$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5842DDF0FCE511E9BFA4B27AC4F9AE02.roa File: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (raw, json) Hash identifier: 6JiNuWz5Fkw8aMu3lON6uTLPgLOG+xf9uCqK1rE3Qew= Subject key identifier: 53:67:49:F6:7A:05:D9:B9:1B:3F:3B:CA:41:BF:DE:EC:4B:80:AD:54 Certificate issuer: /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Certificate serial: 0C89 Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5842DDF0FCE511E9BFA4B27AC4F9AE02.roa Signing time: Tue 20 May 2025 18:22:56 +0000 ROA not before: Tue 20 May 2025 18:22:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138985 IP address blocks: 103.138.50.0/23 maxlen: 23 103.138.50.0/24 maxlen: 24 103.138.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Validity Not Before: May 20 18:22:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682cc87f-e521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:46:1e:cd:44:b9:32:41:4a:2d:0d:f2:22: 3b:f3:cd:c1:b4:f6:c8:d9:00:00:5e:51:11:b2:d3: fc:b6:e7:93:3e:b8:35:bd:c1:36:48:7b:ac:cd:f4: 30:d5:dd:0d:b6:8d:b9:65:24:6b:13:ed:50:0d:21: 4e:c6:f9:95:ec:e8:32:d8:58:3a:59:0c:f2:00:e1: 44:23:a9:91:44:18:4b:da:6e:66:25:f3:fe:a6:e9: 62:7f:88:68:91:04:e5:65:72:76:da:48:e5:d4:f5: 8c:fb:fc:bd:84:da:c2:f5:11:86:f2:ea:31:d4:68: 5a:f0:c1:cc:1c:c9:c8:3d:39:80:c2:1f:4e:9e:58: 0f:f6:11:63:8d:bf:94:c6:bf:6a:d1:ab:52:85:bf: 3c:98:1c:7f:d7:bb:f1:c5:b0:6c:c2:9a:f9:85:bf: 00:9c:01:03:73:f2:d9:7d:38:11:86:ea:15:5a:8d: b7:6a:16:e6:cd:35:2d:05:31:65:a8:fa:95:35:53: 70:00:f8:4a:d5:45:86:2b:b4:82:39:7a:1e:9f:86: 7e:cd:5c:3b:cf:33:08:97:84:67:bf:2e:8b:e8:fe: f8:c1:7e:ef:41:41:92:66:59:9c:ba:b1:31:7d:48: ba:5c:76:be:0b:58:1d:9d:af:a4:76:de:95:29:7f: 19:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:67:49:F6:7A:05:D9:B9:1B:3F:3B:CA:41:BF:DE:EC:4B:80:AD:54 X509v3 Authority Key Identifier: keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5842DDF0FCE511E9BFA4B27AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.50.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:01:e2:ff:50:bf:7d:c1:a5:4b:e6:10:07:e4:57:86:8a:66: e2:27:d6:e8:e8:3a:1f:da:6d:55:64:ba:83:f2:a8:1b:55:60: e8:bb:ef:42:75:f6:4b:45:df:17:54:76:d6:3b:7f:17:d1:68: ce:ea:6f:f8:e9:ff:62:40:28:eb:f7:56:08:2c:be:db:bf:e8: 1d:61:e2:6b:83:31:6e:42:b8:d4:44:cb:3e:e0:47:74:e9:46: 02:66:a9:7c:68:99:97:99:16:c5:47:db:3b:96:35:ac:4a:0d: eb:56:89:a1:4c:de:94:89:5d:91:8e:17:78:56:c0:fc:60:5f: 57:23:db:29:ab:64:39:ac:c2:7a:16:70:6a:b7:d2:c0:f6:f0: 4f:74:1e:ee:a7:a4:09:9d:4c:ad:72:03:4f:fb:0a:bf:a2:4a: f5:5d:3b:80:1d:6f:3d:e1:f9:21:f3:df:2d:cc:95:4a:cf:4a: 2a:61:fd:c0:0e:0d:90:a1:83:85:f9:66:27:f1:ce:e3:eb:1c: e3:17:e6:52:39:45:96:f6:b7:11:e7:f1:f3:5e:d6:9e:99:e2: 15:8d:3b:ae:dc:fd:f8:3e:d6:de:6c:09:98:8f:99:1b:c4:96: 52:97:bd:0a:36:74:e7:c9:d7:44:9e:60:6e:68:d3:87:05:71: d6:60:fa:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCMEIxMTAvBgNVBAUTKEU0RUI1REZBNTc5MjQyOTBCQjhGRUM0NUI5OTc3RkM2 QzdGNkZBMzcwHhcNMjUwNTIwMTgyMjU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjYzg3Zi1lNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxthGHs1EuTJBSi0N8iI7883BtPbI2QAAXlERstP8tueTPrg1vcE2SHuszfQw 1d0Nto25ZSRrE+1QDSFOxvmV7Ogy2Fg6WQzyAOFEI6mRRBhL2m5mJfP+pulif4ho kQTlZXJ22kjl1PWM+/y9hNrC9RGG8uox1Gha8MHMHMnIPTmAwh9OnlgP9hFjjb+U xr9q0atShb88mBx/17vxxbBswpr5hb8AnAEDc/LZfTgRhuoVWo23ahbmzTUtBTFl qPqVNVNwAPhK1UWGK7SCOXoen4Z+zVw7zzMIl4Rnvy6L6P74wX7vQUGSZlmcurEx fUi6XHa+C1gdna+kdt6VKX8ZcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFNnSfZ6 Bdm5Gz87ykG/3uxLgK1UMB8GA1UdIwQYMBaAFOTrXfpXkkKQu4/sRbmXf8bH9vo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEIwQi81QUVCNUVCMkZD QzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1FwQzdqLXhGdVpkX3hzZjIt amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVPdGQtbGVTUXBDN2oteEZ1WmRfeHNmMi1qYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThCMEIvNUFFQjVFQjJGQ0M1MTFFOTk4NThBOTFFQzRGOUFFMDIvNTg0MkRERjBG Q0U1MTFFOUJGQTRCMjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnijIwDQYJKoZIhvcNAQELBQADggEBAE0B4v9Qv33BpUvm EAfkV4aKZuIn1ujoOh/abVVkuoPyqBtVYOi770J19ktF3xdUdtY7fxfRaM7qb/jp /2JAKOv3Vggsvtu/6B1h4muDMW5CuNREyz7gR3TpRgJmqXxomZeZFsVH2zuWNaxK DetWiaFM3pSJXZGOF3hWwPxgX1cj2ymrZDmswnoWcGq30sD28E90Hu6npAmdTK1y A0/7Cr+iSvVdO4Adbz3h+SHz3y3MlUrPSiph/cAODZChg4X5ZifxzuPrHOMX5lI5 RZb2txHn8fNe1p6Z4hWNO67c/fg+1t5sCZiPmRvEllKXvQo2dOfJ10SeYG5o04cF cdZg+iE= -----END CERTIFICATE-----Generated at Mon Jun 2 05:04:23 2025 by rpki-client