$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/13B4125A4A5311F08B06EF0FC4F9AE02.roa File: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (raw, json) Hash identifier: JRzGJdFSse2irDcL+W7kuHv+w+d8AeO+g8YTYnBtHyU= Subject key identifier: F6:9B:F6:A7:32:08:EC:C8:2B:AB:A3:DF:4F:0C:A3:3D:2D:41:B8:D4 Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Certificate serial: 02 Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/13B4125A4A5311F08B06EF0FC4F9AE02.roa Signing time: Mon 16 Jun 2025 01:41:52 +0000 ROA not before: Mon 16 Jun 2025 01:41:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139037 IP address blocks: 103.138.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Validity Not Before: Jun 16 01:41:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=684f7660-7f59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ed:2c:ca:d2:b1:dc:4f:32:85:08:e1:cd:b2: 8b:17:a0:04:47:85:4b:0d:65:b3:8a:f3:dd:b5:2b: 24:fe:25:1c:7f:47:45:75:c7:16:c1:f9:5a:20:ca: cf:16:25:1d:f9:33:f5:74:c3:c5:88:75:63:c2:39: 4e:ab:21:a9:31:cc:ad:c1:d6:3c:0a:11:e2:7a:59: 4d:0f:09:dc:20:fe:c6:0b:9c:3e:24:03:8d:ee:62: 72:b9:fe:56:86:c9:40:61:8a:0a:20:af:ff:4b:c1: 20:02:99:22:04:b9:43:ca:89:28:27:3c:e3:8e:d5: 3f:5e:5f:f0:33:f6:71:d6:16:7c:db:e0:ae:5e:27: 07:a9:25:d8:9b:c5:54:90:bf:04:0e:c5:e2:ae:d5: 46:63:f0:fa:c9:59:7a:a5:ca:e7:60:24:68:42:33: b3:f0:d2:c7:8d:a5:38:67:d4:db:b7:68:55:bc:a7: a1:e0:84:91:ee:1a:b5:a5:7d:24:f7:c9:47:4d:25: b4:7e:be:94:d4:79:0f:4d:0d:1b:2c:24:bd:c2:2a: ee:89:a2:1f:55:9d:d6:c9:af:03:82:5c:a0:f1:99: 64:6b:a8:58:05:5a:cd:48:f2:11:c1:c8:31:82:58: b7:f7:02:89:dd:f6:e6:51:bc:9b:c3:82:e0:63:e1: e9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9B:F6:A7:32:08:EC:C8:2B:AB:A3:DF:4F:0C:A3:3D:2D:41:B8:D4 X509v3 Authority Key Identifier: keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/13B4125A4A5311F08B06EF0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.201.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:ae:df:bd:16:00:1e:0d:3f:2d:f4:45:ee:4f:24:64:52:8e: 0a:3f:af:a9:4e:10:b1:37:b6:5a:1a:98:6e:35:d8:e8:25:4a: aa:6c:b2:de:0a:d6:1d:d2:ff:2b:82:13:f4:82:63:6e:91:0c: a1:50:2a:4e:86:47:db:da:51:1e:73:c2:2d:c4:2d:74:b6:e6: 95:e7:80:90:86:f6:0a:bc:89:6d:aa:5f:a1:3f:07:b0:00:9d: 72:12:14:e5:0a:f4:fb:f6:b1:51:05:fa:71:24:fb:9e:31:e5: e8:55:c7:47:93:33:1d:06:09:f7:2c:2c:ff:18:c9:02:df:45: a4:0e:1a:d3:97:88:3d:22:ce:3e:0c:52:4f:18:28:36:59:4b: 63:45:c0:a9:e8:36:39:54:3f:6e:c9:24:61:09:c4:89:bc:7c: bd:62:4c:d0:89:bd:5a:33:d0:48:a5:8a:3b:51:4b:fa:e4:43: b9:f5:da:67:c3:92:6d:ba:dd:64:8d:45:ee:76:02:76:a2:fc: e1:53:c1:13:b8:b3:55:2f:15:fd:43:ed:3f:ab:95:31:5a:25: d6:d1:e2:c6:73:bd:67:08:e9:8f:5d:07:99:d4:80:4a:64:62: 24:27:f6:e4:af:6a:5a:ee:2f:0f:fc:ad:7d:8b:a1:b3:e5:c9: b2:ec:d8:9a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDhCMjExMC8GA1UEBRMoMjlDOUIzMzdENjdCMEYxNDQ0ODE3OThCNEQ1QjBENzNE Nzg4QUYyQjAeFw0yNTA2MTYwMTQxNTJaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGY3NjYwLTdmNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp7SzK0rHcTzKFCOHNsosXoARHhUsNZbOK8921KyT+JRx/R0V1xxbB+Vogys8W JR35M/V0w8WIdWPCOU6rIakxzK3B1jwKEeJ6WU0PCdwg/sYLnD4kA43uYnK5/laG yUBhigogr/9LwSACmSIEuUPKiSgnPOOO1T9eX/Az9nHWFnzb4K5eJwepJdibxVSQ vwQOxeKu1UZj8PrJWXqlyudgJGhCM7Pw0seNpThn1Nu3aFW8p6HghJHuGrWlfST3 yUdNJbR+vpTUeQ9NDRssJL3CKu6Joh9VndbJrwOCXKDxmWRrqFgFWs1I8hHByDGC WLf3Aond9uZRvJvDguBj4en7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9pv2pzII 7Mgrq6PfTwyjPS1BuNQwHwYDVR0jBBgwFoAUKcmzN9Z7DxREgXmLTVsNc9eIrysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwOEIyL0M5NUE0OUFFNEE1 MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhSRWdYbUxUVnNOYzllSXJ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Ntek45WjdEeFJFZ1htTFRWc05jOWVJcnlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDhCMi9DOTVBNDlBRTRBNTIxMUYwOTg5RDcwMEZDNEY5QUUwMi8xM0I0MTI1QTRB NTMxMUYwOEIwNkVGMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeKyTANBgkqhkiG9w0BAQsFAAOCAQEAb67fvRYAHg0/LfRF 7k8kZFKOCj+vqU4QsTe2WhqYbjXY6CVKqmyy3grWHdL/K4IT9IJjbpEMoVAqToZH 29pRHnPCLcQtdLbmleeAkIb2CryJbapfoT8HsACdchIU5Qr0+/axUQX6cST7njHl 6FXHR5MzHQYJ9yws/xjJAt9FpA4a05eIPSLOPgxSTxgoNllLY0XAqeg2OVQ/bskk YQnEibx8vWJM0Im9WjPQSKWKO1FL+uRDufXaZ8OSbbrdZI1F7nYCdqL84VPBE7iz VS8V/UPtP6uVMVol1tHixnO9Zwjpj10HmdSASmRiJCf25K9qWu4vD/ytfYuhs+XJ suzYmg== -----END CERTIFICATE-----Generated at Wed Jul 2 04:52:28 2025 by rpki-client