$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/7AE355C0A94111EFB4F9A22EC4F9AE02.roa File: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (raw, json) Hash identifier: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA= Subject key identifier: 6B:38:A1:EA:F0:CE:AD:96:C1:4B:DE:D4:1A:82:7D:FA:EE:D9:F3:FF Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0339 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/7AE355C0A94111EFB4F9A22EC4F9AE02.roa Signing time: Sat 03 May 2025 01:37:22 +0000 ROA not before: Sat 03 May 2025 01:37:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38008 IP address blocks: 103.186.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 01:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 825 (0x339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: May 3 01:37:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68157351-a2de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9a:2d:b0:a2:a1:05:70:a5:ed:a6:b9:e6:84: 38:d9:0e:bd:d4:9c:78:61:80:bc:62:65:13:1d:41: 26:00:55:8d:f1:2f:9e:44:be:b7:52:25:d7:18:99: 16:95:e9:7d:fb:9c:bb:5c:6d:e3:0f:e9:a5:93:cf: 4c:eb:44:1e:5e:c7:ea:e1:0f:a7:0a:8d:6b:85:2d: 84:34:4d:ea:e2:ca:01:09:c7:12:5b:c1:a5:20:0f: d2:9a:11:ea:9e:72:3f:b4:80:54:e6:7e:f5:d7:e9: ad:50:11:0f:af:70:21:51:ff:11:59:56:5a:e0:e9: aa:e7:89:5d:38:c3:79:8f:b9:3f:af:c5:ce:bb:ea: fd:6e:e0:b5:cb:75:1c:07:b3:45:1d:d0:32:ad:10: 77:30:26:28:05:fc:ba:3e:8c:55:27:7f:c7:31:cc: 06:c3:2f:0e:ab:2f:7a:27:a9:5b:52:32:5e:97:8b: 20:01:08:50:dc:39:c0:63:5a:69:c2:a8:88:e8:d3: a7:5c:9e:bf:86:28:d2:87:61:77:6d:b4:77:41:dc: 24:81:09:16:07:d6:df:12:75:68:82:46:4e:a8:9a: 69:2d:af:0f:d1:29:58:b6:81:5c:0d:54:97:a2:e2: cc:aa:f9:4c:8d:01:67:38:9a:58:5a:6a:9d:c5:90: 46:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:38:A1:EA:F0:CE:AD:96:C1:4B:DE:D4:1A:82:7D:FA:EE:D9:F3:FF X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/7AE355C0A94111EFB4F9A22EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.162.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:31:6f:b5:65:59:fd:7b:7d:6a:b1:ef:bb:94:62:47:dc:01: e9:44:cc:cc:21:89:e5:25:a5:a6:09:fc:e8:cf:65:49:99:cf: 65:37:34:e0:57:34:4d:bf:03:4b:d2:2f:1a:67:73:c0:88:4a: 7d:6d:c3:0d:8b:e6:0f:4d:52:ae:fe:9c:b5:0e:03:01:6d:78: 19:28:af:16:b5:e8:6d:ca:f0:9a:d4:f7:09:87:a5:52:83:56: bd:59:fd:85:59:ec:c5:5b:4a:66:25:eb:64:f4:c8:1d:59:38: 47:02:b2:f2:b9:dd:38:02:b7:97:3d:fc:62:fe:64:7b:31:1b: 1f:01:32:d1:34:92:4a:15:f4:5a:ab:77:de:05:78:30:f5:58: 66:a9:19:28:cf:10:2f:66:63:2d:92:96:77:ff:0e:bc:f5:a0: 85:5d:f8:f8:d9:96:3f:07:e3:e9:f4:a3:20:72:a4:44:6a:5d: 0b:6b:7b:da:6c:4e:82:e9:68:c2:04:ca:b1:41:6e:72:a0:c7: dd:12:ff:20:f0:be:54:a6:64:08:12:ef:dd:3a:a7:e5:c2:1d: 9e:96:6c:4f:da:88:03:af:b2:c7:a3:f0:45:c8:e5:56:2f:8b: 28:a5:98:6e:30:ca:0a:57:b8:87:a7:21:8d:aa:30:91:21:b1: ab:77:01:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUwNTAzMDEzNzIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1NzM1MS1hMmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55otsKKhBXCl7aa55oQ42Q691Jx4YYC8YmUTHUEmAFWN8S+eRL63UiXXGJkW lel9+5y7XG3jD+mlk89M60QeXsfq4Q+nCo1rhS2ENE3q4soBCccSW8GlIA/SmhHq nnI/tIBU5n711+mtUBEPr3AhUf8RWVZa4Omq54ldOMN5j7k/r8XOu+r9buC1y3Uc B7NFHdAyrRB3MCYoBfy6PoxVJ3/HMcwGwy8Oqy96J6lbUjJel4sgAQhQ3DnAY1pp wqiI6NOnXJ6/hijSh2F3bbR3QdwkgQkWB9bfEnVogkZOqJppLa8P0SlYtoFcDVSX ouLMqvlMjQFnOJpYWmqdxZBGPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGs4oerw zq2WwUve1BqCffru2fP/MB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI1MjcvREQxQUUyRjZDMkFBMTFFQ0FGNUY5Rjc2QzRGOUFFMDIvN0FFMzU1QzBB OTQxMTFFRkI0RjlBMjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnuqIwDQYJKoZIhvcNAQELBQADggEBAB8xb7VlWf17fWqx 77uUYkfcAelEzMwhieUlpaYJ/OjPZUmZz2U3NOBXNE2/A0vSLxpnc8CISn1tww2L 5g9NUq7+nLUOAwFteBkorxa16G3K8JrU9wmHpVKDVr1Z/YVZ7MVbSmYl62T0yB1Z OEcCsvK53TgCt5c9/GL+ZHsxGx8BMtE0kkoV9Fqrd94FeDD1WGapGSjPEC9mYy2S lnf/Drz1oIVd+PjZlj8H4+n0oyBypERqXQtre9psToLpaMIEyrFBbnKgx90S/yDw vlSmZAgS7906p+XCHZ6WbE/aiAOvssej8EXI5VYviyilmG4wygpXuIenIY2qMJEh sat3AX4= -----END CERTIFICATE-----Generated at Sun Jun 8 06:35:22 2025 by rpki-client