$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa File: 720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa (raw, json) Hash identifier: So00zJ1AKw4WG3WlOWEkw0uPB14Z1y1sOqNnyZb7Bn8= Subject key identifier: B6:11:88:01:56:09:E8:AE:04:A1:65:6D:34:5E:99:5C:7F:F8:C6:12 Certificate issuer: /CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Certificate serial: 0544 Authority key identifier: 93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa Signing time: Wed 03 Sep 2025 00:15:01 +0000 ROA not before: Wed 03 Sep 2025 00:15:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.138.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5F33, serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Validity Not Before: Sep 3 00:15:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b78885-7a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:57:90:d0:41:be:cb:de:bc:85:8f:be:46:07: 61:11:71:9a:02:73:c9:7f:58:f6:ce:08:db:83:d3: 68:cc:f4:56:f6:8c:c5:9c:31:2b:79:b9:82:62:84: b5:55:66:c2:1b:0b:02:20:74:55:8f:61:b7:38:5b: 8b:1b:24:90:1d:6a:b2:92:6e:d2:ff:42:3c:e4:2e: 59:01:71:64:5e:7f:23:98:1b:e5:9a:6f:f3:4b:6a: 3d:3d:91:da:0b:7c:87:45:08:29:0e:7b:34:cd:a8: 65:89:67:be:ca:47:e3:ea:41:b0:b2:17:37:13:7d: 3c:57:5b:a4:71:25:3a:13:c9:7b:c0:94:ba:29:82: 10:b6:7c:b7:30:bc:b3:88:31:e1:09:bd:3c:59:06: ea:38:45:c8:8d:53:52:9c:6a:df:2f:fa:6a:34:63: 23:32:a9:d8:b6:0a:1e:f8:87:79:b2:67:74:4c:ad: a7:6a:48:27:73:5b:05:9d:79:e1:a0:27:cc:da:d8: c4:0c:9d:be:3d:b3:f7:57:a4:44:ab:3c:6a:cd:8f: 50:49:ae:0c:08:b0:cb:0e:12:fa:fb:63:1b:c1:f4: a8:b9:dc:a3:1f:bd:a0:2e:f0:2f:0d:6c:2f:46:fe: 74:7a:34:a0:98:d1:e3:7f:78:a5:f7:91:f0:59:1b: 03:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:11:88:01:56:09:E8:AE:04:A1:65:6D:34:5E:99:5C:7F:F8:C6:12 X509v3 Authority Key Identifier: keyid:93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.231.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:ca:c6:23:36:25:a2:c9:a0:1f:06:8f:95:d5:28:23:1f:b3: 6b:c0:90:3d:26:3c:f0:4a:d5:83:19:39:51:73:0f:f0:c7:83: e9:7c:b3:b8:ac:d4:6b:f9:5a:65:4f:3f:3f:99:fa:84:af:d6: fb:45:2c:e7:ec:77:e6:93:77:6b:0a:2b:80:18:0b:cf:c7:03: fd:01:e5:a3:f4:69:2f:ed:e4:52:d1:78:4c:ef:d8:d6:32:03: 39:2c:51:56:12:a8:a6:68:4f:4a:a2:1f:3c:cd:55:6d:0f:4e: 18:36:ba:d9:06:44:cc:ac:8f:de:6c:e0:ee:2f:04:e4:af:fa: 3e:17:70:c8:fe:94:f0:53:1f:63:35:95:d9:c3:cc:2a:c1:fd: 76:cf:aa:d2:d2:e5:ac:1c:bb:b9:e3:b9:7e:a1:c8:0f:ad:c1: e3:07:89:7c:4f:55:03:3c:8e:2a:5b:a9:d6:77:0d:e5:d1:e3: 4b:4a:f6:25:aa:1b:74:e1:4f:2d:cb:e5:cc:a2:18:e2:5d:e8: 20:82:3e:de:f0:6b:f7:6b:78:fc:a6:f3:e3:82:4b:ff:33:10: 36:63:ac:f7:63:11:13:7e:a7:fd:39:c9:df:47:92:6d:65:9c: 0b:97:ee:15:6c:ee:29:86:7c:3c:ef:5e:3a:fd:e2:ab:6e:18: 8a:f4:a9:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVGMzMxMTAvBgNVBAUTKDkzMTdCQjE5RkY5MDdGNDcxODExRUI1NjEwMEFBMEJD OTJDRjE0OTcwHhcNMjUwOTAzMDAxNTAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODg4NS03YTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVeQ0EG+y968hY++RgdhEXGaAnPJf1j2zgjbg9NozPRW9ozFnDErebmCYoS1 VWbCGwsCIHRVj2G3OFuLGySQHWqykm7S/0I85C5ZAXFkXn8jmBvlmm/zS2o9PZHa C3yHRQgpDns0zahliWe+ykfj6kGwshc3E308V1ukcSU6E8l7wJS6KYIQtny3MLyz iDHhCb08WQbqOEXIjVNSnGrfL/pqNGMjMqnYtgoe+Id5smd0TK2nakgnc1sFnXnh oCfM2tjEDJ2+PbP3V6REqzxqzY9QSa4MCLDLDhL6+2MbwfSoudyjH72gLvAvDWwv Rv50ejSgmNHjf3il95HwWRsDDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLYRiAFW CeiuBKFlbTRemVx/+MYSMB8GA1UdIwQYMBaAFJMXuxn/kH9HGBHrVhAKoLySzxSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUYzMy8yRjZBQzEzQzBC RUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYwY1lFZXRXRUFxZ3ZKTFBG SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4ZTdHZi1RZjBjWUVldFdFQXFndkpMUEZKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVGMzMvMkY2QUMxM0MwQkVDMTFFQzkyMTMwRDVBQzRGOUFFMDIvNzIwRkFGOUEw QkVGMTFFQ0FFRjNFQTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniucwDQYJKoZIhvcNAQELBQADggEBAJ7KxiM2JaLJoB8G j5XVKCMfs2vAkD0mPPBK1YMZOVFzD/DHg+l8s7is1Gv5WmVPPz+Z+oSv1vtFLOfs d+aTd2sKK4AYC8/HA/0B5aP0aS/t5FLReEzv2NYyAzksUVYSqKZoT0qiHzzNVW0P Thg2utkGRMysj95s4O4vBOSv+j4XcMj+lPBTH2M1ldnDzCrB/XbPqtLS5awcu7nj uX6hyA+tweMHiXxPVQM8jipbqdZ3DeXR40tK9iWqG3ThTy3L5cyiGOJd6CCCPt7w a/drePym8+OCS/8zEDZjrPdjERN+p/05yd9Hkm1lnAuX7hVs7imGfDzvXjr94qtu GIr0qTs= -----END CERTIFICATE-----Generated at Mon Oct 20 23:34:41 2025 by rpki-client