$ rpki-client -vvf rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/BF6664C04C1211F0949D8B25C4F9AE02.roa File: BF6664C04C1211F0949D8B25C4F9AE02.roa (raw, json) Hash identifier: SYVpgpgSK/nXZhDHIbtXA4pZD4YgNxbTaK5KwHSB1Fo= Subject key identifier: 2B:CA:F5:FE:B1:3C:78:1E:0F:3C:8F:94:9B:36:F1:01:8E:19:59:AB Certificate issuer: /CN=A91F13B9/serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Certificate serial: 28B8 Authority key identifier: 7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/BF6664C04C1211F0949D8B25C4F9AE02.roa Signing time: Wed 18 Jun 2025 07:06:25 +0000 ROA not before: Wed 18 Jun 2025 07:06:25 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 209181 IP address blocks: 103.254.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10424 (0x28b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F13B9, serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Validity Not Before: Jun 18 07:06:25 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68526571-26dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cd:df:94:12:d6:f5:61:9f:4b:e4:38:37:9a: 60:9d:47:ab:5a:95:de:e2:df:2f:5d:79:e6:c1:b6: 39:de:c8:91:f0:2b:23:3b:b1:48:0d:c8:ba:1e:cd: be:b5:e1:ed:22:99:64:5d:fa:61:d2:70:f7:bf:42: 2d:a8:1e:c6:ce:f3:04:95:25:23:07:11:10:25:7b: 00:ce:7c:60:b7:8d:85:d4:f7:37:77:d2:30:e9:bf: bc:9a:50:be:d8:b1:3f:eb:9b:75:61:09:0c:11:33: b8:25:cc:16:a3:31:21:79:57:c7:d2:d5:ee:a7:73: ca:8f:98:48:54:90:ba:59:d1:5f:6a:61:52:f3:b6: fd:35:50:84:dc:1e:50:e5:99:ea:69:58:fc:65:25: f2:24:19:b9:a9:96:b9:cf:ab:bd:95:38:87:e6:06: 43:b2:d2:d9:a2:13:ec:56:94:93:73:17:3e:19:12: 2d:c6:b7:96:16:59:40:a0:d1:4b:8d:52:92:bc:fb: 76:1c:23:55:af:9d:54:3d:8e:01:11:69:6d:da:c6: e7:36:50:b6:a9:a5:61:3f:ce:e9:0d:f6:8f:5d:dc: 11:65:4b:30:3e:df:39:f2:8c:5a:eb:03:5b:48:4d: c0:67:47:8a:ab:52:1f:ce:56:f5:3f:9a:f2:3c:57: 53:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CA:F5:FE:B1:3C:78:1E:0F:3C:8F:94:9B:36:F1:01:8E:19:59:AB X509v3 Authority Key Identifier: keyid:7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/BF6664C04C1211F0949D8B25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.123.0/24 Signature Algorithm: sha256WithRSAEncryption 93:a8:ad:24:5d:3c:05:c8:53:6c:4d:c8:e3:5b:07:9d:08:27: 12:64:62:14:53:58:43:b9:75:c5:8a:fc:0c:12:c5:6b:83:41: 19:f6:f1:e5:45:3f:db:51:40:30:de:0f:3b:1c:8f:2f:52:03: cc:f7:da:ef:11:74:bc:e1:f2:5c:66:4e:57:20:bc:56:29:5c: 46:e4:4f:6b:db:46:05:ce:59:24:c9:44:92:78:e0:fc:62:92: 38:91:cd:4c:3e:06:a9:fe:fb:cb:60:85:4c:c4:97:ef:3b:2c: 5e:78:45:38:2d:77:64:82:bc:16:7a:26:a1:57:20:c4:ea:7f: 44:4e:36:5c:82:e7:3b:9e:fd:f9:01:31:3f:00:38:4a:5a:fc: dc:14:f4:a1:c7:f0:06:41:d0:c6:38:0f:5b:29:ae:c0:7a:b2: e9:50:1c:ec:8f:d0:3a:e1:2b:47:47:86:76:38:71:23:3a:37: f3:44:ee:19:90:64:a7:ca:f1:f2:66:4b:7a:3a:ec:9b:12:bc: e6:ff:e7:e9:55:bf:dd:2f:f9:61:c4:66:60:c2:f0:83:ad:43: 0a:f5:98:45:e4:54:f3:a5:d5:0e:f8:b2:d6:6a:17:d8:eb:11: a2:a0:04:d6:16:31:73:c1:1b:4a:e0:d1:ca:04:17:1a:fc:64: 19:3c:91:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzQjkxMTAvBgNVBAUTKDdFQUMwQzJDQjI3QTMwQTEzOEVFNDc1QjA3RkU5N0U4 RTkzM0ZEQ0EwHhcNMjUwNjE4MDcwNjI1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUyNjU3MS0yNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAls3flBLW9WGfS+Q4N5pgnUerWpXe4t8vXXnmwbY53siR8CsjO7FIDci6Hs2+ teHtIplkXfph0nD3v0ItqB7GzvMElSUjBxEQJXsAznxgt42F1Pc3d9Iw6b+8mlC+ 2LE/65t1YQkMETO4JcwWozEheVfH0tXup3PKj5hIVJC6WdFfamFS87b9NVCE3B5Q 5ZnqaVj8ZSXyJBm5qZa5z6u9lTiH5gZDstLZohPsVpSTcxc+GRItxreWFllAoNFL jVKSvPt2HCNVr51UPY4BEWlt2sbnNlC2qaVhP87pDfaPXdwRZUswPt858oxa6wNb SE3AZ0eKq1Ifzlb1P5ryPFdTNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCvK9f6x PHgeDzyPlJs28QGOGVmrMB8GA1UdIwQYMBaAFH6sDCyyejChOO5HWwf+l+jpM/3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTNCOS8xODk3QjI1MjlG OUQxMUU0OTYxOTUzMkRDNEY5QUUwMi9mcXdNTExKNk1LRTQ3a2RiQl82WDZPa3pf Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Zxd01MTEo2TUtFNDdrZGJCXzZYNk9rel9jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjEzQjkvMTg5N0IyNTI5RjlEMTFFNDk2MTk1MzJEQzRGOUFFMDIvQkY2NjY0QzA0 QzEyMTFGMDk0OUQ4QjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/nswDQYJKoZIhvcNAQELBQADggEBAJOorSRdPAXIU2xN yONbB50IJxJkYhRTWEO5dcWK/AwSxWuDQRn28eVFP9tRQDDeDzscjy9SA8z32u8R dLzh8lxmTlcgvFYpXEbkT2vbRgXOWSTJRJJ44PxikjiRzUw+Bqn++8tghUzEl+87 LF54RTgtd2SCvBZ6JqFXIMTqf0RONlyC5zue/fkBMT8AOEpa/NwU9KHH8AZB0MY4 D1sprsB6sulQHOyP0DrhK0dHhnY4cSM6N/NE7hmQZKfK8fJmS3o67JsSvOb/5+lV v90v+WHEZmDC8IOtQwr1mEXkVPOl1Q74stZqF9jrEaKgBNYWMXPBG0rg0coEFxr8 ZBk8kT4= -----END CERTIFICATE-----Generated at Tue Jul 1 08:13:52 2025 by rpki-client