$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/DF3136A2CFF011EAB2F1D086C4F9AE02.roa File: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (raw, json) Hash identifier: Us01OaqyY9hkYagplVuFKDaxQc/+mQDnpIsRSuf4AxA= Subject key identifier: FB:9E:17:CC:43:7A:8D:51:DE:53:28:67:1E:4B:66:52:41:86:82:D4 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 0862 Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/DF3136A2CFF011EAB2F1D086C4F9AE02.roa Signing time: Mon 18 Aug 2025 21:01:36 +0000 ROA not before: Mon 18 Aug 2025 21:01:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140954 IP address blocks: 103.153.185.0/24 maxlen: 24 103.157.253.0/24 maxlen: 24 2001:df4:5980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2146 (0x862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022, serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Aug 18 21:01:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a394af-7194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0d:8e:13:86:2a:e0:28:4d:26:a5:fb:63:a5: 4a:ec:67:24:e2:6b:ff:ff:ae:f4:1c:da:d2:12:b1: d6:ec:b7:f3:46:d7:34:ae:19:30:c2:b1:37:b2:dc: 24:3f:66:8a:f1:c7:18:cd:9f:e7:df:1d:19:fb:27: 11:96:76:ba:ba:0b:ad:cf:0d:28:be:d5:10:5d:db: 87:62:56:59:00:5b:68:28:ae:db:eb:06:a0:26:28: 69:cc:3b:a2:5d:5d:59:8d:07:3c:09:9c:bc:79:ce: ad:c6:dc:a2:8b:a8:bd:dc:b5:2b:7c:44:93:d7:27: f2:a4:76:e9:07:a5:87:02:a8:01:fe:06:53:2d:8e: 3b:58:56:05:f6:d5:89:7f:74:da:4b:8a:20:9d:18: e3:ed:3e:57:d5:0a:c9:0f:a4:b2:ac:2c:c7:c3:2e: d0:a8:50:4b:fd:86:78:8d:7d:94:08:bb:73:31:a9: 13:63:81:63:7c:d7:c8:32:58:c1:24:83:01:c1:99: 57:16:75:42:98:f7:08:fe:40:03:e0:dd:70:15:61: f9:ee:f2:eb:a5:b6:a1:8d:56:da:ce:40:71:a7:ba: f1:4d:e8:76:0e:e6:50:82:b3:27:04:d0:5c:32:1c: ed:0f:95:11:c9:c6:d6:53:1e:7f:09:d0:a8:94:b6: b4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:9E:17:CC:43:7A:8D:51:DE:53:28:67:1E:4B:66:52:41:86:82:D4 X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/DF3136A2CFF011EAB2F1D086C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.185.0/24 103.157.253.0/24 IPv6: 2001:df4:5980::/48 Signature Algorithm: sha256WithRSAEncryption 88:61:78:c0:b3:e8:76:6d:99:51:cd:1f:7d:52:0b:55:72:f3: 0c:91:dd:b7:54:25:3b:0e:7e:8b:0a:40:fa:2c:81:58:75:2d: 4e:41:6e:74:3f:a7:e7:84:68:bd:8c:d5:ce:6e:77:30:fe:b2: df:a7:f7:b0:cc:ed:3f:03:fc:00:26:7b:a9:01:77:93:33:13: 6d:1e:2f:2b:3d:c2:2f:d4:a8:2e:f3:d6:90:6b:35:f7:58:08: c3:81:45:d9:09:4b:9f:de:35:e7:6c:0e:62:9e:bb:44:cb:a4: 74:dd:33:f7:82:62:2a:7b:e6:ef:63:d8:37:03:ad:f0:e8:86: 2f:2d:fd:f3:5f:74:ed:c4:59:68:e0:2f:38:b6:02:90:cd:47: 51:aa:72:05:67:08:6a:6f:00:bc:e8:e2:8a:78:32:43:cc:41: ba:a6:47:60:6c:33:68:78:af:c9:65:75:69:41:74:72:eb:d7: be:bf:3a:af:af:04:2c:27:60:b8:35:7e:71:f2:fd:67:23:8e: f3:06:da:dd:24:2d:bd:60:9e:91:3b:1a:d2:87:75:38:0d:91: 95:66:f0:e6:1a:77:9a:f2:47:3a:8e:39:70:b6:f8:65:18:4d: a5:4e:13:a6:e5:76:0b:a5:e8:b7:fe:f2:3e:d2:03:1f:e1:ae: 36:f7:44:04 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjUwODE4MjEwMTM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzOTRhZi03MTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5w2OE4Yq4ChNJqX7Y6VK7Gck4mv//670HNrSErHW7LfzRtc0rhkwwrE3stwk P2aK8ccYzZ/n3x0Z+ycRlna6ugutzw0ovtUQXduHYlZZAFtoKK7b6wagJihpzDui XV1ZjQc8CZy8ec6txtyii6i93LUrfEST1yfypHbpB6WHAqgB/gZTLY47WFYF9tWJ f3TaS4ognRjj7T5X1QrJD6SyrCzHwy7QqFBL/YZ4jX2UCLtzMakTY4FjfNfIMljB JIMBwZlXFnVCmPcI/kAD4N1wFWH57vLrpbahjVbazkBxp7rxTeh2DuZQgrMnBNBc MhztD5URycbWUx5/CdColLa04QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPueF8xD eo1R3lMoZx5LZlJBhoLUMB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEwMjIvOUQ4RDk0NThDRkVGMTFFQUIyQ0I4ODg1QzRGOUFFMDIvREYzMTM2QTJD RkYwMTFFQUIyRjFEMDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnmbkDBABnnf0wDwQCAAIwCQMHACABDfRZgDANBgkqhkiG 9w0BAQsFAAOCAQEAiGF4wLPodm2ZUc0ffVILVXLzDJHdt1QlOw5+iwpA+iyBWHUt TkFudD+n54RovYzVzm53MP6y36f3sMztPwP8ACZ7qQF3kzMTbR4vKz3CL9SoLvPW kGs191gIw4FF2QlLn94152wOYp67RMukdN0z94JiKnvm72PYNwOt8OiGLy398190 7cRZaOAvOLYCkM1HUapyBWcIam8AvOjiingyQ8xBuqZHYGwzaHivyWV1aUF0cuvX vr86r68ELCdguDV+cfL9ZyOO8wba3SQtvWCekTsa0od1OA2RlWbw5hp3mvJHOo45 cLb4ZRhNpU4TpuV2C6Xot/7yPtIDH+GuNvdEBA== -----END CERTIFICATE-----Generated at Sat Aug 23 22:11:55 2025 by rpki-client