$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa File: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (raw, json) Hash identifier: LdDw24/Or3M92peybKBWsStvdJIFCX02q7LqBzB3QW8= Subject key identifier: D7:2C:44:52:5C:0E:90:0F:47:B8:76:64:C1:6A:69:8C:B8:E5:65:64 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 08E5 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa Signing time: Mon 04 Aug 2025 21:01:45 +0000 ROA not before: Mon 04 Aug 2025 21:01:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2277 (0x8e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 4 21:01:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68911fb9-46ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:63:89:0b:7c:6c:64:81:dc:c6:99:59:68:da: a2:a1:63:48:51:55:90:f5:cb:af:76:84:ca:0a:aa: 1e:7e:84:67:a5:01:8e:1c:ac:da:f2:0c:43:0d:74: ac:02:e0:95:4b:1b:51:a2:9b:aa:75:27:cc:2a:16: bc:0b:e6:f4:35:28:79:81:4e:06:8a:59:b6:4d:4e: fa:d4:9b:f2:63:29:99:f6:9e:8e:df:17:78:3a:a0: cd:d0:a5:8b:b1:b1:9d:8b:bc:1a:98:a4:8c:57:ef: 15:e4:dd:e6:8a:a3:9a:38:ef:b9:40:ac:f4:4c:d7: 5d:f6:0b:e5:2b:51:b8:1b:6e:45:4e:03:8b:b0:3b: 14:70:b3:01:fb:72:e6:5d:a7:4a:13:71:d8:5c:d3: 89:41:0b:38:24:64:72:21:31:05:d0:1a:06:04:0a: 60:5d:56:e8:11:0d:c9:f5:c7:86:98:33:8a:68:4e: 51:2b:32:bf:03:4e:bd:0b:73:b2:38:82:49:6c:72: e1:a4:c1:cc:c0:b1:b9:8a:f6:c1:8a:8d:9b:85:61: ae:72:d4:ee:14:c9:7c:8d:b0:91:b5:d1:a7:29:34: e1:a6:c7:11:31:e1:e7:ff:54:fc:3c:b5:43:f5:eb: af:e3:49:8e:78:3c:ed:bf:23:08:db:da:3b:80:e4: ba:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2C:44:52:5C:0E:90:0F:47:B8:76:64:C1:6A:69:8C:B8:E5:65:64 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 02:84:22:ec:ab:5b:d9:92:b7:45:32:78:b1:73:ba:fa:2a:71: 94:63:3b:f4:d4:41:07:cb:74:c8:1c:d1:a6:39:ba:29:9c:d6: 9c:97:b6:0a:e9:91:d2:ee:77:a6:13:12:cd:68:2c:5f:bf:a0: 2b:e7:82:2c:f0:3f:e3:81:2d:e7:2d:0d:86:13:92:67:37:ca: 4c:7c:eb:59:02:9e:92:38:07:74:a4:35:c8:5b:a5:2a:32:e3: ff:8f:2a:e2:70:9c:12:97:63:df:97:49:0e:35:9e:87:47:61: a0:b2:06:61:60:e5:9d:96:d2:80:5a:ae:3b:f6:39:1f:5f:70: 70:5b:a0:a2:06:72:54:7a:4d:5e:c9:1f:36:8f:85:a5:23:59: c8:0c:fb:5a:e1:59:b4:e3:3e:2a:ac:65:bd:6d:75:c0:7c:4b: 80:78:c5:e1:a5:dc:ae:1a:34:14:d7:a4:46:91:50:96:38:d2: 34:cc:63:12:7f:84:cc:fe:05:d6:ba:ce:2a:39:c4:91:a3:6d: b9:54:81:bc:13:49:3c:c6:78:92:69:90:75:28:9d:7f:a0:38: d6:2e:d8:2a:1b:b4:b2:be:16:26:d9:62:9a:75:b3:cd:49:b2: a9:5f:76:cf:0f:37:7e:de:6a:fa:56:6a:f4:a4:0f:22:3f:7c: e6:21:00:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwODA0MjEwMTQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxMWZiOS00NmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmOJC3xsZIHcxplZaNqioWNIUVWQ9cuvdoTKCqoefoRnpQGOHKza8gxDDXSs AuCVSxtRopuqdSfMKha8C+b0NSh5gU4Gilm2TU761JvyYymZ9p6O3xd4OqDN0KWL sbGdi7wamKSMV+8V5N3miqOaOO+5QKz0TNdd9gvlK1G4G25FTgOLsDsUcLMB+3Lm XadKE3HYXNOJQQs4JGRyITEF0BoGBApgXVboEQ3J9ceGmDOKaE5RKzK/A069C3Oy OIJJbHLhpMHMwLG5ivbBio2bhWGuctTuFMl8jbCRtdGnKTThpscRMeHn/1T8PLVD 9euv40mOeDztvyMI29o7gOS6eQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNcsRFJc DpAPR7h2ZMFqaYy45WVkMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvNkFFNTBFMUMy MUUwMTFFQkJGMzZDRDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKowDQYJKoZIhvcNAQELBQADggEBAAKEIuyrW9mSt0Uy eLFzuvoqcZRjO/TUQQfLdMgc0aY5uimc1pyXtgrpkdLud6YTEs1oLF+/oCvngizw P+OBLectDYYTkmc3ykx861kCnpI4B3SkNchbpSoy4/+PKuJwnBKXY9+XSQ41nodH YaCyBmFg5Z2W0oBarjv2OR9fcHBboKIGclR6TV7JHzaPhaUjWcgM+1rhWbTjPiqs Zb1tdcB8S4B4xeGl3K4aNBTXpEaRUJY40jTMYxJ/hMz+Bda6zio5xJGjbblUgbwT STzGeJJpkHUonX+gONYu2CobtLK+FibZYpp1s81Jsqlfds8PN37eavpWavSkDyI/ fOYhAAA= -----END CERTIFICATE-----Generated at Sun Aug 10 18:48:15 2025 by rpki-client