$ rpki-client -vvf rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/2157C3E011C211EA93417583C4F9AE02.roa File: 2157C3E011C211EA93417583C4F9AE02.roa (raw, json) Hash identifier: Sb4C6SBlwbEgArJd0mwobbSvCSiB+bY80WW0ZbhEHoI= Subject key identifier: E5:CB:82:C2:17:FE:FF:32:9A:90:95:B0:7C:7A:C1:75:A4:D6:77:30 Certificate issuer: /CN=A91A56E7/serialNumber=347636F0E98AF824826B1BCF96F3C776D812F55B Certificate serial: 0C14 Authority key identifier: 34:76:36:F0:E9:8A:F8:24:82:6B:1B:CF:96:F3:C7:76:D8:12:F5:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHY28OmK-CSCaxvPlvPHdtgS9Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/2157C3E011C211EA93417583C4F9AE02.roa Signing time: Thu 26 Jun 2025 18:42:44 +0000 ROA not before: Thu 26 Jun 2025 18:42:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139197 IP address blocks: 103.139.164.0/23 maxlen: 23 103.139.164.0/24 maxlen: 24 103.139.165.0/24 maxlen: 24 2001:df0:8580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/NHY28OmK-CSCaxvPlvPHdtgS9Vs.crl rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/NHY28OmK-CSCaxvPlvPHdtgS9Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHY28OmK-CSCaxvPlvPHdtgS9Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3092 (0xc14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A56E7, serialNumber=347636F0E98AF824826B1BCF96F3C776D812F55B Validity Not Before: Jun 26 18:42:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685d94a4-32e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8f:3f:00:da:cb:01:04:f5:25:c4:b4:ad:a3: b3:41:23:85:4a:f6:ce:5c:9e:48:c3:21:3b:93:24: fc:1b:9f:93:3c:4c:95:13:5a:ab:7a:f7:13:8d:b2: e6:95:94:66:d6:08:0e:1d:6f:35:04:91:c6:db:d0: 50:07:23:9b:95:b7:80:a8:3c:b0:8c:24:11:7e:3f: a2:b9:6b:2b:ce:d2:48:15:38:d7:03:b8:65:b5:5a: dc:ef:9d:50:a6:0e:1f:a3:f1:2f:f9:c2:a7:56:a7: bd:59:a6:9d:c7:22:13:9b:c8:db:e6:fb:8d:cb:dd: 67:32:ba:df:5d:ba:66:0b:96:a6:8b:99:f1:21:2d: bc:e3:fe:93:e7:9b:28:6b:bd:2b:ca:61:a9:04:2d: 76:39:3c:72:51:fe:52:b2:f5:b8:a8:22:37:74:2e: 36:7a:a2:b4:81:bb:ef:40:fc:a4:bc:ba:50:b9:75: 32:6f:ad:4d:97:c4:fb:92:48:27:00:f8:a7:8b:5d: 15:52:78:be:8e:fa:e0:c9:7e:e8:7e:03:01:fa:4d: fd:88:ed:ef:38:10:a5:32:83:84:18:54:fd:0e:b1: c9:7a:73:6f:73:18:fa:47:81:b1:f9:e2:70:d7:38: f4:97:f4:f5:73:78:7c:9c:a6:a9:ae:12:6e:97:cf: 37:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:CB:82:C2:17:FE:FF:32:9A:90:95:B0:7C:7A:C1:75:A4:D6:77:30 X509v3 Authority Key Identifier: keyid:34:76:36:F0:E9:8A:F8:24:82:6B:1B:CF:96:F3:C7:76:D8:12:F5:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/NHY28OmK-CSCaxvPlvPHdtgS9Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHY28OmK-CSCaxvPlvPHdtgS9Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/2157C3E011C211EA93417583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.164.0/23 