$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa File: 4D12DEAE2E9311EBB9FC5259C4F9AE02.roa (raw, json) Hash identifier: yHOOSYqrWigvtle0BTPOvzlE8XCxd97+PyV6RkU634Q= Subject key identifier: D4:B8:22:C3:9A:30:C5:F5:79:0D:69:FD:34:C5:AA:73:7D:E5:50:F3 Certificate issuer: /CN=A91A6B8E/serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Certificate serial: 0743 Authority key identifier: 5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa Signing time: Sat 31 May 2025 21:49:55 +0000 ROA not before: Sat 31 May 2025 21:49:55 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 136438 IP address blocks: 103.88.24.0/22 maxlen: 22 103.88.24.0/23 maxlen: 23 103.88.24.0/24 maxlen: 24 103.88.25.0/24 maxlen: 24 103.88.26.0/23 maxlen: 23 103.88.26.0/24 maxlen: 24 103.88.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6B8E, serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Validity Not Before: May 31 21:49:55 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b7983-1861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:e9:5f:c6:2f:9b:47:71:fd:66:7b:f5:89:97: 6b:21:ec:79:4e:48:31:26:50:1d:7a:11:ef:57:44: 1a:81:bb:c4:1b:86:4e:8a:21:e0:ae:4a:ad:b6:90: e6:9a:34:c9:7e:74:74:75:10:57:3c:4d:c0:97:96: f0:f5:47:01:d5:20:df:5f:95:65:e9:30:56:f5:b6: 6c:fb:d7:3b:d4:75:9b:13:5b:5f:ed:b9:84:e3:93: 54:5e:ba:ab:84:fc:a2:26:d3:e7:39:c6:6d:d3:8a: 18:8d:7d:a6:4b:1b:b8:b2:e3:ff:ad:81:7e:55:da: 34:f9:44:4d:de:45:86:83:42:91:0e:47:fd:16:7c: 93:ad:5d:42:26:92:33:31:43:ec:62:47:c5:ee:52: 29:be:cd:92:70:51:c5:6c:cb:50:da:cf:64:a3:7e: cf:5c:c7:0e:f2:b5:a8:d7:38:48:c0:e3:a9:81:d5: ca:8c:76:18:30:06:7c:39:0a:aa:a4:8c:3e:c9:a6: b7:0f:c2:7f:ca:5e:d4:9c:ab:88:f6:c1:5d:6a:38: 39:f0:03:ec:d0:61:cd:59:d7:44:c4:7f:45:a9:c7: 1e:31:06:a6:57:7f:41:35:6a:b0:ec:f3:ca:5f:b1: 0a:58:3f:9e:e7:99:4d:a3:37:82:36:05:52:df:0b: 41:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B8:22:C3:9A:30:C5:F5:79:0D:69:FD:34:C5:AA:73:7D:E5:50:F3 X509v3 Authority Key Identifier: keyid:5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.24.0/22 Signature Algorithm: sha256WithRSAEncryption 49:09:91:9d:af:47:ba:fc:d0:f6:7b:dd:5e:a3:f9:23:ce:80: a9:20:01:6d:3f:cb:0e:90:b4:62:90:df:ec:9a:11:b5:f0:8f: f8:a6:28:37:de:b7:b2:cd:31:eb:47:25:d0:1a:c9:49:cf:d0: a8:e3:42:d6:6d:ff:0b:0f:89:db:76:f6:ef:fc:2d:ac:4c:cf: 4a:5f:c5:23:bc:e8:4a:61:45:94:16:b1:ad:be:59:b7:72:65: 49:f7:85:b0:2d:27:fc:76:b9:91:df:e6:68:5c:e4:39:7a:56: a4:66:ee:16:e0:fd:93:c5:5b:ae:10:a1:ce:59:cd:86:c8:3d: f4:fa:42:6d:d0:e7:ef:d5:9f:58:a3:46:eb:80:48:7b:07:a6: 8e:fd:b0:28:ca:fb:10:09:5f:28:f7:32:eb:fe:23:78:e9:88: a4:09:68:56:48:33:12:e6:22:54:5c:46:1c:fe:f2:a0:59:99: c9:d1:91:59:72:03:2d:a9:b4:a6:aa:5a:00:2b:88:f2:79:f0: c4:ae:1e:78:c8:cd:57:71:b8:46:1c:95:2f:7c:ef:68:4b:2c: 02:7a:7a:ce:29:6a:9a:50:fe:59:51:16:09:75:04:53:b5:fb: 5d:80:50:2a:36:a4:65:30:26:71:a5:bd:c6:6e:67:ea:0d:ad: f7:29:e2:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZCOEUxMTAvBgNVBAUTKDVGOTMzRDMwRjI0N0QwNDE5RkYwQkUwNjAzRTE2RDVD MjdDNDA0MDcwHhcNMjUwNTMxMjE0OTU1WhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiNzk4My0xODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8+lfxi+bR3H9Znv1iZdrIex5TkgxJlAdehHvV0QagbvEG4ZOiiHgrkqttpDm mjTJfnR0dRBXPE3Al5bw9UcB1SDfX5Vl6TBW9bZs+9c71HWbE1tf7bmE45NUXrqr hPyiJtPnOcZt04oYjX2mSxu4suP/rYF+Vdo0+URN3kWGg0KRDkf9FnyTrV1CJpIz MUPsYkfF7lIpvs2ScFHFbMtQ2s9ko37PXMcO8rWo1zhIwOOpgdXKjHYYMAZ8OQqq pIw+yaa3D8J/yl7UnKuI9sFdajg58APs0GHNWddExH9FqcceMQamV39BNWqw7PPK X7EKWD+e55lNozeCNgVS3wtBswIDAQABo4IClTCCApEwHQYDVR0OBBYEFNS4IsOa MMX1eQ1p/TTFqnN95VDzMB8GA1UdIwQYMBaAFF+TPTDyR9BBn/C+BgPhbVwnxAQH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkI4RS85N0E0NTFCNjJF OTExMUVCQTUxRUU4M0NDNEY5QUUwMi9YNU05TVBKSDBFR2Y4TDRHQS1GdFhDZkVC QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g1TTlNUEpIMEVHZjhMNEdBLUZ0WENmRUJBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZCOEUvOTdBNDUxQjYyRTkxMTFFQkE1MUVFODNDQzRGOUFFMDIvNEQxMkRFQUUy RTkzMTFFQkI5RkM1MjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWBgwDQYJKoZIhvcNAQELBQADggEBAEkJkZ2vR7r80PZ7 3V6j+SPOgKkgAW0/yw6QtGKQ3+yaEbXwj/imKDfet7LNMetHJdAayUnP0KjjQtZt /wsPidt29u/8LaxMz0pfxSO86EphRZQWsa2+WbdyZUn3hbAtJ/x2uZHf5mhc5Dl6 VqRm7hbg/ZPFW64Qoc5ZzYbIPfT6Qm3Q5+/Vn1ijRuuASHsHpo79sCjK+xAJXyj3 Muv+I3jpiKQJaFZIMxLmIlRcRhz+8qBZmcnRkVlyAy2ptKaqWgAriPJ58MSuHnjI zVdxuEYclS9872hLLAJ6es4pappQ/llRFgl1BFO1+12AUCo2pGUwJnGlvcZuZ+oN rfcp4hA= -----END CERTIFICATE-----Generated at Mon Jun 2 05:53:35 2025 by rpki-client