$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/F647E58E768A11F081B6114EC4F9AE02.roa File: F647E58E768A11F081B6114EC4F9AE02.roa (raw, json) Hash identifier: 4tlTWNBTFbCbarJCMOHXFwX1zgwBjmDcHval7E7ErMY= Subject key identifier: 62:75:36:40:90:38:B5:5F:8E:91:E6:B6:F1:62:F1:7E:73:25:BF:DC Certificate issuer: /CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Certificate serial: 34D4 Authority key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/F647E58E768A11F081B6114EC4F9AE02.roa Signing time: Mon 11 Aug 2025 08:12:46 +0000 ROA not before: Mon 11 Aug 2025 08:12:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62597 IP address blocks: 103.35.248.0/24 maxlen: 24 103.35.249.0/24 maxlen: 24 103.35.250.0/24 maxlen: 24 2402:cf80::/32 maxlen: 32 2402:cf80::/48 maxlen: 48 2402:cf80:100::/44 maxlen: 48 2402:cf80:1000::/48 maxlen: 48 2402:cf80:1003::/48 maxlen: 48 2402:cf80:1004::/48 maxlen: 48 2402:cf80:1005::/48 maxlen: 48 2402:cf80:1006::/48 maxlen: 48 2402:cf80:6259::/48 maxlen: 48 2402:cf80:7ffe::/48 maxlen: 48 2402:cf80:7fff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13524 (0x34d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9350, serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Validity Not Before: Aug 11 08:12:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6899a5fe-a756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:09:ac:81:16:5a:7c:84:4e:b0:80:78:e4:5f: 00:42:1b:97:d8:f2:6f:0e:b7:48:68:57:70:00:44: 8c:12:b3:7a:78:6b:59:09:26:8e:56:54:fd:09:db: fc:ff:45:64:37:4f:ef:3f:6d:47:c2:56:f1:63:fb: ed:cf:73:39:f9:7b:7e:66:1d:ba:db:fc:2e:b3:89: 9e:ed:c8:32:90:8a:b0:38:75:f2:5d:e9:e6:e2:d2: 40:3d:4a:f8:59:82:1f:61:76:b4:13:e2:2e:d8:09: ff:d1:10:aa:a8:f6:c2:19:08:4f:23:9a:3e:a0:59: 98:1b:03:94:55:59:2a:a3:2d:92:95:33:6b:d9:bc: 0f:98:6e:17:e4:26:32:ae:00:0c:ec:f3:1f:c3:5f: a7:68:a4:97:20:13:d5:be:22:d5:53:8f:fa:94:ab: 37:a0:d1:e6:71:d7:e9:f9:b5:01:ed:68:39:fd:9f: 8f:b7:5c:11:57:d4:02:ff:95:77:17:09:7b:bd:d4: 2a:bd:fb:f2:cb:ec:9b:ca:de:c1:91:ae:0d:cd:1f: 75:f1:a6:04:32:0e:c8:01:59:b0:d6:8d:45:bf:bb: d1:f9:2d:2d:0c:9c:43:89:55:6f:45:b0:35:11:3a: df:3c:8e:aa:ca:6b:2c:ea:af:b3:ab:d0:e5:4f:0b: 19:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:75:36:40:90:38:B5:5F:8E:91:E6:B6:F1:62:F1:7E:73:25:BF:DC X509v3 Authority Key Identifier: keyid:CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/F647E58E768A11F081B6114EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.248.0-103.35.250.255 IPv6: 2402:cf80::/32 