$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/521500EE15C611EF88C07237C4F9AE02.roa File: 521500EE15C611EF88C07237C4F9AE02.roa (raw, json) Hash identifier: BCuicmcvw7ww1h97rYp14idO+zun7W58fW3pvWobsAM= Subject key identifier: A5:81:7E:4D:87:8D:0B:95:DD:5E:79:50:ED:1D:4D:64:F2:51:0E:3A Certificate issuer: /CN=A91A5A93/serialNumber=780B5BC6CE5E469837ADEB368574ED48304801CB Certificate serial: BB Authority key identifier: 78:0B:5B:C6:CE:5E:46:98:37:AD:EB:36:85:74:ED:48:30:48:01:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eAtbxs5eRpg3res2hXTtSDBIAcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/521500EE15C611EF88C07237C4F9AE02.roa Signing time: Thu 01 May 2025 05:12:16 +0000 ROA not before: Thu 01 May 2025 05:12:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152844 IP address blocks: 103.154.132.0/23 maxlen: 23 103.154.132.0/24 maxlen: 24 103.154.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/eAtbxs5eRpg3res2hXTtSDBIAcs.crl rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/eAtbxs5eRpg3res2hXTtSDBIAcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eAtbxs5eRpg3res2hXTtSDBIAcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A93, serialNumber=780B5BC6CE5E469837ADEB368574ED48304801CB Validity Not Before: May 1 05:12:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681302af-3d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1a:86:04:9b:d0:b5:6b:92:d3:91:b8:92:3c: f6:db:ee:8b:af:c6:c7:ef:48:61:4a:39:d0:1a:a3: 4d:42:13:34:e8:c0:3a:45:2e:3d:c3:1c:17:b7:8f: 40:1f:e6:71:32:6d:ce:54:64:de:f9:81:4f:b8:5f: 9e:96:27:72:57:32:e3:c7:6c:54:d1:83:34:e0:54: 23:6a:51:f7:e6:53:ca:75:2b:28:5a:8e:1b:3c:d7: 95:3e:50:d9:8c:5a:40:f0:0f:ab:1d:d4:a2:2f:cf: ba:fd:43:43:96:0c:34:6a:b9:58:dd:35:da:a0:86: 7d:77:e9:63:81:47:47:19:2f:27:9a:3e:1d:00:c3: ed:ec:ef:ae:e7:02:80:d6:26:f1:3a:34:99:12:bf: 20:87:f4:49:a8:b9:55:e3:97:61:3e:6e:d7:5d:32: 73:2a:24:56:0e:a1:31:9b:ee:b0:44:e3:11:e1:bd: aa:f9:72:74:7b:a0:f7:e5:ab:88:67:d3:bc:91:cc: 7a:3d:53:9f:e3:a1:b7:76:3f:72:54:e7:03:3f:3d: 46:7c:47:41:f9:42:6f:99:85:c3:f0:9a:26:e0:45: c9:a0:63:b1:10:fa:05:0d:a5:68:df:06:4b:f8:16: f9:95:a2:66:00:71:f5:86:6b:2d:ec:bd:48:86:f8: fe:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:81:7E:4D:87:8D:0B:95:DD:5E:79:50:ED:1D:4D:64:F2:51:0E:3A X509v3 Authority Key Identifier: keyid:78:0B:5B:C6:CE:5E:46:98:37:AD:EB:36:85:74:ED:48:30:48:01:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/eAtbxs5eRpg3res2hXTtSDBIAcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eAtbxs5eRpg3res2hXTtSDBIAcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/521500EE15C611EF88C07237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.132.0/23 