$ rpki-client -vvf rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/E390F83EC1CD11EB86A00568C4F9AE02.roa File: E390F83EC1CD11EB86A00568C4F9AE02.roa (raw, json) Hash identifier: ydOAiWCM6NkM+mxAS7XZYLAQc/Fn5GEwebXDqOLlzZI= Subject key identifier: 6D:0A:C3:33:C5:51:1A:56:59:68:A4:79:CA:A0:81:4C:F1:82:4B:DD Certificate issuer: /CN=A911959A/serialNumber=5C0D176A802B2E4557E885A6C0EAB5D0D070D7A7 Certificate serial: 05DE Authority key identifier: 5C:0D:17:6A:80:2B:2E:45:57:E8:85:A6:C0:EA:B5:D0:D0:70:D7:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XA0XaoArLkVX6IWmwOq10NBw16c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/E390F83EC1CD11EB86A00568C4F9AE02.roa Signing time: Thu 10 Jul 2025 23:35:11 +0000 ROA not before: Thu 10 Jul 2025 23:35:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142298 IP address blocks: 103.167.190.0/23 maxlen: 23 103.167.190.0/24 maxlen: 24 103.167.191.0/24 maxlen: 24 2001:df6:bd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/XA0XaoArLkVX6IWmwOq10NBw16c.crl rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/XA0XaoArLkVX6IWmwOq10NBw16c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XA0XaoArLkVX6IWmwOq10NBw16c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1502 (0x5de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911959A, serialNumber=5C0D176A802B2E4557E885A6C0EAB5D0D070D7A7 Validity Not Before: Jul 10 23:35:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68704e2f-621b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:66:d9:ff:77:51:4e:c4:5d:f1:ff:ed:41:eb: 6f:32:f1:b5:03:2f:c6:37:b2:8a:bf:64:55:88:d1: 41:58:2c:97:78:90:7f:3c:0d:f0:5a:23:ca:e7:7c: b5:3a:47:fb:54:2c:aa:3c:0d:1e:94:f5:8f:78:40: b2:50:db:b0:84:f2:cf:17:d6:6d:d1:f0:ef:e3:d9: 1c:96:db:60:00:23:5f:a9:9e:84:9f:2b:c6:3d:8c: 5f:6a:d6:6d:c9:7a:6d:88:e5:5b:c7:4e:ae:60:93: 8a:a1:76:ab:72:09:58:a4:86:56:a9:b7:3e:19:46: a8:20:93:3b:87:4d:c3:36:f6:62:d2:37:56:0c:ad: d1:85:1e:00:fa:d6:5a:b7:0c:d3:7b:8a:d0:b0:d8: ed:9e:ec:54:10:80:4a:2b:94:4f:c6:ef:c5:08:d6: eb:7f:19:f9:0a:a9:57:24:d3:74:4c:ba:b3:61:d1: a7:d6:cd:9b:bf:d9:b4:05:7e:e2:bf:e8:fc:ba:55: 95:b4:d5:7a:af:68:91:9b:b6:c3:e9:44:84:bf:b5: c3:cb:e4:ab:5e:cf:bb:51:39:3c:80:05:49:2c:bc: f5:ff:d3:6f:0c:11:0e:95:f9:fa:4e:f2:82:1c:ed: d1:ee:54:22:25:85:7e:b2:5a:3a:3b:96:52:75:c1: 4a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:0A:C3:33:C5:51:1A:56:59:68:A4:79:CA:A0:81:4C:F1:82:4B:DD X509v3 Authority Key Identifier: keyid:5C:0D:17:6A:80:2B:2E:45:57:E8:85:A6:C0:EA:B5:D0:D0:70:D7:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/XA0XaoArLkVX6IWmwOq10NBw16c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XA0XaoArLkVX6IWmwOq10NBw16c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911959A/2F8DCB02C1CB11EB9175CE66C4F9AE02/E390F83EC1CD11EB86A00568C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.190.0/23 