$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/5A1F332618A211EEB9517111C4F9AE02.roa File: 5A1F332618A211EEB9517111C4F9AE02.roa (raw, json) Hash identifier: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek= Subject key identifier: 2B:5D:16:D9:9F:88:F0:17:F6:13:75:1C:5D:09:80:59:B8:B5:51:29 Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 018F Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/5A1F332618A211EEB9517111C4F9AE02.roa Signing time: Mon 19 May 2025 03:12:36 +0000 ROA not before: Mon 19 May 2025 03:12:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 63526 IP address blocks: 103.122.142.0/23 maxlen: 23 103.122.142.0/24 maxlen: 24 103.122.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: May 19 03:12:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682aa1a4-19c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dc:d0:4e:79:be:55:65:dd:a8:16:06:67:0d: cb:e4:a1:fb:30:86:15:84:8f:fc:ee:4c:17:3c:f7: 6d:19:a7:a3:19:53:3e:60:52:d9:c2:3e:a3:3b:6d: 32:f5:7d:e4:69:ab:82:8a:cb:77:d3:d5:ed:52:34: 48:8a:cb:1f:0c:ee:9f:ce:4d:09:80:f0:94:fe:44: d3:d9:13:5a:44:4b:ea:f6:4f:dd:05:eb:9a:8a:45: 88:6e:ae:d4:51:40:fb:76:e7:b2:d5:39:b6:0c:5d: c1:07:11:4f:dc:df:5c:56:fd:74:95:46:fc:45:6b: 11:53:95:e6:11:7a:bc:64:f7:f9:92:9a:a8:03:f9: 02:60:75:65:71:f7:ce:5b:38:37:d9:8a:43:f6:47: ce:00:8c:bf:e1:92:ee:63:00:01:08:f0:19:e7:25: 12:ca:70:f1:35:38:ae:34:9b:5a:9e:e6:bf:5b:cf: 6c:b1:31:ce:f4:d3:d3:80:50:64:ea:bc:4b:16:e5: 29:85:e1:d2:c8:ad:23:6b:b6:e0:36:54:f1:52:12: 8a:19:fa:eb:d5:fe:55:73:bb:de:c5:67:f2:c1:cc: 62:d6:94:6b:dd:df:af:08:45:78:87:c6:c6:b2:cb: cd:82:56:35:b6:a8:d3:8e:ca:b0:64:ce:0d:d3:11: 47:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:5D:16:D9:9F:88:F0:17:F6:13:75:1C:5D:09:80:59:B8:B5:51:29 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/5A1F332618A211EEB9517111C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.142.0/23 Signature Algorithm: sha256WithRSAEncryption c5:b2:27:94:ab:d3:78:d2:50:d4:9c:c2:bf:19:23:3c:8e:80: 2c:76:4a:c7:5e:ae:e8:c4:44:98:0c:6e:8e:08:d2:a9:df:ae: 12:74:2c:c2:93:91:e6:b9:16:20:81:fa:e4:bc:0f:5e:5b:d9: 01:ec:41:bc:18:73:8e:43:0a:24:34:73:d6:d2:03:7c:a4:09: d7:97:4e:2d:89:d9:1b:da:e9:9a:d5:3f:3c:04:e8:3a:ca:80: cd:da:02:2b:48:fe:1f:ab:07:e2:c5:ab:d5:35:2f:eb:09:29: 1b:d2:04:ab:2b:7b:13:04:9e:4f:d6:29:e0:bb:22:99:fc:c9: 8b:eb:fe:31:59:2e:28:17:03:e6:67:df:ad:71:d1:60:7b:92: ad:e0:93:97:a4:fa:a5:db:d6:61:9e:5e:89:74:f1:37:ee:be: 8a:95:49:f8:ad:3b:b3:1e:7d:b0:5e:21:d4:1b:df:be:0c:04: 12:f9:ac:24:57:09:7e:7b:06:d0:e3:23:6c:75:66:aa:db:d3: f6:bf:ce:b7:29:cf:78:dd:bd:0e:6e:82:60:b2:a1:da:68:90: 98:62:69:2b:99:b7:6c:12:93:c2:ff:89:cb:3d:4e:52:ce:ad: 0c:b3:c0:e4:6c:2a:2c:fa:e9:4b:41:ac:79:b7:02:83:5d:74: 9f:bc:f1:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUwNTE5MDMxMjM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhYTFhNC0xOWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytzQTnm+VWXdqBYGZw3L5KH7MIYVhI/87kwXPPdtGaejGVM+YFLZwj6jO20y 9X3kaauCist309XtUjRIissfDO6fzk0JgPCU/kTT2RNaREvq9k/dBeuaikWIbq7U UUD7duey1Tm2DF3BBxFP3N9cVv10lUb8RWsRU5XmEXq8ZPf5kpqoA/kCYHVlcffO Wzg32YpD9kfOAIy/4ZLuYwABCPAZ5yUSynDxNTiuNJtanua/W89ssTHO9NPTgFBk 6rxLFuUpheHSyK0ja7bgNlTxUhKKGfrr1f5Vc7vexWfywcxi1pRr3d+vCEV4h8bG ssvNglY1tqjTjsqwZM4N0xFH/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCtdFtmf iPAX9hN1HF0JgFm4tVEpMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI2NzcvNjQ1N0RGRDhEODM3MTFFRDhDMDk2NjI5QzRGOUFFMDIvNUExRjMzMjYx OEEyMTFFRUI5NTE3MTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFneo4wDQYJKoZIhvcNAQELBQADggEBAMWyJ5Sr03jSUNSc wr8ZIzyOgCx2SsderujERJgMbo4I0qnfrhJ0LMKTkea5FiCB+uS8D15b2QHsQbwY c45DCiQ0c9bSA3ykCdeXTi2J2Rva6ZrVPzwE6DrKgM3aAitI/h+rB+LFq9U1L+sJ KRvSBKsrexMEnk/WKeC7Ipn8yYvr/jFZLigXA+Zn361x0WB7kq3gk5ek+qXb1mGe Xol08TfuvoqVSfitO7MefbBeIdQb374MBBL5rCRXCX57BtDjI2x1Zqrb0/a/zrcp z3jdvQ5ugmCyodpokJhiaSuZt2wSk8L/ics9TlLOrQyzwORsKiz66UtBrHm3AoNd dJ+88Z4= -----END CERTIFICATE-----Generated at Thu Jun 5 19:20:11 2025 by rpki-client