun 2025 18:41:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58625 IP address blocks: 103.14.36.0/22 maxlen: 22 103.14.36.0/24 maxlen: 24 103.14.37.0/24 maxlen: 24 103.14.38.0/24 maxlen: 24 103.14.39.0/24 maxlen: 24 2404:2700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.crl rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3495 (0xda7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0367, serialNumber=E15A360372DDAF1C5B218E8C4CF69F6F8BD7F59A Validity Not Before: Jun 20 18:41:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6855ab6f-c0d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:16:fc:3c:91:be:ad:69:3f:53:b1:fc:ea:79: 07:04:26:99:0a:8d:ef:e8:58:af:a2:ab:1b:e3:e7: 7f:95:24:cf:3c:a4:d6:f2:28:0b:62:bb:2a:37:12: 77:6f:82:fb:61:fc:5f:ca:74:5c:80:55:e3:04:38: 98:a5:d5:4a:86:28:d0:d1:f0:d8:81:11:6c:9c:88: 05:39:fe:d1:fb:8c:f8:79:9c:43:ba:e5:3f:66:1c: f1:7b:13:f9:73:25:10:43:43:e0:ab:1f:ae:4b:16: a4:f9:37:40:fe:92:4a:da:9b:f7:c3:dd:28:8a:0e: 91:36:d1:4a:9b:5e:f7:f2:a4:59:f5:f0:67:7e:56: d0:09:47:6c:a0:4c:fb:77:a7:a6:00:46:ad:ea:eb: fe:e8:08:4f:36:ed:4a:26:70:49:5c:4f:21:9f:5c: da:ab:36:84:f2:79:f6:f8:4d:bb:a5:1e:f3:47:73: fe:41:85:10:11:61:75:e2:d7:89:ba:d8:ee:cd:98: da:58:25:21:0c:af:93:cf:46:a4:a2:96:52:8f:f2: aa:62:a1:30:1d:7a:e7:27:44:a9:2a:2b:5e:b8:9f: 2c:2f:aa:08:01:26:17:49:89:cc:02:56:78:1a:b4: 66:7b:0b:70:a8:d4:d6:28:1b:97:ba:17:85:a8:86: f5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:74:E8:69:B6:79:95:63:93:38:45:4C:7D:51:11:08:68:CB:EF:1F X509v3 Authority Key Identifier: keyid:E1:5A:36:03:72:DD:AF:1C:5B:21:8E:8C:4C:F6:9F:6F:8B:D7:F5:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.36.0/22 IPv6: 2404:2700::/32 Signature Algorithm: sha256WithRSAEncryption 68:51:d7:04:32:7a:db:84:b9:07:4d:d8:a4:db:7c:79:26:5e: 59:99:77:16:72:35:8c:fb:d5:98:43:bc:af:62:0e:dc:6e:7d: f0:8e:8f:ba:8f:83:23:69:db:69:90:10:2a:cd:0e:96:39:53: e7:4f:35:1f:78:12:b3:3d:14:ae:30:1a:3a:bf:23:af:06:5d: 8a:4d:ed:19:a2:ee:1e:9e:7b:47:16:50:f5:27:20:0e:01:98: 46:0f:b6:63:0b:60:25:fe:34:b1:0d:86:c4:1d:2e:5c:d3:91: 34:37:9d:52:1c:4c:01:09:ae:e1:4b:c4:70:23:ce:06:9e:e5: b2:28:eb:60:4d:bf:05:5a:e6:1f:0f:a9:52:97:cc:87:21:8c: 2d:43:c3:dc:cc:c9:a0:7e:4a:f0:93:9c:73:8a:4a:44:2d:4a: e5:57:b7:23:9d:24:81:5a:23:31:8a:d9:a5:1a:ef:f8:e1:1e: 08:36:02:e7:8c:b2:ae:33:04:f2:35:d5:04:83:e2:cb:d1:4f: 88:f8:7c:83:c9:d9:6a:79:57:8a:c7:0a:42:b4:1a:64:b2:75: fd:49:e9:ab:a3:87:78:1a:1c:ab:ef:ec:cb:15:32:2a:08:ec: e6:80:f8:00:7a:9d:a9:9f:03:96:d6:ca:9f:a3:f6:d7:0d:27: a0:03:f9:ae -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNjcxMTAvBgNVBAUTKEUxNUEzNjAzNzJEREFGMUM1QjIxOEU4QzRDRjY5RjZG OEJEN0Y1OUEwHhcNMjUwNjIwMTg0MTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU1YWI2Zi1jMGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hb8PJG+rWk/U7H86nkHBCaZCo3v6Fivoqsb4+d/lSTPPKTW8igLYrsqNxJ3 b4L7YfxfynRcgFXjBDiYpdVKhijQ0fDYgRFsnIgFOf7R+4z4eZxDuuU/ZhzxexP5 cyUQQ0Pgqx+uSxak+TdA/pJK2pv3w90oig6RNtFKm1738qRZ9fBnflbQCUdsoEz7 d6emAEat6uv+6AhPNu1KJnBJXE8hn1zaqzaE8nn2+E27pR7zR3P+QYUQEWF14teJ utjuzZjaWCUhDK+Tz0akopZSj/KqYqEwHXrnJ0SpKiteuJ8sL6oIASYXSYnMAlZ4 GrRmewtwqNTWKBuXuheFqIb1IQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB906Gm2 eZVjkzhFTH1REQhoy+8fMB8GA1UdIwQYMBaAFOFaNgNy3a8cWyGOjEz2n2+L1/Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2Ny8wOEMzRDI4RUMy MjUxMUU5QTM2N0QzMjVDNEY5QUUwMi80Vm8yQTNMZHJ4eGJJWTZNVFBhZmI0dlg5 Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWbzJBM0xkcnh4YklZNk1UUGFmYjR2WDlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAzNjcvMDhDM0QyOEVDMjI1MTFFOUEzNjdEMzI1QzRGOUFFMDIvNzMyMTQxM0VD MjI1MTFFOTlGQjdGMjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnDiQwDQQCAAIwBwMFACQEJwAwDQYJKoZIhvcNAQELBQAD ggEBAGhR1wQyetuEuQdN2KTbfHkmXlmZdxZyNYz71ZhDvK9iDtxuffCOj7qPgyNp 22mQECrNDpY5U+dPNR94ErM9FK4wGjq/I68GXYpN7Rmi7h6ee0cWUPUnIA4BmEYP tmMLYCX+NLENhsQdLlzTkTQ3nVIcTAEJruFLxHAjzgae5bIo62BNvwVa5h8PqVKX zIchjC1Dw9zMyaB+SvCTnHOKSkQtSuVXtyOdJIFaIzGK2aUa7/jhHgg2AueMsq4z BPI11QSD4svRT4j4fIPJ2Wp5V4rHCkK0GmSydf1J6aujh3gaHKvv7MsVMioI7OaA +AB6namfA5bWyp+j9tcNJ6AD+a4= -----END CERTIFICATE-----Generated at Thu Jul 3 21:10:23 2025 by rpki-client