$ rpki-client -vvf rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/5149E2D2320411F0A7F47652C4F9AE02.roa File: 5149E2D2320411F0A7F47652C4F9AE02.roa (raw, json) Hash identifier: HH3GlG7L/oizFHurekpyH+8XRzajvV/dWmWXqsnoI54= Subject key identifier: 8E:52:77:C9:0B:E7:39:B4:C0:5C:70:8F:14:31:A3:68:8C:76:CA:D3 Certificate issuer: /CN=A91B88CA/serialNumber=F625E6CC039026FF5BC9D6BDC42D8D1C18ABF33B Certificate serial: E1 Authority key identifier: F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/5149E2D2320411F0A7F47652C4F9AE02.roa Signing time: Fri 16 May 2025 03:18:27 +0000 ROA not before: Fri 16 May 2025 03:18:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 401371 IP address blocks: 103.67.52.0/23 maxlen: 23 103.67.52.0/24 maxlen: 24 103.67.53.0/24 maxlen: 24 2403:1a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 03:35:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B88CA, serialNumber=F625E6CC039026FF5BC9D6BDC42D8D1C18ABF33B Validity Not Before: May 16 03:18:27 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6826ae83-9d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:46:b4:84:82:d2:4b:7e:a6:c6:36:e0:9b:be: 47:f4:37:d7:38:26:1c:43:5a:07:6e:b3:a0:87:a6: 40:f1:68:0b:ae:78:8b:71:4b:0a:03:43:50:2b:93: 63:86:87:94:06:3a:a5:4c:14:b7:03:74:f4:01:0f: 9d:06:65:0c:99:96:07:e1:cb:ef:13:0f:51:af:1e: b4:b2:fc:e7:32:6b:22:9b:24:4e:62:93:e5:8a:85: e1:31:b8:bb:06:d4:ef:7c:72:6b:87:7b:8e:cd:a6: 60:24:9d:d5:7f:c7:b7:1c:7c:97:5a:9c:35:da:c2: ae:25:69:3a:1d:3b:31:62:bc:6f:df:c0:ee:58:26: d0:d7:0c:8c:11:2b:ca:50:b5:fc:84:01:f0:9c:51: ec:ad:51:a1:df:b3:44:82:80:e5:07:45:5a:ab:01: 04:02:f7:0f:63:06:2a:43:63:fb:14:43:8a:a1:f1: d0:a5:9b:b9:36:05:a4:05:5d:c1:53:d2:7f:0e:69: af:95:2e:43:16:94:f4:66:19:e0:d6:01:dd:ff:a4: 3f:66:ca:b7:8c:03:03:b6:fe:78:8e:a4:ab:8b:21: 4b:2f:5b:49:2a:b9:94:3b:3d:74:3a:87:ba:d9:56: 21:88:17:f0:35:24:34:83:3e:8b:b2:18:d7:be:91: 17:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:52:77:C9:0B:E7:39:B4:C0:5C:70:8F:14:31:A3:68:8C:76:CA:D3 X509v3 Authority Key Identifier: keyid:F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/5149E2D2320411F0A7F47652C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.52.0/23 IPv6: 2403:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 5b:60:62:e8:30:5e:9d:a0:fc:04:84:35:f1:b9:53:2f:de:44: b4:80:7c:c7:3a:95:e4:cb:49:15:ea:27:01:47:71:4b:5f:7d: 74:91:c5:3c:0d:2d:e0:08:09:83:6d:3c:4b:15:6a:a3:f6:2d: de:f3:36:19:f9:ff:dd:65:cb:b9:40:c1:32:36:a5:18:20:ac: 66:4d:58:e5:c3:6b:c2:a1:2b:c4:7e:dc:66:fb:23:6c:1e:ec: 2b:e9:66:fb:93:41:11:a7:20:7b:bc:02:88:a9:83:52:12:a7: 60:26:b2:db:2b:9f:36:fe:56:7c:23:1e:37:7e:40:2c:ea:54: e1:26:0e:fe:f7:e9:d4:f8:3c:53:ef:f7:46:f8:70:86:34:f8: 3f:29:f4:49:09:81:ad:9f:8b:32:98:32:c1:b4:52:02:97:ee: 68:a7:9c:61:cc:f5:18:ea:d3:37:9d:25:bf:8f:6b:b6:f9:ce: a0:91:d3:e0:5e:76:0b:58:3f:6f:f9:0a:b3:4f:bf:c9:91:b7: 9c:95:9e:fd:8c:96:ee:ba:64:3e:e9:59:15:6e:90:11:8f:10: a7:3b:d1:97:a5:74:ba:f4:8e:f6:66:55:7e:f1:b2:cd:89:56: 89:7d:57:f0:c8:e8:79:88:76:9b:89:4a:42:a6:07:de:a5:d4: 14:a5:4c:af -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg4Q0ExMTAvBgNVBAUTKEY2MjVFNkNDMDM5MDI2RkY1QkM5RDZCREM0MkQ4RDFD MThBQkYzM0IwHhcNMjUwNTE2MDMxODI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI2YWU4My05ZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10a0hILSS36mxjbgm75H9DfXOCYcQ1oHbrOgh6ZA8WgLrniLcUsKA0NQK5Nj hoeUBjqlTBS3A3T0AQ+dBmUMmZYH4cvvEw9Rrx60svznMmsimyROYpPlioXhMbi7 BtTvfHJrh3uOzaZgJJ3Vf8e3HHyXWpw12sKuJWk6HTsxYrxv38DuWCbQ1wyMESvK ULX8hAHwnFHsrVGh37NEgoDlB0VaqwEEAvcPYwYqQ2P7FEOKofHQpZu5NgWkBV3B U9J/DmmvlS5DFpT0Zhng1gHd/6Q/Zsq3jAMDtv54jqSriyFLL1tJKrmUOz10Ooe6 2VYhiBfwNSQ0gz6LshjXvpEX7wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI5Sd8kL 5zm0wFxwjxQxo2iMdsrTMB8GA1UdIwQYMBaAFPYl5swDkCb/W8nWvcQtjRwYq/M7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODhDQS81Njk2RTc0NjM0 NjUxMUVGQUY2REVCNEVDNEY5QUUwMi85aVhtekFPUUp2OWJ5ZGE5eEMyTkhCaXI4 enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlpWG16QU9RSnY5YnlkYTl4QzJOSEJpcjh6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg4Q0EvNTY5NkU3NDYzNDY1MTFFRkFGNkRFQjRFQzRGOUFFMDIvNTE0OUUyRDIz MjA0MTFGMEE3RjQ3NjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnQzQwDQQCAAIwBwMFACQDGkAwDQYJKoZIhvcNAQELBQAD ggEBAFtgYugwXp2g/ASENfG5Uy/eRLSAfMc6leTLSRXqJwFHcUtffXSRxTwNLeAI CYNtPEsVaqP2Ld7zNhn5/91ly7lAwTI2pRggrGZNWOXDa8KhK8R+3Gb7I2we7Cvp ZvuTQRGnIHu8Aoipg1ISp2Amstsrnzb+VnwjHjd+QCzqVOEmDv736dT4PFPv90b4 cIY0+D8p9EkJga2fizKYMsG0UgKX7minnGHM9Rjq0zedJb+Pa7b5zqCR0+BedgtY P2/5CrNPv8mRt5yVnv2Mlu66ZD7pWRVukBGPEKc70ZeldLr0jvZmVX7xss2JVol9 V/DI6HmIdpuJSkKmB96l1BSlTK8= -----END CERTIFICATE-----Generated at Sat May 17 05:47:31 2025 by rpki-client