$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa File: 6B4669CE7B7D11E99F99E776C4F9AE02.roa (raw, json) Hash identifier: LsoEpwMYLf2Jasklfj3/l8n9ySvUmMIt+P8enVxoluY= Subject key identifier: 89:8F:A0:76:10:39:7B:BC:0B:3E:F1:6E:96:28:8F:23:BD:F6:16:23 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 25FB Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa Signing time: Mon 26 May 2025 17:49:38 +0000 ROA not before: Mon 26 May 2025 17:49:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.138.210.0/24 maxlen: 24 2001:df0:5580::/48 maxlen: 48 2001:df0:5580:400::/54 maxlen: 54 2001:df0:5580:c00::/54 maxlen: 54 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9723 (0x25fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: May 26 17:49:38 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6834a9b2-8c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:70:7f:70:01:c3:75:e3:71:cb:62:c9:d7: fd:b5:6e:6b:3b:ce:fe:f4:20:77:3d:59:9c:b0:74: 4a:52:8b:58:65:a1:db:2d:f5:1b:54:9b:96:9a:c1: 36:a8:a3:2f:b0:08:ba:a0:13:a6:29:f8:61:f3:d5: b1:64:c9:30:1d:de:04:1e:67:9b:6b:f7:a4:51:6b: e3:a9:0d:62:65:88:9d:08:0b:31:56:48:17:db:47: 85:5a:0f:67:1d:f2:33:73:b9:41:5f:e9:9a:e5:e1: a8:1a:82:ff:be:4e:be:a2:0f:88:a1:7e:60:87:6d: ab:2c:ab:f4:0f:61:5a:b9:2c:f1:1b:bd:09:8c:f2: 42:1d:dc:bd:d8:86:12:0a:8f:b8:2a:4f:2f:c2:2a: 9d:18:7a:5e:34:74:2b:00:fa:c2:92:18:4d:a1:54: f9:7b:b3:86:99:61:4c:29:ce:92:1c:3c:ee:71:22: 06:01:22:c1:04:39:3c:6c:75:17:41:c3:d9:a3:e2: 12:a2:12:f8:4c:65:e5:26:e8:13:51:a5:c0:a7:9b: d4:c9:e9:78:d4:53:fa:89:af:c6:b3:27:19:f0:11: 74:ae:e1:96:26:b7:b5:7d:51:ff:99:cd:cb:99:d1: 13:6d:79:f0:59:d7:5a:d5:11:83:74:7f:fb:f6:54: c4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:8F:A0:76:10:39:7B:BC:0B:3E:F1:6E:96:28:8F:23:BD:F6:16:23 X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 IPv6: 2001:df0:5580::/48 Signature Algorithm: sha256WithRSAEncryption ae:15:37:85:3b:ff:4b:4d:c3:3e:bb:27:14:ad:28:47:b3:ed: fc:9a:5b:ab:53:b2:63:ce:d5:29:6d:ac:8d:33:21:3b:7d:cc: 25:0a:ca:e0:2b:7d:a2:8f:25:87:34:87:a7:cb:c6:a2:20:66: fd:6c:3c:b8:15:b5:74:41:35:fb:cb:69:95:5b:4c:d9:0d:78: dc:bc:d8:d3:8f:53:2c:be:bd:e7:8d:be:b1:72:2e:5c:22:96: a3:39:29:af:31:e3:68:eb:0a:8f:d1:3e:ca:64:04:4b:74:6f: a9:d0:b5:02:b0:6a:b2:0b:b0:5c:dd:d1:f6:07:07:2f:0b:54: 1b:67:5c:bf:d0:d5:84:72:14:8f:28:30:a5:1f:4f:fa:16:0b: 78:b7:1c:58:16:a5:e2:7f:ba:b9:32:5b:39:01:b3:5e:9a:df: 15:76:c1:e4:cc:d6:f5:ac:bc:a4:bb:4e:18:25:ff:79:dc:5d: 0d:34:15:d5:2d:f4:dc:f9:8b:38:09:df:b2:1e:62:0f:74:49: 66:84:40:b3:18:d7:5d:7d:1e:2b:50:1e:27:89:ea:52:67:e1: 6c:ec:56:0c:e2:e4:49:d6:ca:c7:22:05:31:5d:c4:03:7b:5c: 25:02:3b:de:b9:c0:bf:3f:3b:d3:0f:88:8d:bd:e2:ae:d7:6d: 0f:8e:05:49 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUwNTI2MTc0OTM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YTliMi04YzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwlwf3ABw3Xjcctiydf9tW5rO87+9CB3PVmcsHRKUotYZaHbLfUbVJuWmsE2 qKMvsAi6oBOmKfhh89WxZMkwHd4EHmeba/ekUWvjqQ1iZYidCAsxVkgX20eFWg9n HfIzc7lBX+ma5eGoGoL/vk6+og+IoX5gh22rLKv0D2FauSzxG70JjPJCHdy92IYS Co+4Kk8vwiqdGHpeNHQrAPrCkhhNoVT5e7OGmWFMKc6SHDzucSIGASLBBDk8bHUX QcPZo+ISohL4TGXlJugTUaXAp5vUyel41FP6ia/GsycZ8BF0ruGWJre1fVH/mc3L mdETbXnwWdda1RGDdH/79lTEgwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFImPoHYQ OXu8Cz7xbpYojyO99hYjMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvNkI0NjY5Q0U3 QjdEMTFFOTlGOTlFNzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnitIwDwQCAAIwCQMHACABDfBVgDANBgkqhkiG9w0BAQsF AAOCAQEArhU3hTv/S03DPrsnFK0oR7Pt/Jpbq1OyY87VKW2sjTMhO33MJQrK4Ct9 oo8lhzSHp8vGoiBm/Ww8uBW1dEE1+8tplVtM2Q143LzY049TLL69542+sXIuXCKW ozkprzHjaOsKj9E+ymQES3RvqdC1ArBqsguwXN3R9gcHLwtUG2dcv9DVhHIUjygw pR9P+hYLeLccWBal4n+6uTJbOQGzXprfFXbB5MzW9ay8pLtOGCX/edxdDTQV1S30 3PmLOAnfsh5iD3RJZoRAsxjXXX0eK1AeJ4nqUmfhbOxWDOLkSdbKxyIFMV3EA3tc JQI73rnAvz870w+Ijb3irtdtD44FSQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:06:36 2025 by rpki-client