$ rpki-client -vvf rpki.apnic.net/member_repository/A91A657F/E94BCC48603211EFA5F8EE7EC4F9AE02/7564FD08603311EFA997483AC4F9AE02.roa File: 7564FD08603311EFA997483AC4F9AE02.roa (raw, json) Hash identifier: j5L2oMlmz/AOJc/zBZV6x799FBe2Mb9/ypYCcp0WrrY= Subject key identifier: BE:1E:E8:97:CB:47:4C:9C:9B:5C:15:8C:0F:C5:86:F7:5A:48:2C:60 Certificate issuer: /CN=A91A657F/serialNumber=47FAE6322C51B1DD0224976F7A1D2B9226D090EA Certificate serial: 96 Authority key identifier: 47:FA:E6:32:2C:51:B1:DD:02:24:97:6F:7A:1D:2B:92:26:D0:90:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R_rmMixRsd0CJJdveh0rkibQkOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A657F/E94BCC48603211EFA5F8EE7EC4F9AE02/7564FD08603311EFA997483AC4F9AE02.roa Signing time: Fri 23 May 2025 12:22:43 +0000 ROA not before: Fri 23 May 2025 12:22:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138174 IP address blocks: 103.121.248.0/23 maxlen: 23 103.121.248.0/24 maxlen: 25 103.121.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A657F/E94BCC48603211EFA5F8EE7EC4F9AE02/R_rmMixRsd0CJJdveh0rkibQkOo.crl rsync://rpki.apnic.net/member_repository/A91A657F/E94BCC48603211EFA5F8EE7EC4F9AE02/R_rmMixRsd0CJJdveh0rkibQkOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R_rmMixRsd0CJJdveh0rkibQkOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A657F, serialNumber=47FAE6322C51B1DD0224976F7A1D2B9226D090EA Validity Not Before: May 23 12:22:43 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68306893-3fb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:46:0c:85:8c:2e:38:f0:6b:ac:e9:cd:f7:fc: 59:ba:33:3f:6c:51:ba:af:d3:ba:29:52:62:04:d2: 26:9d:73:cb:c3:14:82:fa:62:91:6b:25:e6:b5:3f: 2f:4b:ac:14:ac:21:07:1a:e2:fd:9c:ed:2d:92:de: 33:7d:fc:ae:01:97:e9:8f:d2:3a:11:82:4f:de:22: 3f:39:d5:b4:e9:5f:d6:4f:89:b6:29:0e:d8:e5:df: 4b:54:80:fd:36:35:e0:84:47:0c:e0:36:37:23:b0: 8f:84:c3:78:a2:58:43:48:1f:31:78:20:3a:2c:1b: 12:dd:84:4d:96:c2:28:a1:53:b5:7f:4c:9c:1f:c8: f9:94:7e:60:08:b3:c9:87:7d:8c:93:49:97:07:ae: 57:c5:61:b9:91:bd:8e:bd:ff:18:46:5b:f2:aa:e7: 2b:7b:57:be:2e:b0:ff:bb:83:02:34:02:b6:89:01: 63:1d:94:95:1c:90:45:95:79:12:4e:03:35:94:ff: e2:98:b3:85:12:f9:2b:8c:31:0e:70:f5:c5:c1:07: 04:be:5c:9a:31:39:67:74:7b:1f:ee:58:7d:50:43: 91:92:fe:a9:d9:d1:73:b2:c5:04:1b:89:3a:53:ce: 48:68:49:a2:a9:57:b7:e8:6d:84:ab:f5:49:3a:14: 6c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1E:E8:97:CB:47:4C:9C:9B:5C:15:8C:0F:C5:86:F7:5A:48:2C:60 X509v3 Authority Key Identifier: keyid:47:FA:E6:32:2C:51:B1:DD:02:24:97:6F:7A:1D:2B:92:26:D0:90:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A657F/E94BCC48603211EFA5F8EE7EC4F9AE02/R_rmMixRsd0CJJdveh0rkibQkOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R_rmMixRsd0CJJdveh0rkibQkOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A657F/E94BCC48603211EFA5F8EE7EC4F9AE02/7564FD08603311EFA997483AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.248.