$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/A8E34E9CB66611ECAF76DA4CC4F9AE02.roa File: A8E34E9CB66611ECAF76DA4CC4F9AE02.roa (raw, json) Hash identifier: U+TSb4gwFFQAjrhJgD02yjkinWTnlvFp6oUJxouw0Y4= Subject key identifier: 5D:06:ED:3B:6F:88:A0:62:CC:40:22:AB:A2:2F:55:BE:D0:B2:8C:F0 Certificate issuer: /CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Certificate serial: 0372 Authority key identifier: C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/A8E34E9CB66611ECAF76DA4CC4F9AE02.roa Signing time: Fri 27 Jun 2025 00:56:45 +0000 ROA not before: Fri 27 Jun 2025 00:56:45 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133523 IP address blocks: 103.73.115.0/24 maxlen: 24 103.232.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 882 (0x372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01B2, serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Validity Not Before: Jun 27 00:56:45 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685dec4c-8f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1e:b7:0d:b4:ad:a1:f3:2f:45:eb:b7:88:38: 85:78:b5:9c:39:f8:a3:bb:14:bd:26:73:7a:49:79: 81:0c:5e:13:e7:a6:1d:52:cb:c7:6c:7f:dd:af:b0: 91:29:c4:b4:0e:f3:83:9a:e9:e0:c0:04:07:1d:b2: 97:b9:e4:fb:32:a6:0d:fd:03:12:f6:6c:57:0c:a3: d0:0a:2e:ac:bd:a1:d6:81:eb:fb:1a:a4:0d:4e:37: 5d:80:99:1a:fb:4f:42:58:35:ea:2a:cb:09:1d:b8: 66:8c:4f:4d:b8:4a:fd:90:66:08:8e:30:94:fe:4a: ea:75:f4:29:f7:45:95:23:9b:00:e6:e8:c7:c2:e9: e4:b2:52:3c:a6:f9:7d:44:a6:4a:f0:35:57:cf:af: 59:1b:b2:3a:f6:1a:6e:2a:16:d3:1d:0c:10:f6:7a: 1d:b6:fa:d3:4c:32:3e:e8:4d:9a:23:bb:d8:24:3f: 76:d6:8b:b8:28:05:eb:55:e6:16:49:b6:96:fa:24: 2e:2d:34:91:ef:76:c3:c6:62:e0:7e:a4:a1:71:3e: 18:39:c7:e8:47:ad:fe:cb:16:72:26:de:5a:5f:7f: 85:30:0b:18:66:29:03:aa:27:0c:a0:72:86:83:49: 8a:9a:b4:97:c5:22:27:33:1e:c1:85:bb:5c:d2:18: dc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:06:ED:3B:6F:88:A0:62:CC:40:22:AB:A2:2F:55:BE:D0:B2:8C:F0 X509v3 Authority Key Identifier: keyid:C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/A8E34E9CB66611ECAF76DA4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.115.0/24 103.232.218.0/24 Signature Algorithm: sha256WithRSAEncryption 78:22:bb:10:ae:9a:93:94:31:34:4c:b2:e0:09:7b:51:db:8f: 46:1c:cd:63:39:55:4d:38:d2:52:d6:69:b6:5d:e9:aa:65:68: 8d:2a:46:33:22:8d:17:d5:e2:14:b6:6f:e4:c0:c6:82:be:6c: fb:94:f5:c2:71:20:9c:ea:56:4f:ef:84:e6:3d:3c:0d:f5:73: b7:a5:b6:b2:fd:bb:23:b8:15:5e:b1:06:ff:ab:c1:57:fd:fe: e7:ac:cc:7b:d8:20:5d:91:83:28:38:e4:f6:5f:79:1f:0f:b3: 34:81:e8:66:d0:50:e8:8e:dc:73:e8:8f:84:ab:f0:5a:85:91: 55:8d:4c:07:f9:ad:34:cf:95:b5:26:2b:1d:3a:36:8c:2b:bf: 07:a6:7d:d6:03:29:f8:b1:f8:07:6c:92:10:67:35:1f:ae:4a: 0b:bb:58:02:ea:03:3f:80:73:45:a1:bd:11:e7:8f:23:07:a3: 01:1a:61:d1:4d:af:9d:81:58:9d:45:f8:10:32:4a:f2:c2:fe: 3e:3d:44:0b:40:f2:46:9b:2e:61:24:a5:f7:43:43:4e:b3:f7: 96:5c:81:71:92:ea:87:4f:66:e3:d2:b0:1f:02:14:34:dc:46: 82:fb:ec:7f:38:0b:25:7b:72:40:80:e0:45:6b:e8:e9:da:2c: a3:67:73:20 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQjIxMTAvBgNVBAUTKEM3RTU3OTBCMDVFMEQ0RDIwOURCNDNEQzY4MEZCNzg4 Mjc5ODE0QTkwHhcNMjUwNjI3MDA1NjQ1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkZWM0Yy04ZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxx63DbStofMvReu3iDiFeLWcOfijuxS9JnN6SXmBDF4T56YdUsvHbH/dr7CR KcS0DvODmungwAQHHbKXueT7MqYN/QMS9mxXDKPQCi6svaHWgev7GqQNTjddgJka +09CWDXqKssJHbhmjE9NuEr9kGYIjjCU/krqdfQp90WVI5sA5ujHwunkslI8pvl9 RKZK8DVXz69ZG7I69hpuKhbTHQwQ9nodtvrTTDI+6E2aI7vYJD921ou4KAXrVeYW SbaW+iQuLTSR73bDxmLgfqShcT4YOcfoR63+yxZyJt5aX3+FMAsYZikDqicMoHKG g0mKmrSXxSInMx7Bhbtc0hjcmwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF0G7Ttv iKBizEAiq6IvVb7QsozwMB8GA1UdIwQYMBaAFMfleQsF4NTSCdtD3GgPt4gnmBSp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFCMi82REU5RjQxMEI2 NjMxMUVDOEQ1NEE0NDlDNEY5QUUwMi94LVY1Q3dYZzFOSUoyMFBjYUEtM2lDZVlG S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gtVjVDd1hnMU5JSjIwUGNhQS0zaUNlWUZLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxQjIvNkRFOUY0MTBCNjYzMTFFQzhENTRBNDQ5QzRGOUFFMDIvQThFMzRFOUNC NjY2MTFFQ0FGNzZEQTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnSXMDBABn6NowDQYJKoZIhvcNAQELBQADggEBAHgiuxCu mpOUMTRMsuAJe1Hbj0YczWM5VU040lLWabZd6aplaI0qRjMijRfV4hS2b+TAxoK+ bPuU9cJxIJzqVk/vhOY9PA31c7eltrL9uyO4FV6xBv+rwVf9/ueszHvYIF2Rgyg4 5PZfeR8PszSB6GbQUOiO3HPoj4Sr8FqFkVWNTAf5rTTPlbUmKx06NowrvwemfdYD Kfix+AdskhBnNR+uSgu7WALqAz+Ac0WhvRHnjyMHowEaYdFNr52BWJ1F+BAySvLC /j49RAtA8kabLmEkpfdDQ06z95ZcgXGS6odPZuPSsB8CFDTcRoL77H84CyV7ckCA 4EVr6OnaLKNncyA= -----END CERTIFICATE-----Generated at Thu Jul 3 10:03:27 2025 by rpki-client