$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/0D5F2416B5B811EEA8ACF557C4F9AE02.roa File: 0D5F2416B5B811EEA8ACF557C4F9AE02.roa (raw, json) Hash identifier: gE5e/awh7V8v8LgWL9FQLpqEcqvec4IO81dUfYKKL1g= Subject key identifier: D4:91:ED:24:86:D5:B1:56:37:F4:4A:74:98:0F:47:E5:9F:74:07:2F Certificate issuer: /CN=A91B8F34/serialNumber=64943B1D2BE2F93DD640E024EB94D8D38DCE6A83 Certificate serial: 012D Authority key identifier: 64:94:3B:1D:2B:E2:F9:3D:D6:40:E0:24:EB:94:D8:D3:8D:CE:6A:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZJQ7HSvi-T3WQOAk65TY043OaoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/0D5F2416B5B811EEA8ACF557C4F9AE02.roa Signing time: Sat 21 Jun 2025 04:33:12 +0000 ROA not before: Sat 21 Jun 2025 04:33:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135069 IP address blocks: 103.63.92.0/22 maxlen: 22 103.63.92.0/23 maxlen: 23 103.63.92.0/24 maxlen: 24 103.63.94.0/23 maxlen: 23 103.63.94.0/24 maxlen: 24 103.63.95.0/24 maxlen: 24 103.153.120.0/23 maxlen: 23 103.153.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/ZJQ7HSvi-T3WQOAk65TY043OaoM.crl rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/ZJQ7HSvi-T3WQOAk65TY043OaoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZJQ7HSvi-T3WQOAk65TY043OaoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8F34, serialNumber=64943B1D2BE2F93DD640E024EB94D8D38DCE6A83 Validity Not Before: Jun 21 04:33:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68563607-6b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:27:43:1c:05:81:58:41:40:80:d5:c5:68:b0: e7:86:ce:1d:ca:74:dd:e7:c0:17:86:13:5b:73:83: 85:87:36:37:e6:1e:8b:da:31:8a:23:f9:e8:09:63: 52:be:24:d9:de:6c:61:01:f1:60:75:1b:db:85:f5: bf:69:df:12:e5:80:f5:44:a8:56:fc:22:76:2a:45: 6f:a5:d2:cc:10:40:42:06:be:9f:d4:c8:9f:3e:c0: f9:ac:86:7b:d3:92:e2:15:12:82:1e:a5:cf:bb:ba: 5a:e3:c9:a5:11:df:3f:fb:b8:8d:9d:d3:11:f6:b3: 6c:1b:f2:4c:c1:6e:1c:6a:ac:c4:eb:05:64:53:4b: c7:64:2e:ca:79:c9:3c:1b:32:b6:3b:48:63:e1:45: ee:44:be:0d:f1:38:d7:f9:53:a6:f8:2e:35:58:49: cb:1a:2b:b7:44:9e:23:a3:2d:fb:f5:98:70:cf:a9: 57:b1:d8:29:c7:d8:d0:8e:98:fd:7a:87:eb:52:a0: 26:29:db:d8:93:ec:4d:41:3c:64:a7:1b:46:0a:dd: 0a:0f:60:0b:62:f3:7f:24:48:a2:5e:47:d7:9e:6f: 46:58:3c:dc:77:0b:59:dc:d5:90:a7:48:5f:b5:65: 3c:28:43:69:c3:2a:3e:f9:f3:aa:d3:7d:84:d6:9b: a2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:91:ED:24:86:D5:B1:56:37:F4:4A:74:98:0F:47:E5:9F:74:07:2F X509v3 Authority Key Identifier: keyid:64:94:3B:1D:2B:E2:F9:3D:D6:40:E0:24:EB:94:D8:D3:8D:CE:6A:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/ZJQ7HSvi-T3WQOAk65TY043OaoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZJQ7HSvi-T3WQOAk65TY043OaoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/0D5F2416B5B811EEA8ACF557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.63.92.0/22 