Signature Algorithm: sha256WithRSAEncryption 24:cc:a2:1b:a7:57:3b:05:36:a4:8f:be:98:4c:2c:a1:7a:2c: 2c:98:25:44:8d:b8:c9:be:dd:f1:74:c1:71:f1:af:33:96:f5: 3c:73:69:41:c6:18:c8:22:5d:69:3c:31:ab:a2:05:2f:f3:26: d3:77:71:0c:11:33:f1:6a:05:a0:52:d9:7f:44:3e:8c:b0:5a: a2:d3:20:04:fc:2c:a6:b8:6a:34:53:f6:03:39:7c:dc:48:be: 38:9d:5d:f6:09:e7:2a:8d:96:4f:3a:61:48:5f:70:b1:11:7c: c1:10:d3:5d:22:35:7d:50:65:cc:4e:f3:2c:b8:9a:4d:f2:f9: fa:2c:05:56:40:cd:d2:91:c0:2a:ad:a0:c3:43:62:2c:67:4f: a9:9c:5c:ba:a1:32:22:28:8a:9b:af:ac:7c:ee:42:37:e4:fd: 15:50:b0:ec:71:5b:1d:68:bc:f1:83:ea:5b:f9:7c:ab:60:c6: 85:09:da:de:78:4b:2c:21:16:88:1c:c8:be:93:70:ef:a7:7d: 39:2a:01:53:5a:d6:47:47:17:77:ba:5c:03:eb:3e:50:ca:d8: 9d:12:e5:00:30:5b:2e:9f:3a:c2:c4:3d:d4:1b:fb:71:fd:30: aa:5b:ec:2b:d0:1c:da:06:e3:1a:6f:4c:7e:04:5a:71:2e:f9: 1f:13:03:2a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICNNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5QUQzOURENUYy REZFNTlERTQwHhcNMjUwODExMDgxMjQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5YTVmZS1hNzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwmsgRZafIROsIB45F8AQhuX2PJvDrdIaFdwAESMErN6eGtZCSaOVlT9Cdv8 /0VkN0/vP21HwlbxY/vtz3M5+Xt+Zh262/wus4me7cgykIqwOHXyXenm4tJAPUr4 WYIfYXa0E+Iu2An/0RCqqPbCGQhPI5o+oFmYGwOUVVkqoy2SlTNr2bwPmG4X5CYy rgAM7PMfw1+naKSXIBPVviLVU4/6lKs3oNHmcdfp+bUB7Wg5/Z+Pt1wRV9QC/5V3 Fwl7vdQqvfvyy+ybyt7Bka4NzR918aYEMg7IAVmw1o1Fv7vR+S0tDJxDiVVvRbA1 ETrfPI6qymss6q+zq9DlTwsZUwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGJ1NkCQ OLVfjpHmtvFi8X5zJb/cMB8GA1UdIwQYMBaAFM9wbYFH13kgfZmvmtOd1fLf5Z3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTM1MC8zOTEzQkNBMDFE ODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1VmWGVTQjltYS1hMDUzVjh0X2xu ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozQnRnVWZYZVNCOW1hLWEwNTNWOHRfbG5lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzNTAvMzkxM0JDQTAxRDg3MTFFMkI0MkIwMkRGMDhCMDJDRDIvRjY0N0U1OEU3 NjhBMTFGMDgxQjYxMTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEA2cj+AMEAGcj+jANBAIAAjAHAwUAJALPgDANBgkqhkiG 9w0BAQsFAAOCAQEAJMyiG6dXOwU2pI++mEwsoXosLJglRI24yb7d8XTBcfGvM5b1 PHNpQcYYyCJdaTwxq6IFL/Mm03dxDBEz8WoFoFLZf0Q+jLBaotMgBPwsprhqNFP2 Azl83Ei+OJ1d9gnnKo2WTzphSF9wsRF8wRDTXSI1fVBlzE7zLLiaTfL5+iwFVkDN 0pHAKq2gw0NiLGdPqZxcuqEyIiiKm6+sfO5CN+T9FVCw7HFbHWi88YPqW/l8q2DG hQna3nhLLCEWiBzIvpNw76d9OSoBU1rWR0cXd7pcA+s+UMrYnRLlADBbLp86wsQ9 1Bv7cf0wqlvsK9Ac2gbjGm9MfgRacS75HxMDKg== -----END CERTIFICATE-----Generated at Sat Aug 23 16:20:58 2025 by rpki-client