$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/DBF856463A3011F0B0C6F437C4F9AE02.roa File: DBF856463A3011F0B0C6F437C4F9AE02.roa (raw, json) Hash identifier: 3y3NqdGA4Yb7KDxIbZnutCZORNmNgdB027E2G7UT98A= Subject key identifier: 56:D6:1F:5E:7E:73:25:2C:C0:2F:57:E4:A3:20:4D:CA:42:3E:BF:75 Certificate issuer: /CN=A91A7761/serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Certificate serial: 05FF Authority key identifier: 51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/DBF856463A3011F0B0C6F437C4F9AE02.roa Signing time: Mon 26 May 2025 23:54:01 +0000 ROA not before: Mon 26 May 2025 23:54:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 51847 IP address blocks: 103.97.200.0/23 maxlen: 23 103.97.200.0/24 maxlen: 24 103.97.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7761, serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Validity Not Before: May 26 23:54:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6834ff19-5af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:81:41:98:7c:ff:35:bc:e4:05:43:95:99:bf: d9:80:d0:b2:ae:87:1d:09:e8:43:e7:0d:f0:10:87: 9d:81:dc:16:cf:7c:ee:23:36:1f:1b:bd:82:5b:ff: f5:5b:3a:84:94:19:3c:8c:ae:1e:bd:ee:61:27:19: 71:d2:dd:9f:ff:2f:ce:5c:6f:ae:31:87:0d:48:f2: 81:97:65:ca:0c:91:31:10:a3:e3:cc:15:6c:cd:40: 21:63:ea:e1:91:3e:75:20:55:10:4d:ad:af:10:b5: 4c:c8:d0:68:2b:ba:cc:16:4d:86:17:00:01:2a:43: 5b:90:45:b9:1f:60:a2:e8:d2:46:a4:b9:10:a5:36: 9c:35:1b:92:fc:0f:a2:e0:07:c3:2c:6c:23:9f:3a: 6f:dd:48:fb:40:6e:c4:e2:30:2f:be:9a:b2:77:20: cd:43:5c:6f:e2:c0:57:36:6d:a2:15:c8:ff:17:77: eb:07:c0:d0:53:79:fc:37:b3:42:45:35:ce:68:46: 96:b1:83:3a:45:cb:65:3b:59:94:7b:4e:be:bc:bb: 29:ba:db:5e:80:42:8e:eb:a9:f5:34:0f:7b:9c:43: 7b:79:82:f5:0d:f2:92:61:a9:b3:fe:b6:9a:a0:db: d8:c5:03:23:aa:19:1f:f1:80:e5:77:bd:88:26:69: f5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D6:1F:5E:7E:73:25:2C:C0:2F:57:E4:A3:20:4D:CA:42:3E:BF:75 X509v3 Authority Key Identifier: keyid:51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/DBF856463A3011F0B0C6F437C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.200.0/23 Signature Algorithm: sha256WithRSAEncryption 21:36:d0:4f:da:63:29:6f:43:36:26:59:1a:93:f1:2c:41:9a: e0:dc:a1:57:f6:49:9d:a0:05:6c:4f:f2:1c:52:38:74:73:01: c4:bd:9c:e0:a1:92:93:51:e3:62:05:3e:9e:8d:1b:64:47:b6: 1d:d2:dd:ad:35:7c:6e:1d:10:68:62:f2:c5:20:de:76:7a:27: 76:cb:d3:da:24:3a:14:66:7b:de:86:ba:4f:e6:44:05:0d:33: 6f:13:e6:19:7f:08:54:61:49:e5:01:c9:bd:b5:58:55:29:98: d2:b4:e2:be:7b:67:e8:3f:d9:4c:ab:ef:aa:41:a7:26:ef:5f: 3b:eb:7c:98:42:c8:c7:62:30:dc:89:b6:93:5d:a9:e0:ed:06: e3:c4:ae:87:ab:4f:b8:65:f3:e4:f7:46:d5:cd:e8:3b:1d:03: 17:e8:b3:fa:ab:89:31:c8:ec:58:65:fc:27:b0:37:57:a6:94: 1f:39:70:17:28:37:b3:d8:47:1e:f6:f0:a4:2e:f2:f3:58:39: b9:67:22:81:75:10:af:7f:ff:3b:64:43:f8:7e:83:de:49:e9: d2:99:9a:56:b3:ff:71:48:f4:e5:1e:26:a5:3f:b1:e6:2a:4c: a3:53:45:a8:ed:93:33:99:e6:17:21:fe:56:be:dc:75:68:a0: a2:5e:e8:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3NjExMTAvBgNVBAUTKDUxRDVDQzJENUU0MjhGQzk1NTE0OUY1NzYyMTE5MDRG MDVCQUYyMTEwHhcNMjUwNTI2MjM1NDAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ZmYxOS01YWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoFBmHz/NbzkBUOVmb/ZgNCyrocdCehD5w3wEIedgdwWz3zuIzYfG72CW//1 WzqElBk8jK4eve5hJxlx0t2f/y/OXG+uMYcNSPKBl2XKDJExEKPjzBVszUAhY+rh kT51IFUQTa2vELVMyNBoK7rMFk2GFwABKkNbkEW5H2Ci6NJGpLkQpTacNRuS/A+i 4AfDLGwjnzpv3Uj7QG7E4jAvvpqydyDNQ1xv4sBXNm2iFcj/F3frB8DQU3n8N7NC RTXOaEaWsYM6RctlO1mUe06+vLsputtegEKO66n1NA97nEN7eYL1DfKSYamz/raa oNvYxQMjqhkf8YDld72IJmn1VQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFbWH15+ cyUswC9X5KMgTcpCPr91MB8GA1UdIwQYMBaAFFHVzC1eQo/JVRSfV2IRkE8FuvIR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzc2MS8wRTRCOTE2OEJE MzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4bFZGSjlYWWhHUVR3VzY4 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VkWE1MVjVDajhsVkZKOVhZaEdRVHdXNjhoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTc3NjEvMEU0QjkxNjhCRDM0MTFFQjkwRTU1NDI4QzRGOUFFMDIvREJGODU2NDYz QTMwMTFGMEIwQzZGNDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnYcgwDQYJKoZIhvcNAQELBQADggEBACE20E/aYylvQzYm WRqT8SxBmuDcoVf2SZ2gBWxP8hxSOHRzAcS9nOChkpNR42IFPp6NG2RHth3S3a01 fG4dEGhi8sUg3nZ6J3bL09okOhRme96Guk/mRAUNM28T5hl/CFRhSeUByb21WFUp mNK04r57Z+g/2Uyr76pBpybvXzvrfJhCyMdiMNyJtpNdqeDtBuPEroerT7hl8+T3 RtXN6DsdAxfos/qriTHI7Fhl/CewN1emlB85cBcoN7PYRx728KQu8vNYOblnIoF1 EK9//ztkQ/h+g95J6dKZmlaz/3FI9OUeJqU/seYqTKNTRajtkzOZ5hch/la+3HVo oKJe6D8= -----END CERTIFICATE-----Generated at Wed Jun 4 00:11:57 2025 by rpki-client