$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DFBF8CDC6AF911F08AB48F35C4F9AE02.roa File: DFBF8CDC6AF911F08AB48F35C4F9AE02.roa (raw, json) Hash identifier: LvOncBacp+KNSMfj7m7RG6y+20TTs0UeSnhzak3/ObY= Subject key identifier: 39:F1:7D:B5:11:48:16:F6:73:B4:A9:9E:D4:05:12:B3:D4:A5:6B:EE Certificate issuer: /CN=A91EDB37/serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Certificate serial: 06E5 Authority key identifier: BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DFBF8CDC6AF911F08AB48F35C4F9AE02.roa Signing time: Thu 21 Aug 2025 09:16:42 +0000 ROA not before: Thu 21 Aug 2025 09:16:42 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135377 IP address blocks: 36.255.220.0/24 maxlen: 24 36.255.221.0/24 maxlen: 24 36.255.222.0/24 maxlen: 24 36.255.223.0/24 maxlen: 24 103.14.33.0/24 maxlen: 24 103.14.34.0/24 maxlen: 24 103.14.35.0/24 maxlen: 24 103.72.144.0/24 maxlen: 24 103.72.145.0/24 maxlen: 24 103.72.146.0/24 maxlen: 24 103.72.147.0/24 maxlen: 24 103.210.20.0/24 maxlen: 24 103.210.21.0/24 maxlen: 24 103.210.22.0/24 maxlen: 24 103.210.23.0/24 maxlen: 24 122.10.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=BB544176DDE68E3581C5C43F4FC7CC2CF68D6924 Validity Not Before: Aug 21 09:16:42 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a6e3fa-9408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:26:a5:c6:a7:cb:58:ce:dc:17:ea:9b:94:a8: 2c:a9:f1:03:f7:2e:ad:83:ac:61:6d:85:58:ec:d7: a0:c5:b6:21:0a:2e:aa:66:72:a2:99:3e:10:d9:3f: 63:c2:c4:55:b9:f4:f1:aa:45:33:6b:ed:5f:90:61: a3:39:be:1f:6f:32:f8:ec:c7:a6:e7:31:fa:73:c2: 3f:e3:25:da:3f:27:51:0b:f2:11:ef:80:3f:1d:61: 39:06:a7:70:ac:c7:d0:a3:9a:3f:b7:a5:79:7d:7e: fe:9f:3b:91:98:18:1a:b6:8b:04:59:da:87:38:3d: c0:c5:01:4d:1e:bf:6f:90:2b:81:0b:21:53:38:b3: d4:06:ab:19:19:0b:79:b9:b6:b6:23:0f:6f:90:38: de:de:8f:5a:1f:55:3c:7b:0f:68:59:30:2c:58:04: 57:0a:34:37:c7:58:c3:6b:02:c6:7b:84:c4:55:2c: fc:15:18:6c:49:5f:07:5c:aa:cb:c8:15:c0:75:9a: 5a:ec:a6:32:92:90:41:8f:06:76:c1:89:4b:be:b5: da:70:b6:12:64:d8:b8:21:a9:6b:9b:57:0d:4e:1d: 04:0f:7a:17:cc:8d:79:99:e1:b1:e7:4e:8f:70:74: c6:60:0f:b1:f9:aa:99:d6:41:5e:16:01:2f:73:39: 34:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F1:7D:B5:11:48:16:F6:73:B4:A9:9E:D4:05:12:B3:D4:A5:6B:EE X509v3 Authority Key Identifier: keyid:BB:54:41:76:DD:E6:8E:35:81:C5:C4:3F:4F:C7:CC:2C:F6:8D:69:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1RBdt3mjjWBxcQ_T8fMLPaNaSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/5764737A78A011EB950D3175C4F9AE02/DFBF8CDC6AF911F08AB48F35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.220.0/22 