$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/FFD6AB1040F411F08D8C204AC4F9AE02.roa File: FFD6AB1040F411F08D8C204AC4F9AE02.roa (raw, json) Hash identifier: novXxq/0mXKb7U7jlNZr6o9F+QMifFDd2ME5nghhCqM= Subject key identifier: FD:00:2B:0A:BC:5C:3D:30:8A:63:F1:A3:50:72:BA:B6:6F:E9:E7:1A Certificate issuer: /CN=A91C7672/serialNumber=6C6D47B1114F2D581A8212805F12C3747F34AF83 Certificate serial: 02 Authority key identifier: 6C:6D:47:B1:11:4F:2D:58:1A:82:12:80:5F:12:C3:74:7F:34:AF:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bG1HsRFPLVgaghKAXxLDdH80r4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/FFD6AB1040F411F08D8C204AC4F9AE02.roa Signing time: Wed 04 Jun 2025 03:35:46 +0000 ROA not before: Wed 04 Jun 2025 03:35:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 135882 IP address blocks: 103.78.252.0/24 maxlen: 24 103.78.253.0/24 maxlen: 24 103.78.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/bG1HsRFPLVgaghKAXxLDdH80r4M.crl rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/bG1HsRFPLVgaghKAXxLDdH80r4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bG1HsRFPLVgaghKAXxLDdH80r4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 16:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7672, serialNumber=6C6D47B1114F2D581A8212805F12C3747F34AF83 Validity Not Before: Jun 4 03:35:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=683fbf11-b02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:31:da:4b:fa:e5:a2:ad:d5:5f:73:93:3f: 4d:7f:7a:69:1f:fe:26:ad:3e:30:38:cd:e2:68:2b: 3a:fa:c6:3e:53:90:37:88:65:7e:02:b4:a2:0a:b8: 29:5a:dc:c6:00:1e:98:e1:af:5b:f9:1f:f3:f1:16: 76:33:02:42:b6:0e:38:ec:32:03:a9:9c:d8:06:c3: e4:ba:36:1d:57:10:21:74:88:3f:07:d2:b3:02:40: 5c:19:f2:57:1d:7f:c1:a3:ba:8f:e5:be:ed:e7:80: 7c:99:7a:d3:4b:d8:9f:ed:2c:a6:03:4e:81:20:90: b6:0a:4e:ae:5b:de:56:38:90:bf:6f:37:ff:6f:ed: 93:87:9e:27:8a:8d:85:57:fc:c7:95:07:04:cb:2f: 51:ed:15:92:90:fc:d3:9d:f6:5f:08:89:62:b3:d6: 06:3a:dd:df:86:40:09:0b:39:f0:2c:a8:cb:e4:a1: 22:68:1e:93:f0:f6:3d:52:a2:fa:a4:bb:e6:05:0f: fa:69:9d:89:65:26:11:fd:1b:71:08:74:2f:d4:03: 9a:43:e9:93:5e:8e:12:a3:44:11:47:fe:b6:45:8b: d7:61:2b:85:76:4a:78:d2:46:d5:a9:af:08:f0:ce: 56:2a:8d:97:5b:e7:15:7d:c3:0e:45:4b:4d:c2:63: fd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:00:2B:0A:BC:5C:3D:30:8A:63:F1:A3:50:72:BA:B6:6F:E9:E7:1A X509v3 Authority Key Identifier: keyid:6C:6D:47:B1:11:4F:2D:58:1A:82:12:80:5F:12:C3:74:7F:34:AF:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/bG1HsRFPLVgaghKAXxLDdH80r4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bG1HsRFPLVgaghKAXxLDdH80r4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/FFD6AB1040F411F08D8C204AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.252.0-103.78.254.255 