$ rpki-client -vvf rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B5A31A8E660F11EB8A1DB351C4F9AE02.roa File: B5A31A8E660F11EB8A1DB351C4F9AE02.roa (raw, json) Hash identifier: FEaiMi5+ZViFMZcOI+52QVvWi5kkjXKoDrc8FS7/m2Q= Subject key identifier: 96:65:80:E2:08:63:8F:22:E9:E1:E2:EE:08:08:F1:06:6A:0B:A5:48 Certificate issuer: /CN=A91755F6/serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D Certificate serial: 0A7D Authority key identifier: F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B5A31A8E660F11EB8A1DB351C4F9AE02.roa Signing time: Mon 12 May 2025 19:35:35 +0000 ROA not before: Mon 12 May 2025 19:35:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1221 IP address blocks: 103.149.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.crl rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2685 (0xa7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91755F6, serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D Validity Not Before: May 12 19:35:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68224d86-ba72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3d:9a:62:a9:af:6a:a7:36:a5:b8:73:11:4b: e4:b2:0d:c1:47:c6:1a:1d:9a:4d:55:c5:df:07:b0: 60:a9:7d:57:44:83:4e:68:de:be:d0:14:8b:78:91: ff:62:d8:9d:f0:c2:14:4f:a9:8b:cb:b2:08:99:4d: 37:d5:e5:bb:9c:19:dc:b3:ed:4d:33:f2:4b:86:72: 02:9a:27:b9:2b:0e:29:3a:26:4a:c5:70:e7:d4:5e: a5:99:a0:10:60:0a:03:9e:6e:83:2b:1f:42:b3:98: e7:24:84:7f:05:1f:e9:ce:c1:2f:28:c9:cf:6d:96: dc:77:c6:5b:7b:65:c9:ae:0b:d9:2d:42:09:d3:66: 97:5a:39:89:f1:63:b8:ce:3a:6a:4a:cf:87:6c:de: 12:79:1c:71:50:19:a1:4d:c1:92:9e:3f:ff:7f:db: 44:fa:bc:ce:06:05:83:34:5f:25:3d:cf:de:55:b2: 21:b9:bb:40:7f:ae:aa:6d:e4:91:26:ba:b3:fe:b7: bc:ac:fa:3d:22:08:a8:dd:91:d1:81:4c:74:5d:1e: 95:3e:89:64:fd:68:a6:c9:55:fa:1d:49:9a:1b:1d: 70:94:56:b8:e0:72:20:96:3a:90:fe:51:dd:86:8a: 9f:4c:22:9e:0b:89:13:7c:9f:db:99:09:5c:53:57: 62:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:65:80:E2:08:63:8F:22:E9:E1:E2:EE:08:08:F1:06:6A:0B:A5:48 X509v3 Authority Key Identifier: keyid:F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B5A31A8E660F11EB8A1DB351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.43.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:3e:63:90:4a:ed:e5:03:a6:7f:36:64:62:cb:8e:da:0e:39: 6e:19:7f:27:34:47:58:d7:db:39:ea:45:47:9f:c6:09:10:ea: 77:2f:42:17:f1:ab:16:6a:52:61:e5:2c:36:02:09:6c:df:97: 84:21:e8:a8:52:75:5a:ec:4b:d8:f4:94:4a:dd:65:c8:5e:c4: 55:9c:da:04:9a:70:c8:15:95:79:08:24:08:0b:d2:68:45:0c: 4b:90:7b:41:fc:d6:08:07:de:09:c9:8f:18:96:02:aa:5f:dd: 8b:37:79:7e:b9:80:e6:5e:d6:53:b0:49:55:11:33:b7:0c:f5: d9:2a:52:74:3f:56:f7:a9:ed:0b:b0:b5:19:78:de:9c:45:9e: 5c:f5:1d:72:a6:84:96:d1:32:55:85:66:fb:d6:4e:41:93:40: 6d:ae:8d:70:85:e4:9a:08:41:3d:6d:27:36:af:62:c7:ea:3b: e4:82:93:44:2f:e9:dc:78:ba:e3:19:44:9b:51:3b:8e:b2:8f: ab:31:6e:7e:bc:32:03:da:52:80:57:e8:ae:e0:53:a2:43:6d: 3b:db:22:30:b7:8f:fc:45:ef:db:6b:33:0d:04:de:31:4b:e2: 42:e7:1b:39:0e:bc:1f:0f:6d:37:12:57:cb:7d:65:e9:c9:5e: 6e:b0:5e:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1RjYxMTAvBgNVBAUTKEY2OEI4NjI2OEIzN0RFODEwQjk2OERCOEYzNTdGNzcz RTk4M0JGNkQwHhcNMjUwNTEyMTkzNTM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyNGQ4Ni1iYTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtD2aYqmvaqc2pbhzEUvksg3BR8YaHZpNVcXfB7BgqX1XRINOaN6+0BSLeJH/ Ytid8MIUT6mLy7IImU031eW7nBncs+1NM/JLhnICmie5Kw4pOiZKxXDn1F6lmaAQ YAoDnm6DKx9Cs5jnJIR/BR/pzsEvKMnPbZbcd8Zbe2XJrgvZLUIJ02aXWjmJ8WO4 zjpqSs+HbN4SeRxxUBmhTcGSnj//f9tE+rzOBgWDNF8lPc/eVbIhubtAf66qbeSR Jrqz/re8rPo9Igio3ZHRgUx0XR6VPolk/WimyVX6HUmaGx1wlFa44HIgljqQ/lHd hoqfTCKeC4kTfJ/bmQlcU1diDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJZlgOII Y48i6eHi7ggI8QZqC6VIMB8GA1UdIwQYMBaAFPaLhiaLN96BC5aNuPNX93Ppg79t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTVGNi9ENjlFQUFCMjVG NjQxMUVBOUNBQTNBNjRDNEY5QUUwMi85b3VHSm9zMzNvRUxsbzI0ODFmM2MtbUR2 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlvdUdKb3MzM29FTGxvMjQ4MWYzYy1tRHYyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU1RjYvRDY5RUFBQjI1RjY0MTFFQTlDQUEzQTY0QzRGOUFFMDIvQjVBMzFBOEU2 NjBGMTFFQjhBMURCMzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlSswDQYJKoZIhvcNAQELBQADggEBAG0+Y5BK7eUDpn82 ZGLLjtoOOW4Zfyc0R1jX2znqRUefxgkQ6ncvQhfxqxZqUmHlLDYCCWzfl4Qh6KhS dVrsS9j0lErdZchexFWc2gSacMgVlXkIJAgL0mhFDEuQe0H81ggH3gnJjxiWAqpf 3Ys3eX65gOZe1lOwSVURM7cM9dkqUnQ/Vvep7QuwtRl43pxFnlz1HXKmhJbRMlWF ZvvWTkGTQG2ujXCF5JoIQT1tJzavYsfqO+SCk0Qv6dx4uuMZRJtRO46yj6sxbn68 MgPaUoBX6K7gU6JDbTvbIjC3j/xF79trMw0E3jFL4kLnGzkOvB8PbTcSV8t9ZenJ Xm6wXl0= -----END CERTIFICATE-----Generated at Mon Jun 2 06:35:16 2025 by rpki-client