$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/B3394AE0D7F511EB82D62F73C4F9AE02.roa File: B3394AE0D7F511EB82D62F73C4F9AE02.roa (raw, json) Hash identifier: SlHb/v+sm7TxxztSTjArtTh8kIfdevbbO+wHjL8M2no= Subject key identifier: 06:5B:16:75:1B:14:F7:45:F7:B4:A8:9D:B3:70:13:B3:E5:2B:FD:26 Certificate issuer: /CN=A91CCE54/serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Certificate serial: 05B2 Authority key identifier: 1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/B3394AE0D7F511EB82D62F73C4F9AE02.roa Signing time: Wed 02 Jul 2025 23:35:39 +0000 ROA not before: Wed 02 Jul 2025 23:35:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132374 IP address blocks: 103.230.13.0/24 maxlen: 24 103.230.14.0/24 maxlen: 24 103.230.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1458 (0x5b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCE54, serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Validity Not Before: Jul 2 23:35:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865c24b-3699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9d:50:f1:34:6a:61:d5:07:2b:0a:e6:ac:18: 9e:d7:5a:8c:03:e3:82:b2:9c:bd:e4:91:c2:d8:55: bd:23:fb:37:b8:45:97:de:98:9d:e7:c0:49:9e:59: 12:45:cd:ea:76:3a:ab:32:ce:31:51:58:41:40:c7: 78:6b:33:dc:cf:86:3f:6e:7b:9f:d2:43:04:82:bb: c7:a6:7b:00:0f:e7:f8:e1:ef:9c:41:7d:93:ed:c1: fa:36:29:15:0f:41:f3:3f:11:f7:5e:b7:5f:28:22: 46:61:0d:89:56:70:9f:6f:99:a9:79:e1:54:b8:cf: a7:df:ef:51:32:dc:42:3a:eb:ea:44:21:62:0e:b5: e1:98:82:94:01:4c:55:5a:dd:b5:cf:60:16:84:94: 4b:72:a6:b8:e4:71:fd:44:af:47:29:43:64:02:32: fd:09:62:15:43:f1:51:fb:e1:d6:76:d5:aa:8d:ef: b9:93:bc:14:13:a6:7b:0b:bd:66:e4:57:af:19:f4: b5:72:e4:de:9b:26:d9:a9:84:b6:ec:52:7c:90:2d: 29:5b:a2:9d:b2:44:da:d9:88:e3:11:d4:23:6b:5f: e8:b0:f3:2f:2c:dd:f4:74:d9:f1:b1:fe:50:b2:74: cd:18:fd:e5:de:16:8e:e0:a5:f6:64:e5:22:05:24: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5B:16:75:1B:14:F7:45:F7:B4:A8:9D:B3:70:13:B3:E5:2B:FD:26 X509v3 Authority Key Identifier: keyid:1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/B3394AE0D7F511EB82D62F73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.13.0-103.230.15.255 Signature Algorithm: sha256WithRSAEncryption 31:58:be:cf:d5:86:0b:e7:c2:71:2a:5e:96:6d:f1:86:ac:6d: a0:f0:b9:76:e3:9a:80:03:65:5a:aa:9d:e5:ce:b0:83:c8:0c: c5:31:20:98:39:3d:f3:e0:d0:a9:48:80:f0:54:f0:67:b9:69: 9c:8c:0d:3c:62:fb:a8:d1:ae:4e:2c:2d:25:e1:15:72:6f:3e: 6d:79:7e:04:fa:ac:f4:76:11:a4:77:2b:e3:99:91:c3:b1:6e: 31:1b:67:a4:9b:18:61:76:db:21:fb:70:d0:d8:bd:a0:4a:aa: f8:d7:a1:04:1f:6c:85:0c:31:8d:bc:25:44:f8:d4:c6:f0:14: 26:97:7f:2e:5e:7e:ae:c9:7f:2a:30:5c:b2:2f:66:9e:b5:12: b6:26:73:ee:ae:bb:52:f7:c1:a9:0d:de:b4:c8:c2:dc:da:15: ae:07:26:39:c3:0e:1b:52:5d:71:32:47:22:80:bc:0d:7e:84: e2:b5:5b:ab:66:3b:f4:6e:4c:ac:99:28:67:7b:6d:21:33:d4: 4d:01:00:ea:54:5a:16:1c:fa:d4:74:e3:60:7e:e2:c1:d9:f2: 33:16:94:b4:19:59:3e:74:c9:7c:af:cb:d9:02:45:76:27:7b: d3:c5:9d:f7:1e:8f:40:19:e7:d6:f0:f8:d2:cf:1d:6a:79:37: d6:da:67:b6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NFNTQxMTAvBgNVBAUTKDFBQUQwMEE2MUE2NDkwNDBBQjUyNkExNDJCNUQ3QkRF RTVBMDFDQkYwHhcNMjUwNzAyMjMzNTM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YzI0Yi0zNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA451Q8TRqYdUHKwrmrBie11qMA+OCspy95JHC2FW9I/s3uEWX3pid58BJnlkS Rc3qdjqrMs4xUVhBQMd4azPcz4Y/bnuf0kMEgrvHpnsAD+f44e+cQX2T7cH6NikV D0HzPxH3XrdfKCJGYQ2JVnCfb5mpeeFUuM+n3+9RMtxCOuvqRCFiDrXhmIKUAUxV Wt21z2AWhJRLcqa45HH9RK9HKUNkAjL9CWIVQ/FR++HWdtWqje+5k7wUE6Z7C71m 5FevGfS1cuTemybZqYS27FJ8kC0pW6KdskTa2YjjEdQja1/osPMvLN30dNnxsf5Q snTNGP3l3haO4KX2ZOUiBSQZTwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFAZbFnUb FPdF97SonbNwE7PlK/0mMB8GA1UdIwQYMBaAFBqtAKYaZJBAq1JqFCtde97loBy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0U1NC9CRjlGQ0FGMEQ3 RUQxMUVCOEI1NkQ3MUFDNEY5QUUwMi9HcTBBcGhwa2tFQ3JVbW9VSzExNzN1V2dI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dxMEFwaHBra0VDclVtb1VLMTE3M3VXZ0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NFNTQvQkY5RkNBRjBEN0VEMTFFQjhCNTZENzFBQzRGOUFFMDIvQjMzOTRBRTBE N0Y1MTFFQjgyRDYyRjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfmDQMEBGfmADANBgkqhkiG9w0BAQsFAAOCAQEAMVi+ z9WGC+fCcSpelm3xhqxtoPC5duOagANlWqqd5c6wg8gMxTEgmDk98+DQqUiA8FTw Z7lpnIwNPGL7qNGuTiwtJeEVcm8+bXl+BPqs9HYRpHcr45mRw7FuMRtnpJsYYXbb Iftw0Ni9oEqq+NehBB9shQwxjbwlRPjUxvAUJpd/Ll5+rsl/KjBcsi9mnrUStiZz 7q67UvfBqQ3etMjC3NoVrgcmOcMOG1JdcTJHIoC8DX6E4rVbq2Y79G5MrJkoZ3tt ITPUTQEA6lRaFhz61HTjYH7iwdnyMxaUtBlZPnTJfK/L2QJFdid708Wd9x6PQBnn 1vD40s8dank31tpntg== -----END CERTIFICATE-----Generated at Sun Jul 20 02:04:08 2025 by rpki-client