$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa File: 397ED08A2F7911ED93B17C0FC4F9AE02.roa (raw, json) Hash identifier: sO+5ZUlz1ZfgN4m9jGacz4xKmgRg5xQ7WfaHnr5n8EY= Subject key identifier: 2C:EA:36:91:69:95:AB:32:F5:CD:BD:F3:53:93:62:94:DE:FD:B3:6D Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 067C Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa Signing time: Fri 30 May 2025 22:42:37 +0000 ROA not before: Fri 30 May 2025 22:42:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135361 IP address blocks: 103.215.64.0/22 maxlen: 22 103.215.64.0/23 maxlen: 24 103.215.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1660 (0x67c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1, serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: May 30 22:42:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a345d-682e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0c:e2:44:35:ea:84:34:b6:d6:8a:f9:21:ff: 35:7d:bb:27:8a:b0:43:d5:98:3d:9b:9d:48:6e:4d: 17:98:6b:3a:be:4b:2c:5b:e9:c8:ec:ad:1c:1c:f2: cc:5d:20:b6:62:ec:e6:21:ab:75:5c:76:60:e9:37: 0b:24:14:1e:23:50:e9:c9:d1:12:7c:a3:6a:dd:76: 0b:8b:5f:75:f3:55:0c:3c:7a:3f:56:ec:8a:93:7e: 2c:a8:35:54:f9:ae:e2:5c:88:70:96:a8:a8:14:64: f9:49:d3:ae:42:65:c3:30:0f:49:d8:93:c4:7a:c6: a9:0d:1d:bc:fd:f9:b4:ce:6d:51:9c:4b:06:2e:8f: 96:e6:73:8a:f5:6c:a3:08:94:d8:27:2d:a4:5b:f5: 5d:8d:a9:29:c5:62:c7:02:a6:d4:4b:19:68:86:e7: 88:9c:47:10:a8:0a:70:bb:49:20:b8:ad:e1:64:89: ba:ad:50:b0:02:e4:de:ef:e1:60:f9:c4:ec:f1:a3: 91:f8:78:bc:7b:5d:62:71:45:64:74:b7:01:e1:89: ac:f1:31:24:e5:cf:7c:8e:2a:81:48:f4:80:eb:ac: 8f:e9:57:9f:1f:74:40:98:cd:0c:a8:4a:a5:ed:94: a7:b5:94:1b:3c:d2:8c:25:c7:8f:3d:11:f4:d4:c5: 6b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:EA:36:91:69:95:AB:32:F5:CD:BD:F3:53:93:62:94:DE:FD:B3:6D X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.64.0/22 Signature Algorithm: sha256WithRSAEncryption ad:e5:b6:56:ec:16:47:5a:30:4b:8f:52:7e:8e:da:32:45:51: 34:75:dd:b7:96:5d:58:4c:16:2b:7c:b8:b7:b5:16:88:24:47: ab:83:6c:ad:4c:9d:6e:af:67:aa:bc:e7:59:38:c5:f1:84:a2: ee:1c:e6:2a:f0:d0:b8:96:bd:e1:8b:f2:70:d0:ba:ef:a8:25: 77:bc:a9:f3:25:91:73:1e:02:b8:c0:93:b1:86:fd:ed:ef:b9: b7:6f:fc:f0:f7:c3:2f:ff:5b:00:93:93:e3:b9:a0:24:8d:8a: d9:8d:64:c0:c9:bb:38:3c:3c:b1:97:68:79:87:0a:b7:41:27: 0b:74:07:08:47:6b:66:c4:ae:ac:52:82:41:12:85:aa:0a:61: 24:5f:e3:e6:fa:37:d5:07:fd:2b:10:3b:df:8d:bd:ca:45:4b: bf:5c:01:96:11:9a:0e:ab:1d:38:7a:8c:4b:2d:30:bb:7f:c9: ed:73:46:f3:06:bd:98:0e:02:2a:37:68:3a:6c:e6:a0:e4:ad: 0c:ec:88:e4:4d:c8:0a:61:36:dc:50:85:06:45:dd:99:13:a8: d4:b6:1d:8a:94:d4:84:eb:de:55:c7:54:54:3e:b3:c3:73:29: 12:0b:7a:c6:7b:65:1c:c6:30:ff:0a:d2:51:c8:a7:32:61:0c: f5:51:f9:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjUwNTMwMjI0MjM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMzQ1ZC02ODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwziRDXqhDS21or5If81fbsnirBD1Zg9m51Ibk0XmGs6vkssW+nI7K0cHPLM XSC2YuzmIat1XHZg6TcLJBQeI1DpydESfKNq3XYLi19181UMPHo/VuyKk34sqDVU +a7iXIhwlqioFGT5SdOuQmXDMA9J2JPEesapDR28/fm0zm1RnEsGLo+W5nOK9Wyj CJTYJy2kW/VdjakpxWLHAqbUSxlohueInEcQqApwu0kguK3hZIm6rVCwAuTe7+Fg +cTs8aOR+Hi8e11icUVkdLcB4Yms8TEk5c98jiqBSPSA66yP6VefH3RAmM0MqEql 7ZSntZQbPNKMJcePPRH01MVr6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCzqNpFp lasy9c2981OTYpTe/bNtMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYyRTEvM0Y2OUNDNjY3RjAzMTFFQkEwODFBMDJCQzRGOUFFMDIvMzk3RUQwOEEy Rjc5MTFFRDkzQjE3QzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn10AwDQYJKoZIhvcNAQELBQADggEBAK3ltlbsFkdaMEuP Un6O2jJFUTR13beWXVhMFit8uLe1FogkR6uDbK1MnW6vZ6q851k4xfGEou4c5irw 0LiWveGL8nDQuu+oJXe8qfMlkXMeArjAk7GG/e3vubdv/PD3wy//WwCTk+O5oCSN itmNZMDJuzg8PLGXaHmHCrdBJwt0BwhHa2bErqxSgkEShaoKYSRf4+b6N9UH/SsQ O9+NvcpFS79cAZYRmg6rHTh6jEstMLt/ye1zRvMGvZgOAio3aDps5qDkrQzsiORN yAphNtxQhQZF3ZkTqNS2HYqU1ITr3lXHVFQ+s8NzKRILesZ7ZRzGMP8K0lHIpzJh DPVR+X4= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:08 2025 by rpki-client