$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa File: 25B9F9C454BE11EE810E4C27C4F9AE02.roa (raw, json) Hash identifier: vLaYuuYnarn+LGPGR9ZLrnHgOaNMvO/0VgOiG0azlng= Subject key identifier: B3:7A:22:12:BE:BE:A2:4B:FD:47:C5:F4:89:D4:A4:DE:93:9B:13:8B Certificate issuer: /CN=A91FB92B/serialNumber=F5414292429F53DAB186B42E56414959A80BEA08 Certificate serial: 014C Authority key identifier: F5:41:42:92:42:9F:53:DA:B1:86:B4:2E:56:41:49:59:A8:0B:EA:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa Signing time: Sun 15 Jun 2025 03:32:16 +0000 ROA not before: Sun 15 Jun 2025 03:32:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 59217 IP address blocks: 103.114.44.0/22 maxlen: 24 2402:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.crl rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB92B, serialNumber=F5414292429F53DAB186B42E56414959A80BEA08 Validity Not Before: Jun 15 03:32:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684e3ec0-78db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bd:a4:83:25:68:d4:11:58:90:56:67:8b:5b: 8c:99:b3:1c:ee:41:f7:bf:bf:18:a5:58:36:8d:07: e7:f6:c6:2b:fe:9d:9d:64:c0:cb:47:64:3a:1f:b4: 4e:09:30:db:fd:da:9d:66:e7:ba:30:b0:f2:79:8a: b2:33:14:c6:a8:a3:8f:ce:37:a1:41:e4:bd:26:9a: b3:2e:7f:c9:63:6e:e5:7e:6e:71:19:4c:58:2b:ee: 21:68:91:59:d1:6c:50:ec:bf:27:4b:2f:a4:78:82: 81:81:26:e5:72:b2:c1:be:7f:24:30:4d:78:c4:0d: 20:3c:41:02:e9:81:c6:d7:f4:16:35:c0:77:e0:30: ab:0c:aa:cd:5a:e0:44:dc:59:4b:bd:8e:e7:15:a1: 06:df:aa:35:aa:1d:c7:aa:09:c0:64:a5:58:cb:2a: c6:0f:8a:8d:2d:0d:9a:d5:10:50:59:92:8f:63:6e: 64:11:de:21:94:9a:2f:b8:d0:c2:3c:c6:04:4f:2e: eb:92:b3:39:b8:ed:08:92:e3:01:8d:63:0b:80:26: 52:04:2a:02:ab:94:07:59:c0:82:1c:9b:fb:d7:3c: 37:e6:5f:ec:3d:6c:b0:9b:e4:f3:a3:b7:30:b4:fe: 20:37:95:5d:57:61:14:10:7b:05:17:da:37:56:ae: 47:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:7A:22:12:BE:BE:A2:4B:FD:47:C5:F4:89:D4:A4:DE:93:9B:13:8B X509v3 Authority Key Identifier: keyid:F5:41:42:92:42:9F:53:DA:B1:86:B4:2E:56:41:49:59:A8:0B:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.44.0/22 IPv6: 2402:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 6a:98:d9:08:3d:15:c4:05:b8:ed:e8:7a:a4:ba:56:3a:94:2e: 49:66:23:18:8a:9c:fc:45:ad:bb:81:48:57:1b:bc:6a:42:6c: 8d:68:e3:82:14:1f:da:7a:a8:76:0d:7f:2e:fe:32:6b:71:d7: 14:28:d4:b5:3f:ea:83:9e:63:4b:71:af:95:e9:36:b0:61:f1: 03:13:ef:4d:ea:9c:ee:b1:56:6d:40:cf:8c:30:15:4d:4e:70: 66:40:c9:77:d8:49:32:e6:da:6a:cc:4e:32:14:24:c8:50:dc: 18:3d:60:80:3b:bc:b3:c3:8d:8a:be:71:fb:97:d9:ea:fc:1a: 6c:52:b3:63:6a:79:3b:80:10:8f:fd:23:93:ee:5d:38:5b:1e: cc:8d:c0:bf:9c:43:a9:9c:82:a2:79:f3:d0:8c:ce:a9:88:8c: 61:65:2e:38:d0:69:cf:45:bb:a0:72:07:71:57:df:65:c1:10: 1e:95:ba:82:93:0f:c1:06:84:6e:c6:75:42:a7:c3:bf:a2:bf: ba:61:8d:d0:73:28:74:e8:08:df:a4:17:01:d5:07:b5:b9:a4: cd:2c:a3:26:63:ad:3a:4e:b4:4a:5b:83:0c:d4:87:50:0b:49: 9e:40:45:b7:eb:5a:fa:d5:aa:bb:25:1c:dd:33:6f:c9:91:ab: 90:bd:a8:fa -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI5MkIxMTAvBgNVBAUTKEY1NDE0MjkyNDI5RjUzREFCMTg2QjQyRTU2NDE0OTU5 QTgwQkVBMDgwHhcNMjUwNjE1MDMzMjE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRlM2VjMC03OGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx72kgyVo1BFYkFZni1uMmbMc7kH3v78YpVg2jQfn9sYr/p2dZMDLR2Q6H7RO CTDb/dqdZue6MLDyeYqyMxTGqKOPzjehQeS9JpqzLn/JY27lfm5xGUxYK+4haJFZ 0WxQ7L8nSy+keIKBgSblcrLBvn8kME14xA0gPEEC6YHG1/QWNcB34DCrDKrNWuBE 3FlLvY7nFaEG36o1qh3HqgnAZKVYyyrGD4qNLQ2a1RBQWZKPY25kEd4hlJovuNDC PMYETy7rkrM5uO0IkuMBjWMLgCZSBCoCq5QHWcCCHJv71zw35l/sPWywm+Tzo7cw tP4gN5VdV2EUEHsFF9o3Vq5HoQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLN6IhK+ vqJL/UfF9InUpN6TmxOLMB8GA1UdIwQYMBaAFPVBQpJCn1PasYa0LlZBSVmoC+oI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjkyQi9DNDYwODFGMjU0 QkQxMUVFODEwMkYwN0ZDNEY5QUUwMi85VUZDa2tLZlU5cXhoclF1VmtGSldhZ0w2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVRkNra0tmVTlxeGhyUXVWa0ZKV2FnTDZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI5MkIvQzQ2MDgxRjI1NEJEMTFFRTgxMDJGMDdGQzRGOUFFMDIvMjVCOUY5QzQ1 NEJFMTFFRTgxMEU0QzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnciwwDQQCAAIwBwMFACQCysAwDQYJKoZIhvcNAQELBQAD ggEBAGqY2Qg9FcQFuO3oeqS6VjqULklmIxiKnPxFrbuBSFcbvGpCbI1o44IUH9p6 qHYNfy7+Mmtx1xQo1LU/6oOeY0txr5XpNrBh8QMT703qnO6xVm1Az4wwFU1OcGZA yXfYSTLm2mrMTjIUJMhQ3Bg9YIA7vLPDjYq+cfuX2er8GmxSs2NqeTuAEI/9I5Pu XThbHsyNwL+cQ6mcgqJ589CMzqmIjGFlLjjQac9Fu6ByB3FX32XBEB6VuoKTD8EG hG7GdUKnw7+iv7phjdBzKHToCN+kFwHVB7W5pM0soyZjrTpOtEpbgwzUh1ALSZ5A RbfrWvrVqrslHN0zb8mRq5C9qPo= -----END CERTIFICATE-----Generated at Sun Jul 20 02:07:03 2025 by rpki-client