$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/A3AA461082BE11EB93A19A35C4F9AE02.roa File: A3AA461082BE11EB93A19A35C4F9AE02.roa (raw, json) Hash identifier: pKScxQMxg1WdvXI6uB4aKpZXfYDWDJw+VDC0QK45Pf4= Subject key identifier: 77:37:0A:8E:5D:E6:C7:05:14:82:7D:39:21:AD:24:06:9B:DC:29:17 Certificate issuer: /CN=A91E1ED2/serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Certificate serial: 0673 Authority key identifier: A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/A3AA461082BE11EB93A19A35C4F9AE02.roa Signing time: Thu 26 Jun 2025 22:11:33 +0000 ROA not before: Thu 26 Jun 2025 22:11:33 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138013 IP address blocks: 103.150.77.0/24 maxlen: 24 103.151.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1ED2, serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Validity Not Before: Jun 26 22:11:33 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685dc595-527e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:b3:c4:e7:76:9a:ae:d5:34:2f:30:24:7f: 90:70:a1:32:e6:20:91:6b:db:cf:82:3c:51:35:cd: 07:b8:c7:87:af:bc:fb:95:c9:bf:90:35:bd:58:2f: b3:21:56:0d:04:85:91:84:e9:5d:1a:93:55:d5:e7: 84:05:43:a4:2d:04:13:aa:0b:f2:68:15:da:54:50: 48:97:77:4d:f9:80:54:f7:28:4c:23:51:1a:72:cd: 97:34:91:0b:83:18:aa:ed:8f:ee:93:f9:0d:3a:cb: 00:d9:fc:f5:53:b8:5b:d8:7b:85:03:ae:5f:36:c1: 49:e3:c3:b4:6e:5c:f6:bb:83:cf:12:e2:53:4a:48: d1:23:7d:a0:a3:ee:55:69:c2:8d:96:97:a7:25:82: 1a:05:f8:02:93:98:5b:0a:a7:32:e9:bd:2d:15:21: 9d:9e:2c:76:29:d8:41:91:08:cc:39:b2:28:10:0e: 9b:c3:d2:8a:40:e0:2c:b1:71:96:73:31:f3:ea:56: 38:95:67:62:9a:c0:a7:e9:ae:21:63:0d:1a:2b:23: 38:35:e6:b3:89:79:77:a7:a8:eb:1a:95:a8:9b:23: 33:36:24:b9:f7:55:93:d5:a1:ce:7e:c2:f6:4c:35: a5:54:28:41:50:c9:6f:34:83:9e:87:67:9d:17:04: 64:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:37:0A:8E:5D:E6:C7:05:14:82:7D:39:21:AD:24:06:9B:DC:29:17 X509v3 Authority Key Identifier: keyid:A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/A3AA461082BE11EB93A19A35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.77.0/24 103.151.84.0/24 Signature Algorithm: sha256WithRSAEncryption 57:9d:a9:52:62:11:00:ff:9f:08:df:a9:a7:c4:cc:13:ef:54: 48:f1:19:24:41:36:96:02:82:8c:0c:69:05:16:97:f0:5a:40: 32:57:a7:d8:ea:13:9d:2c:ae:3d:ac:3d:ce:88:27:de:68:fe: 3f:7c:b5:e3:95:e8:e6:84:07:00:8f:90:ff:86:6d:06:dd:1a: 67:ed:97:c2:67:f7:d5:94:e1:94:ba:09:a5:1c:e1:d9:ed:90: 11:7e:45:1d:1e:f1:18:42:c1:ac:bf:e3:ce:e2:07:fe:ff:43: 0c:f9:e3:c5:e0:14:cf:be:f3:01:d9:7c:59:17:54:e7:91:32: 84:71:4f:3a:7a:49:df:e0:1a:50:1a:43:00:c0:cc:c2:ac:be: da:31:76:ab:d2:cc:c8:28:a9:17:bb:da:fa:7d:5d:03:35:83: 61:86:42:ec:13:6f:a2:58:9e:cd:46:a1:ca:a3:fd:70:50:0c: f4:fa:eb:ba:5d:e1:e2:01:dd:38:5d:a1:48:76:17:c3:a5:ab: e2:30:c3:96:16:dd:66:da:1e:5c:7c:e8:75:11:51:7b:d8:37: 21:a2:65:7e:d0:6d:9e:77:0c:fc:db:e8:32:71:56:b4:d3:3f: 1f:3e:38:20:d2:b7:9c:33:e3:88:ae:06:f2:ec:7e:20:30:41: 63:13:28:cf -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFFRDIxMTAvBgNVBAUTKEE0OEE5MzlCNjdEQjIyQkFGNzdFMDA3QjIxREYzQjc0 NUI2MjgzOTAwHhcNMjUwNjI2MjIxMTMzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkYzU5NS01MjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwyzxOd2mq7VNC8wJH+QcKEy5iCRa9vPgjxRNc0HuMeHr7z7lcm/kDW9WC+z IVYNBIWRhOldGpNV1eeEBUOkLQQTqgvyaBXaVFBIl3dN+YBU9yhMI1Eacs2XNJEL gxiq7Y/uk/kNOssA2fz1U7hb2HuFA65fNsFJ48O0blz2u4PPEuJTSkjRI32go+5V acKNlpenJYIaBfgCk5hbCqcy6b0tFSGdnix2KdhBkQjMObIoEA6bw9KKQOAssXGW czHz6lY4lWdimsCn6a4hYw0aKyM4NeaziXl3p6jrGpWomyMzNiS591WT1aHOfsL2 TDWlVChBUMlvNIOeh2edFwRk0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHc3Co5d 5scFFIJ9OSGtJAab3CkXMB8GA1UdIwQYMBaAFKSKk5tn2yK6934AeyHfO3RbYoOQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUVEMi8zRkU4REU2Qzgy QkQxMUVCOUJDNUQzMzRDNEY5QUUwMi9wSXFUbTJmYklycjNmZ0I3SWQ4N2RGdGln NUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BJcVRtMmZiSXJyM2ZnQjdJZDg3ZEZ0aWc1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFFRDIvM0ZFOERFNkM4MkJEMTFFQjlCQzVEMzM0QzRGOUFFMDIvQTNBQTQ2MTA4 MkJFMTFFQjkzQTE5QTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnlk0DBABnl1QwDQYJKoZIhvcNAQELBQADggEBAFedqVJi EQD/nwjfqafEzBPvVEjxGSRBNpYCgowMaQUWl/BaQDJXp9jqE50srj2sPc6IJ95o /j98teOV6OaEBwCPkP+GbQbdGmftl8Jn99WU4ZS6CaUc4dntkBF+RR0e8RhCway/ 487iB/7/Qwz548XgFM++8wHZfFkXVOeRMoRxTzp6Sd/gGlAaQwDAzMKsvtoxdqvS zMgoqRe72vp9XQM1g2GGQuwTb6JYns1Gocqj/XBQDPT667pd4eIB3ThdoUh2F8Ol q+Iww5YW3WbaHlx86HURUXvYNyGiZX7QbZ53DPzb6DJxVrTTPx8+OCDSt5wz44iu BvLsfiAwQWMTKM8= -----END CERTIFICATE-----Generated at Wed Jul 2 16:19:40 2025 by rpki-client