$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5AD85A56F1C811ECBBC34549C4F9AE02.roa File: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (raw, json) Hash identifier: WLqs4EYDGZGhgsTcvZkB1qzpm9zeqwQq3iz4UzKMW3w= Subject key identifier: 1A:81:27:EF:50:8A:CD:2F:6C:3C:77:5A:0A:6A:A3:A5:B2:4D:74:E0 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 02D7 Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5AD85A56F1C811ECBBC34549C4F9AE02.roa Signing time: Fri 27 Jun 2025 01:37:47 +0000 ROA not before: Fri 27 Jun 2025 01:37:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.58.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:39:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0, serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: Jun 27 01:37:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685df5eb-4af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:75:1b:cf:c1:b8:f7:b4:b1:20:b4:4e:ed: 0f:3a:f9:91:c7:10:d5:ba:29:84:d8:c9:ac:45:dc: 9e:02:6e:26:9d:39:e3:32:0a:84:d0:62:a8:9b:ba: d6:d4:be:40:ec:54:8d:13:e5:7d:a8:3e:ac:ef:b0: 2f:22:10:76:ad:97:13:57:a9:c4:63:41:9d:5e:88: d6:33:56:a0:a3:08:ed:23:ee:90:95:b1:c4:9f:79: 35:11:63:2d:b8:f4:4e:21:2f:36:d7:98:46:cb:60: 4b:6d:33:ca:c2:a3:e7:ae:3d:cd:c7:be:3e:8b:c5: 1a:53:8b:f7:5f:2b:44:68:83:18:b6:98:c5:f9:13: 13:8d:31:81:36:aa:de:9a:21:ec:45:a4:61:30:39: dc:c3:17:59:b6:a1:3d:3b:2d:58:a4:d1:96:61:3e: c1:2d:f1:41:09:a1:b0:4e:d1:0e:cd:27:02:0e:c9: 6f:26:ee:e7:3b:8f:3d:b0:98:18:22:d0:4f:68:08: 5e:20:42:c8:e4:74:21:49:b6:36:f8:76:f3:79:a0: 18:a6:03:8d:39:3b:e5:93:80:3d:bc:5b:85:c6:37: 59:eb:63:75:1b:c9:a2:14:cf:21:bf:d9:71:6c:a3: 1d:5d:92:db:8a:f2:63:28:da:07:15:6f:0c:e8:74: 26:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:81:27:EF:50:8A:CD:2F:6C:3C:77:5A:0A:6A:A3:A5:B2:4D:74:E0 X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5AD85A56F1C811ECBBC34549C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.192.0/24 Signature Algorithm: sha256WithRSAEncryption b0:77:aa:8f:b6:ba:b9:fc:fd:76:f6:98:3e:b3:f4:b4:aa:e3: 02:04:b9:4a:87:0b:ad:04:a6:27:00:46:a7:2f:f6:ff:6d:f0: 13:4c:7d:42:3d:95:7e:e6:cc:15:87:15:97:99:ba:b7:e8:e4: 5a:b8:7c:ed:5a:17:47:24:46:20:38:14:02:7e:86:5a:15:be: bd:98:ad:68:f8:1b:d5:27:5b:43:17:10:96:f0:d1:8a:a9:d5: d6:5e:e5:15:5e:33:c8:06:26:00:b2:6a:4b:8f:4a:42:e5:ba: 54:31:40:3c:eb:f4:43:62:91:bc:2c:a7:b7:8a:de:c0:45:6a: 8d:02:cc:d5:15:5c:2f:57:f0:2a:de:04:4d:a0:98:d3:d7:80: 22:f9:48:0f:d4:e2:82:9e:f4:ad:09:c2:45:01:33:53:b1:06: ba:9d:cf:80:2a:19:06:55:fb:d5:64:d2:68:c4:9e:ac:35:0a: 9c:be:7f:08:57:1e:51:4b:13:47:1b:1d:82:99:d7:36:ca:4b: 27:73:b4:fe:53:d5:0e:47:55:8b:17:03:af:56:35:96:b0:9d: 20:8b:43:22:a3:02:4f:3c:57:2a:b6:ec:66:d3:cd:1a:4b:12: 33:e2:63:f3:68:ba:6a:1e:ce:ef:22:53:f5:5c:09:d4:7c:c9: 9a:9c:89:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjUwNjI3MDEzNzQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkZjVlYi00YWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJR1G8/BuPe0sSC0Tu0POvmRxxDVuimE2MmsRdyeAm4mnTnjMgqE0GKom7rW 1L5A7FSNE+V9qD6s77AvIhB2rZcTV6nEY0GdXojWM1agowjtI+6QlbHEn3k1EWMt uPROIS8215hGy2BLbTPKwqPnrj3Nx74+i8UaU4v3XytEaIMYtpjF+RMTjTGBNqre miHsRaRhMDncwxdZtqE9Oy1YpNGWYT7BLfFBCaGwTtEOzScCDslvJu7nO489sJgY ItBPaAheIELI5HQhSbY2+HbzeaAYpgONOTvlk4A9vFuFxjdZ62N1G8miFM8hv9lx bKMdXZLbivJjKNoHFW8M6HQmeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBqBJ+9Q is0vbDx3Wgpqo6WyTXTgMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY1QzAvQkNCRDRGQjZGMUMyMTFFQ0ExNjNGRDQyQzRGOUFFMDIvNUFEODVBNTZG MUM4MTFFQ0JCQzM0NTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOsAwDQYJKoZIhvcNAQELBQADggEBALB3qo+2urn8/Xb2 mD6z9LSq4wIEuUqHC60EpicARqcv9v9t8BNMfUI9lX7mzBWHFZeZurfo5Fq4fO1a F0ckRiA4FAJ+hloVvr2YrWj4G9UnW0MXEJbw0Yqp1dZe5RVeM8gGJgCyakuPSkLl ulQxQDzr9ENikbwsp7eK3sBFao0CzNUVXC9X8CreBE2gmNPXgCL5SA/U4oKe9K0J wkUBM1OxBrqdz4AqGQZV+9Vk0mjEnqw1Cpy+fwhXHlFLE0cbHYKZ1zbKSydztP5T 1Q5HVYsXA69WNZawnSCLQyKjAk88Vyq27GbTzRpLEjPiY/Noumoezu8iU/VcCdR8 yZqciRI= -----END CERTIFICATE-----Generated at Mon Jul 21 06:24:34 2025 by rpki-client