$ rpki-client -vvf rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C41221884B6011F092B79129C4F9AE02.roa File: C41221884B6011F092B79129C4F9AE02.roa (raw, json) Hash identifier: 3roNmt7K5VqQHXl17ohr26LZwHHKacsURqWDoDXNWa4= Subject key identifier: F8:AD:62:9E:B9:6A:AE:6D:7B:2C:B1:53:B0:F2:27:2C:04:73:39:46 Certificate issuer: /CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Certificate serial: 0573 Authority key identifier: 45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C41221884B6011F092B79129C4F9AE02.roa Signing time: Tue 17 Jun 2025 09:52:23 +0000 ROA not before: Tue 17 Jun 2025 09:52:23 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 56264 IP address blocks: 103.31.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1395 (0x573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E5DC, serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Validity Not Before: Jun 17 09:52:23 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68513ad6-fdbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:22:e9:d2:aa:e6:f7:9c:3f:8b:b9:60:1f: 9c:aa:82:c9:b7:5b:54:b1:5c:5d:b0:c4:ac:4c:1b: ed:69:f2:ba:28:02:ef:42:00:b3:e2:f0:d8:33:99: 9e:9f:80:1b:92:c6:0d:a9:4b:48:08:10:a0:3d:32: b7:78:d4:70:cf:5c:c3:2a:a6:97:6b:e5:95:e4:7c: 7c:88:31:92:60:22:98:e0:bc:94:f6:d1:e6:38:5d: ac:7f:c9:b6:7e:1d:56:67:0e:a6:f6:07:41:e8:69: 29:0c:df:f6:43:e0:09:8d:c3:51:b7:01:d2:83:c0: a9:12:1f:a6:8d:b8:95:3e:0d:f0:16:b5:34:31:db: 20:c5:b3:45:95:a3:81:96:14:f6:bf:d2:43:87:8b: 5f:d4:c0:69:fd:6e:f5:47:ca:46:21:39:2e:88:f5: 6f:5e:34:db:51:48:38:ca:7f:87:ac:05:85:7b:a4: bb:89:e7:bd:70:e1:b6:03:90:05:64:57:9e:8b:07: d6:13:5d:30:fe:49:b9:d3:54:6e:60:da:0c:44:d5: 25:59:35:65:fe:12:44:f8:c8:7c:3c:a3:41:16:f3: 0f:7d:24:fc:b1:24:fd:43:de:88:67:c1:36:90:02: 39:7a:02:2e:ca:9d:ec:5a:43:16:42:0c:69:2c:63: 56:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:AD:62:9E:B9:6A:AE:6D:7B:2C:B1:53:B0:F2:27:2C:04:73:39:46 X509v3 Authority Key Identifier: keyid:45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C41221884B6011F092B79129C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.210.0/24 Signature Algorithm: sha256WithRSAEncryption 11:7c:ef:60:15:be:2f:f4:58:27:d6:90:97:93:f6:29:89:71: 01:81:55:aa:fc:08:b8:78:0b:42:85:3b:f5:b2:ab:dc:9d:f4: c2:fb:bf:f7:4e:94:a6:8d:a7:f0:03:5b:c1:9d:d8:68:b8:c9: 13:3f:f5:99:19:ae:50:b7:ec:d7:7f:4b:4c:7e:7d:0c:85:af: 0d:0b:e0:3d:b4:4c:66:82:c0:e7:cb:3e:7c:e8:c3:25:c7:65: 2e:40:21:62:5b:57:a1:76:3d:5d:f9:be:55:d3:8b:ca:26:19: 0f:bc:4a:49:08:b9:91:30:b3:89:db:dd:bf:a2:02:46:d8:26: 42:df:52:a7:b1:fe:7d:ea:83:c4:79:e1:fd:99:c8:76:e6:c1: 3d:8c:65:ef:a1:7e:66:f5:79:dc:f9:56:89:09:35:85:3e:6f: 9a:5e:34:a9:0a:9e:5e:63:e1:c7:c0:af:41:04:2e:9e:70:59: f8:1b:33:1b:12:e8:6f:c4:a4:3c:4c:a5:63:4d:ba:21:99:a5: 9a:86:d9:19:e4:ea:fb:7d:a7:38:f2:93:ea:b8:4a:ae:76:0f: 9a:ed:21:e6:e7:bc:0f:bb:ad:bd:8f:e1:d4:f0:a3:a7:ae:0e: cf:25:59:ff:57:32:33:ab:7f:13:1d:45:72:be:8f:cc:1e:a2: 85:27:84:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U1REMxMTAvBgNVBAUTKDQ1MkZBQkJERjA5RERGN0U1NUZEMEY5REJEREQ0Mjc4 RjQ0RkI4ODEwHhcNMjUwNjE3MDk1MjIzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUxM2FkNi1mZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQIi6dKq5vecP4u5YB+cqoLJt1tUsVxdsMSsTBvtafK6KALvQgCz4vDYM5me n4AbksYNqUtICBCgPTK3eNRwz1zDKqaXa+WV5Hx8iDGSYCKY4LyU9tHmOF2sf8m2 fh1WZw6m9gdB6GkpDN/2Q+AJjcNRtwHSg8CpEh+mjbiVPg3wFrU0MdsgxbNFlaOB lhT2v9JDh4tf1MBp/W71R8pGITkuiPVvXjTbUUg4yn+HrAWFe6S7iee9cOG2A5AF ZFeeiwfWE10w/km501RuYNoMRNUlWTVl/hJE+Mh8PKNBFvMPfST8sST9Q96IZ8E2 kAI5egIuyp3sWkMWQgxpLGNW2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPitYp65 aq5teyyxU7DyJywEczlGMB8GA1UdIwQYMBaAFEUvq73wnd9+Vf0Pnb3dQnj0T7iB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTVEQy9CQkUyQjUwMkY4 RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMzNVZfUS1kdmQxQ2VQUlB1 SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTLXJ2ZkNkMzM1Vl9RLWR2ZDFDZVBSUHVJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U1REMvQkJFMkI1MDJGOEVCMTFFQkJFRjVBQTM3QzRGOUFFMDIvQzQxMjIxODg0 QjYwMTFGMDkyQjc5MTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnH9IwDQYJKoZIhvcNAQELBQADggEBABF872AVvi/0WCfW kJeT9imJcQGBVar8CLh4C0KFO/Wyq9yd9ML7v/dOlKaNp/ADW8Gd2Gi4yRM/9ZkZ rlC37Nd/S0x+fQyFrw0L4D20TGaCwOfLPnzowyXHZS5AIWJbV6F2PV35vlXTi8om GQ+8SkkIuZEws4nb3b+iAkbYJkLfUqex/n3qg8R54f2ZyHbmwT2MZe+hfmb1edz5 VokJNYU+b5peNKkKnl5j4cfAr0EELp5wWfgbMxsS6G/EpDxMpWNNuiGZpZqG2Rnk 6vt9pzjyk+q4Sq52D5rtIebnvA+7rb2P4dTwo6euDs8lWf9XMjOrfxMdRXK+j8we ooUnhBQ= -----END CERTIFICATE-----Generated at Thu Jul 3 13:23:10 2025 by rpki-client