$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F5255EAA3C0811F0AFF79131C4F9AE02.roa File: F5255EAA3C0811F0AFF79131C4F9AE02.roa (raw, json) Hash identifier: nFm23iH3I1F34dB9UDlNybSGhGS63ZlRXe8i6nMlPtk= Subject key identifier: 0A:B7:90:28:73:C4:6B:C7:68:A1:05:D0:61:A6:E3:52:5B:65:5C:B4 Certificate issuer: /CN=A91D3F8E/serialNumber=D40051BC8DDA60C932EE07769AB867BEFA8D42F6 Certificate serial: 019F Authority key identifier: D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F5255EAA3C0811F0AFF79131C4F9AE02.roa Signing time: Wed 28 May 2025 21:16:02 +0000 ROA not before: Wed 28 May 2025 21:16:02 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135341 IP address blocks: 103.238.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.crl rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F8E, serialNumber=D40051BC8DDA60C932EE07769AB867BEFA8D42F6 Validity Not Before: May 28 21:16:02 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68377d12-353e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f4:0e:aa:79:51:4c:bc:df:3a:57:23:92:9e: f5:97:27:88:41:ff:46:e0:c8:32:4a:2f:64:e5:5c: bb:95:2b:af:6e:3e:fe:73:f5:1d:e0:4e:ee:82:c2: 34:a0:50:80:7a:f2:c9:74:c7:87:67:6d:eb:c0:eb: e9:dd:a9:18:3c:f7:f6:26:7e:a7:68:f4:02:60:0f: 9c:e1:f2:14:46:69:27:71:f8:de:e9:14:e0:63:46: 21:cb:6a:5c:fe:b4:9a:29:b1:9a:ff:40:bf:79:28: a5:fd:75:6c:84:9c:c7:1f:68:73:22:6c:ff:a9:cc: b9:b1:33:a7:8b:f8:95:21:2f:dc:a2:d1:8d:32:34: f0:d3:28:37:65:6d:d8:81:d4:44:85:8a:92:7f:1d: b0:30:4e:a6:b2:35:bb:aa:27:4e:57:5f:29:a2:45: 4c:fc:9a:6d:10:ae:ff:a6:e1:10:1e:63:86:44:01: b5:ee:5d:e9:3f:f1:96:e7:2d:f3:1c:cd:ac:85:2c: 53:9e:cc:1f:ac:3b:3e:9d:ee:f0:b3:08:0d:ae:f4: f6:b7:b1:a0:d0:d9:b0:50:9c:3b:28:ed:d4:db:9d: d4:9e:32:82:c5:8e:b2:77:cf:c3:5f:5d:54:d7:77: 3a:c3:c3:cf:fd:ae:fa:93:9f:92:0c:d1:e1:21:5a: 4f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B7:90:28:73:C4:6B:C7:68:A1:05:D0:61:A6:E3:52:5B:65:5C:B4 X509v3 Authority Key Identifier: keyid:D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F5255EAA3C0811F0AFF79131C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.238.115.0/24 Signature Algorithm: sha256WithRSAEncryption b8:99:b7:d2:45:11:b6:f6:2d:90:3c:27:8b:3d:43:83:1b:10: 21:7b:57:19:77:87:87:fa:ec:98:3d:92:39:84:c2:df:d9:22: c7:02:98:d3:98:4c:86:9d:a2:58:44:09:10:8c:15:eb:ba:7f: 1d:f9:c7:38:c2:b7:fb:59:18:ce:55:02:d9:c2:21:c6:4d:e4: ba:e0:5e:72:97:5b:0a:2d:29:6c:e2:52:0e:72:03:df:e9:36: f9:0f:c8:22:87:78:0e:a5:04:33:31:57:5b:a5:39:60:1a:7f: f0:73:22:e1:20:c8:04:01:58:67:e4:fb:68:13:c3:86:24:51: 9e:2c:41:8f:cd:23:00:ac:81:d4:1e:37:c2:5e:d7:ec:be:9a: 1a:91:e8:e9:de:4d:97:e6:5e:b9:87:78:cf:eb:cf:d6:61:e1: e2:3f:c1:55:62:a8:51:2d:89:4d:ac:87:a3:c0:09:81:e8:8c: 39:2d:74:72:cb:c9:ef:8e:41:d5:48:11:bb:3a:98:45:f9:59: c6:83:fc:b7:d1:25:73:b3:5a:1e:13:0c:84:7f:97:cd:6c:08: f9:ff:90:20:12:bd:55:7a:b4:66:ca:ae:24:7a:b2:04:8e:c4: 4a:55:b1:0a:58:00:59:b2:db:03:27:6c:ba:1c:ca:8c:9f:eb: 2c:28:30:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGOEUxMTAvBgNVBAUTKEQ0MDA1MUJDOEREQTYwQzkzMkVFMDc3NjlBQjg2N0JF RkE4RDQyRjYwHhcNMjUwNTI4MjExNjAyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM3N2QxMi0zNTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofQOqnlRTLzfOlcjkp71lyeIQf9G4MgySi9k5Vy7lSuvbj7+c/Ud4E7ugsI0 oFCAevLJdMeHZ23rwOvp3akYPPf2Jn6naPQCYA+c4fIURmkncfje6RTgY0Yhy2pc /rSaKbGa/0C/eSil/XVshJzHH2hzImz/qcy5sTOni/iVIS/cotGNMjTw0yg3ZW3Y gdREhYqSfx2wME6msjW7qidOV18pokVM/JptEK7/puEQHmOGRAG17l3pP/GW5y3z HM2shSxTnswfrDs+ne7wswgNrvT2t7Gg0NmwUJw7KO3U253UnjKCxY6yd8/DX11U 13c6w8PP/a76k5+SDNHhIVpPswIDAQABo4IClTCCApEwHQYDVR0OBBYEFAq3kChz xGvHaKEF0GGm41JbZVy0MB8GA1UdIwQYMBaAFNQAUbyN2mDJMu4Hdpq4Z776jUL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y4RS82QzQwODlCQTIx NkMxMUVFQjI4QkYyNENDNEY5QUUwMi8xQUJSdkkzYVlNa3k3Z2QybXJobnZ2cU5R dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBQlJ2STNhWU1reTdnZDJtcmhudnZxTlF2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNGOEUvNkM0MDg5QkEyMTZDMTFFRUIyOEJGMjRDQzRGOUFFMDIvRjUyNTVFQUEz QzA4MTFGMEFGRjc5MTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn7nMwDQYJKoZIhvcNAQELBQADggEBALiZt9JFEbb2LZA8 J4s9Q4MbECF7Vxl3h4f67Jg9kjmEwt/ZIscCmNOYTIadolhECRCMFeu6fx35xzjC t/tZGM5VAtnCIcZN5LrgXnKXWwotKWziUg5yA9/pNvkPyCKHeA6lBDMxV1ulOWAa f/BzIuEgyAQBWGfk+2gTw4YkUZ4sQY/NIwCsgdQeN8Je1+y+mhqR6OneTZfmXrmH eM/rz9Zh4eI/wVViqFEtiU2sh6PACYHojDktdHLLye+OQdVIEbs6mEX5WcaD/LfR JXOzWh4TDIR/l81sCPn/kCASvVV6tGbKriR6sgSOxEpVsQpYAFmy2wMnbLocyoyf 6ywoMIY= -----END CERTIFICATE-----Generated at Mon Jun 2 07:08:48 2025 by rpki-client