$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa File: 4D12DEAE2E9311EBB9FC5259C4F9AE02.roa (raw, json) Hash identifier: 7nAwvijUmnaIMOxevk905gWR2HOoFSC7V0ZEJzsRaVE= Subject key identifier: C5:6A:11:13:B7:2F:5A:BB:FC:8C:A6:C9:99:5A:19:C2:38:CE:7C:D9 Certificate issuer: /CN=A91A6B8E/serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Certificate serial: 0756 Authority key identifier: 5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa Signing time: Wed 02 Jul 2025 22:02:34 +0000 ROA not before: Wed 02 Jul 2025 22:02:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136438 IP address blocks: 103.88.24.0/22 maxlen: 22 103.88.24.0/23 maxlen: 23 103.88.24.0/24 maxlen: 24 103.88.25.0/24 maxlen: 24 103.88.26.0/23 maxlen: 23 103.88.26.0/24 maxlen: 24 103.88.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1878 (0x756) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6B8E, serialNumber=5F933D30F247D0419FF0BE0603E16D5C27C40407 Validity Not Before: Jul 2 22:02:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6865ac7a-cda3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:65:a7:3c:a2:c7:c3:8f:28:7e:4f:98:a0: b9:ea:e5:d2:30:95:7e:77:ee:0e:36:b1:75:5b:ce: bd:c6:b1:9e:1a:14:47:1d:eb:1f:6c:58:1c:da:e3: 89:2e:43:fa:0f:f7:64:83:87:1e:10:15:da:ed:0c: e0:f2:41:fe:ea:82:e4:77:aa:b9:a5:0c:1d:5c:46: 6c:af:6b:c9:a2:a9:5d:53:8c:73:de:eb:bb:02:f5: 6b:78:95:58:76:f4:85:00:0a:f7:18:e4:9e:9d:5d: 4d:f1:0a:2a:2a:70:b6:c5:e8:8a:27:3e:51:9f:ff: f8:ad:c5:4a:59:86:da:42:81:89:ca:21:a8:e0:02: d2:95:c1:c0:c4:1e:fd:84:44:7e:17:9a:5b:fd:91: bd:58:4f:dc:12:b7:95:53:91:6b:39:5a:cf:a3:22: d4:7c:2c:59:5c:b8:cb:1e:9a:5b:d1:fb:22:a1:93: a3:05:6b:21:23:1e:93:eb:e5:de:68:52:17:6a:d9: 6d:ea:83:ce:6e:47:18:74:c7:9b:ea:aa:5c:99:07: d2:ab:c4:52:4c:a5:40:88:59:de:1b:3f:42:de:24: 57:6b:cf:5d:47:c6:a6:2e:e7:23:d7:57:98:80:8d: 8f:2f:9b:06:7a:e4:68:52:da:b2:08:4a:6e:26:ba: e9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6A:11:13:B7:2F:5A:BB:FC:8C:A6:C9:99:5A:19:C2:38:CE:7C:D9 X509v3 Authority Key Identifier: keyid:5F:93:3D:30:F2:47:D0:41:9F:F0:BE:06:03:E1:6D:5C:27:C4:04:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/X5M9MPJH0EGf8L4GA-FtXCfEBAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5M9MPJH0EGf8L4GA-FtXCfEBAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6B8E/97A451B62E9111EBA51EE83CC4F9AE02/4D12DEAE2E9311EBB9FC5259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.24.0/22 