$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6776/3E117484881711E9ADC4D335C4F9AE02/7DAD1584881811E99CA76437C4F9AE02.roa File: 7DAD1584881811E99CA76437C4F9AE02.roa (raw, json) Hash identifier: 7xDsnkCThpvbOtffnvk+M6w2z5g0OVkEFMaM0Kg+k0U= Subject key identifier: 82:3E:15:09:33:A7:60:61:B2:C9:58:E1:98:EA:6A:6C:A1:5C:DD:C2 Certificate issuer: /CN=A91E6776/serialNumber=5939E973C88BFC6A41AA35A89DD846FB0D168BCC Certificate serial: 0EED Authority key identifier: 59:39:E9:73:C8:8B:FC:6A:41:AA:35:A8:9D:D8:46:FB:0D:16:8B:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WTnpc8iL_GpBqjWondhG-w0Wi8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6776/3E117484881711E9ADC4D335C4F9AE02/7DAD1584881811E99CA76437C4F9AE02.roa Signing time: Thu 14 Aug 2025 17:57:16 +0000 ROA not before: Thu 14 Aug 2025 17:57:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139071 IP address blocks: 103.139.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6776/3E117484881711E9ADC4D335C4F9AE02/WTnpc8iL_GpBqjWondhG-w0Wi8w.crl rsync://rpki.apnic.net/member_repository/A91E6776/3E117484881711E9ADC4D335C4F9AE02/WTnpc8iL_GpBqjWondhG-w0Wi8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WTnpc8iL_GpBqjWondhG-w0Wi8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3821 (0xeed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6776, serialNumber=5939E973C88BFC6A41AA35A89DD846FB0D168BCC Validity Not Before: Aug 14 17:57:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689e237b-2004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:6a:6b:b1:9e:3e:de:ab:ff:1c:53:ad:57: 2e:b3:52:6f:41:43:79:6b:80:da:ce:3d:7f:69:64: a4:48:fd:37:84:c1:92:15:13:c1:87:d0:a7:2f:66: 83:0c:d9:9d:7a:dc:85:9b:47:65:4b:a6:e3:49:06: 41:13:33:ba:0e:79:ea:2d:24:c2:93:65:90:76:f0: 47:78:49:94:07:11:a3:ee:32:c8:22:09:c3:3d:41: 75:66:5a:9f:89:46:3f:2c:d9:57:01:28:ae:2d:4b: a4:6d:6f:a4:98:4e:b2:a2:93:a5:94:72:7b:8c:07: c0:57:55:4f:56:ff:e8:bf:bc:e0:6c:dc:7e:58:bf: 01:ff:21:29:ac:d8:ba:08:f3:f6:ca:0d:db:e4:98: 07:2c:f1:f2:1e:ec:27:44:af:b8:78:47:4f:5c:9d: d3:07:8f:95:6d:4c:5c:33:62:72:9a:31:b1:03:c1: 2d:bb:a2:48:20:dc:3a:ea:d7:3c:ed:cd:0f:b2:92: 19:51:00:14:d4:d8:1e:a1:36:36:fd:8e:c1:b2:10: 25:6c:b3:ad:40:a9:8a:b6:e0:eb:18:35:df:c3:89: d7:ea:40:a5:84:ad:74:70:9d:19:71:ed:44:75:cb: 77:64:a7:a2:e8:13:25:7b:a5:3a:bd:cc:a7:48:e0: 55:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3E:15:09:33:A7:60:61:B2:C9:58:E1:98:EA:6A:6C:A1:5C:DD:C2 X509v3 Authority Key Identifier: