$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/02157718B9DF11EBA8BE9876C4F9AE02.roa File: 02157718B9DF11EBA8BE9876C4F9AE02.roa (raw, json) Hash identifier: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M= Subject key identifier: FA:65:92:95:64:34:43:8E:8B:46:0A:23:E8:82:8D:9C:1E:8E:21:94 Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05BE Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/02157718B9DF11EBA8BE9876C4F9AE02.roa Signing time: Wed 02 Apr 2025 23:24:43 +0000 ROA not before: Wed 02 Apr 2025 23:24:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141734 IP address blocks: 103.163.2.0/24 maxlen: 24 103.163.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1470 (0x5be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Apr 2 23:24:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edc73a-89e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e3:e7:be:6b:50:f7:5d:21:c9:75:9f:37:1d: f6:16:cf:ad:65:04:78:3c:65:7e:1e:53:5a:4b:96: ca:e7:35:0a:cf:0a:eb:de:64:21:f3:7c:01:24:2c: eb:14:d5:4b:3c:d5:37:c8:d7:fe:52:1c:8e:73:1f: fd:dd:8e:01:68:a3:49:fb:9b:7e:fa:c6:58:16:bc: 1a:72:b0:f9:72:4b:bd:85:1c:76:a3:97:9a:34:2f: 86:17:a1:61:9f:ef:eb:ac:15:c9:9f:4b:73:2d:bd: fe:16:07:c5:d7:71:c5:d0:86:92:4c:fa:e9:f0:d6: 66:f7:6a:1b:d3:66:3a:fd:66:66:64:bd:bb:97:ad: 4d:39:d4:35:68:d5:65:15:b8:a9:f6:ef:06:ce:de: 18:65:15:e4:74:46:65:a7:b0:61:54:3d:aa:d1:c9: 3e:d5:a4:45:d6:6a:ac:7b:23:c4:2f:f5:1e:82:0c: 20:f1:f7:c8:ac:e9:9a:c7:f0:62:72:80:e2:71:75: d5:3a:24:67:ce:f3:ee:65:a3:bc:b3:40:23:e7:a3: f6:a4:c8:94:c1:d5:55:34:c3:48:82:f5:ec:5c:a4: 4c:fd:9e:0c:7c:50:4f:a4:52:30:90:e1:86:76:1d: 33:f7:4b:2e:ab:be:2e:74:2e:2c:ce:eb:8b:31:79: 8f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:65:92:95:64:34:43:8E:8B:46:0A:23:E8:82:8D:9C:1E:8E:21:94 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/02157718B9DF11EBA8BE9876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.2.0/23 Signature Algorithm: sha256WithRSAEncryption 04:2e:86:78:60:63:2d:62:ab:bc:4a:30:da:df:45:ad:14:d1: cb:43:19:30:46:46:fb:db:4b:60:68:ac:1c:b9:5e:6b:dd:57: 93:06:28:ab:3c:17:3f:fc:a2:64:3f:e7:ce:14:6a:ac:63:1b: a2:e2:2e:ff:b2:e8:40:07:a0:4c:b3:6b:ef:b8:49:00:50:51: 3f:5b:72:de:0c:cb:5f:51:70:4e:1b:9f:35:33:97:f5:a9:45: 19:6c:0d:e6:8f:93:f9:67:07:8b:66:a9:2f:9e:45:f3:d5:e2: d9:6d:17:8c:9d:14:9f:ae:d0:26:ac:0c:ec:ae:61:58:da:51: 91:3d:49:64:2e:63:0a:81:9e:40:5b:6a:22:0e:a6:d8:98:69: ac:35:c6:98:62:92:dd:72:de:1d:ae:0a:ca:b6:3a:57:52:6b: 87:4f:11:51:4e:d3:9b:e0:89:90:fe:df:0c:9b:a1:c3:a1:88: d4:8b:ad:cf:84:be:6e:19:bd:7d:b2:91:94:ab:26:fb:c4:1c: 4d:88:5b:1a:4a:6d:c8:f1:db:81:9c:64:be:9a:24:0d:c2:94: bc:ff:cf:00:be:65:cd:51:52:99:cb:bf:5f:b0:f8:85:1e:2a: 77:03:b0:60:b2:1b:73:9a:d6:dd:8a:4e:4e:58:26:50:23:0a: 45:9b:f8:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNDAyMjMyNDQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYzczYS04OWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OPnvmtQ910hyXWfNx32Fs+tZQR4PGV+HlNaS5bK5zUKzwrr3mQh83wBJCzr FNVLPNU3yNf+UhyOcx/93Y4BaKNJ+5t++sZYFrwacrD5cku9hRx2o5eaNC+GF6Fh n+/rrBXJn0tzLb3+FgfF13HF0IaSTPrp8NZm92ob02Y6/WZmZL27l61NOdQ1aNVl Fbip9u8Gzt4YZRXkdEZlp7BhVD2q0ck+1aRF1mqseyPEL/Ueggwg8ffIrOmax/Bi coDicXXVOiRnzvPuZaO8s0Aj56P2pMiUwdVVNMNIgvXsXKRM/Z4MfFBPpFIwkOGG dh0z90suq74udC4szuuLMXmPhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPplkpVk NEOOi0YKI+iCjZwejiGUMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU5QjEvNUJCOUUwMEFCOURCMTFFQjlDRjNCODZFQzRGOUFFMDIvMDIxNTc3MThC OURGMTFFQkE4QkU5ODc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnowIwDQYJKoZIhvcNAQELBQADggEBAAQuhnhgYy1iq7xK MNrfRa0U0ctDGTBGRvvbS2BorBy5XmvdV5MGKKs8Fz/8omQ/584UaqxjG6LiLv+y 6EAHoEyza++4SQBQUT9bct4My19RcE4bnzUzl/WpRRlsDeaPk/lnB4tmqS+eRfPV 4tltF4ydFJ+u0CasDOyuYVjaUZE9SWQuYwqBnkBbaiIOptiYaaw1xphikt1y3h2u Csq2OldSa4dPEVFO05vgiZD+3wybocOhiNSLrc+Evm4ZvX2ykZSrJvvEHE2IWxpK bcjx24GcZL6aJA3ClLz/zwC+Zc1RUpnLv1+w+IUeKncDsGCyG3Oa1t2KTk5YJlAj CkWb+DI= -----END CERTIFICATE-----Generated at Wed Nov 5 16:36:46 2025 by rpki-client