$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA867/816E7462197F11EF8D16684FC4F9AE02/7EB19CF81E5811EF8E8F0D3CC4F9AE02.roa File: 7EB19CF81E5811EF8E8F0D3CC4F9AE02.roa (raw, json) Hash identifier: zdRcs/c3Qf+J5jNCXqRvg7j/o5uxm8uN2Ag/dP0TR80= Subject key identifier: 53:26:CA:72:DD:8E:53:3E:04:A8:36:88:6D:5E:86:A8:AB:C1:40:2F Certificate issuer: /CN=A91BA867/serialNumber=75A40CED24ACAD62C58AB28EA0E0F7C5E5E1C788 Certificate serial: C9 Authority key identifier: 75:A4:0C:ED:24:AC:AD:62:C5:8A:B2:8E:A0:E0:F7:C5:E5:E1:C7:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daQM7SSsrWLFirKOoOD3xeXhx4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA867/816E7462197F11EF8D16684FC4F9AE02/7EB19CF81E5811EF8E8F0D3CC4F9AE02.roa Signing time: Sun 11 May 2025 04:46:28 +0000 ROA not before: Sun 11 May 2025 04:46:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152712 IP address blocks: 103.49.122.0/23 maxlen: 23 103.49.122.0/24 maxlen: 24 103.49.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA867/816E7462197F11EF8D16684FC4F9AE02/daQM7SSsrWLFirKOoOD3xeXhx4g.crl rsync://rpki.apnic.net/member_repository/A91BA867/816E7462197F11EF8D16684FC4F9AE02/daQM7SSsrWLFirKOoOD3xeXhx4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daQM7SSsrWLFirKOoOD3xeXhx4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA867, serialNumber=75A40CED24ACAD62C58AB28EA0E0F7C5E5E1C788 Validity Not Before: May 11 04:46:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68202ba4-d64e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a2:0d:08:4f:9b:f4:29:0b:d2:58:63:e4:fd: ac:18:19:c2:af:c5:e7:c2:26:7f:36:0c:a6:a6:cc: cf:ee:38:d2:b2:8d:b2:02:f0:c3:62:86:32:c1:93: 75:e5:c4:2e:12:bc:3f:6b:cd:0d:8f:d3:00:54:f8: b1:da:eb:d6:71:a7:aa:ee:24:e8:87:c4:5c:c6:c5: 26:50:c2:f7:e9:e4:1e:4f:2c:fe:08:cd:88:2c:67: 3c:af:56:1d:7c:0f:0b:e4:88:05:db:e7:e0:40:d5: 33:5a:f5:76:c1:b0:80:78:21:19:85:6a:9b:f6:c0: ac:c1:b9:83:76:df:e4:a4:d1:af:a2:29:a1:c2:58: 13:db:b9:16:31:a7:b2:57:1f:c0:70:76:25:e8:65: 8e:c5:35:5b:cd:82:c2:f5:ac:fc:b9:d8:86:5c:27: bf:36:98:95:86:ed:dc:91:62:1b:bd:06:50:e3:89: 1e:a6:b9:ee:82:5b:af:e6:df:69:38:2d:57:8c:15: 3c:c7:10:25:25:0e:9f:d5:66:7e:b3:4f:0f:ce:5a: 35:00:26:dc:5c:07:f2:db:cc:c0:38:b3:17:6a:c4: ae:d7:0c:e9:24:cc:a5:87:25:33:36:29:2a:d2:4a: 37:fb:1e:35:2a:6c:fc:f1:60:87:f4:f7:22:c1:91: 42:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:26:CA:72:DD:8E:53:3E:04:A8:36:88:6D:5E:86:A8:AB:C1:40:2F X509v3 Authority Key Identifier: keyid:75:A4:0C:ED:24:AC:AD:62:C5:8A:B2:8E:A0:E0:F7:C5:E5:E1:C7:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA867/816E7462197F11EF8D16684FC4F9AE02/daQM7SSsrWLFirKOoOD3xeXhx4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daQM7SSsrWLFirKOoOD3xeXhx4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA867/816E7462197F11EF8D16684FC4F9AE02/7EB19CF81E5811EF8E8F0D3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.122.