$ rpki-client -vvf rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/034BA52C03AE11F0BDE1863DC4F9AE02.roa File: 034BA52C03AE11F0BDE1863DC4F9AE02.roa (raw, json) Hash identifier: paq7kuxsaTc9AvIuFqICTToZpA0Jq132ZaYgNXR44RU= Subject key identifier: 24:5A:81:3F:EF:8C:CE:3F:32:7A:A3:E3:55:9E:EB:28:FC:C7:8C:0A Certificate issuer: /CN=A91897B3/serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163 Certificate serial: 0592 Authority key identifier: 9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/034BA52C03AE11F0BDE1863DC4F9AE02.roa Signing time: Tue 08 Apr 2025 23:04:01 +0000 ROA not before: Tue 08 Apr 2025 23:04:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153656 IP address blocks: 103.165.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 01:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897B3, serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163 Validity Not Before: Apr 8 23:04:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f5ab61-e575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e4:ec:51:f4:47:99:28:dd:53:9c:43:a0:27: 3b:ed:f7:35:b9:e0:0d:5d:b7:d6:16:c1:5f:74:f5: e1:63:53:48:83:4c:a7:79:69:11:9c:a1:da:22:64: 0b:1a:9b:e3:d7:42:ed:01:bd:c0:42:bf:30:09:ae: bd:be:d2:97:a4:74:31:a4:c5:1f:21:73:45:62:e1: 1f:5f:fb:c7:d9:95:d1:5a:41:b6:32:c0:47:92:aa: 03:b1:cb:b8:f0:4d:12:3f:da:36:02:af:9b:f8:77: ec:e2:e9:23:81:f8:81:e3:b3:a7:dc:f1:d8:4a:cb: 20:fc:36:62:5d:23:70:a8:1f:d3:1a:b8:26:cb:ca: 56:cf:f2:fe:5a:a6:d6:b1:19:74:92:27:f0:11:47: 1f:b3:6e:93:7a:44:18:00:95:83:5b:7a:8a:d0:6b: 75:d2:67:df:07:a9:d8:35:65:0d:ca:ed:3a:a3:28: b1:ca:f6:b0:d1:eb:b2:81:c2:a4:d5:b6:74:5c:a6: 62:9b:bc:ce:f1:ef:a9:57:f4:ac:97:f1:11:31:95: bc:4c:17:dd:3f:63:53:f2:b6:b3:50:06:b2:aa:58: 62:50:52:35:0e:ff:99:dc:88:af:60:60:a2:78:0c: a2:8b:50:5f:da:28:1f:5d:56:d8:96:ca:d3:60:4e: 4d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5A:81:3F:EF:8C:CE:3F:32:7A:A3:E3:55:9E:EB:28:FC:C7:8C:0A X509v3 Authority Key Identifier: keyid:9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/034BA52C03AE11F0BDE1863DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.81.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:ba:28:3c:cc:8a:37:2a:0e:fa:5f:b5:a2:42:4d:fa:4e:6a: 86:22:89:be:9f:cd:42:78:e3:81:cd:d9:45:6d:31:7c:c1:a2: 57:27:7e:87:a8:1d:4e:2c:4b:f4:d8:e3:50:e0:1b:16:d8:56: b0:63:d4:e6:52:33:96:a9:2c:e1:bd:74:71:32:99:f8:fa:c4: 07:c3:29:08:06:cd:8d:26:47:44:f4:24:f5:5a:fe:24:a3:ba: 88:37:4a:a6:f3:0d:74:70:1a:6c:60:7f:8d:fd:b8:f8:3f:f6: 5f:db:d0:54:45:a1:2f:67:35:21:22:c3:82:24:73:68:06:64: 5c:a4:78:bd:49:33:18:49:27:c2:fe:ff:0b:11:9c:24:08:75: 78:88:1d:d6:11:ee:f5:77:a5:b8:32:e2:35:aa:fb:91:c0:ed: b0:1b:cd:fe:68:00:11:bd:67:b8:2d:97:a9:e3:38:95:7b:71: 03:f4:af:ae:c0:70:e0:3e:5e:36:19:44:27:a5:10:4b:eb:4e: 8a:a1:90:ac:68:14:c9:56:76:05:cb:5f:96:9d:fc:f6:f9:5b: 56:d9:3f:ca:2f:40:a8:0f:c6:3c:2b:05:9e:c5:25:a9:d3:c7: f4:7b:b6:98:04:d3:50:11:08:14:bc:82:cd:72:09:73:47:cd: cd:e0:ac:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QjMxMTAvBgNVBAUTKDlCRTI5MkU3RDE2RDRFOEU4MTYxNjlDM0I1MDJFQkU0 RUY0NUMxNjMwHhcNMjUwNDA4MjMwNDAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1YWI2MS1lNTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeTsUfRHmSjdU5xDoCc77fc1ueANXbfWFsFfdPXhY1NIg0yneWkRnKHaImQL Gpvj10LtAb3AQr8wCa69vtKXpHQxpMUfIXNFYuEfX/vH2ZXRWkG2MsBHkqoDscu4 8E0SP9o2Aq+b+Hfs4ukjgfiB47On3PHYSssg/DZiXSNwqB/TGrgmy8pWz/L+WqbW sRl0kifwEUcfs26TekQYAJWDW3qK0Gt10mffB6nYNWUNyu06oyixyvaw0euygcKk 1bZ0XKZim7zO8e+pV/Ssl/ERMZW8TBfdP2NT8razUAayqlhiUFI1Dv+Z3IivYGCi eAyii1Bf2igfXVbYlsrTYE5NFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCRagT/v jM4/Mnqj41We6yj8x4wKMB8GA1UdIwQYMBaAFJvikufRbU6OgWFpw7UC6+TvRcFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCMy82NzIxMkRGRUNF QTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRvNkJZV25EdFFMcjVPOUZ3 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20tS1M1OUZ0VG82QllXbkR0UUxyNU85RndXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODk3QjMvNjcyMTJERkVDRUE4MTFFQjlBOTY5RTBGQzRGOUFFMDIvMDM0QkE1MkMw M0FFMTFGMEJERTE4NjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpVEwDQYJKoZIhvcNAQELBQADggEBADy6KDzMijcqDvpf taJCTfpOaoYiib6fzUJ444HN2UVtMXzBolcnfoeoHU4sS/TY41DgGxbYVrBj1OZS M5apLOG9dHEymfj6xAfDKQgGzY0mR0T0JPVa/iSjuog3SqbzDXRwGmxgf439uPg/ 9l/b0FRFoS9nNSEiw4Ikc2gGZFykeL1JMxhJJ8L+/wsRnCQIdXiIHdYR7vV3pbgy 4jWq+5HA7bAbzf5oABG9Z7gtl6njOJV7cQP0r67AcOA+XjYZRCelEEvrToqhkKxo FMlWdgXLX5ad/Pb5W1bZP8ovQKgPxjwrBZ7FJanTx/R7tpgE01ARCBS8gs1yCXNH zc3grMU= -----END CERTIFICATE-----Generated at Sat Oct 25 06:49:17 2025 by rpki-client