$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/670793E8F0EC11EFB7FBC612C4F9AE02.roa File: 670793E8F0EC11EFB7FBC612C4F9AE02.roa (raw, json) Hash identifier: an2OvMEZY7jpIn8qhWkz+zXkJdczOHSo4w/pfCuVCtg= Subject key identifier: 11:B0:6D:C5:E2:20:D5:3A:D9:21:44:A8:77:8E:0C:B5:3C:F2:EC:BB Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 25FC Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/670793E8F0EC11EFB7FBC612C4F9AE02.roa Signing time: Mon 26 May 2025 17:49:39 +0000 ROA not before: Mon 26 May 2025 17:49:39 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 1221 IP address blocks: 103.138.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9724 (0x25fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: May 26 17:49:39 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6834a9b3-f53d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8e:67:af:18:b2:db:73:47:18:e9:ef:97:37: 9d:ea:2a:d9:67:8a:9c:4f:02:6f:c8:7e:9d:01:84: d5:f9:00:cb:c3:e5:64:30:9d:d6:37:46:db:81:56: 6e:67:ce:63:c3:d2:7c:81:de:7a:9c:8d:04:6c:1c: e4:61:aa:2c:d6:f4:76:be:f5:93:44:a2:70:10:e0: de:72:b9:7f:63:fa:64:b4:2b:a7:6f:5f:8a:53:1f: 88:5e:0f:df:5d:42:02:9b:cd:55:18:29:c1:c9:8f: ee:7b:15:62:87:93:d5:6d:1e:dc:31:2b:aa:64:2c: 49:90:37:18:16:43:ad:33:68:3e:b1:b6:c3:73:df: 83:f4:21:67:13:4b:d6:ed:36:91:a8:86:11:19:f2: 72:08:88:b3:a7:60:d4:dc:c4:5c:49:43:fa:bf:73: ec:f4:05:12:fb:47:6f:f0:c7:5f:09:f5:1f:d8:cf: 9c:45:0d:cf:01:56:84:43:55:45:93:3a:cb:0a:3b: e5:ab:08:fb:eb:7a:ce:5f:cd:e8:db:59:ea:e7:8f: 00:9b:17:a7:a4:fe:05:65:1e:11:ec:32:51:e9:68: 61:87:dc:46:6b:9b:71:20:0c:1c:41:40:55:cc:73: 5b:71:6f:e2:58:75:8b:7d:c7:b2:da:db:f4:44:46: 29:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B0:6D:C5:E2:20:D5:3A:D9:21:44:A8:77:8E:0C:B5:3C:F2:EC:BB X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/670793E8F0EC11EFB7FBC612C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 Signature Algorithm: sha256WithRSAEncryption ab:77:0a:65:8a:6d:3b:f8:fd:82:a6:22:e0:3f:dc:37:0d:c2: 18:cc:95:c8:96:6b:27:95:1d:30:a5:f7:91:f4:68:31:b2:c4: 43:99:43:ac:ee:c0:b1:15:cf:15:06:02:66:16:84:a8:4b:d9: bf:31:d0:1a:63:d3:32:71:2d:bf:ba:3d:0d:b1:6c:e4:21:0f: 0e:18:76:14:b0:c8:24:40:4e:1a:13:75:6e:fe:6c:e4:29:35: 9a:2f:67:11:f9:bb:a2:5f:98:42:49:c1:43:4a:45:8b:cb:d6: 4f:db:37:2b:15:82:4f:57:61:82:02:a8:7f:93:b8:09:a9:d6: 1e:ce:4f:47:44:ed:f7:77:e4:ff:00:3a:d6:05:fe:ab:70:69: 89:74:6c:5e:f8:6c:3f:b2:5c:8f:fa:26:17:f2:e0:c4:0a:73: da:f5:92:cd:f5:3d:5f:71:a7:8a:b0:b7:9a:87:f8:3b:9d:ed: 1b:29:af:b1:a8:b9:0d:be:ab:00:55:49:fb:16:f2:8f:cb:ad: 06:16:49:c1:03:16:34:8d:7a:98:50:ac:50:21:64:cc:12:14: 38:4f:f3:4e:f6:9e:c5:e5:e2:1a:76:dd:4c:e8:6f:39:57:de: ae:c9:a6:b6:8e:8d:aa:07:be:29:db:5f:a6:aa:a1:30:b6:e2: 43:a5:0e:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUwNTI2MTc0OTM5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YTliMy1mNTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0I5nrxiy23NHGOnvlzed6irZZ4qcTwJvyH6dAYTV+QDLw+VkMJ3WN0bbgVZu Z85jw9J8gd56nI0EbBzkYaos1vR2vvWTRKJwEODecrl/Y/pktCunb1+KUx+IXg/f XUICm81VGCnByY/uexVih5PVbR7cMSuqZCxJkDcYFkOtM2g+sbbDc9+D9CFnE0vW 7TaRqIYRGfJyCIizp2DU3MRcSUP6v3Ps9AUS+0dv8MdfCfUf2M+cRQ3PAVaEQ1VF kzrLCjvlqwj763rOX83o21nq548AmxenpP4FZR4R7DJR6Whhh9xGa5txIAwcQUBV zHNbcW/iWHWLfcey2tv0REYpxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBGwbcXi INU62SFEqHeODLU88uy7MB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvNjcwNzkzRThG MEVDMTFFRkI3RkJDNjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitIwDQYJKoZIhvcNAQELBQADggEBAKt3CmWKbTv4/YKm IuA/3DcNwhjMlciWayeVHTCl95H0aDGyxEOZQ6zuwLEVzxUGAmYWhKhL2b8x0Bpj 0zJxLb+6PQ2xbOQhDw4YdhSwyCRAThoTdW7+bOQpNZovZxH5u6JfmEJJwUNKRYvL 1k/bNysVgk9XYYICqH+TuAmp1h7OT0dE7fd35P8AOtYF/qtwaYl0bF74bD+yXI/6 Jhfy4MQKc9r1ks31PV9xp4qwt5qH+Dud7Rspr7GouQ2+qwBVSfsW8o/LrQYWScED FjSNephQrFAhZMwSFDhP8072nsXl4hp23UzobzlX3q7JpraOjaoHvinbX6aqoTC2 4kOlDqQ= -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:49 2025 by rpki-client