$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa File: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (raw, json) Hash identifier: JjwRM28UWpqUpm8V4jbamMbdEhJ8x26HdODuQra73JI= Subject key identifier: A2:59:62:DD:8B:3C:72:50:FE:FC:F5:79:32:A5:65:FB:DF:76:13:FB Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05F2 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa Signing time: Fri 04 Jul 2025 23:35:57 +0000 ROA not before: Fri 04 Jul 2025 23:35:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132480 IP address blocks: 103.151.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Jul 4 23:35:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6868655d-dfd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f2:88:e3:dd:71:33:df:2e:66:5a:90:0c:a8: a0:d8:78:a0:55:be:57:c6:c9:15:dd:92:a9:b5:61: 13:49:4b:e0:67:8d:20:b9:9a:19:69:83:fc:20:d2: 6b:08:a2:a0:51:5a:83:f1:5b:aa:43:59:49:04:bf: ca:87:9d:2d:14:bc:b3:97:13:aa:56:e6:73:ec:05: 56:32:84:a5:53:21:63:6e:60:d2:c6:2a:1f:c1:55: 7b:95:70:86:7e:cb:a9:d6:43:9b:43:69:a0:08:6b: 77:29:54:8f:a3:a0:40:48:71:ed:ab:08:b2:19:68: 83:8d:0a:db:9e:66:5b:f5:5b:9d:3a:c5:d3:37:13: 68:93:dc:62:37:92:cd:1b:1e:0f:2f:9d:98:1c:e0: 35:f0:10:af:90:a3:56:bf:c5:2c:69:30:37:37:03: b8:6c:b6:62:6f:53:97:f7:e1:73:ac:f0:e8:99:d4: f9:de:1e:43:e2:77:75:d8:26:a7:c5:b3:ab:31:6e: ac:55:ec:7b:dc:44:41:95:41:d3:a5:2f:f5:e4:f0: 1f:24:4b:84:e5:16:82:ad:58:66:b4:c0:7a:ab:5f: ea:88:d2:fa:7d:05:88:56:3f:f4:23:0a:f4:59:72: 0c:e6:83:6d:93:c1:13:a9:2f:cf:89:42:e8:2e:f0: 7b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:59:62:DD:8B:3C:72:50:FE:FC:F5:79:32:A5:65:FB:DF:76:13:FB X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.42.0/24 Signature Algorithm: sha256WithRSAEncryption d8:b7:4f:e5:e3:55:75:f2:71:b5:c8:34:03:c2:0a:f1:35:40: 5e:b3:75:25:aa:9f:22:66:b7:e7:95:32:44:a6:cd:6e:ce:34: da:b7:db:36:72:8d:53:6e:35:5b:53:63:9e:a3:00:f9:60:cb: 57:8c:8f:f6:21:3b:6c:e9:ae:46:85:48:c3:db:89:62:6a:14: 06:62:7a:d7:44:09:53:1a:3f:0c:2a:66:2a:94:3e:f2:8d:24: b5:cc:fc:b6:a6:cc:49:ca:37:e1:a2:69:cc:a6:97:8d:80:ba: 78:54:6b:f8:07:97:75:16:4d:d8:71:d5:39:2e:16:1c:1d:cd: 52:bf:75:ff:de:3e:28:e3:6e:c5:0c:47:d3:c9:b2:ba:52:25: c9:d9:e8:b5:16:74:96:24:f4:6a:bb:93:d5:3f:8e:83:66:c1: 00:94:df:40:bf:a6:51:b7:29:91:a6:0e:db:73:56:ab:7c:70: dd:c7:60:a6:c6:38:48:ef:ad:aa:38:3e:f5:0c:d4:0f:7b:26: f1:d2:b6:c6:88:a9:d9:27:38:77:e2:81:a8:ef:f5:dd:fa:0d: 89:48:d5:34:9a:2e:7d:43:c8:b7:96:7e:db:34:dc:30:2a:3e: f2:c9:af:1f:a4:03:5c:e7:c4:b3:9b:a9:21:d1:40:74:f7:00: 78:c3:99:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwNzA0MjMzNTU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4NjU1ZC1kZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/KI491xM98uZlqQDKig2HigVb5XxskV3ZKptWETSUvgZ40guZoZaYP8INJr CKKgUVqD8VuqQ1lJBL/Kh50tFLyzlxOqVuZz7AVWMoSlUyFjbmDSxiofwVV7lXCG fsup1kObQ2mgCGt3KVSPo6BASHHtqwiyGWiDjQrbnmZb9VudOsXTNxNok9xiN5LN Gx4PL52YHOA18BCvkKNWv8UsaTA3NwO4bLZib1OX9+FzrPDomdT53h5D4nd12Can xbOrMW6sVex73ERBlUHTpS/15PAfJEuE5RaCrVhmtMB6q1/qiNL6fQWIVj/0Iwr0 WXIM5oNtk8ETqS/PiULoLvB7hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKJZYt2L PHJQ/vz1eTKlZfvfdhP7MB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkyRUIvRkQwMDgxREVDNTY3MTFFQkFGRUE2MDJCQzRGOUFFMDIvRjREQzNDMkFD NTkyMTFFQkFBOUM1QjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlyowDQYJKoZIhvcNAQELBQADggEBANi3T+XjVXXycbXI NAPCCvE1QF6zdSWqnyJmt+eVMkSmzW7ONNq32zZyjVNuNVtTY56jAPlgy1eMj/Yh O2zprkaFSMPbiWJqFAZietdECVMaPwwqZiqUPvKNJLXM/LamzEnKN+Giacyml42A unhUa/gHl3UWTdhx1TkuFhwdzVK/df/ePijjbsUMR9PJsrpSJcnZ6LUWdJYk9Gq7 k9U/joNmwQCU30C/plG3KZGmDttzVqt8cN3HYKbGOEjvrao4PvUM1A97JvHStsaI qdknOHfigajv9d36DYlI1TSaLn1DyLeWfts03DAqPvLJrx+kA1znxLObqSHRQHT3 AHjDmWQ= -----END CERTIFICATE-----Generated at Mon Jul 21 19:04:39 2025 by rpki-client