$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/D08850D2B71411ED98AFCC20C4F9AE02.roa File: D08850D2B71411ED98AFCC20C4F9AE02.roa (raw, json) Hash identifier: Whd7O0h6vLYtsYWJCJz6bRkTMOgBubGgIflVOzkj9YU= Subject key identifier: 89:DD:43:AF:C6:21:7E:18:B1:99:29:83:96:6F:53:5F:27:F3:93:A6 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 25FF Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/D08850D2B71411ED98AFCC20C4F9AE02.roa Signing time: Mon 26 May 2025 17:49:42 +0000 ROA not before: Mon 26 May 2025 17:49:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24242424 IP address blocks: 103.138.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9727 (0x25ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: May 26 17:49:42 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6834a9b5-378d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:49:b3:7f:10:f4:ee:55:49:d5:bb:d7:57:39: 65:04:c0:bb:c0:9f:4d:fe:70:d1:30:c1:4d:b5:03: 18:b6:f1:80:d2:de:89:f0:f6:30:5d:96:22:cd:20: 87:6a:7a:27:67:f1:68:58:29:30:45:d1:9c:1c:33: 25:b5:64:f1:54:17:61:bc:c3:03:e7:78:34:cc:fa: 18:7f:8a:43:01:21:f3:31:94:15:84:f4:ff:0b:9f: 96:d8:11:de:f4:41:69:13:f3:25:c5:ee:f2:ee:f6: 2b:73:c1:76:1f:f9:35:b9:31:cf:b4:b1:2d:f7:b2: 91:80:80:b0:29:4f:9b:30:ff:ef:b1:f6:be:65:4e: d2:e7:f4:32:43:18:cc:89:89:3b:f2:3c:d6:a0:c2: 00:e0:7c:03:0e:6b:c6:ce:1a:dc:80:31:f0:39:c1: 08:72:7f:c4:e3:b8:08:dc:54:3a:60:a9:f7:c7:9b: 45:f3:4d:b0:45:98:e0:d5:a9:be:83:35:25:d9:12: b6:0a:c8:45:96:c7:43:d7:b9:20:08:ba:0b:1a:48: 98:fa:a4:38:95:bf:61:05:a8:fd:71:90:d9:cd:a7: fa:37:26:62:31:c2:79:cf:46:4b:a9:59:2a:06:77: aa:68:71:83:f8:d9:76:2d:bd:3d:17:92:b3:c4:06: 38:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DD:43:AF:C6:21:7E:18:B1:99:29:83:96:6F:53:5F:27:F3:93:A6 X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/D08850D2B71411ED98AFCC20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 Signature Algorithm: sha256WithRSAEncryption 14:da:5b:6c:35:5e:f6:26:e0:5a:32:97:91:99:27:59:6c:85: 17:b9:79:01:b5:55:ac:5f:26:79:82:be:c6:29:8c:a5:17:98: e0:f3:5b:79:f6:5b:70:b9:8c:55:48:df:8a:ab:b9:58:29:5f: b2:f3:98:2c:89:46:11:74:1f:3a:25:df:b2:b3:ad:df:68:96: 59:6c:19:4e:39:40:5b:0b:4c:90:6d:a3:8f:ad:d0:ed:0e:58: bd:fd:7f:b6:ff:59:14:af:8f:2a:b4:6f:81:03:6f:ca:70:59: fd:1e:89:f1:22:54:23:14:44:44:f6:84:96:0c:61:6b:5a:e0: d8:4e:eb:ac:56:68:5d:ec:92:5e:61:31:e9:a1:f9:9a:f6:21: e9:53:8f:fc:34:3a:1c:ef:07:e2:89:f4:5e:c4:62:f7:0e:a7: 41:d7:03:9f:e4:bd:70:b0:ed:62:6d:3e:62:25:b2:4e:44:60: a4:f2:dd:32:3c:c8:c0:5e:72:e4:f1:f6:f9:75:6c:d6:8a:45: c0:30:84:e2:a2:cb:b5:a7:b6:95:4c:8f:7d:3a:38:96:e9:3d: ef:1f:bc:d1:31:04:90:6a:41:c7:38:83:be:03:14:08:fe:bc: a8:ca:64:5c:4a:f8:9f:f6:8a:6a:0f:01:8a:9e:88:68:e1:0f: 5a:cf:8d:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUwNTI2MTc0OTQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YTliNS0zNzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kmzfxD07lVJ1bvXVzllBMC7wJ9N/nDRMMFNtQMYtvGA0t6J8PYwXZYizSCH anonZ/FoWCkwRdGcHDMltWTxVBdhvMMD53g0zPoYf4pDASHzMZQVhPT/C5+W2BHe 9EFpE/Mlxe7y7vYrc8F2H/k1uTHPtLEt97KRgICwKU+bMP/vsfa+ZU7S5/QyQxjM iYk78jzWoMIA4HwDDmvGzhrcgDHwOcEIcn/E47gI3FQ6YKn3x5tF802wRZjg1am+ gzUl2RK2CshFlsdD17kgCLoLGkiY+qQ4lb9hBaj9cZDZzaf6NyZiMcJ5z0ZLqVkq BneqaHGD+Nl2Lb09F5KzxAY4jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIndQ6/G IX4YsZkpg5ZvU18n85OmMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvRDA4ODUwRDJC NzE0MTFFRDk4QUZDQzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitIwDQYJKoZIhvcNAQELBQADggEBABTaW2w1XvYm4Foy l5GZJ1lshRe5eQG1VaxfJnmCvsYpjKUXmODzW3n2W3C5jFVI34qruVgpX7LzmCyJ RhF0Hzol37Kzrd9olllsGU45QFsLTJBto4+t0O0OWL39f7b/WRSvjyq0b4EDb8pw Wf0eifEiVCMURET2hJYMYWta4NhO66xWaF3skl5hMemh+Zr2IelTj/w0OhzvB+KJ 9F7EYvcOp0HXA5/kvXCw7WJtPmIlsk5EYKTy3TI8yMBecuTx9vl1bNaKRcAwhOKi y7WntpVMj306OJbpPe8fvNExBJBqQcc4g74DFAj+vKjKZFxK+J/2imoPAYqeiGjh D1rPjV8= -----END CERTIFICATE-----Generated at Wed Jun 4 00:03:19 2025 by rpki-client