$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa File: 324967826D8D11EE9883B985C4F9AE02.roa (raw, json) Hash identifier: MZyOtnzSYRn5H5siK78kl2QRZxsNV35INBP6UfbHk9E= Subject key identifier: 5E:08:6F:08:49:02:A2:0E:FC:0A:FF:4F:6D:D0:5B:01:28:CE:ED:E8 Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 0161 Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa Signing time: Tue 22 Jul 2025 17:57:07 +0000 ROA not before: Tue 22 Jul 2025 17:57:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139053 IP address blocks: 103.138.250.0/24 maxlen: 24 103.138.251.0/24 maxlen: 24 2001:df0:5e80::/48 maxlen: 48 2402:ba0::/32 maxlen: 32 2402:ba0::/48 maxlen: 48 2402:ba0:a::/48 maxlen: 48 2402:ba0:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Jul 22 17:57:07 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687fd0f3-7030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d2:00:a3:f5:d6:6c:a9:96:07:86:a8:af:33: 25:bc:9c:b6:7d:5a:1d:44:2e:38:de:e6:21:0a:a7: e0:b4:41:85:8b:db:f3:7c:96:6b:78:12:63:62:72: d6:5b:84:ae:18:06:20:d4:6a:06:1c:09:1b:17:cc: 24:a9:03:22:87:bd:1f:40:3c:d9:d8:21:46:40:72: 7e:25:e6:4f:86:5b:f2:33:06:0a:04:1e:de:4c:ec: d3:6b:ec:84:d7:5d:86:10:67:c4:03:20:6b:1a:1a: 96:0e:34:e6:5a:f0:b7:78:c4:1c:ab:ee:ae:b2:13: de:d5:46:5e:b2:cd:8b:25:00:ed:ee:20:12:06:d6: 65:7b:8b:07:7d:de:3b:27:d8:42:73:14:ec:08:01: c8:ba:cf:58:8f:51:b4:1c:a8:4b:b5:ec:db:82:fc: 71:a1:a7:be:d8:be:d0:5a:d0:58:1d:f2:b2:b1:34: 60:d5:44:56:0a:b8:88:7c:0e:db:66:34:b3:13:c0: 95:9f:25:f2:b9:9a:87:21:27:17:8a:60:fb:23:8a: 29:07:aa:b7:d3:f3:71:7a:16:d4:a0:6d:89:90:51: 29:12:78:18:a0:7f:b5:84:25:5d:3e:0f:3b:50:81: 05:ea:f8:a2:43:82:83:22:9e:0a:6f:3c:7a:9e:7e: b6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:08:6F:08:49:02:A2:0E:FC:0A:FF:4F:6D:D0:5B:01:28:CE:ED:E8 X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.250.0/23 IPv6: 2001:df0:5e80::/48 2402:ba0::/32 Signature Algorithm: sha256WithRSAEncryption 47:eb:4a:d3:0e:de:39:a3:90:4f:8c:9f:dc:0a:eb:1b:d9:f0: a0:0c:5d:b1:9e:4a:25:79:d4:4a:a7:58:d4:99:65:f3:24:e6: 06:62:46:56:5f:f8:09:88:93:9e:5f:5d:56:e4:04:03:2b:01: 67:22:68:51:b7:48:47:f5:14:44:93:ed:2b:88:07:fd:bc:8c: 25:94:15:6a:ba:42:19:49:e9:b4:b3:e4:7a:df:bc:88:ea:db: 49:81:91:32:e0:91:a0:35:cf:29:a7:aa:5b:2a:95:14:f6:05: dd:f4:5b:ae:0f:c2:ed:a3:f9:18:b8:64:48:81:49:c7:e1:77: 4f:36:89:9c:0c:1c:59:6f:c4:42:e9:89:2c:96:fd:da:9a:d5: 31:2e:f0:8a:67:ea:57:93:ff:bc:85:36:54:7a:ac:88:f9:0f: 37:4a:ca:ac:60:32:3c:d4:7f:6f:16:4c:12:67:b1:a1:21:64: 73:65:56:e6:d9:8d:65:f1:3a:2e:1d:98:b6:0c:b2:51:a3:67: 70:1d:29:e7:52:50:d1:7d:ef:77:d1:92:fe:0e:eb:51:f5:13: db:6e:13:77:77:9f:f1:e6:2c:41:e4:2a:4f:f4:68:29:dd:36: 30:dd:68:a3:62:e2:83:52:d2:a5:a4:69:43:41:85:ea:34:39: 58:52:5d:ce -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjUwNzIyMTc1NzA3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZDBmMy03MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNIAo/XWbKmWB4aorzMlvJy2fVodRC443uYhCqfgtEGFi9vzfJZreBJjYnLW W4SuGAYg1GoGHAkbF8wkqQMih70fQDzZ2CFGQHJ+JeZPhlvyMwYKBB7eTOzTa+yE 112GEGfEAyBrGhqWDjTmWvC3eMQcq+6ushPe1UZess2LJQDt7iASBtZle4sHfd47 J9hCcxTsCAHIus9Yj1G0HKhLtezbgvxxoae+2L7QWtBYHfKysTRg1URWCriIfA7b ZjSzE8CVnyXyuZqHIScXimD7I4opB6q30/NxehbUoG2JkFEpEngYoH+1hCVdPg87 UIEF6viiQ4KDIp4Kbzx6nn62fQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFF4IbwhJ AqIO/Ar/T23QWwEozu3oMB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkREODIvMTk3RjlEOTI5MUUyMTFFOTk3Njg4OTBFQzRGOUFFMDIvMzI0OTY3ODI2 RDhEMTFFRTk4ODNCOTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAFnivowFgQCAAIwEAMHACABDfBegAMFACQCC6AwDQYJKoZI hvcNAQELBQADggEBAEfrStMO3jmjkE+Mn9wK6xvZ8KAMXbGeSiV51EqnWNSZZfMk 5gZiRlZf+AmIk55fXVbkBAMrAWciaFG3SEf1FEST7SuIB/28jCWUFWq6QhlJ6bSz 5HrfvIjq20mBkTLgkaA1zymnqlsqlRT2Bd30W64Pwu2j+Ri4ZEiBScfhd082iZwM HFlvxELpiSyW/dqa1TEu8Ipn6leT/7yFNlR6rIj5DzdKyqxgMjzUf28WTBJnsaEh ZHNlVubZjWXxOi4dmLYMslGjZ3AdKedSUNF973fRkv4O61H1E9tuE3d3n/HmLEHk Kk/0aCndNjDdaKNi4oNS0qWkaUNBheo0OVhSXc4= -----END CERTIFICATE-----Generated at Sun Aug 10 21:11:24 2025 by rpki-client