$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/ECB38BAA5C3211E9816E7981C4F9AE02.roa File: ECB38BAA5C3211E9816E7981C4F9AE02.roa (raw, json) Hash identifier: cCIRQV7ckuHtyIWMyZbPGhi3IsjwZT86WZjPdbGRO6M= Subject key identifier: 7E:66:39:01:4F:5E:3B:BC:3D:48:44:FF:4A:49:35:F7:C8:0D:81:CA Certificate issuer: /CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Certificate serial: 0F9C Authority key identifier: 61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/ECB38BAA5C3211E9816E7981C4F9AE02.roa Signing time: Tue 20 May 2025 18:20:34 +0000 ROA not before: Tue 20 May 2025 18:20:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138972 IP address blocks: 103.137.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3996 (0xf9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA52B, serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Validity Not Before: May 20 18:20:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682cc7f2-93d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4c:3d:47:14:f3:71:e7:7a:d2:fa:77:bd:67: 4f:13:43:eb:15:92:30:22:f7:c1:9e:7b:a6:cd:20: a5:c5:df:1b:bd:8c:87:67:7f:17:13:4f:fe:ac:c4: ee:3c:d3:f1:4b:4e:2d:1e:d0:4c:6c:44:44:29:a6: 55:0c:66:b1:2d:32:09:2e:6a:82:71:5e:cb:52:8d: 25:08:93:d7:c1:40:66:ee:43:99:87:40:79:28:52: 8f:31:3f:7b:50:c5:28:10:95:b2:ab:65:5a:19:18: b0:c1:50:57:af:95:70:c5:a6:a6:1e:b8:4a:a9:07: 8a:0a:9f:95:b4:d0:24:c1:33:d5:41:2e:80:c4:c2: c6:38:b6:18:19:da:df:f6:17:42:4f:26:26:98:e6: 16:5b:2f:eb:3b:72:1e:fd:8d:35:c5:b4:56:2d:b8: 76:b8:67:95:43:cc:a9:f3:5c:5d:95:18:7d:90:31: d9:87:b4:d7:05:e5:ed:9b:fd:24:a4:06:8b:f4:04: 3f:e9:6b:60:fa:c8:77:b5:14:3c:db:f2:3a:7b:35: c5:61:ea:3c:ae:6a:2e:de:22:11:6e:e0:9c:7a:ec: dd:11:d5:8a:52:b6:d2:68:ab:a8:a1:c5:a6:29:d2: e8:91:5e:1f:18:52:ec:6b:fd:54:5e:6b:63:67:13: 87:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:66:39:01:4F:5E:3B:BC:3D:48:44:FF:4A:49:35:F7:C8:0D:81:CA X509v3 Authority Key Identifier: keyid:61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/ECB38BAA5C3211E9816E7981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.244.0/24 Signature Algorithm: sha256WithRSAEncryption 24:0e:ba:65:51:cb:d1:93:dc:24:a1:c5:14:93:fb:d7:1e:49: 88:7a:c1:89:2a:1e:c3:a0:e7:4c:04:2e:4c:9d:76:ac:18:e4: 9f:6e:0f:65:73:9c:aa:50:8d:23:a9:04:f1:9d:91:dd:d8:dd: 81:61:19:f5:08:4a:f4:cd:0e:67:0f:19:98:ce:64:f3:85:74: 8b:bd:ea:d7:94:56:e4:ef:c0:03:22:47:fc:d0:bc:c7:d2:be: 4a:a4:e7:f7:70:83:88:d2:70:6a:aa:5b:9a:82:8a:3d:62:0c: 82:fb:13:eb:90:26:de:c0:2a:63:65:43:59:24:d0:9b:85:ad: be:30:28:ae:e8:a5:89:3d:b9:05:b4:86:0b:20:0c:14:e3:70: e4:0e:06:0d:36:c8:b9:86:7b:30:0d:c7:40:5d:da:4b:a0:ce: ab:ef:9d:7c:4d:28:8b:2b:1b:4b:af:80:0c:f6:b4:da:88:68: 91:50:c8:2e:04:e2:4e:b6:f2:0e:0f:d2:ad:38:d6:e6:b2:1e: 6d:61:55:ff:68:65:d6:ec:f5:c8:c5:f5:01:e0:58:81:a4:90: 89:9f:a3:86:17:69:4b:c8:58:2f:92:80:f0:ed:5f:6e:53:58: be:b4:a9:2b:c2:a8:56:53:f7:c3:9c:a0:13:fc:11:36:74:00: 57:f2:68:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1MkIxMTAvBgNVBAUTKDYxQkVBNkFBMzM4MDY2QzkwRUI1Q0IzMjQwMEM2QUU3 NjA1Qzg4QTQwHhcNMjUwNTIwMTgyMDM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjYzdmMi05M2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkw9RxTzced60vp3vWdPE0PrFZIwIvfBnnumzSClxd8bvYyHZ38XE0/+rMTu PNPxS04tHtBMbEREKaZVDGaxLTIJLmqCcV7LUo0lCJPXwUBm7kOZh0B5KFKPMT97 UMUoEJWyq2VaGRiwwVBXr5VwxaamHrhKqQeKCp+VtNAkwTPVQS6AxMLGOLYYGdrf 9hdCTyYmmOYWWy/rO3Ie/Y01xbRWLbh2uGeVQ8yp81xdlRh9kDHZh7TXBeXtm/0k pAaL9AQ/6Wtg+sh3tRQ82/I6ezXFYeo8rmou3iIRbuCceuzdEdWKUrbSaKuoocWm KdLokV4fGFLsa/1UXmtjZxOH5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFH5mOQFP Xju8PUhE/0pJNffIDYHKMB8GA1UdIwQYMBaAFGG+pqozgGbJDrXLMkAMaudgXIik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTUyQi8yOENCRkIxNDVD MzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpza090Y3N5UUF4cTUyQmNp S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liNm1xak9BWnNrT3Rjc3lRQXhxNTJCY2lLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE1MkIvMjhDQkZCMTQ1QzMyMTFFOUFCNjI0NTgwQzRGOUFFMDIvRUNCMzhCQUE1 QzMyMTFFOTgxNkU3OTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnifQwDQYJKoZIhvcNAQELBQADggEBACQOumVRy9GT3CSh xRST+9ceSYh6wYkqHsOg50wELkyddqwY5J9uD2VznKpQjSOpBPGdkd3Y3YFhGfUI SvTNDmcPGZjOZPOFdIu96teUVuTvwAMiR/zQvMfSvkqk5/dwg4jScGqqW5qCij1i DIL7E+uQJt7AKmNlQ1kk0JuFrb4wKK7opYk9uQW0hgsgDBTjcOQOBg02yLmGezAN x0Bd2kugzqvvnXxNKIsrG0uvgAz2tNqIaJFQyC4E4k628g4P0q041uayHm1hVf9o Zdbs9cjF9QHgWIGkkImfo4YXaUvIWC+SgPDtX25TWL60qSvCqFZT98OcoBP8ETZ0 AFfyaDI= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:22 2025 by rpki-client