$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/F5BE1E346FFD11EE83D3D154C4F9AE02.roa File: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (raw, json) Hash identifier: MDnYgEyFU+utF3gs7xXTuOcFSWGPIOUc2y3lsVq3q/M= Subject key identifier: 10:36:E7:2D:00:93:B1:1F:98:18:B3:0B:B0:51:2A:2F:5C:06:63:55 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05F4 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/F5BE1E346FFD11EE83D3D154C4F9AE02.roa Signing time: Fri 04 Jul 2025 23:35:59 +0000 ROA not before: Fri 04 Jul 2025 23:35:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142150 IP address blocks: 103.151.42.0/24 maxlen: 24 103.151.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Jul 4 23:35:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6868655e-3485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:58:67:63:62:24:68:b6:16:8e:8f:b1:c3:70: e2:cb:52:c8:e5:4c:99:94:68:35:a9:df:0c:ab:ed: e1:7a:0d:9f:2d:2f:5d:a7:13:55:00:73:4f:6d:f0: 1b:4d:91:e6:99:d4:19:ea:d4:98:e1:01:f8:f6:6e: 1c:12:ae:25:40:ff:07:5a:4e:3d:97:51:37:93:61: 86:be:46:00:66:ca:f6:e9:a3:6c:79:2a:a3:f9:66: d5:99:b1:fe:34:d7:1a:83:f9:0d:5f:32:c1:b0:36: b5:20:40:8e:30:4d:83:fa:73:67:f1:94:c4:b2:0e: 34:30:bc:43:43:e4:51:48:f0:23:2c:86:af:09:65: 30:17:75:79:88:c5:da:37:13:e5:12:b2:dc:bc:86: 02:60:7f:0b:66:33:e3:04:a8:b8:08:24:cf:56:4f: 31:16:6b:26:a5:c6:5d:b2:5d:49:77:dd:c9:36:f0: a4:41:da:85:3c:92:61:59:91:07:8e:e6:6e:aa:c5: 33:97:10:ba:dd:c0:cc:4c:5b:59:b4:b9:01:c2:38: a7:f6:53:cc:50:46:79:32:e1:db:3d:1c:95:f6:e7: 98:97:b2:59:2e:74:46:dc:4f:ba:7a:8c:2a:ca:2b: 7a:97:ef:0e:fd:7e:c7:0f:2e:04:58:42:9c:60:98: 40:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:36:E7:2D:00:93:B1:1F:98:18:B3:0B:B0:51:2A:2F:5C:06:63:55 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/F5BE1E346FFD11EE83D3D154C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.42.0/23 Signature Algorithm: sha256WithRSAEncryption 11:50:c9:71:cd:75:3e:4d:c7:9c:97:0e:d0:ee:4e:07:2d:8f: bb:cd:e1:d1:7d:3f:ed:fb:76:8d:9a:ec:57:8f:bb:15:ee:a6: 2e:f3:f6:16:c9:d4:2d:45:8d:ad:c8:42:72:b3:59:ed:55:18: 5e:5d:2a:31:b6:3d:50:07:b1:a8:2f:e6:17:78:3d:d9:f4:6b: 75:ef:08:31:3b:43:58:7a:27:75:c7:ad:ab:b6:fb:01:2c:4f: b3:95:d3:c1:0a:87:0b:7a:72:42:bf:d7:11:e1:ed:f7:b1:55: 77:24:81:3a:32:ca:71:a5:9a:19:d9:7b:42:a1:9f:b9:2f:f9: d8:a2:fa:5a:1c:e6:ed:d0:90:90:80:80:4e:a1:51:d5:2f:d8: 1b:2c:4c:3e:c4:8a:fe:96:a7:7a:2d:01:8e:a2:3d:6b:a4:29: ec:84:48:f0:08:92:14:af:1c:4d:cd:c4:93:87:57:83:36:76: 4e:c0:da:64:47:36:5f:5d:56:1c:e3:27:bd:72:dd:74:eb:e7: 08:70:59:af:0a:a7:33:ee:cc:ae:7f:48:49:e8:79:69:23:08: bd:06:c3:e7:3e:7b:4d:b7:bd:3e:08:7a:ae:5e:52:aa:1a:d9: 94:74:eb:df:a1:d0:72:72:73:5e:7f:71:18:a6:da:74:20:8d: bb:8d:00:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwNzA0MjMzNTU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4NjU1ZS0zNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lhnY2IkaLYWjo+xw3Diy1LI5UyZlGg1qd8Mq+3heg2fLS9dpxNVAHNPbfAb TZHmmdQZ6tSY4QH49m4cEq4lQP8HWk49l1E3k2GGvkYAZsr26aNseSqj+WbVmbH+ NNcag/kNXzLBsDa1IECOME2D+nNn8ZTEsg40MLxDQ+RRSPAjLIavCWUwF3V5iMXa NxPlErLcvIYCYH8LZjPjBKi4CCTPVk8xFmsmpcZdsl1Jd93JNvCkQdqFPJJhWZEH juZuqsUzlxC63cDMTFtZtLkBwjin9lPMUEZ5MuHbPRyV9ueYl7JZLnRG3E+6eowq yit6l+8O/X7HDy4EWEKcYJhAtQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBA25y0A k7EfmBizC7BRKi9cBmNVMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkyRUIvRkQwMDgxREVDNTY3MTFFQkFGRUE2MDJCQzRGOUFFMDIvRjVCRTFFMzQ2 RkZEMTFFRTgzRDNEMTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlyowDQYJKoZIhvcNAQELBQADggEBABFQyXHNdT5Nx5yX DtDuTgctj7vN4dF9P+37do2a7FePuxXupi7z9hbJ1C1Fja3IQnKzWe1VGF5dKjG2 PVAHsagv5hd4Pdn0a3XvCDE7Q1h6J3XHrau2+wEsT7OV08EKhwt6ckK/1xHh7fex VXckgToyynGlmhnZe0Khn7kv+dii+loc5u3QkJCAgE6hUdUv2BssTD7Eiv6Wp3ot AY6iPWukKeyESPAIkhSvHE3NxJOHV4M2dk7A2mRHNl9dVhzjJ71y3XTr5whwWa8K pzPuzK5/SEnoeWkjCL0Gw+c+e023vT4Ieq5eUqoa2ZR069+h0HJyc15/cRim2nQg jbuNAOY= -----END CERTIFICATE-----Generated at Mon Jul 21 23:59:17 2025 by rpki-client