$ rpki-client -vvf rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa File: C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa (raw, json) Hash identifier: nrFCEo7GcK2eALmFz5c2iHIjlVAiVLpJmfCmZn/cv3A= Subject key identifier: 82:3F:76:AC:81:50:4A:29:61:41:A5:49:8A:E2:42:2C:BE:F9:4C:3C Certificate issuer: /CN=A91273D6/serialNumber=2FDF7A6AF904DF2CD47E65CCC0C9C5CCBF2398E5 Certificate serial: 079B Authority key identifier: 2F:DF:7A:6A:F9:04:DF:2C:D4:7E:65:CC:C0:C9:C5:CC:BF:23:98:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L996avkE3yzUfmXMwMnFzL8jmOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa Signing time: Fri 02 May 2025 21:33:42 +0000 ROA not before: Fri 02 May 2025 21:33:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56199 IP address blocks: 103.156.194.0/24 maxlen: 24 2001:df0:215::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/L996avkE3yzUfmXMwMnFzL8jmOU.crl rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/L996avkE3yzUfmXMwMnFzL8jmOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L996avkE3yzUfmXMwMnFzL8jmOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273D6, serialNumber=2FDF7A6AF904DF2CD47E65CCC0C9C5CCBF2398E5 Validity Not Before: May 2 21:33:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68153a35-c0fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f1:ba:48:ef:c8:69:29:51:e5:a9:bc:59:57: 77:84:e7:08:f6:99:cf:35:08:62:f1:04:44:6f:d2: b7:c8:8d:7a:ba:0e:20:07:a4:5f:0e:69:2d:e7:2c: 7e:f8:84:d8:49:28:15:80:6f:3d:1b:ec:77:8d:f6: bd:c3:e4:db:7c:3c:74:72:a4:5c:c5:dd:be:d4:31: 46:e8:65:1f:2f:28:1f:77:19:e5:43:4a:b6:d6:34: ae:eb:2b:96:8a:11:62:ca:fc:17:2a:cb:ff:68:b7: f8:f2:57:99:1a:0c:63:93:4c:6e:2e:28:dd:6c:bb: 40:d2:c2:0d:03:0d:04:dd:5b:f8:2a:a3:40:56:1c: b2:4a:ba:0e:ed:56:d6:ee:04:96:be:38:05:91:28: 8f:e0:18:79:ef:63:8e:59:58:64:2f:95:f3:b2:76: 37:93:bb:d8:87:5f:50:b7:d2:73:d3:ba:94:00:bd: d3:a4:04:d3:34:a5:78:80:df:a1:29:82:47:a3:dd: cb:f4:3d:4a:78:14:52:f6:da:05:29:60:74:9c:a9: 51:dd:f4:c7:2f:5c:62:bb:fc:25:a6:40:70:71:a2: 1b:09:3f:10:02:7e:7b:5a:ce:bd:7a:9b:24:af:f6: e5:6b:b4:a8:41:1b:27:da:8b:5b:fa:8c:50:f5:9c: 4e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3F:76:AC:81:50:4A:29:61:41:A5:49:8A:E2:42:2C:BE:F9:4C:3C X509v3 Authority Key Identifier: keyid:2F:DF:7A:6A:F9:04:DF:2C:D4:7E:65:CC:C0:C9:C5:CC:BF:23:98:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/L996avkE3yzUfmXMwMnFzL8jmOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L996avkE3yzUfmXMwMnFzL8jmOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.194.0/24 