Signature Algorithm: sha256WithRSAEncryption 7d:ce:79:b1:27:ac:d1:2e:0e:0f:b5:11:d2:d1:7e:8b:e0:1d: 5a:ff:a6:6d:dd:01:d8:3d:95:39:8d:46:3c:27:9d:d4:c5:17: 1f:9b:99:dd:e5:d2:eb:5b:c9:87:b7:fd:68:ad:e2:e9:af:6d: 60:c2:79:39:82:94:4b:0c:94:b7:e3:ff:37:a1:52:51:6f:23: 8f:fc:f4:73:c8:87:68:c5:09:9a:29:09:dd:6e:11:70:8e:52: 84:69:c1:cb:dd:23:e6:34:4d:76:3b:44:be:64:02:5d:67:ec: 99:be:6f:73:5a:05:53:32:80:6d:73:06:37:65:a3:ef:95:be: 0f:3c:c8:2e:96:6b:a5:fd:96:6b:40:e9:7c:ee:85:fb:24:87: cd:a0:01:37:58:32:26:22:02:07:9b:71:97:43:36:2f:0d:d5: 04:d3:d9:68:dc:d6:86:ef:08:3e:4a:2a:b4:a6:4a:d9:81:35: 50:89:f5:ba:b7:c3:57:ec:c5:f7:e5:3b:1e:f1:5e:54:8d:28: e0:8a:a7:6a:17:ff:00:9a:61:60:b1:9c:fd:62:1b:90:52:89: 5d:b4:94:07:1a:59:53:8f:02:17:2f:f6:57:ea:b0:44:75:d7: 9b:56:b4:0c:5e:0c:b0:5d:aa:d3:67:2c:08:f2:9d:58:00:e0: 76:b6:fa:d5 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzY3MjExMC8GA1UEBRMoNkM2RDQ3QjExMTRGMkQ1ODFBODIxMjgwNUYxMkMzNzQ3 RjM0QUY4MzAeFw0yNTA2MDQwMzM1NDZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2ZiZjExLWIwMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2NDHaS/rloq3VX3OTP01/emkf/iatPjA4zeJoKzr6xj5TkDeIZX4CtKIKuCla 3MYAHpjhr1v5H/PxFnYzAkK2DjjsMgOpnNgGw+S6Nh1XECF0iD8H0rMCQFwZ8lcd f8Gjuo/lvu3ngHyZetNL2J/tLKYDToEgkLYKTq5b3lY4kL9vN/9v7ZOHnieKjYVX /MeVBwTLL1HtFZKQ/NOd9l8IiWKz1gY63d+GQAkLOfAsqMvkoSJoHpPw9j1Sovqk u+YFD/ppnYllJhH9G3EIdC/UA5pD6ZNejhKjRBFH/rZFi9dhK4V2SnjSRtWprwjw zlYqjZdb5xV9ww5FS03CY/2nAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQU/QArCrxc PTCKY/GjUHK6tm/p5xowHwYDVR0jBBgwFoAUbG1HsRFPLVgaghKAXxLDdH80r4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3NjcyLzQzNzY0QkVDRjcy NDExRTZBQkYwMkIzQ0M0RjlBRTAyL2JHMUhzUkZQTFZnYWdoS0FYeExEZEg4MHI0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkcxSHNSRlBMVmdhZ2hLQVh4TERkSDgwcjRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzY3Mi80Mzc2NEJFQ0Y3MjQxMUU2QUJGMDJCM0NDNEY5QUUwMi9GRkQ2QUIxMDQw RjQxMUYwOEQ4QzIwNEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQCZ078AwQAZ07+MA0GCSqGSIb3DQEBCwUAA4IBAQB9znmx J6zRLg4PtRHS0X6L4B1a/6Zt3QHYPZU5jUY8J53UxRcfm5nd5dLrW8mHt/1oreLp r21gwnk5gpRLDJS34/83oVJRbyOP/PRzyIdoxQmaKQndbhFwjlKEacHL3SPmNE12 O0S+ZAJdZ+yZvm9zWgVTMoBtcwY3ZaPvlb4PPMgulmul/ZZrQOl87oX7JIfNoAE3 WDImIgIHm3GXQzYvDdUE09lo3NaG7wg+Siq0pkrZgTVQifW6t8NX7MX35Tse8V5U jSjgiqdqF/8AmmFgsZz9YhuQUoldtJQHGllTjwIXL/ZX6rBEddebVrQMXgywXarT ZywI8p1YAOB2tvrV -----END CERTIFICATE-----Generated at Sun Jun 8 06:43:26 2025 by rpki-client