IPv6: 2001:df0:8580::/48 Signature Algorithm: sha256WithRSAEncryption b8:64:98:0a:01:f2:e3:b1:2c:5c:59:e5:48:d3:19:f2:e8:5e: e7:1e:7e:e3:34:b7:7a:21:37:df:db:ed:eb:fa:95:ac:c0:d9: 91:34:d8:4c:10:24:a2:49:12:cd:44:74:9e:15:ad:92:ad:81: 0b:b2:21:dd:3f:08:1f:b0:5f:bb:65:d4:01:19:6e:ee:1d:31: 60:a8:de:f7:de:44:3d:a0:a8:ea:f7:29:35:d9:a3:ce:b5:f7: 51:68:74:54:de:38:81:36:54:c5:36:c7:40:d3:71:48:01:c3: 22:c7:bf:fe:57:5d:fd:e9:48:2b:70:e0:c4:ef:96:96:ce:42: 88:b5:9e:5a:12:2c:15:36:dc:14:d2:b3:34:b2:68:42:b2:25: 80:20:c8:82:b2:59:71:f4:67:03:dc:de:52:ba:fc:35:66:d2: 05:36:1b:88:98:6a:2b:5d:63:3d:ec:26:b9:fc:ed:56:e1:3a: c0:66:bd:d7:31:a7:b0:73:3b:47:5c:23:48:3a:0b:41:46:04: 71:4c:87:21:3e:af:80:52:a9:60:c1:46:75:65:af:44:47:6e: d7:a6:0a:fb:26:f6:a8:06:43:54:e1:08:41:bd:e7:4c:08:a9: b2:de:39:da:91:75:6b:6d:08:c7:df:44:f3:eb:a7:ec:d3:f6: 08:82:b3:1d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2RTcxMTAvBgNVBAUTKDM0NzYzNkYwRTk4QUY4MjQ4MjZCMUJDRjk2RjNDNzc2 RDgxMkY1NUIwHhcNMjUwNjI2MTg0MjQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkOTRhNC0zMmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzY8/ANrLAQT1JcS0raOzQSOFSvbOXJ5IwyE7kyT8G5+TPEyVE1qrevcTjbLm lZRm1ggOHW81BJHG29BQByOblbeAqDywjCQRfj+iuWsrztJIFTjXA7hltVrc751Q pg4fo/Ev+cKnVqe9WaadxyITm8jb5vuNy91nMrrfXbpmC5ami5nxIS284/6T55so a70rymGpBC12OTxyUf5SsvW4qCI3dC42eqK0gbvvQPykvLpQuXUyb61Nl8T7kkgn APini10VUni+jvrgyX7ofgMB+k39iO3vOBClMoOEGFT9DrHJenNvcxj6R4Gx+eJw 1zj0l/T1c3h8nKaprhJul883AQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOXLgsIX /v8ympCVsHx6wXWk1ncwMB8GA1UdIwQYMBaAFDR2NvDpivgkgmsbz5bzx3bYEvVb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTZFNy83ODYwRjhCQTEx QzExMUVBODU4RUU2ODJDNEY5QUUwMi9OSFkyOE9tSy1DU0NheHZQbHZQSGR0Z1M5 VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IWTI4T21LLUNTQ2F4dlBsdlBIZHRnUzlWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2RTcvNzg2MEY4QkExMUMxMTFFQTg1OEVFNjgyQzRGOUFFMDIvMjE1N0MzRTAx MUMyMTFFQTkzNDE3NTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFni6QwDwQCAAIwCQMHACABDfCFgDANBgkqhkiG9w0BAQsF AAOCAQEAuGSYCgHy47EsXFnlSNMZ8uhe5x5+4zS3eiE339vt6/qVrMDZkTTYTBAk okkSzUR0nhWtkq2BC7Ih3T8IH7Bfu2XUARlu7h0xYKje995EPaCo6vcpNdmjzrX3 UWh0VN44gTZUxTbHQNNxSAHDIse//ldd/elIK3DgxO+Wls5CiLWeWhIsFTbcFNKz NLJoQrIlgCDIgrJZcfRnA9zeUrr8NWbSBTYbiJhqK11jPewmufztVuE6wGa91zGn sHM7R1wjSDoLQUYEcUyHIT6vgFKpYMFGdWWvREdu16YK+yb2qAZDVOEIQb3nTAip st452pF1a20Ix99E8+un7NP2CIKzHQ== -----END CERTIFICATE-----Generated at Thu Jul 3 01:03:40 2025 by rpki-client