IPv6: 2001:df6:bd80::/48 Signature Algorithm: sha256WithRSAEncryption ba:ac:a0:e6:b2:59:35:26:cf:c2:e3:42:73:15:4a:d4:9f:22: 71:d1:50:dc:c2:ae:1a:62:0b:7e:63:04:4c:b2:c8:51:ff:0a: 2d:c8:9c:4a:23:9f:f7:5c:f6:f7:49:85:cd:26:93:16:b6:95: 6b:21:20:80:e3:10:82:4e:c2:9f:2f:ed:24:ce:b7:89:35:40: f7:e8:bf:b4:33:fa:4b:53:33:f8:58:7b:3c:78:1a:16:b9:16: 51:ff:39:c0:5d:cc:d6:b6:c4:72:15:a7:c3:6d:0b:e8:cf:82: 2b:f5:27:25:4c:ba:5b:af:28:12:66:25:8f:2c:bc:d7:99:db: 48:76:38:6c:94:6a:1d:93:53:dd:a1:ee:53:75:6c:ed:03:c9: 6d:1a:25:0c:54:29:05:2a:6e:f2:b0:ef:5d:31:ff:36:0a:b8: 11:25:62:e5:d1:50:c9:61:35:d8:75:9d:f4:74:fc:9f:54:8e: 17:4a:ac:b6:d9:93:46:f3:bb:3b:32:9d:ff:25:0e:56:e1:b5: 91:dc:2c:6a:68:b1:66:2d:f3:38:95:e4:05:ef:42:ce:c8:90: 83:72:2f:86:aa:37:c6:07:d1:7a:99:02:b7:e7:03:b8:28:97: 6a:4b:b0:ab:71:bf:59:37:22:14:a1:79:30:0b:ab:14:d2:f4: e3:32:b9:dc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1OUExMTAvBgNVBAUTKDVDMEQxNzZBODAyQjJFNDU1N0U4ODVBNkMwRUFCNUQw RDA3MEQ3QTcwHhcNMjUwNzEwMjMzNTExWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwNGUyZi02MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2bZ/3dRTsRd8f/tQetvMvG1Ay/GN7KKv2RViNFBWCyXeJB/PA3wWiPK53y1 Okf7VCyqPA0elPWPeECyUNuwhPLPF9Zt0fDv49kclttgACNfqZ6EnyvGPYxfatZt yXptiOVbx06uYJOKoXarcglYpIZWqbc+GUaoIJM7h03DNvZi0jdWDK3RhR4A+tZa twzTe4rQsNjtnuxUEIBKK5RPxu/FCNbrfxn5CqlXJNN0TLqzYdGn1s2bv9m0BX7i v+j8ulWVtNV6r2iRm7bD6USEv7XDy+SrXs+7UTk8gAVJLLz1/9NvDBEOlfn6TvKC HO3R7lQiJYV+slo6O5ZSdcFKeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG0KwzPF URpWWWikecqggUzxgkvdMB8GA1UdIwQYMBaAFFwNF2qAKy5FV+iFpsDqtdDQcNen MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU5QS8yRjhEQ0IwMkMx Q0IxMUVCOTE3NUNFNjZDNEY5QUUwMi9YQTBYYW9BckxrVlg2SVdtd09xMTBOQncx NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBMFhhb0FyTGtWWDZJV213T3ExME5CdzE2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk1OUEvMkY4RENCMDJDMUNCMTFFQjkxNzVDRTY2QzRGOUFFMDIvRTM5MEY4M0VD MUNEMTFFQjg2QTAwNTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnp74wDwQCAAIwCQMHACABDfa9gDANBgkqhkiG9w0BAQsF AAOCAQEAuqyg5rJZNSbPwuNCcxVK1J8icdFQ3MKuGmILfmMETLLIUf8KLcicSiOf 91z290mFzSaTFraVayEggOMQgk7Cny/tJM63iTVA9+i/tDP6S1Mz+Fh7PHgaFrkW Uf85wF3M1rbEchWnw20L6M+CK/UnJUy6W68oEmYljyy815nbSHY4bJRqHZNT3aHu U3Vs7QPJbRolDFQpBSpu8rDvXTH/Ngq4ESVi5dFQyWE12HWd9HT8n1SOF0qsttmT RvO7OzKd/yUOVuG1kdwsamixZi3zOJXkBe9CzsiQg3Ivhqo3xgfRepkCt+cDuCiX akuwq3G/WTciFKF5MAurFNL04zK53A== -----END CERTIFICATE-----Generated at Sat Aug 9 20:50:53 2025 by rpki-client