keyid:59:39:E9:73:C8:8B:FC:6A:41:AA:35:A8:9D:D8:46:FB:0D:16:8B:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6776/3E117484881711E9ADC4D335C4F9AE02/WTnpc8iL_GpBqjWondhG-w0Wi8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WTnpc8iL_GpBqjWondhG-w0Wi8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6776/3E117484881711E9ADC4D335C4F9AE02/7DAD1584881811E99CA76437C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.100.0/23 Signature Algorithm: sha256WithRSAEncryption 75:09:37:b1:f5:e7:71:8c:de:ac:00:ee:9a:fb:3f:0d:dc:04: f1:fc:a7:3f:42:e0:00:a8:cc:97:51:5e:5f:d6:ae:b7:fe:77: f9:21:9f:5e:cd:1c:7f:2c:93:d2:70:22:42:82:3f:fe:c3:ed: 58:a1:67:f9:1f:51:95:d3:3a:a1:c3:c3:55:a7:89:4b:a8:30: 31:8e:80:ef:4a:25:cd:28:be:39:19:06:58:5c:d8:59:e3:c7: e9:34:23:a4:25:2c:2c:e6:e4:c2:a7:9b:f8:ca:4f:fa:d5:4f: 4c:78:78:55:6e:df:ad:7e:a0:a7:b1:9f:e8:75:77:d1:06:7b: 5d:69:36:8f:83:d8:e1:25:20:53:e1:6b:4b:7c:94:b8:54:0a: 93:b0:f6:70:a4:43:66:b6:50:ed:3e:da:e0:32:2c:80:2f:ba: 28:1b:d2:e8:40:c3:b5:e1:9b:46:a0:f4:a4:63:c6:f3:d4:38: 3c:ef:12:6e:87:0a:88:99:2e:fd:f8:02:d4:51:0f:fe:67:b9: 29:cf:ff:ae:2d:2d:d1:4f:b0:9b:55:02:79:4e:9f:e8:70:55: b3:48:04:33:eb:b0:65:1d:f4:dc:0a:94:8a:33:03:fc:84:b4: 73:15:94:2c:07:57:5f:fa:15:53:26:3c:58:94:01:98:a6:da: 9d:91:3a:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY3NzYxMTAvBgNVBAUTKDU5MzlFOTczQzg4QkZDNkE0MUFBMzVBODlERDg0NkZC MEQxNjhCQ0MwHhcNMjUwODE0MTc1NzE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMjM3Yi0yMDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIJqa7GePt6r/xxTrVcus1JvQUN5a4Dazj1/aWSkSP03hMGSFRPBh9CnL2aD DNmdetyFm0dlS6bjSQZBEzO6DnnqLSTCk2WQdvBHeEmUBxGj7jLIIgnDPUF1Zlqf iUY/LNlXASiuLUukbW+kmE6yopOllHJ7jAfAV1VPVv/ov7zgbNx+WL8B/yEprNi6 CPP2yg3b5JgHLPHyHuwnRK+4eEdPXJ3TB4+VbUxcM2JymjGxA8Etu6JIINw66tc8 7c0PspIZUQAU1NgeoTY2/Y7BshAlbLOtQKmKtuDrGDXfw4nX6kClhK10cJ0Zce1E dct3ZKei6BMle6U6vcynSOBVjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFII+FQkz p2BhsslY4ZjqamyhXN3CMB8GA1UdIwQYMBaAFFk56XPIi/xqQao1qJ3YRvsNFovM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjc3Ni8zRTExNzQ4NDg4 MTcxMUU5QURDNEQzMzVDNEY5QUUwMi9XVG5wYzhpTF9HcEJxaldvbmRoRy13MFdp OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dUbnBjOGlMX0dwQnFqV29uZGhHLXcwV2k4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY3NzYvM0UxMTc0ODQ4ODE3MTFFOUFEQzREMzM1QzRGOUFFMDIvN0RBRDE1ODQ4 ODE4MTFFOTlDQTc2NDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni2QwDQYJKoZIhvcNAQELBQADggEBAHUJN7H153GM3qwA 7pr7Pw3cBPH8pz9C4ACozJdRXl/Wrrf+d/khn17NHH8sk9JwIkKCP/7D7VihZ/kf UZXTOqHDw1WniUuoMDGOgO9KJc0ovjkZBlhc2Fnjx+k0I6QlLCzm5MKnm/jKT/rV T0x4eFVu361+oKexn+h1d9EGe11pNo+D2OElIFPha0t8lLhUCpOw9nCkQ2a2UO0+ 2uAyLIAvuigb0uhAw7Xhm0ag9KRjxvPUODzvEm6HCoiZLv34AtRRD/5nuSnP/64t LdFPsJtVAnlOn+hwVbNIBDPrsGUd9NwKlIozA/yEtHMVlCwHV1/6FVMmPFiUAZim 2p2ROkU= -----END CERTIFICATE-----Generated at Sun Aug 24 06:35:11 2025 by rpki-client