$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa File: 1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa (raw, json) Hash identifier: fzz+cmf6RTjpSZhSUYFboDARUAmhNVeZcjvYZat/5Js= Subject key identifier: 1E:27:65:B6:69:CC:B4:0D:7B:43:6D:A8:52:CF:61:49:E6:14:1B:6D Certificate issuer: /CN=A91BDE68/serialNumber=2688D48E342192B5FDA8DB6DAD62CC15C87503FA Certificate serial: 1657 Authority key identifier: 26:88:D4:8E:34:21:92:B5:FD:A8:DB:6D:AD:62:CC:15:C8:75:03:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JojUjjQhkrX9qNttrWLMFch1A_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa Signing time: Thu 24 Jul 2025 08:38:42 +0000 ROA not before: Thu 24 Jul 2025 08:38:42 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137080 IP address blocks: 103.104.28.0/22 maxlen: 24 103.106.146.0/23 maxlen: 24 2401:ff40::/32 maxlen: 32 2401:ff40:5000::/44 maxlen: 44 2401:ff40:5010::/44 maxlen: 44 2401:ff40:5020::/44 maxlen: 44 2401:ff40:5040::/44 maxlen: 44 2401:ff40:e000::/44 maxlen: 44 2401:ff40:e040::/44 maxlen: 44 2401:ff40:f000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/JojUjjQhkrX9qNttrWLMFch1A_o.crl rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/JojUjjQhkrX9qNttrWLMFch1A_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JojUjjQhkrX9qNttrWLMFch1A_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5719 (0x1657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDE68, serialNumber=2688D48E342192B5FDA8DB6DAD62CC15C87503FA Validity Not Before: Jul 24 08:38:42 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6881f112-0bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ae:41:b1:71:d1:9a:f9:97:e9:ec:40:96:37: c0:05:c8:0f:3d:b8:9a:c2:24:a1:41:63:59:6a:12: 22:7d:4f:ae:6c:5e:f3:85:4b:68:fa:6e:67:d1:2e: de:54:1b:70:bd:16:c6:b7:cc:f2:c2:e4:2a:bf:07: ff:c8:70:92:02:70:60:18:ae:57:4b:31:54:50:87: 96:e8:95:ee:fa:fa:75:3d:05:29:56:9b:02:d7:b8: c3:42:0b:3b:de:ed:8b:9c:5d:40:4e:d1:03:36:a1: eb:70:e5:83:c0:60:59:a6:0c:1d:bb:be:e8:d6:76: 82:bd:5b:04:1c:89:f9:45:34:7c:ad:16:48:06:11: e2:58:ff:ea:6e:52:51:cd:99:d3:f1:a0:a9:8d:76: 2f:8e:8f:8b:36:d5:64:bf:9a:d5:a9:5d:78:7b:49: d3:d3:91:14:01:f6:cd:cb:58:86:aa:03:60:5d:0b: c7:9f:e1:ff:f9:77:7e:27:88:47:fb:61:e6:d4:d2: 5f:2d:de:15:75:c2:a2:83:c9:85:eb:15:f2:80:8d: b1:3c:33:51:86:43:b0:34:3c:2f:46:2a:02:01:d7: c8:75:fb:ce:72:70:ae:f1:71:e6:24:85:6c:cc:49: 1b:64:63:4f:3f:4d:a4:bb:82:6f:36:47:2a:af:53: f1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:27:65:B6:69:CC:B4:0D:7B:43:6D:A8:52:CF:61:49:E6:14:1B:6D X509v3 Authority Key Identifier: keyid:26:88:D4:8E:34:21:92:B5:FD:A8:DB:6D:AD:62:CC:15:C8:75:03:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/JojUjjQhkrX9qNttrWLMFch1A_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JojUjjQhkrX9qNttrWLMFch1A_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.28.0/22 103.106.146.0/23 IPv6: 2401:ff40::/32 Signature Algorithm: sha256WithRSAEncryption 69:40:e9:93:91:6c:44:ca:be:46:3c:e5:3f:d0:23:f9:8c:0d: 4d:7d:87:58:95:c0:34:e1:3a:31:0a:e3:ff:31:a0:ec:26:8a: dd:44:e4:ce:a4:22:78:ad:61:48:20:8f:46:8f:a3:04:c0:73: df:c4:78:e1:00:22:4d:04:af:d3:ba:79:13:19:35:a5:d2:8f: 85:a5:24:91:82:2a:3c:c8:88:97:e4:45:73:74:ae:f8:9b:05: c6:ff:c7:22:dc:7e:59:4e:55:14:2f:9b:55:b9:38:80:48:97: 06:0f:34:b6:eb:7e:59:85:dc:99:99:6e:72:c3:62:02:2f:45: 8e:25:fd:08:d7:83:79:c4:1d:d4:bd:0c:7a:22:c2:fa:b6:50: 1b:d9:39:89:de:8b:14:e6:86:e2:38:b5:c4:00:ec:df:e8:d4: b5:6b:7b:3c:e8:61:38:5b:40:84:dd:ca:ea:3a:8a:0a:3f:34: 74:47:7d:00:44:de:97:3e:ce:88:2f:c6:bc:25:d1:82:40:49: 3a:9d:fb:33:a3:99:9b:c3:1c:4a:03:19:b3:a6:e0:74:51:c9: 1d:19:17:d2:99:98:0a:4a:42:3e:6f:c9:86:5b:38:cf:fb:50: 51:8e:cf:41:92:a2:fe:2e:cc:21:52:37:dd:72:54:4b:6d:fb: 40:c8:c8:85 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRFNjgxMTAvBgNVBAUTKDI2ODhENDhFMzQyMTkyQjVGREE4REI2REFENjJDQzE1 Qzg3NTAzRkEwHhcNMjUwNzI0MDgzODQyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgxZjExMi0wYmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2K5BsXHRmvmX6exAljfABcgPPbiawiShQWNZahIifU+ubF7zhUto+m5n0S7e VBtwvRbGt8zywuQqvwf/yHCSAnBgGK5XSzFUUIeW6JXu+vp1PQUpVpsC17jDQgs7 3u2LnF1ATtEDNqHrcOWDwGBZpgwdu77o1naCvVsEHIn5RTR8rRZIBhHiWP/qblJR zZnT8aCpjXYvjo+LNtVkv5rVqV14e0nT05EUAfbNy1iGqgNgXQvHn+H/+Xd+J4hH +2Hm1NJfLd4VdcKig8mF6xXygI2xPDNRhkOwNDwvRioCAdfIdfvOcnCu8XHmJIVs zEkbZGNPP02ku4JvNkcqr1Px5wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFB4nZbZp zLQNe0NtqFLPYUnmFBttMB8GA1UdIwQYMBaAFCaI1I40IZK1/ajbba1izBXIdQP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREU2OC84MEIyRjNGODE1 RUExMUU4QTczNTM2MTNDNEY5QUUwMi9Kb2pVampRaGtyWDlxTnR0cldMTUZjaDFB X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pvalVqalFoa3JYOXFOdHRyV0xNRmNoMUFfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRFNjgvODBCMkYzRjgxNUVBMTFFOEE3MzUzNjEzQzRGOUFFMDIvMUY4QUVDQzZF Rjg0MTFFQkI0RTAwRDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnaBwDBAFnapIwDQQCAAIwBwMFACQB/0AwDQYJKoZIhvcN AQELBQADggEBAGlA6ZORbETKvkY85T/QI/mMDU19h1iVwDThOjEK4/8xoOwmit1E 5M6kInitYUggj0aPowTAc9/EeOEAIk0Er9O6eRMZNaXSj4WlJJGCKjzIiJfkRXN0 rvibBcb/xyLcfllOVRQvm1W5OIBIlwYPNLbrflmF3JmZbnLDYgIvRY4l/QjXg3nE HdS9DHoiwvq2UBvZOYneixTmhuI4tcQA7N/o1LVrezzoYThbQITdyuo6igo/NHRH fQBE3pc+zogvxrwl0YJASTqd+zOjmZvDHEoDGbOm4HRRyR0ZF9KZmApKQj5vyYZb OM/7UFGOz0GSov4uzCFSN91yVEtt+0DIyIU= -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:51 2025 by rpki-client