$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/8F7DDD8889B811EE9E7ABE26C4F9AE02.roa File: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (raw, json) Hash identifier: JsvlnopzOaOKTX3AuOnQGEvn3QbobkZ0VGpy6s7Zufs= Subject key identifier: 1B:41:CD:31:43:84:ED:DF:13:8F:03:E9:A6:FF:79:CA:11:4C:E7:42 Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0D92 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/8F7DDD8889B811EE9E7ABE26C4F9AE02.roa Signing time: Tue 06 May 2025 18:27:34 +0000 ROA not before: Tue 06 May 2025 18:27:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 21859 IP address blocks: 103.38.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3474 (0xd92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: May 6 18:27:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681a5496-a4d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:df:e6:78:5f:3e:d6:24:ce:fb:59:b0:17:61: b7:7e:ed:c0:81:28:b7:7a:56:ef:92:9e:0a:01:e8: 5e:62:89:fa:40:e9:69:94:3e:ba:70:57:58:25:41: e8:47:eb:d7:ff:11:9d:53:35:f6:de:53:df:d3:27: cd:53:2b:d2:de:51:4e:08:92:11:45:d5:d9:1e:b8: 2a:59:da:a9:8d:39:32:7b:bb:cc:8f:cf:81:fa:67: f8:47:7d:f1:b4:fb:eb:dc:6c:8e:f6:20:87:3a:30: 9d:1b:b9:8e:6f:ba:0f:a7:b6:0c:3d:67:9c:eb:38: 29:08:be:47:91:1a:79:0e:e0:6f:a0:ad:0f:d6:00: b1:82:b5:70:62:ef:10:02:b8:c2:7a:91:9a:3c:61: c6:83:1a:bb:3c:2a:e3:96:cb:65:91:94:b1:3b:35: c9:48:8f:a8:5e:fe:44:d7:e7:f5:a9:be:18:c4:e6: c5:57:28:4c:1b:37:64:02:8c:7f:4c:85:55:99:c7: a9:b2:eb:bf:e4:2e:a9:4c:5a:02:a9:79:d1:3c:f0: b2:20:85:d7:a3:3e:e2:bb:b8:b6:70:56:fb:3f:bd: fc:ea:79:fe:5e:31:a6:ca:c8:95:81:72:66:c4:c2: dd:16:67:7a:6e:d6:3a:fd:74:8f:2c:58:83:a6:f5: a2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:41:CD:31:43:84:ED:DF:13:8F:03:E9:A6:FF:79:CA:11:4C:E7:42 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/8F7DDD8889B811EE9E7ABE26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.255.0/24 Signature Algorithm: sha256WithRSAEncryption 60:49:cc:73:f5:23:c7:f4:13:0b:17:08:14:7c:4d:ca:67:bd: 3f:87:67:a1:f6:d3:db:25:ea:f0:9b:c7:b0:2a:d7:4b:23:42: 75:4b:14:7f:34:f5:60:5b:aa:4a:da:3c:96:06:40:38:0f:45: 70:b5:cc:2a:8c:98:6d:1f:74:e3:30:08:7f:68:bf:34:23:6e: 3c:2a:0a:e5:96:e8:2b:9b:c3:b6:e2:ed:d0:1b:29:62:8a:c9: 9b:aa:4c:00:14:8b:76:0f:3a:ee:91:8b:5c:8f:e1:be:93:84: 94:ee:9d:6e:75:fc:19:8e:64:b8:ea:8a:5e:d8:83:3c:6f:0a: 6d:f2:96:6f:6f:0c:83:d2:45:c9:7a:c7:fe:11:1a:3e:ae:1c: fe:07:36:4e:11:b8:ed:37:66:8d:44:7e:35:db:b6:ae:d9:bd: af:62:8a:ef:4d:54:dd:4b:37:a6:d0:d6:6e:de:46:33:2c:98: 51:fb:93:db:8e:3e:1c:f7:56:22:54:b9:b9:6e:c7:e1:ee:d0: 21:a0:ab:42:2a:28:65:61:68:cc:5d:47:4f:af:82:64:e5:eb: 1c:a2:37:85:af:d2:d0:d5:d7:d3:f6:2b:08:01:0f:21:f1:a5: a1:89:c1:1a:0e:ba:a4:62:b2:6a:1e:f9:54:e2:8f:b9:0d:05: a9:b3:96:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNTA2MTgyNzM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhNTQ5Ni1hNGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1t/meF8+1iTO+1mwF2G3fu3AgSi3elbvkp4KAeheYon6QOlplD66cFdYJUHo R+vX/xGdUzX23lPf0yfNUyvS3lFOCJIRRdXZHrgqWdqpjTkye7vMj8+B+mf4R33x tPvr3GyO9iCHOjCdG7mOb7oPp7YMPWec6zgpCL5HkRp5DuBvoK0P1gCxgrVwYu8Q ArjCepGaPGHGgxq7PCrjlstlkZSxOzXJSI+oXv5E1+f1qb4YxObFVyhMGzdkAox/ TIVVmcepsuu/5C6pTFoCqXnRPPCyIIXXoz7iu7i2cFb7P7386nn+XjGmysiVgXJm xMLdFmd6btY6/XSPLFiDpvWirQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBtBzTFD hO3fE48D6ab/ecoRTOdCMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY4RjYvMzdEMDNERjZDRTI4MTFFOUE2QjZDMTdCQzRGOUFFMDIvOEY3REREODg4 OUI4MTFFRTlFN0FCRTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnJv8wDQYJKoZIhvcNAQELBQADggEBAGBJzHP1I8f0EwsX CBR8TcpnvT+HZ6H209sl6vCbx7Aq10sjQnVLFH809WBbqkraPJYGQDgPRXC1zCqM mG0fdOMwCH9ovzQjbjwqCuWW6Cubw7bi7dAbKWKKyZuqTAAUi3YPOu6Ri1yP4b6T hJTunW51/BmOZLjqil7YgzxvCm3ylm9vDIPSRcl6x/4RGj6uHP4HNk4RuO03Zo1E fjXbtq7Zva9iiu9NVN1LN6bQ1m7eRjMsmFH7k9uOPhz3ViJUublux+Hu0CGgq0Iq KGVhaMxdR0+vgmTl6xyiN4Wv0tDV19P2KwgBDyHxpaGJwRoOuqRismoe+VTij7kN BamzltA= -----END CERTIFICATE-----Generated at Sun Jun 15 20:00:18 2025 by rpki-client