Signature Algorithm: sha256WithRSAEncryption 48:79:c0:76:5d:6d:9c:7d:09:4f:b9:28:0a:b9:33:b8:f1:86: 4b:9b:50:20:36:de:68:ba:1e:a1:86:52:c8:3b:48:e8:99:f8: 31:e2:82:de:d5:98:ab:8d:6f:13:86:21:0e:6d:f8:66:b5:eb: d8:8d:7a:79:56:82:0a:13:af:c8:8e:d1:4c:bf:cd:50:56:d4: fb:5f:e5:66:09:32:7f:3a:99:7e:c4:45:b1:84:9e:34:19:dd: 15:59:ce:b0:56:53:02:fd:63:90:c3:ff:49:24:a3:0f:93:e7: e6:48:de:fb:01:58:98:79:e6:cc:9b:4f:58:a6:87:55:0a:bc: d4:89:3c:cf:cd:a3:ed:b1:45:d6:1e:1e:8f:c4:4f:f3:2f:68: 18:32:34:4e:97:72:f8:42:d3:27:4a:29:89:4c:49:81:46:cd: 69:b6:2e:1f:e9:c6:c5:10:28:94:74:e9:9d:d4:70:6c:46:5c: d8:7d:54:75:ee:0c:8f:7e:b5:7d:6a:8f:c7:de:67:dc:f4:5f: 41:96:d0:f2:09:fd:bd:53:52:35:d4:59:17:93:40:db:c3:9a: 08:a9:24:d7:37:b4:7f:17:38:d5:1c:a0:25:39:3a:86:63:8e: c9:3b:b1:0b:65:fe:24:d9:dc:44:22:8f:56:08:32:f5:29:3d: 10:96:ff:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZCOEUxMTAvBgNVBAUTKDVGOTMzRDMwRjI0N0QwNDE5RkYwQkUwNjAzRTE2RDVD MjdDNDA0MDcwHhcNMjUwNzAyMjIwMjM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YWM3YS1jZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscFlpzyix8OPKH5PmKC56uXSMJV+d+4ONrF1W869xrGeGhRHHesfbFgc2uOJ LkP6D/dkg4ceEBXa7Qzg8kH+6oLkd6q5pQwdXEZsr2vJoqldU4xz3uu7AvVreJVY dvSFAAr3GOSenV1N8QoqKnC2xeiKJz5Rn//4rcVKWYbaQoGJyiGo4ALSlcHAxB79 hER+F5pb/ZG9WE/cEreVU5FrOVrPoyLUfCxZXLjLHppb0fsioZOjBWshIx6T6+Xe aFIXatlt6oPObkcYdMeb6qpcmQfSq8RSTKVAiFneGz9C3iRXa89dR8amLucj11eY gI2PL5sGeuRoUtqyCEpuJrrpKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMVqERO3 L1q7/IymyZlaGcI4znzZMB8GA1UdIwQYMBaAFF+TPTDyR9BBn/C+BgPhbVwnxAQH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkI4RS85N0E0NTFCNjJF OTExMUVCQTUxRUU4M0NDNEY5QUUwMi9YNU05TVBKSDBFR2Y4TDRHQS1GdFhDZkVC QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g1TTlNUEpIMEVHZjhMNEdBLUZ0WENmRUJBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZCOEUvOTdBNDUxQjYyRTkxMTFFQkE1MUVFODNDQzRGOUFFMDIvNEQxMkRFQUUy RTkzMTFFQkI5RkM1MjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWBgwDQYJKoZIhvcNAQELBQADggEBAEh5wHZdbZx9CU+5 KAq5M7jxhkubUCA23mi6HqGGUsg7SOiZ+DHigt7VmKuNbxOGIQ5t+Ga169iNenlW ggoTr8iO0Uy/zVBW1Ptf5WYJMn86mX7ERbGEnjQZ3RVZzrBWUwL9Y5DD/0kkow+T 5+ZI3vsBWJh55sybT1imh1UKvNSJPM/No+2xRdYeHo/ET/MvaBgyNE6XcvhC0ydK KYlMSYFGzWm2Lh/pxsUQKJR06Z3UcGxGXNh9VHXuDI9+tX1qj8feZ9z0X0GW0PIJ /b1TUjXUWReTQNvDmgipJNc3tH8XONUcoCU5OoZjjsk7sQtl/iTZ3EQij1YIMvUp PRCW/34= -----END CERTIFICATE-----Generated at Thu Jul 3 02:59:16 2025 by rpki-client