$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/64554290C9F611ED9853C583C4F9AE02.roa File: 64554290C9F611ED9853C583C4F9AE02.roa (raw, json) Hash identifier: OKUbU8IYBtUlB8hYEhyLNWGvkxYq3YMYoLZU29fzMeU= Subject key identifier: 93:4D:D2:4C:50:07:7C:AA:63:76:79:1F:9F:43:05:F6:E7:82:38:D3 Certificate issuer: /CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Certificate serial: 0EE9 Authority key identifier: D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/64554290C9F611ED9853C583C4F9AE02.roa Signing time: Fri 06 Jun 2025 18:21:23 +0000 ROA not before: Fri 06 Jun 2025 18:21:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134739 IP address blocks: 103.138.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 17:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3817 (0xee9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBF7F, serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Validity Not Before: Jun 6 18:21:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684331a3-bcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fe:18:2a:69:b5:c3:2e:f7:f4:17:2e:e3:75: 48:4c:43:a1:df:72:c1:03:2f:23:7a:ff:79:8b:7b: 6d:e2:17:51:ce:1f:5e:fb:c7:0b:bb:ec:c1:70:48: 79:aa:88:23:a8:61:06:71:0e:34:d7:24:7a:9e:1b: 56:70:7e:a2:64:c5:ce:a7:b1:f2:e5:19:06:14:6c: 3e:7d:a4:b0:d3:c8:73:0b:c4:3e:e2:29:58:24:bf: 29:15:5b:37:be:6d:0c:bf:53:a6:da:fe:6a:31:39: b7:2d:b8:9f:c5:42:83:02:99:ef:f6:5c:3b:76:39: 52:46:cf:9d:f9:99:1e:4e:24:c2:a1:70:75:55:55: 0f:25:bb:09:54:d5:a4:f6:d8:d9:d7:fd:c0:b2:35: e5:85:ec:1c:a9:94:4c:63:5e:cb:15:ae:05:a8:88: 37:e2:eb:39:02:c5:96:0f:34:fc:8e:f1:4b:c7:0b: 2a:8b:85:54:e6:ca:45:4b:1f:d7:8e:f5:57:b1:79: d5:7e:ae:90:87:df:b2:be:d2:ec:67:c5:20:14:b5: 53:f8:dd:56:87:b1:6f:92:7e:00:6b:68:95:85:c9: 0c:c8:e7:52:77:e4:b8:10:b7:0d:35:2c:c1:83:79: 8c:d3:82:51:ff:69:01:46:e3:0f:c4:f8:31:73:86: a3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4D:D2:4C:50:07:7C:AA:63:76:79:1F:9F:43:05:F6:E7:82:38:D3 X509v3 Authority Key Identifier: keyid:D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/64554290C9F611ED9853C583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.253.0/24 Signature Algorithm: sha256WithRSAEncryption c5:c4:ad:31:fa:80:25:52:4c:31:f2:21:7b:7d:23:7c:78:e9: ba:83:9a:54:17:8a:73:f2:98:09:b7:51:6e:5c:52:c2:8e:50: f1:22:ff:ad:39:21:0e:e9:fd:18:5d:e7:d5:b4:33:18:11:7a: b3:9d:9c:12:82:1d:7a:66:9b:4e:6f:fc:81:e0:e8:ce:86:54: c6:99:dc:36:2e:b0:17:89:e7:50:ac:bf:bb:40:48:85:a4:3d: ff:56:db:21:44:31:1d:4e:44:c2:fc:19:a5:1e:45:ed:7e:77: 46:1e:fa:5b:b0:f5:12:c8:5a:56:0d:7f:4c:1a:4c:10:bc:dd: 37:f0:b1:09:b5:3d:5a:45:9e:b8:41:86:fb:d7:e2:58:88:d6: 17:15:bb:e7:21:7a:6f:b5:dd:d4:dd:b5:ce:ff:4d:72:ee:71: 0f:b5:c0:c5:6a:c8:72:ba:4e:26:77:4d:a9:9d:2a:ca:11:0d: 51:2a:70:a0:7c:81:3c:21:3a:db:ce:93:2e:59:97:5e:3e:e1: bb:06:77:19:41:1a:f7:b5:e2:2e:8e:da:16:31:1a:a6:1a:51: 93:69:fc:13:6b:d1:df:da:6f:57:95:d0:bc:87:70:bd:73:49: 0e:99:7e:0c:a3:f0:dc:a2:13:0f:09:31:a8:60:d4:ee:be:7e: 60:a7:27:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJGN0YxMTAvBgNVBAUTKEQ1RjZERDYzQzAzODEwNjBBRkZCQzlEMjBFRDMwRjA3 RkJERTg4RUEwHhcNMjUwNjA2MTgyMTIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzMzFhMy1iY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf4YKmm1wy739Bcu43VITEOh33LBAy8jev95i3tt4hdRzh9e+8cLu+zBcEh5 qogjqGEGcQ401yR6nhtWcH6iZMXOp7Hy5RkGFGw+faSw08hzC8Q+4ilYJL8pFVs3 vm0Mv1Om2v5qMTm3LbifxUKDApnv9lw7djlSRs+d+ZkeTiTCoXB1VVUPJbsJVNWk 9tjZ1/3AsjXlhewcqZRMY17LFa4FqIg34us5AsWWDzT8jvFLxwsqi4VU5spFSx/X jvVXsXnVfq6Qh9+yvtLsZ8UgFLVT+N1Wh7Fvkn4Aa2iVhckMyOdSd+S4ELcNNSzB g3mM04JR/2kBRuMPxPgxc4ajsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJNN0kxQ B3yqY3Z5H59DBfbngjjTMB8GA1UdIwQYMBaAFNX23WPAOBBgr/vJ0g7TDwf73ojq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkY3Ri80NTNFQjZGNDg3 NDUxMUU5QkY4NjQ0NUNDNEY5QUUwMi8xZmJkWThBNEVHQ3YtOG5TRHRNUEJfdmVp T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmYmRZOEE0RUdDdi04blNEdE1QQl92ZWlPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJGN0YvNDUzRUI2RjQ4NzQ1MTFFOUJGODY0NDVDQzRGOUFFMDIvNjQ1NTQyOTBD OUY2MTFFRDk4NTNDNTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniv0wDQYJKoZIhvcNAQELBQADggEBAMXErTH6gCVSTDHy IXt9I3x46bqDmlQXinPymAm3UW5cUsKOUPEi/605IQ7p/Rhd59W0MxgRerOdnBKC HXpmm05v/IHg6M6GVMaZ3DYusBeJ51Csv7tASIWkPf9W2yFEMR1ORML8GaUeRe1+ d0Ye+luw9RLIWlYNf0waTBC83TfwsQm1PVpFnrhBhvvX4liI1hcVu+chem+13dTd tc7/TXLucQ+1wMVqyHK6TiZ3TamdKsoRDVEqcKB8gTwhOtvOky5Zl14+4bsGdxlB Gve14i6O2hYxGqYaUZNp/BNr0d/ab1eV0LyHcL1zSQ6Zfgyj8NyiEw8JMahg1O6+ fmCnJ1c= -----END CERTIFICATE-----Generated at Tue Jul 1 03:25:03 2025 by rpki-client