$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/52DF0E62B2FA11EFA36E0387C4F9AE02.roa File: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (raw, json) Hash identifier: zOW380YmpQpMtSyWb7ghqrZ9YCinfgNDwAX0rgUwhPY= Subject key identifier: 71:7B:51:9B:86:E3:3B:4F:1B:45:E8:02:CB:83:52:8C:48:EC:6D:F3 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 76 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/52DF0E62B2FA11EFA36E0387C4F9AE02.roa Signing time: Thu 05 Jun 2025 06:40:50 +0000 ROA not before: Thu 05 Jun 2025 06:40:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.187.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Jun 5 06:40:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68413bf1-7993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1f:78:6e:3b:fd:6b:04:66:4b:8c:41:f7:3e: c1:ad:2c:61:6b:40:65:8b:f1:1b:eb:22:df:d2:71: b2:5c:1d:d4:b6:5a:6c:dd:cd:e0:a7:cb:f4:7a:b5: 69:d6:f0:5d:c2:62:2e:6e:22:db:a5:83:75:94:6f: a5:a4:de:3a:6a:57:9b:83:18:2b:73:cf:02:5b:3b: bf:f7:37:4d:8b:11:03:21:d6:79:97:33:40:7f:18: 6c:e9:5d:54:b3:79:5c:a9:5f:4c:ce:45:b2:fd:0d: 17:8d:c6:f0:17:0a:b4:09:6c:b8:24:1e:39:a8:54: b7:ac:16:25:46:d6:4c:2c:e0:1e:d4:33:7b:1b:cc: 54:50:dc:11:ce:17:07:b8:f1:fa:05:9c:b8:37:e2: ab:d8:04:ce:2f:0f:82:ba:89:5f:d5:3d:18:fd:0c: 67:3e:4f:b4:bf:72:27:13:81:02:e2:ee:5d:3a:dc: 18:8c:a7:2e:da:3e:bb:f2:8c:d6:8f:00:1b:dc:f2: 08:bd:48:2b:1c:de:bf:4e:be:da:e2:7c:a7:5a:69: 15:6d:10:af:8f:ef:bd:3e:9c:be:8f:77:6d:8b:2c: 94:4b:54:2b:a7:32:61:5b:59:bc:d8:e5:ff:ae:42: 37:4f:c9:73:87:38:63:21:60:81:f5:00:2f:e9:51: 55:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7B:51:9B:86:E3:3B:4F:1B:45:E8:02:CB:83:52:8C:48:EC:6D:F3 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/52DF0E62B2FA11EFA36E0387C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.27.0/24 Signature Algorithm: sha256WithRSAEncryption 83:03:f3:78:e6:22:3b:c7:f7:12:54:7c:8c:6e:de:08:44:0a: 59:65:5b:aa:98:b4:f7:3b:09:0e:37:60:97:b5:3b:a0:c5:65: 79:d4:3c:3b:1d:b0:51:ff:19:13:29:6f:38:e2:b2:fb:05:4b: 69:f7:36:7d:dc:8f:7b:3b:c4:25:c5:50:46:c7:88:e9:79:75: 81:e4:e2:ab:75:d2:4c:73:37:e0:af:ac:34:84:95:21:c6:2f: 2e:aa:66:c4:4b:9d:55:11:9a:ed:f6:25:aa:45:13:e0:4d:fe: 47:c9:29:66:4d:0b:15:9d:5d:9c:d4:91:1c:a4:73:85:84:ad: 18:cc:5a:9a:fe:33:af:70:89:96:5a:18:e2:da:4a:71:e5:6e: b3:ca:a3:7c:12:dc:db:db:1e:db:8e:3a:eb:c5:c0:5c:a7:35: dc:03:1b:7f:80:05:68:9c:21:93:37:75:fd:28:63:3d:c0:da: 7d:37:f1:e7:59:59:a2:5f:0a:b5:a3:91:74:4a:71:e1:11:03: 89:7c:93:fb:0d:4b:b6:8d:77:ff:e9:83:a8:1f:ac:6f:f3:a4: 83:fb:71:11:3d:1e:c1:05:17:10:f8:58:83:df:05:02:95:a3: 4a:94:d1:cd:f0:f6:da:bb:af:ca:3d:0b:68:da:a8:51:c6:5d: bd:b7:14:50 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUQ4MDExMC8GA1UEBRMoQTExNDdFODQ3QkNGRUVFQUREOUU4OUE5N0E4RDlGMzM2 NzlDQTdFMjAeFw0yNTA2MDUwNjQwNTBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDEzYmYxLTc5OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKH3huO/1rBGZLjEH3PsGtLGFrQGWL8RvrIt/ScbJcHdS2WmzdzeCny/R6tWnW 8F3CYi5uItulg3WUb6Wk3jpqV5uDGCtzzwJbO7/3N02LEQMh1nmXM0B/GGzpXVSz eVypX0zORbL9DReNxvAXCrQJbLgkHjmoVLesFiVG1kws4B7UM3sbzFRQ3BHOFwe4 8foFnLg34qvYBM4vD4K6iV/VPRj9DGc+T7S/cicTgQLi7l063BiMpy7aPrvyjNaP ABvc8gi9SCsc3r9OvtrifKdaaRVtEK+P770+nL6Pd22LLJRLVCunMmFbWbzY5f+u QjdPyXOHOGMhYIH1AC/pUVVlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcXtRm4bj O08bRegCy4NSjEjsbfMwHwYDVR0jBBgwFoAUoRR+hHvP7urdnompeo2fM2ecp+Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRDgwL0QyMjNDNUFFOTRD OTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3At SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1JSLWhIdlA3dXJkbm9tcGVvMmZNMmVjcC1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi81MkRGMEU2MkIy RkExMUVGQTM2RTAzODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe7GzANBgkqhkiG9w0BAQsFAAOCAQEAgwPzeOYiO8f3ElR8 jG7eCEQKWWVbqpi09zsJDjdgl7U7oMVledQ8Ox2wUf8ZEylvOOKy+wVLafc2fdyP ezvEJcVQRseI6Xl1geTiq3XSTHM34K+sNISVIcYvLqpmxEudVRGa7fYlqkUT4E3+ R8kpZk0LFZ1dnNSRHKRzhYStGMxamv4zr3CJlloY4tpKceVus8qjfBLc29se2446 68XAXKc13AMbf4AFaJwhkzd1/ShjPcDafTfx51lZol8KtaORdEpx4REDiXyT+w1L to13/+mDqB+sb/Okg/txET0ewQUXEPhYg98FApWjSpTRzfD22ruvyj0LaNqoUcZd vbcUUA== -----END CERTIFICATE-----Generated at Sun Jun 15 09:38:18 2025 by rpki-client