$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa File: D29DE1E6C98611ED8D5AE04CC4F9AE02.roa (raw, json) Hash identifier: 31xev4NPWwXKKZxGPGay9JA7GBIzfTlM7xCV7ZGyWGY= Subject key identifier: 18:94:8F:67:BE:57:03:B0:0B:E5:EA:54:D8:9A:CA:96:90:35:32:2C Certificate issuer: /CN=A91C3DC8/serialNumber=A6C9611130C5167455136E85ABF236AAAA937BAD Certificate serial: 0C5B Authority key identifier: A6:C9:61:11:30:C5:16:74:55:13:6E:85:AB:F2:36:AA:AA:93:7B:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa Signing time: Sun 10 Aug 2025 11:16:24 +0000 ROA not before: Sun 10 Aug 2025 11:16:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136141 IP address blocks: 103.137.66.0/24 maxlen: 24 103.137.67.0/24 maxlen: 24 2001:df0:1c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.crl rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3DC8, serialNumber=A6C9611130C5167455136E85ABF236AAAA937BAD Validity Not Before: Aug 10 11:16:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68987f88-ce95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6e:e8:8b:4b:4e:f1:8a:7e:6e:d6:f4:80:aa: 1c:e9:e0:d5:b5:aa:1f:5f:9b:39:c2:75:5c:26:a2: 7c:88:dd:5d:30:88:43:92:09:3a:4b:9c:8c:ed:44: 75:da:20:5d:19:f0:cd:aa:d4:60:d7:96:e9:13:19: 5f:ce:1f:eb:87:fc:27:5f:82:b3:70:eb:2c:2f:a9: fe:f9:b9:1e:fb:d6:fb:e6:64:98:ab:d9:fd:1c:6d: c2:f1:6d:98:1d:03:8b:20:8f:bc:62:00:e0:70:fd: 46:d2:73:ef:f8:6a:2b:d1:47:ce:51:3b:5b:2c:50: b7:af:60:e5:8f:45:fa:99:53:fe:5a:b1:90:31:99: 13:d6:05:79:78:5d:bc:7b:31:90:d4:c6:9a:eb:b9: c8:34:e2:2f:55:43:a5:de:4e:d1:53:11:ec:4e:c8: 37:4b:58:5d:73:e8:94:7e:e9:6d:1b:ad:e5:bd:7b: 7a:26:04:3f:08:69:c1:e2:65:19:80:d9:d9:0d:de: 2e:9d:ff:19:4f:87:9a:81:6b:e3:a5:5e:bb:e0:57: 89:e9:f4:0f:26:6b:6a:6c:81:45:68:a9:04:0a:1e: fe:22:fe:1a:c1:a3:a6:96:c8:19:ed:04:f2:1c:bc: c8:81:87:bb:26:ed:da:02:f7:fb:e5:6c:88:ba:42: 94:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:94:8F:67:BE:57:03:B0:0B:E5:EA:54:D8:9A:CA:96:90:35:32:2C X509v3 Authority Key Identifier: keyid:A6:C9:61:11:30:C5:16:74:55:13:6E:85:AB:F2:36:AA:AA:93:7B:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.66.0/23 IPv6: 2001:df0:1c80::/48 Signature Algorithm: sha256WithRSAEncryption 87:8d:4d:59:44:94:22:30:fc:b8:3b:58:c9:48:07:19:20:38: 0c:f4:12:71:85:dc:4d:bb:bd:f1:42:ea:ca:0f:0a:d9:33:ac: 