$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa File: C8D6C4CAD1EF11EAA9944238C4F9AE02.roa (raw, json) Hash identifier: xde9rcF7arjQKSpEl1z3GPvE6yFSAQhR41hdAHdnobY= Subject key identifier: 9C:4F:64:61:AD:6B:7F:AD:D4:04:C4:69:8C:D5:61:5D:83:59:B3:3F Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 25FD Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa Signing time: Mon 26 May 2025 17:49:40 +0000 ROA not before: Mon 26 May 2025 17:49:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 139038 IP address blocks: 103.138.210.0/24 maxlen: 24 103.138.210.254/32 maxlen: 32 2001:df0:5580::/48 maxlen: 48 2001:df0:5580::/54 maxlen: 54 2001:df0:5580:800::/54 maxlen: 54 2001:df0:5580:1000::/52 maxlen: 52 2001:df0:5580:1000::/54 maxlen: 54 2001:df0:5580:2000::/52 maxlen: 52 2001:df0:5580:3000::/52 maxlen: 52 2001:df0:5580:7000::/52 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9725 (0x25fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: May 26 17:49:40 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6834a9b4-421b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:38:81:52:ab:45:26:b8:66:41:a8:5d:6e: f1:3e:6d:9c:e2:24:4a:50:68:3d:f2:07:c8:dd:86: ff:fd:07:ed:1f:bd:13:80:ae:71:a5:ab:31:61:c3: 0c:9b:75:6e:b1:f1:24:21:71:aa:9e:ac:b1:4f:da: 8f:00:ba:3f:9f:75:dc:13:c7:65:d7:87:7b:35:5a: 27:60:bb:7b:b0:8e:4e:a5:e7:a4:3d:1c:24:1e:cf: a8:38:a5:f2:2f:83:86:57:dd:ba:c9:4d:9a:a0:63: c6:29:6b:63:b6:ca:36:fb:8d:e7:04:a7:05:92:95: 43:13:24:8c:b3:0f:5d:27:ae:e0:3c:0d:a9:ce:20: 3d:b1:e1:ee:fd:99:21:f7:7f:71:f1:2e:d3:7f:65: 4e:d0:a8:22:9d:1b:ef:25:01:41:c7:8b:51:b2:eb: 84:21:48:ee:d9:db:87:22:30:e1:1b:8f:f8:21:55: 5c:57:16:1e:8a:52:9d:5c:77:9c:9a:74:56:4e:0a: 7d:d7:6c:ff:20:81:9f:68:59:44:b3:41:cb:66:82: 5b:60:48:82:7f:3e:80:29:a1:c2:d3:41:65:2e:fb: 03:65:c1:91:b2:07:d9:36:c2:64:65:b2:7f:78:4b: 72:7f:18:8f:fa:a6:72:79:09:be:15:03:54:37:c7: 04:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4F:64:61:AD:6B:7F:AD:D4:04:C4:69:8C:D5:61:5D:83:59:B3:3F X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 IPv6: 2001:df0:5580::/48 Signature Algorithm: sha256WithRSAEncryption 51:ca:3f:c6:bf:86:7c:d7:43:40:bd:80:99:5c:9a:f0:1f:49: be:a9:ae:08:0b:20:ab:aa:18:82:73:7c:c3:c4:39:c6:ed:1a: 47:51:44:7e:89:ad:81:dc:0f:ab:07:35:2b:51:fc:67:30:89: 48:62:2c:80:10:67:28:38:ef:c9:c2:b6:96:24:f7:38:c8:6f: e7:60:10:67:1e:7d:5b:7e:17:f7:4c:40:8e:43:e8:6f:16:72: d0:82:ec:0d:ea:f9:2b:1b:da:cc:c4:49:10:b2:1a:96:17:be: ba:e8:26:45:40:d9:cc:08:35:6f:dd:ba:e1:13:15:61:8d:e3: 87:66:46:e2:73:06:07:cb:ff:55:71:f1:d8:b7:4c:e5:14:68: f6:61:ff:93:6c:67:3f:7b:1e:55:18:a6:24:36:fe:2a:40:40: de:8b:69:ae:9b:85:3b:19:00:b5:bc:c5:3a:25:ea:e7:2b:9a: 5c:8e:b4:09:af:00:68:e2:f2:d5:97:4d:e6:01:d6:73:52:46: 42:ac:ad:d0:b9:46:bf:9e:c0:cd:e2:46:68:f7:5b:17:51:63: ef:9d:c2:66:72:ac:1d:53:d8:87:5a:a9:d0:7c:f4:e9:01:e0: d8:44:1e:43:89:92:a6:56:81:35:50:d9:1f:13:9d:07:4b:8e: cc:8c:d9:13 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUwNTI2MTc0OTQwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YTliNC00MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfM4gVKrRSa4ZkGoXW7xPm2c4iRKUGg98gfI3Yb//QftH70TgK5xpasxYcMM m3VusfEkIXGqnqyxT9qPALo/n3XcE8dl14d7NVonYLt7sI5OpeekPRwkHs+oOKXy L4OGV926yU2aoGPGKWtjtso2+43nBKcFkpVDEySMsw9dJ67gPA2pziA9seHu/Zkh 939x8S7Tf2VO0KginRvvJQFBx4tRsuuEIUju2duHIjDhG4/4IVVcVxYeilKdXHec mnRWTgp912z/IIGfaFlEs0HLZoJbYEiCfz6AKaHC00FlLvsDZcGRsgfZNsJkZbJ/ eEtyfxiP+qZyeQm+FQNUN8cEQwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJxPZGGt a3+t1ATEaYzVYV2DWbM/MB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvQzhENkM0Q0FE MUVGMTFFQUE5OTQ0MjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnitIwDwQCAAIwCQMHACABDfBVgDANBgkqhkiG9w0BAQsF AAOCAQEAUco/xr+GfNdDQL2AmVya8B9JvqmuCAsgq6oYgnN8w8Q5xu0aR1FEfomt gdwPqwc1K1H8ZzCJSGIsgBBnKDjvycK2liT3OMhv52AQZx59W34X90xAjkPobxZy 0ILsDer5KxvazMRJELIalhe+uugmRUDZzAg1b9264RMVYY3jh2ZG4nMGB8v/VXHx 2LdM5RRo9mH/k2xnP3seVRimJDb+KkBA3otprpuFOxkAtbzFOiXq5yuaXI60Ca8A aOLy1ZdN5gHWc1JGQqyt0LlGv57AzeJGaPdbF1Fj753CZnKsHVPYh1qp0Hz06QHg 2EQeQ4mSplaBNVDZHxOdB0uOzIzZEw== -----END CERTIFICATE-----Generated at Mon Jun 2 06:52:00 2025 by rpki-client