$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/C248DFA26DBB11EDB3635D28C4F9AE02.roa File: C248DFA26DBB11EDB3635D28C4F9AE02.roa (raw, json) Hash identifier: gQzK7hVZPrZ6aKsXhdiMNjPzCoQYQhoW/DlG0FlsTCE= Subject key identifier: 19:F1:84:A7:2D:05:C1:7F:52:49:0B:A1:07:E1:04:7C:E0:DC:CA:62 Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 01C6 Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/C248DFA26DBB11EDB3635D28C4F9AE02.roa Signing time: Thu 17 Apr 2025 02:08:10 +0000 ROA not before: Thu 17 Apr 2025 02:08:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139030 IP address blocks: 103.138.174.0/23 maxlen: 23 103.138.174.0/24 maxlen: 24 103.138.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4, serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Apr 17 02:08:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6800628a-6e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:09:01:33:2b:3e:13:10:99:c9:c1:63:be:8c: 89:a5:48:f0:ea:50:9f:53:82:a6:56:9a:c6:8d:5a: 0b:ac:c4:bf:64:ae:6f:c6:f1:4b:87:82:f5:91:ea: 5c:b4:f0:ce:7f:9f:d4:c4:37:ca:3f:dd:47:9e:19: 9b:8d:b8:29:92:14:d5:79:1c:ed:f9:38:34:b6:fe: 9a:09:f5:91:cc:9b:b9:fd:a8:72:d2:ee:17:67:d6: ca:19:74:8c:d0:96:59:5b:29:5f:b5:40:63:22:6b: 90:25:32:66:bd:be:64:c4:71:62:79:6d:4f:30:70: f4:4b:1d:87:66:99:ad:65:48:f3:53:41:dd:69:11: 94:58:63:d5:1d:99:c0:18:02:c9:8f:59:32:af:72: b6:bf:a6:fd:57:c7:6f:83:04:10:d5:c5:b5:e8:7b: eb:b4:20:4d:8e:3f:76:72:7a:73:29:32:74:fc:2d: 9a:82:57:65:54:7c:9d:b4:2b:b5:4b:34:49:c7:4a: 73:f1:ea:65:f9:a8:a1:2e:a7:73:40:11:db:0b:6f: 51:de:8e:43:cd:4b:ec:e5:b7:2b:ab:ac:1c:42:4b: c3:cb:eb:2f:1e:fe:b1:e3:4d:d0:32:86:b9:88:32: 25:e3:b2:7a:57:b2:bc:0d:9d:24:ec:f5:6e:2d:b2: 26:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F1:84:A7:2D:05:C1:7F:52:49:0B:A1:07:E1:04:7C:E0:DC:CA:62 X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/C248DFA26DBB11EDB3635D28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.174.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:94:37:b2:3d:fd:37:d6:47:36:f3:15:6c:a9:03:d6:b6:aa: 23:0e:6c:93:9a:98:5e:1b:fe:79:f7:8e:1e:5b:0c:18:3b:e6: 68:69:a2:f9:b8:1a:df:87:7a:23:48:78:87:ad:69:4c:21:6c: e4:d9:ee:c8:9b:bb:78:d0:f3:20:77:fe:92:37:ab:4b:26:e6: e6:96:6e:61:cd:12:3f:d9:fb:2f:00:00:5f:38:e6:7b:21:18: 6c:b0:f5:6e:7f:a1:da:e8:87:71:2a:d3:74:b7:e1:0f:18:bf: 49:4d:58:66:6f:d2:7e:c0:f4:e4:b4:b9:90:32:54:ad:e6:03: f7:b6:e7:45:66:3c:da:d3:ae:5c:51:0d:e5:14:ee:b1:05:19: ee:41:79:7e:1f:8e:d3:f6:b0:7f:6a:f5:55:3f:c8:c1:f1:e4: 9f:2f:f9:8e:49:11:2f:e9:3d:fd:6e:4b:4f:fc:29:7d:6d:f1: 55:71:dd:3c:31:d2:dc:83:ea:c3:30:eb:2a:ac:97:e6:41:09: 5b:2d:b5:8f:41:cb:34:23:56:36:75:78:76:2e:42:71:41:d4: 11:54:05:08:cd:92:df:7c:ea:a7:3e:6d:f0:0b:0c:b8:e4:78: 40:1e:14:14:65:cf:a7:97:9c:4c:d0:f2:5c:00:6d:38:7f:6a: be:ac:06:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjUwNDE3MDIwODEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwNjI4YS02ZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AkBMys+ExCZycFjvoyJpUjw6lCfU4KmVprGjVoLrMS/ZK5vxvFLh4L1kepc tPDOf5/UxDfKP91HnhmbjbgpkhTVeRzt+Tg0tv6aCfWRzJu5/ahy0u4XZ9bKGXSM 0JZZWylftUBjImuQJTJmvb5kxHFieW1PMHD0Sx2HZpmtZUjzU0HdaRGUWGPVHZnA GALJj1kyr3K2v6b9V8dvgwQQ1cW16HvrtCBNjj92cnpzKTJ0/C2agldlVHydtCu1 SzRJx0pz8epl+aihLqdzQBHbC29R3o5DzUvs5bcrq6wcQkvDy+svHv6x403QMoa5 iDIl47J6V7K8DZ0k7PVuLbIm4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBnxhKct BcF/UkkLoQfhBHzg3MpiMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVCRDQvMDhBRDZEMjI2REI4MTFFRDg4MzNGQTBEQzRGOUFFMDIvQzI0OERGQTI2 REJCMTFFREIzNjM1RDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFniq4wDQYJKoZIhvcNAQELBQADggEBAJqUN7I9/TfWRzbz FWypA9a2qiMObJOamF4b/nn3jh5bDBg75mhpovm4Gt+HeiNIeIetaUwhbOTZ7sib u3jQ8yB3/pI3q0sm5uaWbmHNEj/Z+y8AAF845nshGGyw9W5/odroh3Eq03S34Q8Y v0lNWGZv0n7A9OS0uZAyVK3mA/e250VmPNrTrlxRDeUU7rEFGe5BeX4fjtP2sH9q 9VU/yMHx5J8v+Y5JES/pPf1uS0/8KX1t8VVx3Twx0tyD6sMw6yqsl+ZBCVsttY9B yzQjVjZ1eHYuQnFB1BFUBQjNkt986qc+bfALDLjkeEAeFBRlz6eXnEzQ8lwAbTh/ ar6sBug= -----END CERTIFICATE-----Generated at Sat Apr 26 08:25:59 2025 by rpki-client