6c:07:84:f8:8b:45:12:5e:d2:00:a2:ba:e1:02:1b:cf:2f:7d: 98:aa:bc:eb:dd:a0:a9:a2:5c:4a:e2:80:21:92:6c:80:65:6e: 08:fd:fe:88:01:33:de:a4:2b:4c:84:14:78:66:13:e9:2e:1b: 49:ed:69:01:99:ff:9e:0d:82:8c:be:61:ae:23:cb:8e:f5:e8: c9:99:bd:66:d0:39:ad:73:45:89:54:15:5d:d2:65:07:2b:ad: 9f:43:31:44:f2:52:cd:fa:59:88:c8:f4:d4:08:1e:3f:44:2b: 33:5f:24:1d:fd:84:b1:94:e4:69:12:5a:82:24:6e:c9:da:70: d0:2e:d9:a0:c2:fc:25:b5:80:70:e1:48:95:f4:00:5a:6a:22: 0f:71:b6:3f:cf:6d:92:cd:4d:63:dc:d9:33:2b:c8:a8:92:31: 57:34:9d:0c:75:95:59:80:b6:e0:f1:e2:4b:91:c6:83:e7:82: 46:05:83:78:0b:e0:1b:64:09:b4:a6:b6:55:a1:17:62:95:c6: fd:e0:b3:d6:94:ac:8a:c7:f9:bc:48:86:8c:92:2b:51:b1:3b: 91:99:63:4c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNEQzgxMTAvBgNVBAUTKEE2Qzk2MTExMzBDNTE2NzQ1NTEzNkU4NUFCRjIzNkFB QUE5MzdCQUQwHhcNMjUwODEwMTExNjI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk4N2Y4OC1jZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArG7oi0tO8Yp+btb0gKoc6eDVtaofX5s5wnVcJqJ8iN1dMIhDkgk6S5yM7UR1 2iBdGfDNqtRg15bpExlfzh/rh/wnX4KzcOssL6n++bke+9b75mSYq9n9HG3C8W2Y HQOLII+8YgDgcP1G0nPv+Gor0UfOUTtbLFC3r2Dlj0X6mVP+WrGQMZkT1gV5eF28 ezGQ1Maa67nINOIvVUOl3k7RUxHsTsg3S1hdc+iUfultG63lvXt6JgQ/CGnB4mUZ gNnZDd4unf8ZT4eagWvjpV674FeJ6fQPJmtqbIFFaKkECh7+Iv4awaOmlsgZ7QTy HLzIgYe7Ju3aAvf75WyIukKU6QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBiUj2e+ VwOwC+XqVNiaypaQNTIsMB8GA1UdIwQYMBaAFKbJYREwxRZ0VRNuhavyNqqqk3ut MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0RDOC9FNUNBRjkzRTEx RDgxMUVBQjcxNjdDNEZDNEY5QUUwMi9wc2xoRVRERkZuUlZFMjZGcV9JMnFxcVRl NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BzbGhFVERGRm5SVkUyNkZxX0kycXFxVGU2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNEQzgvRTVDQUY5M0UxMUQ4MTFFQUI3MTY3QzRGQzRGOUFFMDIvRDI5REUxRTZD OTg2MTFFRDhENUFFMDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFniUIwDwQCAAIwCQMHACABDfAcgDANBgkqhkiG9w0BAQsF AAOCAQEAh41NWUSUIjD8uDtYyUgHGSA4DPQScYXcTbu98ULqyg8K2TOsbAeE+ItF El7SAKK64QIbzy99mKq8692gqaJcSuKAIZJsgGVuCP3+iAEz3qQrTIQUeGYT6S4b Se1pAZn/ng2CjL5hriPLjvXoyZm9ZtA5rXNFiVQVXdJlByutn0MxRPJSzfpZiMj0 1AgeP0QrM18kHf2EsZTkaRJagiRuydpw0C7ZoML8JbWAcOFIlfQAWmoiD3G2P89t ks1NY9zZMyvIqJIxVzSdDHWVWYC24PHiS5HGg+eCRgWDeAvgG2QJtKa2VaEXYpXG /eCz1pSsisf5vEiGjJIrUbE7kZljTA== -----END CERTIFICATE-----Generated at Sat Aug 23 19:28:07 2025 by rpki-client