$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/38644B3674E411F0AA217835C4F9AE02.roa File: 38644B3674E411F0AA217835C4F9AE02.roa (raw, json) Hash identifier: Nnrg9CT47rxlcVmEIiWJF1FBLo7+Ft8DHOBOgt1QRPE= Subject key identifier: C9:EF:6E:FC:BA:BA:D8:20:8F:FA:09:B6:5C:0D:88:33:20:C6:22:D3 Certificate issuer: /CN=A91E9467/serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Certificate serial: 04CE Authority key identifier: 52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/38644B3674E411F0AA217835C4F9AE02.roa Signing time: Sat 09 Aug 2025 05:46:40 +0000 ROA not before: Sat 09 Aug 2025 05:46:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56224 IP address blocks: 103.150.152.0/24 maxlen: 24 103.150.153.0/24 maxlen: 24 202.12.80.0/24 maxlen: 24 202.12.81.0/24 maxlen: 24 202.12.82.0/24 maxlen: 24 202.12.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1230 (0x4ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9467, serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Validity Not Before: Aug 9 05:46:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6896e0bf-c85f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1f:7f:f5:6f:ae:09:71:57:b8:ae:b8:4b:56: ce:cd:eb:15:06:07:6f:df:29:2b:63:70:a2:97:a6: ae:48:33:a6:43:f5:88:91:cc:40:bc:19:7b:0a:8b: 7a:31:cd:ae:05:d4:a0:8e:40:7a:64:59:98:be:24: f9:23:16:a2:71:0c:3c:41:19:53:37:f3:47:08:af: 1b:5c:b4:98:09:3f:2c:10:bb:51:f7:fb:16:56:99: 1a:02:d9:62:5b:f0:9f:ec:10:9a:aa:f9:77:8f:59: ba:86:85:87:51:f5:38:fd:dc:21:55:6d:05:9d:cc: 59:c7:dc:57:33:fc:5b:b9:dd:2a:c9:53:2c:3a:67: cd:a2:fe:15:e0:74:01:bc:7f:14:cc:27:8c:0f:2a: 95:6e:45:df:20:49:83:74:6c:81:e2:fb:5e:19:e8: a9:76:85:54:5f:3e:a8:a4:9b:99:40:b1:08:42:8a: d9:53:ec:9d:5d:62:49:ab:bc:c5:26:3d:71:da:14: ee:c8:96:0b:d0:4f:4e:ff:7d:64:d7:cd:1d:90:18: 4a:91:b3:40:0d:cd:71:66:21:97:ec:bb:8a:31:d9: 45:60:2f:ed:1f:54:ae:b3:0e:fe:d3:85:b4:1e:1b: 3e:a0:22:3d:4d:c1:b9:f9:58:71:3e:97:ae:3e:ee: 59:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EF:6E:FC:BA:BA:D8:20:8F:FA:09:B6:5C:0D:88:33:20:C6:22:D3 X509v3 Authority Key Identifier: keyid:52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/38644B3674E411F0AA217835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.152.0/23 202.12.80.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:13:3f:c4:81:23:8d:6e:2d:c2:7d:54:b0:15:e7:be:a6:0f: c6:c5:cc:dd:ab:3e:49:37:4d:3b:53:fc:8f:ed:0d:6b:8e:59: b6:72:5c:f8:2e:d5:c9:fe:b3:4f:68:a6:9e:b1:d1:40:e8:eb: 26:8e:85:24:2c:08:3a:28:df:9f:7b:8b:75:4d:cf:c0:8b:83: 1d:6a:f3:1f:53:9b:dd:2a:9b:70:aa:93:10:31:74:c6:8f:df: 34:36:fc:c3:3f:f0:80:06:e6:55:c7:9b:ce:00:f4:cb:11:f8: bb:e6:e6:ef:4b:44:1e:0d:5b:79:2a:5e:f5:c3:55:78:17:85: 67:0f:bf:93:69:a7:dc:3c:01:8f:e8:f0:27:b3:d4:d8:73:e6: d8:a7:79:e3:5b:55:b2:15:60:5b:3c:0f:90:61:15:aa:68:58: f8:77:4b:20:1a:50:ab:36:51:9d:96:6d:1e:96:9d:c4:3a:e4: 12:db:e1:1b:a8:93:e1:8d:af:52:b1:95:8f:db:fc:a7:32:bd: 6f:3b:75:10:e3:24:79:e0:78:df:04:01:5c:eb:fe:b4:69:78: c3:37:83:e1:9d:f4:63:f0:2d:35:36:6c:62:db:14:f2:7e:20: 86:89:cd:05:92:4b:cd:8d:74:21:20:06:f3:ca:12:a4:4c:b1: f2:74:2c:38 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0NjcxMTAvBgNVBAUTKDUyQkU5RERFOTU2OEZFNEFEQ0EwRjM0NUIzNjE3QTYz QzMwNzU4NDUwHhcNMjUwODA5MDU0NjQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2ZTBiZi1jODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR9/9W+uCXFXuK64S1bOzesVBgdv3ykrY3Cil6auSDOmQ/WIkcxAvBl7Cot6 Mc2uBdSgjkB6ZFmYviT5IxaicQw8QRlTN/NHCK8bXLSYCT8sELtR9/sWVpkaAtli W/Cf7BCaqvl3j1m6hoWHUfU4/dwhVW0FncxZx9xXM/xbud0qyVMsOmfNov4V4HQB vH8UzCeMDyqVbkXfIEmDdGyB4vteGeipdoVUXz6opJuZQLEIQorZU+ydXWJJq7zF Jj1x2hTuyJYL0E9O/31k180dkBhKkbNADc1xZiGX7LuKMdlFYC/tH1Susw7+04W0 Hhs+oCI9TcG5+VhxPpeuPu5ZvwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMnvbvy6 utggj/oJtlwNiDMgxiLTMB8GA1UdIwQYMBaAFFK+nd6VaP5K3KDzRbNhemPDB1hF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQ2Ny83NzBCNEYxQTUy NkYxMUVDQkM1MEVCMTdDNEY5QUUwMi9VcjZkM3BWb19rcmNvUE5GczJGNlk4TUhX RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyNmQzcFZvX2tyY29QTkZzMkY2WThNSFdFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk0NjcvNzcwQjRGMUE1MjZGMTFFQ0JDNTBFQjE3QzRGOUFFMDIvMzg2NDRCMzY3 NEU0MTFGMEFBMjE3ODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnlpgDBALKDFAwDQYJKoZIhvcNAQELBQADggEBAI0TP8SB I41uLcJ9VLAV576mD8bFzN2rPkk3TTtT/I/tDWuOWbZyXPgu1cn+s09opp6x0UDo 6yaOhSQsCDoo3597i3VNz8CLgx1q8x9Tm90qm3CqkxAxdMaP3zQ2/MM/8IAG5lXH m84A9MsR+Lvm5u9LRB4NW3kqXvXDVXgXhWcPv5Npp9w8AY/o8Cez1Nhz5tineeNb VbIVYFs8D5BhFapoWPh3SyAaUKs2UZ2WbR6WncQ65BLb4Ruok+GNr1KxlY/b/Kcy vW87dRDjJHngeN8EAVzr/rRpeMM3g+Gd9GPwLTU2bGLbFPJ+IIaJzQWSS82NdCEg BvPKEqRMsfJ0LDg= -----END CERTIFICATE-----Generated at Wed Aug 13 07:40:46 2025 by rpki-client