$ rpki-client -vvf rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/12C3076850E111F09D297C74C4F9AE02.roa File: 12C3076850E111F09D297C74C4F9AE02.roa (raw, json) Hash identifier: ZUF20y6+jkSbAkxDsa20v45IvcAwVMI0vsh92LZHtlw= Subject key identifier: 05:A8:53:82:2B:81:CB:59:7C:E7:75:7F:F0:17:54:F3:D7:1A:37:09 Certificate issuer: /CN=A91A19C8/serialNumber=FEEA61439A3098B85CCB183B5A41AA12AF45CA1E Certificate serial: 07D5 Authority key identifier: FE:EA:61:43:9A:30:98:B8:5C:CB:18:3B:5A:41:AA:12:AF:45:CA:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_uphQ5owmLhcyxg7WkGqEq9Fyh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/12C3076850E111F09D297C74C4F9AE02.roa Signing time: Tue 24 Jun 2025 09:53:26 +0000 ROA not before: Tue 24 Jun 2025 09:53:26 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134734 IP address blocks: 103.156.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/_uphQ5owmLhcyxg7WkGqEq9Fyh4.crl rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/_uphQ5owmLhcyxg7WkGqEq9Fyh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_uphQ5owmLhcyxg7WkGqEq9Fyh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2005 (0x7d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A19C8, serialNumber=FEEA61439A3098B85CCB183B5A41AA12AF45CA1E Validity Not Before: Jun 24 09:53:26 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=685a7596-3404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:84:04:dc:e2:76:e7:28:ce:a3:54:33:37:48: 2c:4c:5d:f1:48:57:a8:aa:ba:d9:9a:2a:20:e9:76: a2:d0:63:6a:bd:46:a9:c8:f4:f7:03:d3:dc:c5:88: 8b:2d:d9:63:f4:8a:04:cc:fe:95:0f:15:bd:76:c8: ea:59:f7:22:e9:f4:77:4c:e4:99:c4:78:1e:7a:6d: 61:56:d9:a7:b3:87:36:f8:fb:9f:44:be:7c:e3:03: 9a:fc:b5:5c:3e:6c:f8:6a:47:40:94:44:db:6d:49: 02:91:f9:4e:22:9c:38:80:fb:50:a3:de:2c:13:fa: be:8f:46:14:07:de:0c:10:88:cd:c3:d3:88:08:51: 55:ae:7e:aa:42:55:35:f2:a0:9c:c2:56:a3:8a:37: 6c:f3:e1:75:f2:63:16:e9:32:03:2e:81:0d:71:82: e0:cc:c3:3e:7b:88:56:0c:72:6c:0d:c6:91:af:6d: c0:97:96:67:6f:c8:3a:b9:fc:7d:13:0c:b5:7b:d3: f3:bb:7a:dd:c1:a1:b2:ce:36:09:84:e9:ab:e2:f8: 46:c8:02:b3:a0:c8:c7:04:23:1d:30:af:4b:8e:3b: c2:cd:53:1e:62:13:a3:62:42:34:91:a7:9e:97:ec: 57:c3:42:ab:39:a9:3a:cf:ba:67:bc:6c:61:7d:a0: c8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A8:53:82:2B:81:CB:59:7C:E7:75:7F:F0:17:54:F3:D7:1A:37:09 X509v3 Authority Key Identifier: keyid:FE:EA:61:43:9A:30:98:B8:5C:CB:18:3B:5A:41:AA:12:AF:45:CA:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/_uphQ5owmLhcyxg7WkGqEq9Fyh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_uphQ5owmLhcyxg7WkGqEq9Fyh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/12C3076850E111F09D297C74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.176.0/24 