$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa File: F7AA5B1CA1DA11EF86B88981C4F9AE02.roa (raw, json) Hash identifier: DGxrKRXPi2bgrxreeXRQjRNOo70ByLeA01zODoILz2c= Subject key identifier: 73:52:40:C7:B0:07:8D:F9:30:00:28:34:AB:DE:84:48:6F:81:11:0E Certificate issuer: /CN=A91DD299/serialNumber=156ED5BF81437C1B71E71CB02EEC27AB18AF79A4 Certificate serial: 6B Authority key identifier: 15:6E:D5:BF:81:43:7C:1B:71:E7:1C:B0:2E:EC:27:AB:18:AF:79:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa Signing time: Sun 01 Jun 2025 06:46:28 +0000 ROA not before: Sun 01 Jun 2025 06:46:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132294 IP address blocks: 103.166.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.crl rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD299, serialNumber=156ED5BF81437C1B71E71CB02EEC27AB18AF79A4 Validity Not Before: Jun 1 06:46:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683bf744-9c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3e:42:af:b8:ee:d9:9b:d8:c8:20:8a:4a:b8: 2d:46:1b:34:4d:c4:ab:77:c8:35:ba:27:36:37:61: e8:03:a4:9b:c3:a1:33:15:ba:c3:04:a5:ec:f3:d5: 2b:50:3e:5e:64:79:ce:04:6c:8b:1a:76:f9:1a:67: c9:54:72:a4:47:a5:5e:1e:00:fb:13:cc:92:79:fb: 78:65:80:4b:5f:0f:92:76:9d:51:e4:69:80:e0:84: eb:08:0a:c2:6c:b0:d9:c0:92:37:43:3f:3d:8e:20: 1b:1b:5a:ed:d7:04:ec:d7:8b:8f:cb:57:bb:74:c3: 4d:1b:0e:e1:9b:58:11:21:0e:bb:66:aa:1e:18:ba: 4a:3c:4e:44:61:de:a1:34:01:3e:86:47:9b:ea:2e: b2:de:84:db:43:20:8c:e4:73:7a:30:43:e4:d2:ad: c3:b2:15:32:61:2b:4a:8e:51:ae:30:d9:5a:df:f7: 86:57:4f:c0:42:f2:bf:ac:35:8d:ed:07:e8:39:af: e9:ae:0c:7e:e0:06:e6:25:b0:39:fa:49:61:cd:50: 0f:85:7e:36:93:67:44:16:87:ea:89:93:01:01:b9: 47:6b:f9:94:c8:59:4b:dc:65:96:b3:a9:5b:ce:ad: bb:6f:7b:6f:42:3e:95:95:fc:38:04:0b:c3:40:31: 83:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:52:40:C7:B0:07:8D:F9:30:00:28:34:AB:DE:84:48:6F:81:11:0E X509v3 Authority Key Identifier: keyid:15:6E:D5:BF:81:43:7C:1B:71:E7:1C:B0:2E:EC:27:AB:18:AF:79:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.47.0/24 Signature Algorithm: sha256WithRSAEncryption 85:ff:fc:ee:10:83:92:8a:a1:13:b4:bc:f8:1c:ac:4d:d7:f2: bc:1c:6a:b1:9e:79:0c:87:e5:09:2e:da:0e:ad:b9:11:21:11: 1d:b7:e6:9b:bf:df:76:24:0d:5f:31:c9:a1:6a:aa:b2:2c:d2: bf:85:b3:7a:e8:f7:61:9a:dc:ab:ef:25:ea:a7:51:81:c8:2a: 3e:4e:c2:24:12:e8:63:21:16:41:6f:e8:86:b3:59:9c:01:12: 89:07:41:83:d2:42:63:9f:b7:ba:92:69:40:a8:d8:bb:07:c6: 13:50:50:09:1a:6a:8d:16:9d:97:af:bc:02:86:3f:3e:e9:68: 11:73:cc:f9:55:5a:25:5b:91:be:ba:35:7b:c1:69:45:ed:35: 57:79:69:d7:f0:dc:ea:cc:31:68:e8:e0:0d:63:86:82:07:2d: cb:26:2a:0e:c6:fb:b8:55:95:7d:ac:a9:57:2e:de:c5:9a:e6: 88:0a:eb:46:82:8a:2c:11:98:78:a9:a3:dc:6c:4b:94:12:65: ac:f5:85:19:0d:db:2b:54:39:dd:26:e5:96:d5:12:26:20:ad: cd:f3:3e:da:d9:8e:dd:3d:26:47:80:cd:ce:64:e2:b2:ef:6f: ec:4c:7f:14:be:2a:78:7f:a5:6e:f5:ea:f9:40:31:a1:eb:98: 96:22:70:47 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDI5OTExMC8GA1UEBRMoMTU2RUQ1QkY4MTQzN0MxQjcxRTcxQ0IwMkVFQzI3QUIx OEFGNzlBNDAeFw0yNTA2MDEwNjQ2MjhaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2JmNzQ0LTljMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9PkKvuO7Zm9jIIIpKuC1GGzRNxKt3yDW6JzY3YegDpJvDoTMVusMEpezz1StQ Pl5kec4EbIsadvkaZ8lUcqRHpV4eAPsTzJJ5+3hlgEtfD5J2nVHkaYDghOsICsJs sNnAkjdDPz2OIBsbWu3XBOzXi4/LV7t0w00bDuGbWBEhDrtmqh4Yuko8TkRh3qE0 AT6GR5vqLrLehNtDIIzkc3owQ+TSrcOyFTJhK0qOUa4w2Vrf94ZXT8BC8r+sNY3t B+g5r+muDH7gBuYlsDn6SWHNUA+FfjaTZ0QWh+qJkwEBuUdr+ZTIWUvcZZazqVvO rbtve29CPpWV/DgEC8NAMYOPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUc1JAx7AH jfkwACg0q96ESG+BEQ4wHwYDVR0jBBgwFoAUFW7Vv4FDfBtx5xywLuwnqxiveaQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMjk5LzVFQjkzQTcyQTFE QTExRUZCMjMzM0E0NUM0RjlBRTAyL0ZXN1Z2NEZEZkJ0eDV4eXdMdXducXhpdmVh US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlc3VnY0RkRmQnR4NXh5d0x1d25xeGl2ZWFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDI5OS81RUI5M0E3MkExREExMUVGQjIzMzNBNDVDNEY5QUUwMi9GN0FBNUIxQ0Ex REExMUVGODZCODg5ODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGemLzANBgkqhkiG9w0BAQsFAAOCAQEAhf/87hCDkoqhE7S8 +BysTdfyvBxqsZ55DIflCS7aDq25ESERHbfmm7/fdiQNXzHJoWqqsizSv4Wzeuj3 YZrcq+8l6qdRgcgqPk7CJBLoYyEWQW/ohrNZnAESiQdBg9JCY5+3upJpQKjYuwfG E1BQCRpqjRadl6+8AoY/PuloEXPM+VVaJVuRvro1e8FpRe01V3lp1/Dc6swxaOjg DWOGggctyyYqDsb7uFWVfaypVy7exZrmiArrRoKKLBGYeKmj3GxLlBJlrPWFGQ3b K1Q53SblltUSJiCtzfM+2tmO3T0mR4DNzmTisu9v7Ex/FL4qeH+lbvXq+UAxoeuY liJwRw== -----END CERTIFICATE-----Generated at Mon Jun 2 06:00:22 2025 by rpki-client