Signature Algorithm: sha256WithRSAEncryption 97:86:48:a6:53:33:89:55:e0:69:0a:38:bf:f0:f3:4b:9e:63: 69:4a:03:dc:b1:54:d5:4b:d4:f7:a2:f8:c6:69:4f:62:05:0c: 38:02:d8:dd:7c:1d:34:12:df:22:bf:d7:1b:79:77:9c:64:c9: a1:ff:02:2b:12:26:12:a4:d9:8b:7e:4e:8e:1f:ad:b5:a4:d2: 4c:7f:9b:68:02:b7:39:40:c5:2c:2d:db:42:2a:98:8c:b1:de: 2a:a9:c5:34:bc:75:2a:12:ce:ce:3c:ad:40:c8:ca:88:ee:cc: 74:ab:a3:b0:a8:1c:01:74:ae:51:19:41:ec:02:8d:3f:83:9d: 53:38:7f:55:ba:0b:a8:bf:3d:b2:0c:69:e2:d7:91:c5:53:21: cf:fe:2b:bc:f1:f9:85:35:be:19:0e:b8:1f:10:cf:99:3a:52: ba:e0:d2:be:db:3b:3c:7b:d2:b5:52:42:a0:a1:3d:e2:d2:ba: e3:8e:39:53:ca:01:5d:53:02:be:d4:40:de:f2:f7:66:d2:14: 27:43:fd:fb:df:53:62:aa:04:32:70:ef:75:ae:f0:4c:5d:96: 8d:1c:6a:57:78:a8:93:4d:dd:ed:b0:2d:af:d6:17:3c:b5:75: a7:3f:85:ca:08:1c:0a:74:7d:21:bc:da:e9:ff:08:97:f6:20: be:74:96:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBOTMxMTAvBgNVBAUTKDc4MEI1QkM2Q0U1RTQ2OTgzN0FERUIzNjg1NzRFRDQ4 MzA0ODAxQ0IwHhcNMjUwNTAxMDUxMjE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEzMDJhZi0zZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hqGBJvQtWuS05G4kjz22+6Lr8bH70hhSjnQGqNNQhM06MA6RS49wxwXt49A H+ZxMm3OVGTe+YFPuF+elidyVzLjx2xU0YM04FQjalH35lPKdSsoWo4bPNeVPlDZ jFpA8A+rHdSiL8+6/UNDlgw0arlY3TXaoIZ9d+ljgUdHGS8nmj4dAMPt7O+u5wKA 1ibxOjSZEr8gh/RJqLlV45dhPm7XXTJzKiRWDqExm+6wROMR4b2q+XJ0e6D35auI Z9O8kcx6PVOf46G3dj9yVOcDPz1GfEdB+UJvmYXD8Jom4EXJoGOxEPoFDaVo3wZL +Bb5laJmAHH1hmst7L1Ihvj+mQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKWBfk2H jQuV3V55UO0dTWTyUQ46MB8GA1UdIwQYMBaAFHgLW8bOXkaYN63rNoV07UgwSAHL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE5My9DMDFBRjVGNDE1 QzUxMUVGQUEzMzgyMzZDNEY5QUUwMi9lQXRieHM1ZVJwZzNyZXMyaFhUdFNEQklB Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VBdGJ4czVlUnBnM3JlczJoWFR0U0RCSUFjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVBOTMvQzAxQUY1RjQxNUM1MTFFRkFBMzM4MjM2QzRGOUFFMDIvNTIxNTAwRUUx NUM2MTFFRjg4QzA3MjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmoQwDQYJKoZIhvcNAQELBQADggEBAJeGSKZTM4lV4GkK OL/w80ueY2lKA9yxVNVL1Pei+MZpT2IFDDgC2N18HTQS3yK/1xt5d5xkyaH/AisS JhKk2Yt+To4frbWk0kx/m2gCtzlAxSwt20IqmIyx3iqpxTS8dSoSzs48rUDIyoju zHSro7CoHAF0rlEZQewCjT+DnVM4f1W6C6i/PbIMaeLXkcVTIc/+K7zx+YU1vhkO uB8Qz5k6Urrg0r7bOzx70rVSQqChPeLSuuOOOVPKAV1TAr7UQN7y92bSFCdD/fvf U2KqBDJw73Wu8Exdlo0cald4qJNN3e2wLa/WFzy1dac/hcoIHAp0fSG82un/CJf2 IL50liY= -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:38 2025 by rpki-client