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:f0:be:b4:4a:52:f1:5f:09:9d:f0:98:14:c8:59:79:93:77: c3:fd:17:b4:9c:64:1e:ae:0a:14:ca:d5:81:f3:79:d7:c3:09: d8:61:71:11:dd:3d:82:a6:b3:59:83:2c:c0:9d:8a:99:03:79: 65:c4:bd:02:67:e7:67:38:9e:03:4b:3b:d0:45:55:ae:2a:c2: f6:62:d5:5e:cc:7f:7a:6d:de:6f:48:74:e1:48:96:30:d7:4c: 95:aa:ad:5c:87:15:ec:89:c0:4c:90:13:08:20:bc:33:04:7f: fd:ca:b8:e2:93:32:4c:a3:86:6b:bd:53:53:4f:e5:97:f7:fa: aa:8b:25:96:c2:34:1b:bf:c0:71:e6:5c:65:18:39:ce:a7:4b: de:1d:53:9d:94:17:fb:0c:36:ff:c2:5a:3c:db:ce:45:13:69: 57:01:23:bd:ba:61:4d:43:dd:da:6d:b8:67:3b:ce:9a:73:c0: c5:c1:95:3c:04:38:29:34:64:80:e2:a2:2f:c4:f5:1f:71:71: 7f:fa:40:4c:11:e7:22:d9:5b:98:48:eb:89:03:74:66:6d:4a: 21:bc:ab:55:10:97:2c:c1:c3:d5:0e:c4:90:8f:1d:ef:ba:aa: 1c:bb:27:0e:83:fb:48:36:ab:1f:1e:a9:f8:e6:b2:b7:ef:6c: 0c:c2:e4:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1N0YxMTAvBgNVBAUTKDQ3RkFFNjMyMkM1MUIxREQwMjI0OTc2RjdBMUQyQjky MjZEMDkwRUEwHhcNMjUwNTIzMTIyMjQzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMwNjg5My0zZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EYMhYwuOPBrrOnN9/xZujM/bFG6r9O6KVJiBNImnXPLwxSC+mKRayXmtT8v S6wUrCEHGuL9nO0tkt4zffyuAZfpj9I6EYJP3iI/OdW06V/WT4m2KQ7Y5d9LVID9 NjXghEcM4DY3I7CPhMN4olhDSB8xeCA6LBsS3YRNlsIooVO1f0ycH8j5lH5gCLPJ h32Mk0mXB65XxWG5kb2Ovf8YRlvyqucre1e+LrD/u4MCNAK2iQFjHZSVHJBFlXkS TgM1lP/imLOFEvkrjDEOcPXFwQcEvlyaMTlndHsf7lh9UEORkv6p2dFzssUEG4k6 U85IaEmiqVe36G2Eq/VJOhRs2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFL4e6JfL R0ycm1wVjA/FhvdaSCxgMB8GA1UdIwQYMBaAFEf65jIsUbHdAiSXb3odK5Im0JDq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU3Ri9FOTRCQ0M0ODYw MzIxMUVGQTVGOEVFN0VDNEY5QUUwMi9SX3JtTWl4UnNkMENKSmR2ZWgwcmtpYlFr T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Jfcm1NaXhSc2QwQ0pKZHZlaDBya2liUWtPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1N0YvRTk0QkNDNDg2MDMyMTFFRkE1RjhFRTdFQzRGOUFFMDIvNzU2NEZEMDg2 MDMzMTFFRkE5OTc0ODNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnefgwDQYJKoZIhvcNAQELBQADggEBAGzwvrRKUvFfCZ3w mBTIWXmTd8P9F7ScZB6uChTK1YHzedfDCdhhcRHdPYKms1mDLMCdipkDeWXEvQJn 52c4ngNLO9BFVa4qwvZi1V7Mf3pt3m9IdOFIljDXTJWqrVyHFeyJwEyQEwggvDME f/3KuOKTMkyjhmu9U1NP5Zf3+qqLJZbCNBu/wHHmXGUYOc6nS94dU52UF/sMNv/C WjzbzkUTaVcBI726YU1D3dptuGc7zppzwMXBlTwEOCk0ZIDioi/E9R9xcX/6QEwR 5yLZW5hI64kDdGZtSiG8q1UQlyzBw9UOxJCPHe+6qhy7Jw6D+0g2qx8eqfjmsrfv bAzC5Ck= -----END CERTIFICATE-----Generated at Mon Jun 2 05:34:28 2025 by rpki-client