$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/D2A57AD8DDF111EF969ABC1CC4F9AE02.roa File: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (raw, json) Hash identifier: O1MkwGdKDfVHdsOhHQrlU/aFTqc21EnEwMBW12Asebg= Subject key identifier: 6F:F5:08:9E:DA:3E:5F:6A:31:7C:20:6B:B8:0F:FD:79:37:8D:9F:62 Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: 53 Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/D2A57AD8DDF111EF969ABC1CC4F9AE02.roa Signing time: Thu 03 Jul 2025 01:04:34 +0000 ROA not before: Thu 03 Jul 2025 01:04:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135594 IP address blocks: 103.67.165.0/24 maxlen: 24 103.152.4.0/24 maxlen: 24 2001:df3:4a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: Jul 3 01:04:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865d721-a189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:21:a6:5b:6a:72:c8:33:22:1a:ae:b5:56:9e: cc:4a:b5:89:a2:8f:26:c7:be:40:85:55:11:19:2b: 01:48:58:92:37:e4:e1:25:72:fb:d6:5e:d2:be:70: a7:98:0e:cf:1d:aa:e5:23:57:78:1d:88:ff:1a:97: bd:3f:04:35:a2:e7:8c:f2:8a:59:10:24:a4:b3:d7: 51:8d:1b:22:c9:94:95:05:23:18:fd:b7:be:1f:dd: 42:de:16:d6:8b:f5:2e:cf:aa:43:94:c1:28:26:0c: 3d:28:2e:ff:35:99:df:fe:02:45:46:33:9e:ac:b4: 42:98:ac:90:e7:4b:ac:ba:3a:9d:ca:84:89:56:bb: 9e:8d:27:44:64:00:51:26:a3:d2:4c:aa:21:34:3c: 88:10:3d:4e:ef:5f:27:d6:71:1b:0d:2e:5c:70:dd: 83:aa:ca:af:67:68:4c:a7:07:97:c8:f7:66:af:ca: ed:3a:ea:1c:b6:57:c3:34:d5:6a:18:c1:b4:9c:6e: c1:d0:b4:51:fc:da:16:ab:f1:92:33:17:cc:7d:c3: ed:33:74:22:ff:3b:6a:a4:f5:2d:e2:14:c0:93:de: f5:49:9b:74:fc:f7:3d:71:be:a2:b0:d5:c9:0f:c3: f7:8a:d6:9b:c3:f4:6d:e1:bf:c9:70:da:42:0a:f8: 18:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F5:08:9E:DA:3E:5F:6A:31:7C:20:6B:B8:0F:FD:79:37:8D:9F:62 X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/D2A57AD8DDF111EF969ABC1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.165.0/24 103.152.4.0/24 IPv6: 2001:df3:4a00::/48 Signature Algorithm: sha256WithRSAEncryption 5c:3d:08:4b:2a:93:ce:ab:d3:5d:4b:cf:80:e0:20:d9:2e:2f: 55:4f:7f:74:17:b7:6e:fb:b6:d1:27:87:2b:b5:62:44:2f:bd: 90:60:68:27:05:47:6f:0b:1e:37:6d:f5:91:e3:76:db:36:e6: b3:78:e1:66:24:46:3f:7d:79:41:e8:58:2b:c3:3f:29:fd:f7: 02:20:8e:25:48:86:db:5d:aa:3f:8d:0d:7d:a5:93:8f:ee:cc: 8f:98:39:76:1e:2f:93:da:cd:f6:a8:dc:75:b4:a4:d9:11:63: 4d:73:c2:0d:28:0c:53:10:74:78:35:0f:98:a6:78:00:34:6e: 6b:ff:15:74:92:6b:75:96:7a:5e:9c:04:34:16:22:d0:aa:34: dd:24:66:1b:21:e7:fc:80:97:08:a6:0e:e3:e6:20:55:ba:b5: 3a:e5:d8:fa:3d:af:3b:61:f6:48:80:d2:f8:53:ca:96:54:29: d2:21:db:ff:af:17:ab:25:90:42:38:72:e7:51:0b:ec:27:86: 8f:1f:8d:92:77:c8:b6:cf:3d:62:02:d7:9b:a8:90:f1:e6:ed: 6b:15:b7:44:3a:ab:5c:2b:ae:7c:12:40:25:6c:ed:34:4c:8b: cf:09:c2:33:b2:62:c2:2e:65:b2:1c:0a:38:90:ff:94:6d:a6: 00:da:53:6a -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUE4RDExMC8GA1UEBRMoODJEODE4ODYxREQ0QTcwRjc3MDhEMjA1RTRCODlFODUx NENBMUY2QzAeFw0yNTA3MDMwMTA0MzNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjVkNzIxLWExODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4IaZbanLIMyIarrVWnsxKtYmijybHvkCFVREZKwFIWJI35OElcvvWXtK+cKeY Ds8dquUjV3gdiP8al70/BDWi54zyilkQJKSz11GNGyLJlJUFIxj9t74f3ULeFtaL 9S7PqkOUwSgmDD0oLv81md/+AkVGM56stEKYrJDnS6y6Op3KhIlWu56NJ0RkAFEm o9JMqiE0PIgQPU7vXyfWcRsNLlxw3YOqyq9naEynB5fI92avyu066hy2V8M01WoY wbScbsHQtFH82har8ZIzF8x9w+0zdCL/O2qk9S3iFMCT3vVJm3T89z1xvqKw1ckP w/eK1pvD9G3hv8lw2kIK+BjXAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUb/UInto+ X2oxfCBruA/9eTeNn2IwHwYDVR0jBBgwFoAUgtgYhh3Upw93CNIF5LiehRTKH2ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QThELzMyRjFGNEMyODNF OTExRUNCODczQzg3MUM0RjlBRTAyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3RnWWhoM1VwdzkzQ05JRjVMaWVoUlRLSDJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9EMkE1N0FEOERE RjExMUVGOTY5QUJDMUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGdDpQMEAGeYBDAPBAIAAjAJAwcAIAEN80oAMA0GCSqGSIb3 DQEBCwUAA4IBAQBcPQhLKpPOq9NdS8+A4CDZLi9VT390F7du+7bRJ4crtWJEL72Q YGgnBUdvCx43bfWR43bbNuazeOFmJEY/fXlB6Fgrwz8p/fcCII4lSIbbXao/jQ19 pZOP7syPmDl2Hi+T2s32qNx1tKTZEWNNc8INKAxTEHR4NQ+YpngANG5r/xV0kmt1 lnpenAQ0FiLQqjTdJGYbIef8gJcIpg7j5iBVurU65dj6Pa87YfZIgNL4U8qWVCnS Idv/rxerJZBCOHLnUQvsJ4aPH42Sd8i2zz1iAtebqJDx5u1rFbdEOqtcK658EkAl bO00TIvPCcIzsmLCLmWyHAo4kP+UbaYA2lNq -----END CERTIFICATE-----Generated at Sat Jul 5 04:57:34 2025 by rpki-client