Signature Algorithm: sha256WithRSAEncryption 77:f3:99:84:c2:73:1e:aa:16:7e:f3:a4:b2:80:b5:ae:40:8c: f3:31:3b:ea:c0:00:84:31:c8:be:9a:37:f0:c9:bf:8e:ed:58: e5:cd:4c:80:e4:70:7c:0a:6a:75:81:2b:e6:d1:46:29:b7:ed: 66:1e:b4:98:32:98:9f:bb:fa:a1:47:27:31:27:a1:44:5b:c6: f9:09:d5:3a:7c:fb:51:41:e5:3a:4f:ce:80:7b:89:68:cc:da: 44:e9:39:58:48:44:da:13:bb:4d:0d:00:1e:ce:4c:2f:44:02: 42:03:f2:7c:5a:eb:74:a5:8a:b2:b9:24:9a:15:db:8e:1f:29: 24:46:a7:7e:a6:98:20:2e:8b:a9:92:90:f1:e8:9d:ad:78:b6: 31:a9:75:71:db:18:3e:c6:58:80:fe:ab:a8:3c:99:bd:b9:cc: aa:e7:27:42:e3:6d:2e:4b:b9:58:e3:dd:00:da:7e:79:5d:a0: 29:1d:18:ab:82:4a:94:bc:08:17:98:c0:73:48:c1:5a:ed:bd: 08:8c:ff:85:91:63:d6:89:d9:16:0d:40:76:1d:3a:36:ec:11: ac:86:3f:15:e6:c8:81:53:f1:b2:6f:21:45:8c:d1:0d:92:81: 1f:05:51:1d:bf:dc:fd:21:f8:52:c8:bd:e6:3d:38:61:ab:0f: 06:ed:54:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE5QzgxMTAvBgNVBAUTKEZFRUE2MTQzOUEzMDk4Qjg1Q0NCMTgzQjVBNDFBQTEy QUY0NUNBMUUwHhcNMjUwNjI0MDk1MzI2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhNzU5Ni0zNDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14QE3OJ25yjOo1QzN0gsTF3xSFeoqrrZmiog6Xai0GNqvUapyPT3A9PcxYiL Ldlj9IoEzP6VDxW9dsjqWfci6fR3TOSZxHgeem1hVtmns4c2+PufRL584wOa/LVc Pmz4akdAlETbbUkCkflOIpw4gPtQo94sE/q+j0YUB94MEIjNw9OICFFVrn6qQlU1 8qCcwlajijds8+F18mMW6TIDLoENcYLgzMM+e4hWDHJsDcaRr23Al5Znb8g6ufx9 Ewy1e9Pzu3rdwaGyzjYJhOmr4vhGyAKzoMjHBCMdMK9LjjvCzVMeYhOjYkI0kaee l+xXw0KrOak6z7pnvGxhfaDIvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAWoU4Ir gctZfOd1f/AXVPPXGjcJMB8GA1UdIwQYMBaAFP7qYUOaMJi4XMsYO1pBqhKvRcoe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTlDOC9GNUE1RUVBQTAx NDExMUVCQTMzRjhFMTFDNEY5QUUwMi9fdXBoUTVvd21MaGN5eGc3V2tHcUVxOUZ5 aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL191cGhRNW93bUxoY3l4ZzdXa0dxRXE5RnloNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE5QzgvRjVBNUVFQUEwMTQxMTFFQkEzM0Y4RTExQzRGOUFFMDIvMTJDMzA3Njg1 MEUxMTFGMDlEMjk3Qzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnLAwDQYJKoZIhvcNAQELBQADggEBAHfzmYTCcx6qFn7z pLKAta5AjPMxO+rAAIQxyL6aN/DJv47tWOXNTIDkcHwKanWBK+bRRim37WYetJgy mJ+7+qFHJzEnoURbxvkJ1Tp8+1FB5TpPzoB7iWjM2kTpOVhIRNoTu00NAB7OTC9E AkID8nxa63SlirK5JJoV244fKSRGp36mmCAui6mSkPHona14tjGpdXHbGD7GWID+ q6g8mb25zKrnJ0LjbS5LuVjj3QDafnldoCkdGKuCSpS8CBeYwHNIwVrtvQiM/4WR Y9aJ2RYNQHYdOjbsEayGPxXmyIFT8bJvIUWM0Q2SgR8FUR2/3P0h+FLIveY9OGGr DwbtVG4= -----END CERTIFICATE-----Generated at Thu Jul 3 11:25:34 2025 by rpki-client