$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/11F818F81F7311EC9027050AC4F9AE02.roa File: 11F818F81F7311EC9027050AC4F9AE02.roa (raw, json) Hash identifier: b/ItM9VGVv0zUWnweJ6+Pz3YcBgADXF1u82bmhYCBN4= Subject key identifier: 2B:56:84:C2:42:65:1A:FA:71:D7:4A:82:00:C5:03:C7:D7:48:C3:9D Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 04F8 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/11F818F81F7311EC9027050AC4F9AE02.roa Signing time: Wed 23 Jul 2025 00:06:08 +0000 ROA not before: Wed 23 Jul 2025 00:06:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140888 IP address blocks: 103.152.236.0/23 maxlen: 23 103.152.236.0/24 maxlen: 24 103.152.237.0/24 maxlen: 24 2406:3740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Jul 23 00:06:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68802770-af1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bc:81:87:b3:de:f5:02:8d:85:6a:a5:ff:03: 58:e8:67:70:8c:aa:22:a9:b5:95:7a:d8:26:11:fd: ac:e6:77:4e:3a:97:94:0e:7a:73:78:0e:e3:a7:e7: 31:7b:d6:25:89:9f:7b:07:70:a7:f5:de:a1:91:0d: 67:88:51:22:53:f1:07:56:ca:83:a2:c6:00:d8:71: 77:bf:ec:50:aa:2b:2b:d3:5a:6b:cc:e9:f8:d5:b2: 4f:c5:0f:56:f4:24:3d:f8:b5:b7:6b:a0:32:42:f7: fb:b8:42:cc:af:33:4c:97:f2:d8:66:34:56:3b:d0: 9f:80:ae:38:e4:54:48:39:a0:ae:e9:1c:fa:40:b1: 11:97:e0:61:6c:5f:de:07:d1:b4:a7:c2:76:18:46: d1:4e:40:9e:dd:a3:47:c1:e7:7d:49:be:f0:7c:b9: 64:1d:54:fd:19:47:f6:a5:27:9b:34:62:4c:2d:a2: a2:57:41:0a:39:f2:d3:66:b0:d0:de:c0:6e:ed:74: da:2b:f7:cf:15:da:a9:b1:31:24:bb:24:35:e3:00: 15:9b:60:5d:6c:c7:05:47:da:80:13:5a:6a:3d:e2: ba:3a:e4:22:2d:8a:c5:ab:29:33:15:e1:de:bb:f5: fb:9d:6a:19:80:f2:28:34:55:30:06:0f:de:15:e7: 87:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:56:84:C2:42:65:1A:FA:71:D7:4A:82:00:C5:03:C7:D7:48:C3:9D X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/11F818F81F7311EC9027050AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.236.0/23 IPv6: 2406:3740::/32 Signature Algorithm: sha256WithRSAEncryption 0e:37:d1:89:4d:86:7c:70:a7:20:bd:c6:21:07:ed:25:e0:6b: ef:c6:8c:97:d2:19:8f:30:55:3e:42:d4:37:1e:80:b5:5d:e3: 66:ae:47:1a:d1:89:91:07:10:55:21:b4:72:e0:6f:ce:e9:38: 73:6e:08:a7:c1:3d:1c:d4:f6:ff:36:5d:5e:d7:f5:4d:ab:71: 09:14:eb:f1:03:1b:36:c1:40:c0:2c:aa:b7:bf:28:4c:04:30: 52:e9:4b:a2:89:75:9f:89:57:c3:d9:87:2e:ee:6f:2e:02:5c: 96:a0:66:05:09:1e:1d:fe:33:b4:bd:53:37:54:7c:fe:86:4c: a4:73:0b:d8:db:72:79:be:b6:bc:8f:98:fd:bb:87:5d:52:37: 79:9d:4f:94:5a:d5:92:9f:b5:6e:0b:4c:92:a5:7e:73:fb:32: e0:2e:2e:39:20:e9:d4:2a:55:14:9b:b4:ca:d7:db:46:3e:b9: 3b:1c:84:82:10:94:80:30:98:d6:9f:13:c1:64:c6:46:7f:88: bb:da:28:52:2e:81:70:43:e3:2f:de:9d:0c:4a:6c:aa:0e:5b: 4c:ec:d3:3b:a0:ab:4b:ff:05:d7:af:40:de:d5:be:69:54:69: 1a:1a:91:8e:2c:9d:6f:ac:1a:3a:60:e7:92:6f:f1:80:ea:f1: 44:2e:fe:40 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwNzIzMDAwNjA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwMjc3MC1hZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ryBh7Pe9QKNhWql/wNY6GdwjKoiqbWVetgmEf2s5ndOOpeUDnpzeA7jp+cx e9YliZ97B3Cn9d6hkQ1niFEiU/EHVsqDosYA2HF3v+xQqisr01przOn41bJPxQ9W 9CQ9+LW3a6AyQvf7uELMrzNMl/LYZjRWO9CfgK445FRIOaCu6Rz6QLERl+BhbF/e B9G0p8J2GEbRTkCe3aNHwed9Sb7wfLlkHVT9GUf2pSebNGJMLaKiV0EKOfLTZrDQ 3sBu7XTaK/fPFdqpsTEkuyQ14wAVm2BdbMcFR9qAE1pqPeK6OuQiLYrFqykzFeHe u/X7nWoZgPIoNFUwBg/eFeeHbwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCtWhMJC ZRr6cddKggDFA8fXSMOdMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2MDMvOEM4MkFDMzQxRjZDMTFFQzg3NTgwNjcyQzRGOUFFMDIvMTFGODE4Rjgx RjczMTFFQzkwMjcwNTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmOwwDQQCAAIwBwMFACQGN0AwDQYJKoZIhvcNAQELBQAD ggEBAA430YlNhnxwpyC9xiEH7SXga+/GjJfSGY8wVT5C1DcegLVd42auRxrRiZEH EFUhtHLgb87pOHNuCKfBPRzU9v82XV7X9U2rcQkU6/EDGzbBQMAsqre/KEwEMFLp S6KJdZ+JV8PZhy7uby4CXJagZgUJHh3+M7S9UzdUfP6GTKRzC9jbcnm+tryPmP27 h11SN3mdT5Ra1ZKftW4LTJKlfnP7MuAuLjkg6dQqVRSbtMrX20Y+uTschIIQlIAw mNafE8FkxkZ/iLvaKFIugXBD4y/enQxKbKoOW0zs0zugq0v/BdevQN7VvmlUaRoa kY4snW+sGjpg55Jv8YDq8UQu/kA= -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:16 2025 by rpki-client