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:00:ec:ec:24:e1:0c:26:4e:5f:73:ce:06:2f:4c:53:c4:33: df:45:d3:7c:75:24:ca:a5:59:4b:de:1f:71:e1:cd:c4:b7:9a: 97:5f:b7:65:e9:5f:92:87:82:5e:1a:4e:5d:9f:ab:09:e6:72: 91:71:18:09:f2:f1:bd:97:ef:cc:4a:ed:53:d9:41:3e:9b:fc: 0d:ca:26:dd:24:29:d0:0d:7d:b2:a3:c6:ad:68:4c:55:7d:9d: 0b:99:d5:a0:8d:31:7f:66:cc:33:9f:c0:e2:cd:d8:6e:8a:52: 7b:1f:a6:ea:83:f3:52:c8:64:c6:a1:3e:64:7a:26:99:6a:c0: 3c:c2:c6:b6:b6:7d:d6:d4:fc:76:0c:a0:08:7a:86:a3:bc:f6: eb:34:4b:52:54:f4:95:aa:15:5a:dc:72:25:b9:a4:ca:34:34: 07:38:83:46:de:fc:ab:17:dd:27:0e:80:04:60:2f:70:0d:1f: 8e:1f:c5:92:74:84:c4:69:ce:63:9b:f7:b0:73:52:15:c0:d2: eb:a7:9e:db:b8:d8:80:97:e3:1b:96:78:2b:fa:a8:48:6c:8a: 77:30:f0:93:5d:04:c4:f4:ff:4a:78:cf:78:9b:36:47:04:a1: 09:15:30:b8:72:c6:89:33:bd:ba:34:a3:87:ee:b8:24:cf:90: 5c:5e:99:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4NjcxMTAvBgNVBAUTKDc1QTQwQ0VEMjRBQ0FENjJDNThBQjI4RUEwRTBGN0M1 RTVFMUM3ODgwHhcNMjUwNTExMDQ0NjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIwMmJhNC1kNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qINCE+b9CkL0lhj5P2sGBnCr8XnwiZ/NgympszP7jjSso2yAvDDYoYywZN1 5cQuErw/a80Nj9MAVPix2uvWcaeq7iToh8RcxsUmUML36eQeTyz+CM2ILGc8r1Yd fA8L5IgF2+fgQNUzWvV2wbCAeCEZhWqb9sCswbmDdt/kpNGvoimhwlgT27kWMaey Vx/AcHYl6GWOxTVbzYLC9az8udiGXCe/NpiVhu3ckWIbvQZQ44keprnugluv5t9p OC1XjBU8xxAlJQ6f1WZ+s08Pzlo1ACbcXAfy28zAOLMXasSu1wzpJMylhyUzNikq 0ko3+x41Kmz88WCH9PciwZFC/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFMmynLd jlM+BKg2iG1ehqirwUAvMB8GA1UdIwQYMBaAFHWkDO0krK1ixYqyjqDg98Xl4ceI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTg2Ny84MTZFNzQ2MjE5 N0YxMUVGOEQxNjY4NEZDNEY5QUUwMi9kYVFNN1NTc3JXTEZpcktPb09EM3hlWGh4 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RhUU03U1NzcldMRmlyS09vT0QzeGVYaHg0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE4NjcvODE2RTc0NjIxOTdGMTFFRjhEMTY2ODRGQzRGOUFFMDIvN0VCMTlDRjgx RTU4MTFFRjhFOEYwRDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMXowDQYJKoZIhvcNAQELBQADggEBAH4A7Owk4QwmTl9z zgYvTFPEM99F03x1JMqlWUveH3HhzcS3mpdft2XpX5KHgl4aTl2fqwnmcpFxGAny 8b2X78xK7VPZQT6b/A3KJt0kKdANfbKjxq1oTFV9nQuZ1aCNMX9mzDOfwOLN2G6K UnsfpuqD81LIZMahPmR6JplqwDzCxra2fdbU/HYMoAh6hqO89us0S1JU9JWqFVrc ciW5pMo0NAc4g0be/KsX3ScOgARgL3ANH44fxZJ0hMRpzmOb97BzUhXA0uunntu4 2ICX4xuWeCv6qEhsincw8JNdBMT0/0p4z3ibNkcEoQkVMLhyxokzvbo0o4fuuCTP kFxemX4= -----END CERTIFICATE-----Generated at Thu May 15 19:23:30 2025 by rpki-client