103.14.33.0-103.14.35.255 103.72.144.0/22 103.210.20.0/22 122.10.161.0/24 Signature Algorithm: sha256WithRSAEncryption 65:fb:65:b7:ad:ff:f5:a3:4b:49:0d:26:a5:d8:e3:3a:60:a8: e6:02:48:2a:e0:01:1d:c4:c7:c5:a2:f7:4e:3a:8f:6f:23:9f: 1c:b1:ae:e7:c2:3f:38:e7:5e:60:2b:5c:59:6b:d2:47:87:c3: be:4b:b7:62:5f:16:11:80:b1:4f:67:aa:c3:14:ea:af:86:a1: 0b:08:c5:2e:a9:f4:c7:cc:6a:1c:e8:37:55:58:94:ca:38:aa: ee:ab:56:11:16:52:2f:04:6c:70:33:2c:77:c3:80:56:a0:75: 98:5c:65:92:eb:a1:92:1b:aa:7d:18:60:3e:8f:81:a1:51:48: 7e:c0:12:17:d3:85:11:be:ed:1f:a3:cd:f7:e8:40:20:c4:38: 48:15:08:87:6f:b9:4f:8a:f4:14:88:7a:91:ea:e2:08:37:9e: cf:64:00:56:7f:ed:f2:b0:3b:84:0c:03:f9:e5:64:b2:37:bc: c0:74:e3:96:c0:8e:c6:ce:a5:74:99:a7:45:c6:ef:96:0a:6e: 88:7f:61:8e:50:be:b3:88:9f:0f:f1:64:b9:95:43:f2:72:27: 4e:3e:da:33:d0:6f:1e:e0:1c:ef:91:7f:ef:28:07:c1:25:1e: 64:c9:17:f4:83:d7:06:92:6e:a9:62:81:2b:a1:4a:a8:6b:e0: f7:d8:81:c4 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKEJCNTQ0MTc2RERFNjhFMzU4MUM1QzQzRjRGQzdDQzJD RjY4RDY5MjQwHhcNMjUwODIxMDkxNjQyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2ZTNmYS05NDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yalxqfLWM7cF+qblKgsqfED9y6tg6xhbYVY7NegxbYhCi6qZnKimT4Q2T9j wsRVufTxqkUza+1fkGGjOb4fbzL47Mem5zH6c8I/4yXaPydRC/IR74A/HWE5Bqdw rMfQo5o/t6V5fX7+nzuRmBgatosEWdqHOD3AxQFNHr9vkCuBCyFTOLPUBqsZGQt5 uba2Iw9vkDje3o9aH1U8ew9oWTAsWARXCjQ3x1jDawLGe4TEVSz8FRhsSV8HXKrL yBXAdZpa7KYykpBBjwZ2wYlLvrXacLYSZNi4Ialrm1cNTh0ED3oXzI15meGx506P cHTGYA+x+aqZ1kFeFgEvczk0BQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFDnxfbUR SBb2c7SpntQFErPUpWvuMB8GA1UdIwQYMBaAFLtUQXbd5o41gcXEP0/HzCz2jWkk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy81NzY0NzM3QTc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi91MVJCZHQzbWpqV0J4Y1FfVDhmTUxQYU5h U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxUkJkdDNtampXQnhjUV9UOGZNTFBhTmFTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNTc2NDczN0E3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvREZCRjhDREM2 QUY5MTFGMDhBQjQ4RjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAIk/9wwDAMEAGcOIQMEAmcOIAMEAmdIkAMEAmfSFAMEAHoK oTANBgkqhkiG9w0BAQsFAAOCAQEAZftlt63/9aNLSQ0mpdjjOmCo5gJIKuABHcTH xaL3TjqPbyOfHLGu58I/OOdeYCtcWWvSR4fDvku3Yl8WEYCxT2eqwxTqr4ahCwjF Lqn0x8xqHOg3VViUyjiq7qtWERZSLwRscDMsd8OAVqB1mFxlkuuhkhuqfRhgPo+B oVFIfsASF9OFEb7tH6PN9+hAIMQ4SBUIh2+5T4r0FIh6keriCDeez2QAVn/t8rA7 hAwD+eVksje8wHTjlsCOxs6ldJmnRcbvlgpuiH9hjlC+s4ifD/FkuZVD8nInTj7a M9BvHuAc75F/7ygHwSUeZMkX9IPXBpJuqWKBK6FKqGvg99iBxA== -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:19 2025 by rpki-client