103.153.120.0/23 Signature Algorithm: sha256WithRSAEncryption 49:5f:d9:3d:94:72:ff:ea:56:b6:99:9e:59:3b:cf:92:17:d8: 6f:e0:3e:a4:44:57:ae:4e:30:b5:50:26:20:b6:56:5f:f6:38: c5:6e:5c:5d:a2:ed:88:85:de:83:2b:a7:b2:d0:ea:aa:54:7e: 4f:fd:ab:ce:06:2b:ec:bf:0b:85:d1:5e:91:00:54:0c:61:3f: 11:72:d8:19:bd:6b:40:06:a4:9e:84:20:bf:e8:74:d4:80:5f: 0a:09:c0:f8:cb:ad:d2:7d:69:fc:b7:9a:de:75:4f:a7:7c:89: bb:bf:be:37:3d:35:5c:2b:87:a9:f5:72:88:e8:1b:47:b9:c4: 4b:a5:18:84:46:09:b5:87:0e:a9:e4:c0:86:c2:18:dc:78:7b: 23:56:e9:fc:d4:c3:a1:8e:b8:2c:d2:44:c5:45:cf:4b:df:3e: 2d:7d:b4:93:f3:d8:bb:05:9b:43:e8:b2:e6:56:13:ca:21:da: 99:dc:e8:4c:2d:95:01:8f:3f:27:1a:77:3b:64:cf:90:24:28: 87:9d:58:ca:b8:a3:9a:ba:6e:93:94:85:96:af:80:ed:73:9d: 71:dc:32:ef:ee:0d:32:19:8b:a8:f0:2d:14:37:4c:4d:bd:23: bf:f0:38:b3:77:5f:22:99:f3:47:28:c1:ef:b1:dc:3c:9c:80: 3f:77:a4:de -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhGMzQxMTAvBgNVBAUTKDY0OTQzQjFEMkJFMkY5M0RENjQwRTAyNEVCOTREOEQz OERDRTZBODMwHhcNMjUwNjIxMDQzMzEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU2MzYwNy02YjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvydDHAWBWEFAgNXFaLDnhs4dynTd58AXhhNbc4OFhzY35h6L2jGKI/noCWNS viTZ3mxhAfFgdRvbhfW/ad8S5YD1RKhW/CJ2KkVvpdLMEEBCBr6f1MifPsD5rIZ7 05LiFRKCHqXPu7pa48mlEd8/+7iNndMR9rNsG/JMwW4caqzE6wVkU0vHZC7Keck8 GzK2O0hj4UXuRL4N8TjX+VOm+C41WEnLGiu3RJ4joy379Zhwz6lXsdgpx9jQjpj9 eofrUqAmKdvYk+xNQTxkpxtGCt0KD2ALYvN/JEiiXkfXnm9GWDzcdwtZ3NWQp0hf tWU8KENpwyo++fOq032E1pui3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNSR7SSG 1bFWN/RKdJgPR+WfdAcvMB8GA1UdIwQYMBaAFGSUOx0r4vk91kDgJOuU2NONzmqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEYzNC84MURBRUM1QUI1 OTgxMUVFOUExOEY5NUZDNEY5QUUwMi9aSlE3SFN2aS1UM1dRT0FrNjVUWTA0M09h b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pKUTdIU3ZpLVQzV1FPQWs2NVRZMDQzT2FvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhGMzQvODFEQUVDNUFCNTk4MTFFRTlBMThGOTVGQzRGOUFFMDIvMEQ1RjI0MTZC NUI4MTFFRUE4QUNGNTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnP1wDBAFnmXgwDQYJKoZIhvcNAQELBQADggEBAElf2T2U cv/qVraZnlk7z5IX2G/gPqREV65OMLVQJiC2Vl/2OMVuXF2i7YiF3oMrp7LQ6qpU fk/9q84GK+y/C4XRXpEAVAxhPxFy2Bm9a0AGpJ6EIL/odNSAXwoJwPjLrdJ9afy3 mt51T6d8ibu/vjc9NVwrh6n1cojoG0e5xEulGIRGCbWHDqnkwIbCGNx4eyNW6fzU w6GOuCzSRMVFz0vfPi19tJPz2LsFm0PosuZWE8oh2pnc6EwtlQGPPycadztkz5Ak KIedWMq4o5q6bpOUhZavgO1znXHcMu/uDTIZi6jwLRQ3TE29I7/wOLN3XyKZ80co we+x3DycgD93pN4= -----END CERTIFICATE-----Generated at Tue Jul 1 13:12:53 2025 by rpki-client