$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/148BC3E8833B11EEA71E1715C4F9AE02.roa File: 148BC3E8833B11EEA71E1715C4F9AE02.roa (raw, json) Hash identifier: ZO4FyXUvWQjoBnjdYas53x9mwxjL1ZSYmacbdFPrIGc= Subject key identifier: 56:C8:AB:2C:C9:2A:9E:8C:A3:14:16:56:40:B5:1A:2A:B1:20:1F:1B Certificate issuer: /CN=A91A5B07/serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Certificate serial: 0327 Authority key identifier: F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/148BC3E8833B11EEA71E1715C4F9AE02.roa Signing time: Wed 21 May 2025 01:18:35 +0000 ROA not before: Wed 21 May 2025 01:18:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135391 IP address blocks: 103.211.194.0/24 maxlen: 24 139.5.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B07, serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Validity Not Before: May 21 01:18:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682d29eb-7946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:80:90:9c:66:c0:94:3e:d7:df:38:71:83:43: 57:d3:b8:a2:6e:50:f5:3b:8f:59:43:1b:3d:c5:4f: 52:05:18:71:3b:a6:c8:6d:d6:71:b2:90:72:06:29: 03:eb:ae:29:d2:43:8f:c5:0a:84:a9:f2:bc:f8:28: 84:93:3a:40:83:ec:8e:fd:f7:b8:76:3f:dd:2b:43: 3d:88:e2:dd:78:e2:23:72:96:b9:68:f5:54:61:0b: 3d:5c:72:fd:5c:2b:9f:03:18:81:35:24:c6:7d:c6: 2b:c0:da:f5:da:14:46:77:cc:49:23:9e:8c:d7:cd: 33:7a:b9:7c:59:42:12:00:dd:e1:99:08:60:0f:62: 4f:aa:00:4d:4d:51:50:2e:78:8f:76:e8:5e:bc:e8: ef:17:3c:f5:36:a5:f1:f3:b2:c9:18:5c:ec:dc:fa: 34:be:96:cd:b7:35:4f:90:ac:f2:c0:b7:1b:8c:c2: 0d:76:ba:cc:a3:30:cc:05:dc:fc:12:e8:2c:c3:1c: 1c:5f:fe:ea:e7:ed:93:b9:ad:d4:43:34:e0:a0:20: 5b:3a:f7:be:ea:4e:80:7d:b8:ba:8f:08:4d:e1:a7: 48:f1:2a:b9:c0:56:4d:50:a6:b0:4e:0d:26:4c:1b: 66:60:a1:d7:1b:07:b4:3e:31:fe:29:89:92:dc:2b: 70:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C8:AB:2C:C9:2A:9E:8C:A3:14:16:56:40:B5:1A:2A:B1:20:1F:1B X509v3 Authority Key Identifier: keyid:F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/148BC3E8833B11EEA71E1715C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.194.0/24 139.5.108.0/22 Signature Algorithm: sha256WithRSAEncryption a1:37:04:1a:76:b6:04:c5:d2:53:74:63:14:8f:6d:67:84:32: 38:e4:6c:70:0b:97:d5:e3:18:ca:66:15:f7:7d:02:e5:b5:fa: 8c:90:d2:4a:e2:4c:73:26:95:01:ba:a4:6e:dd:2c:10:6b:65: 88:84:e9:6c:e0:f7:6b:af:5a:20:73:22:9b:37:cb:df:76:9d: 9c:28:ef:df:df:86:16:b0:e2:2e:ca:80:a6:04:12:35:a9:7a: 4e:dc:b9:90:22:90:a8:b5:a2:fd:57:14:ec:8c:59:d6:61:00: c3:9c:b6:97:8a:de:0e:5e:55:cb:86:48:09:2e:64:83:7d:1d: 8a:81:f1:81:97:93:17:4a:f1:d7:9b:67:9f:3c:6c:dd:96:c5: 71:c2:2c:94:9a:c2:3f:37:af:f2:e8:f0:48:5c:ca:57:ca:72: 58:e7:24:7b:22:93:33:f2:59:66:ec:f4:f3:0a:b7:82:d7:9b: 47:70:f7:88:6e:07:b1:5e:03:cd:d9:9f:89:59:05:f2:82:85: 91:7d:5e:31:37:19:71:8a:32:4c:fa:6d:cf:44:9c:09:df:e9: e4:86:c9:72:ad:36:09:4c:0c:ac:f0:81:7a:ee:ae:d2:a8:6e: 50:41:41:bf:f8:0e:bc:9f:f9:9a:69:57:50:bf:f0:12:19:82: 0c:74:9d:9d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCMDcxMTAvBgNVBAUTKEY0RkZGRTYwRTdENjNCRTRGMTgxOUJCQTg0Q0Q1QjIw NDc0QzkxQzYwHhcNMjUwNTIxMDExODM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkMjllYi03OTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoCQnGbAlD7X3zhxg0NX07iiblD1O49ZQxs9xU9SBRhxO6bIbdZxspByBikD 664p0kOPxQqEqfK8+CiEkzpAg+yO/fe4dj/dK0M9iOLdeOIjcpa5aPVUYQs9XHL9 XCufAxiBNSTGfcYrwNr12hRGd8xJI56M180zerl8WUISAN3hmQhgD2JPqgBNTVFQ LniPduhevOjvFzz1NqXx87LJGFzs3Po0vpbNtzVPkKzywLcbjMINdrrMozDMBdz8 EugswxwcX/7q5+2Tua3UQzTgoCBbOve+6k6Afbi6jwhN4adI8Sq5wFZNUKawTg0m TBtmYKHXGwe0PjH+KYmS3CtwPQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFbIqyzJ Kp6MoxQWVkC1GiqxIB8bMB8GA1UdIwQYMBaAFPT//mDn1jvk8YGbuoTNWyBHTJHG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUIwNy83MkE0OEE3NkND RTExMUVDQkJBMDVDMkNDNEY5QUUwMi85UF8tWU9mV08tVHhnWnU2aE0xYklFZE1r Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQXy1ZT2ZXTy1UeGdadTZoTTFiSUVkTWtjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCMDcvNzJBNDhBNzZDQ0UxMTFFQ0JCQTA1QzJDQzRGOUFFMDIvMTQ4QkMzRTg4 MzNCMTFFRUE3MUUxNzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn08IDBAKLBWwwDQYJKoZIhvcNAQELBQADggEBAKE3BBp2 tgTF0lN0YxSPbWeEMjjkbHALl9XjGMpmFfd9AuW1+oyQ0kriTHMmlQG6pG7dLBBr ZYiE6Wzg92uvWiBzIps3y992nZwo79/fhhaw4i7KgKYEEjWpek7cuZAikKi1ov1X FOyMWdZhAMOctpeK3g5eVcuGSAkuZIN9HYqB8YGXkxdK8debZ588bN2WxXHCLJSa wj83r/Lo8EhcylfKcljnJHsikzPyWWbs9PMKt4LXm0dw94huB7FeA83Zn4lZBfKC hZF9XjE3GXGKMkz6bc9EnAnf6eSGyXKtNglMDKzwgXrurtKoblBBQb/4Dryf+Zpp V1C/8BIZggx0nZ0= -----END CERTIFICATE-----Generated at Fri Jun 6 17:22:25 2025 by rpki-client