$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/968DFDCE973311EDBFD0B43CC4F9AE02.roa File: 968DFDCE973311EDBFD0B43CC4F9AE02.roa (raw, json) Hash identifier: XsCNsgirp/F7q8G+gXiobB8kBnUNk1PBpyNnvgrKBZg= Subject key identifier: 89:2A:88:62:35:32:40:70:D3:BD:61:02:1E:EF:D5:DF:6E:6E:51:7C Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 2607 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/968DFDCE973311EDBFD0B43CC4F9AE02.roa Signing time: Mon 26 May 2025 17:49:49 +0000 ROA not before: Mon 26 May 2025 17:49:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 65533 IP address blocks: 103.138.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9735 (0x2607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: May 26 17:49:49 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6834a9bd-138f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:97:bb:c0:28:64:e3:6d:2c:e5:0c:88:b9:67: 95:21:16:7d:5b:6c:ef:a2:83:ae:a9:b2:4f:9a:11: 3a:13:f4:17:a7:ac:ab:6e:25:d5:a7:93:06:72:83: 6b:f9:bb:4a:dc:48:87:03:eb:74:f7:b0:22:a8:c7: 52:36:74:a4:2e:28:2a:ee:85:51:2d:4d:e8:d1:53: b3:8b:40:9f:42:09:da:24:b8:00:93:10:64:8d:d9: 84:8d:ec:04:b7:ea:7b:c1:2c:5f:b2:5e:53:be:29: f3:1e:60:06:e9:ea:9e:49:b9:25:ea:25:ce:a7:a6: 2e:fb:14:e1:f6:9a:79:40:ba:c9:f6:d4:07:c4:93: 9a:c6:2f:04:6d:39:e4:f9:b9:32:6e:bb:95:83:c5: 88:e6:f6:42:7f:ca:2a:2e:81:4b:0e:08:65:19:c0: b0:4f:2e:9a:7c:b7:be:46:cd:72:68:52:63:1d:29: b3:f4:90:41:eb:f6:a6:7d:d7:b9:42:78:c4:4c:80: 41:51:77:45:c1:b7:1c:c5:3c:76:65:55:7b:53:33: f5:c7:cc:66:c4:6e:75:d8:a7:29:d5:74:5e:2b:10: 1c:7d:46:c7:ba:38:42:9e:1b:d5:58:e2:04:9b:45: 0e:60:14:70:5f:fe:a9:e5:bf:89:cf:8b:4c:1f:52: 11:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2A:88:62:35:32:40:70:D3:BD:61:02:1E:EF:D5:DF:6E:6E:51:7C X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/968DFDCE973311EDBFD0B43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 Signature Algorithm: sha256WithRSAEncryption 09:89:a6:1d:4d:0b:1e:d7:8f:03:69:10:e5:71:f3:46:3c:cf: e1:6a:5a:ed:2d:08:8f:7c:d8:90:4f:6e:82:4c:86:e9:ac:ce: cd:db:31:f2:e9:55:ec:d7:c5:48:13:a7:9c:5c:bb:48:ea:e4: 01:83:a4:bd:c5:fe:f9:5e:86:62:2f:d1:16:96:ba:6f:45:c9: 74:05:00:94:03:79:1a:d4:5c:cd:1d:ee:20:62:e9:fd:79:7a: c2:9f:e1:3e:b8:53:81:be:3d:ae:ab:87:6e:1c:5f:8c:07:18: f3:f1:08:29:b1:d6:5c:df:16:10:36:c4:b0:76:86:46:68:c3: 06:00:1e:b3:c3:e3:f2:d3:f8:26:45:60:97:3e:ca:7e:8d:3d: ad:fa:23:4b:7d:10:35:ae:f5:48:43:a5:a3:bc:06:2a:53:fa: 61:b5:18:6d:49:15:e1:4f:a4:28:7e:f0:f8:f6:29:53:de:06: 06:c7:e9:65:68:61:46:e9:bd:6d:2d:59:16:37:33:9a:80:77: 9b:6f:d0:ee:94:9e:88:d0:26:85:72:54:6a:64:fe:fb:d5:25: 6e:f4:6f:71:81:ef:a3:4e:9e:49:80:de:ac:aa:5e:b3:b3:73: e6:2b:63:e3:f6:eb:85:f9:ba:15:43:e5:07:3b:5f:33:61:48: 9a:da:ba:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUwNTI2MTc0OTQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YTliZC0xMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ze7wChk420s5QyIuWeVIRZ9W2zvooOuqbJPmhE6E/QXp6yrbiXVp5MGcoNr +btK3EiHA+t097AiqMdSNnSkLigq7oVRLU3o0VOzi0CfQgnaJLgAkxBkjdmEjewE t+p7wSxfsl5TvinzHmAG6eqeSbkl6iXOp6Yu+xTh9pp5QLrJ9tQHxJOaxi8EbTnk +bkybruVg8WI5vZCf8oqLoFLDghlGcCwTy6afLe+Rs1yaFJjHSmz9JBB6/amfde5 QnjETIBBUXdFwbccxTx2ZVV7UzP1x8xmxG512Kcp1XReKxAcfUbHujhCnhvVWOIE m0UOYBRwX/6p5b+Jz4tMH1IRswIDAQABo4IClTCCApEwHQYDVR0OBBYEFIkqiGI1 MkBw071hAh7v1d9ublF8MB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvOTY4REZEQ0U5 NzMzMTFFREJGRDBCNDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitIwDQYJKoZIhvcNAQELBQADggEBAAmJph1NCx7XjwNp EOVx80Y8z+FqWu0tCI982JBPboJMhumszs3bMfLpVezXxUgTp5xcu0jq5AGDpL3F /vlehmIv0RaWum9FyXQFAJQDeRrUXM0d7iBi6f15esKf4T64U4G+Pa6rh24cX4wH GPPxCCmx1lzfFhA2xLB2hkZowwYAHrPD4/LT+CZFYJc+yn6NPa36I0t9EDWu9UhD paO8BipT+mG1GG1JFeFPpCh+8Pj2KVPeBgbH6WVoYUbpvW0tWRY3M5qAd5tv0O6U nojQJoVyVGpk/vvVJW70b3GB76NOnkmA3qyqXrOzc+YrY+P264X5uhVD5Qc7XzNh SJrauiY= -----END CERTIFICATE-----Generated at Mon Jun 2 06:46:06 2025 by rpki-client