IPv6: 2001:df0:215::/48 Signature Algorithm: sha256WithRSAEncryption a6:46:bc:c2:22:68:6e:20:fe:c8:e0:1f:85:44:17:b3:4c:74: 8a:fa:3a:23:7f:c7:cb:5d:df:1e:a0:f9:5b:40:fc:c0:c6:ad: e9:51:f6:73:a0:12:80:b2:cc:35:66:29:58:b9:8d:2f:3d:b2: 47:5e:b3:60:f0:92:b1:94:36:6f:ab:d7:f0:3a:8d:5c:d0:a9: 58:2a:ef:a2:62:67:c9:31:32:7c:66:d3:83:2c:22:a0:44:8c: ea:8e:b5:93:35:ea:39:ac:59:31:8b:49:b2:0c:1b:c2:c7:05: 15:f5:7a:80:2f:05:df:68:32:1b:a4:74:85:5d:c5:b9:f2:d1: ee:04:d4:af:cb:c0:5d:3d:84:87:ef:14:01:f0:c2:4f:6d:0a: b6:12:06:a0:9e:e3:4c:4a:72:cf:0f:d6:8d:9a:96:7f:cd:1a: 04:fe:84:16:37:08:af:7f:af:7c:d9:76:a2:2e:7f:ac:a4:a4: be:87:f4:b8:8b:2b:ff:5b:4d:16:0c:82:d3:4c:e1:9f:f4:cb: ee:90:84:1d:41:4a:9a:40:79:1f:4e:93:3e:6c:c1:43:f4:73: af:78:1b:5b:25:6d:5d:1c:fa:43:dc:71:2d:d7:0a:09:82:39: d1:1b:ee:65:55:91:4f:eb:41:b8:db:bf:2b:e8:4b:eb:16:98: 5a:30:8f:e0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjczRDYxMTAvBgNVBAUTKDJGREY3QTZBRjkwNERGMkNENDdFNjVDQ0MwQzlDNUND QkYyMzk4RTUwHhcNMjUwNTAyMjEzMzQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1M2EzNS1jMGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/G6SO/IaSlR5am8WVd3hOcI9pnPNQhi8QREb9K3yI16ug4gB6RfDmkt5yx+ +ITYSSgVgG89G+x3jfa9w+TbfDx0cqRcxd2+1DFG6GUfLygfdxnlQ0q21jSu6yuW ihFiyvwXKsv/aLf48leZGgxjk0xuLijdbLtA0sINAw0E3Vv4KqNAVhyySroO7VbW 7gSWvjgFkSiP4Bh572OOWVhkL5XzsnY3k7vYh19Qt9Jz07qUAL3TpATTNKV4gN+h KYJHo93L9D1KeBRS9toFKWB0nKlR3fTHL1xiu/wlpkBwcaIbCT8QAn57Ws69epsk r/bla7SoQRsn2otb+oxQ9ZxO9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFII/dqyB UEopYUGlSYriQiy++Uw8MB8GA1UdIwQYMBaAFC/femr5BN8s1H5lzMDJxcy/I5jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzNENi8xMzlFMTI0NDA1 MTAxMUVCODBFMzE3NUJDNEY5QUUwMi9MOTk2YXZrRTN5elVmbVhNd01uRnpMOGpt T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w5OTZhdmtFM3l6VWZtWE13TW5Gekw4am1PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjczRDYvMTM5RTEyNDQwNTEwMTFFQjgwRTMxNzVCQzRGOUFFMDIvQzFCMUFFQzYw NTExMTFFQkJBMkNBRjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnnMIwDwQCAAIwCQMHACABDfACFTANBgkqhkiG9w0BAQsF AAOCAQEApka8wiJobiD+yOAfhUQXs0x0ivo6I3/Hy13fHqD5W0D8wMat6VH2c6AS gLLMNWYpWLmNLz2yR16zYPCSsZQ2b6vX8DqNXNCpWCrvomJnyTEyfGbTgywioESM 6o61kzXqOaxZMYtJsgwbwscFFfV6gC8F32gyG6R0hV3FufLR7gTUr8vAXT2Eh+8U AfDCT20KthIGoJ7jTEpyzw/WjZqWf80aBP6EFjcIr3+vfNl2oi5/rKSkvof0uIsr /1tNFgyC00zhn/TL7pCEHUFKmkB5H06TPmzBQ/Rzr3gbWyVtXRz6Q9xxLdcKCYI5 0RvuZVWRT+tBuNu/K+hL6xaYWjCP4A== -----END CERTIFICATE-----Generated at Mon Jun 2 07:11:20 2025 by rpki-client