$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/1ACA9A7011BC11EBA0759F52C4F9AE02.roa File: 1ACA9A7011BC11EBA0759F52C4F9AE02.roa (raw, json) Hash identifier: zjlq2ekKMTnUOjERgfYF5liArI/9QWMkqCcAkQ/TQ2E= Subject key identifier: 25:D2:A7:65:FC:B0:BD:BE:73:15:8C:42:AE:8D:0A:06:D4:A1:E5:B7 Certificate issuer: /CN=A91D9F5A/serialNumber=EBBB473D170B6B8306D1E16C8B952334ADD40F10 Certificate serial: 07A1 Authority key identifier: EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/1ACA9A7011BC11EBA0759F52C4F9AE02.roa Signing time: Wed 02 Jul 2025 22:01:52 +0000 ROA not before: Wed 02 Jul 2025 22:01:52 +0000 ROA not after: Sat 01 Nov 2025 00:00:00 +0000 asID: 64271 IP address blocks: 103.147.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=EBBB473D170B6B8306D1E16C8B952334ADD40F10 Validity Not Before: Jul 2 22:01:52 2025 GMT Not After : Nov 1 00:00:00 2025 GMT Subject: CN=6865ac50-6902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:c2:e2:a7:be:a7:42:44:f2:26:6c:38:e2: 00:79:f4:aa:0b:09:18:ed:d7:cc:da:6c:cf:c8:d7: 77:4b:84:df:f0:f4:21:52:03:d6:e1:c8:8a:a4:ed: 43:da:e5:7a:c8:7f:f0:e0:16:cc:75:3c:fb:6e:df: b4:1e:83:b7:8e:0a:4a:46:04:af:9f:50:c0:8c:22: 53:df:b8:2c:78:71:22:5d:2b:63:b1:d6:ea:44:37: 19:02:50:d8:b6:28:58:c6:70:c3:0f:86:c1:1b:f9: 20:f8:47:2d:03:3f:57:29:45:c2:0c:81:58:27:3f: d8:6f:5e:cd:78:01:59:d1:75:de:77:2c:b3:f9:19: 4b:92:a4:87:89:dd:0a:81:c5:b7:dc:b3:1a:d8:d9: 91:ea:cc:0f:74:12:a7:71:e9:34:6a:61:59:9c:21: 88:c9:5f:b0:07:cf:87:d4:73:d7:86:cd:aa:51:f0: bd:ca:3c:31:b6:3b:32:8c:3a:65:fb:ce:82:d4:4e: 38:8c:4a:b5:0c:fd:e4:42:2e:79:03:d2:8b:18:41: 21:2f:98:87:49:29:bd:0d:7e:69:2d:73:3f:60:27: 6f:f1:6e:a8:ce:ce:84:94:f1:68:f6:6f:ae:b8:8b: db:21:32:69:9b:cb:bf:a0:3b:ea:96:7b:3e:28:81: 6b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D2:A7:65:FC:B0:BD:BE:73:15:8C:42:AE:8D:0A:06:D4:A1:E5:B7 X509v3 Authority Key Identifier: keyid:EB:BB:47:3D:17:0B:6B:83:06:D1:E1:6C:8B:95:23:34:AD:D4:0F:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/67tHPRcLa4MG0eFsi5UjNK3UDxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67tHPRcLa4MG0eFsi5UjNK3UDxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/1ACA9A7011BC11EBA0759F52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.198.0/23 Signature Algorithm: sha256WithRSAEncryption 18:32:00:c6:e7:e9:01:07:fe:bf:dc:6d:fb:86:7d:6a:f1:65: ec:87:f4:eb:f8:43:35:70:e5:6c:cc:f6:75:05:81:23:86:14: 9e:8e:e0:83:94:41:6d:c4:fa:9f:f9:16:41:21:6c:8c:6f:a7: 9b:44:8e:62:78:88:33:79:94:c8:47:17:b1:d6:6c:d5:3a:f2: f9:54:c5:83:80:b9:98:4b:83:7a:45:99:5d:fa:c5:8a:64:c8: 7f:a8:02:df:aa:6b:d2:6a:96:79:21:4c:6c:35:b7:31:5f:d8: d7:a1:4a:94:34:05:5c:35:6b:4f:9f:9a:9f:12:ea:ca:6e:b1: 48:a5:0e:b2:6c:69:e4:ff:ea:95:c2:8e:8b:97:4c:42:2b:6d: 6e:05:40:d9:a9:53:82:60:d5:89:84:03:2a:ec:65:1e:ba:0b: ea:34:a3:25:68:e2:91:12:cf:88:23:24:c6:f4:e0:7a:7b:50: 6f:eb:cb:d1:43:77:5e:d2:77:28:bf:d3:06:6d:76:33:92:2d: b1:e5:cb:10:c0:a6:b4:35:f6:07:4f:cd:7c:7c:dc:93:7d:7b: d4:94:cd:1e:df:bb:fd:ad:49:12:88:57:7d:59:ce:97:66:50: ea:bb:a4:25:f8:a0:cf:68:0e:ba:8a:72:1f:13:be:bd:20:40: e5:91:00:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGNUExMTAvBgNVBAUTKEVCQkI0NzNEMTcwQjZCODMwNkQxRTE2QzhCOTUyMzM0 QURENDBGMTAwHhcNMjUwNzAyMjIwMTUyWhcNMjUxMTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YWM1MC02OTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2w7C4qe+p0JE8iZsOOIAefSqCwkY7dfM2mzPyNd3S4Tf8PQhUgPW4ciKpO1D 2uV6yH/w4BbMdTz7bt+0HoO3jgpKRgSvn1DAjCJT37gseHEiXStjsdbqRDcZAlDY tihYxnDDD4bBG/kg+EctAz9XKUXCDIFYJz/Yb17NeAFZ0XXedyyz+RlLkqSHid0K gcW33LMa2NmR6swPdBKncek0amFZnCGIyV+wB8+H1HPXhs2qUfC9yjwxtjsyjDpl +86C1E44jEq1DP3kQi55A9KLGEEhL5iHSSm9DX5pLXM/YCdv8W6ozs6ElPFo9m+u uIvbITJpm8u/oDvqlns+KIFrnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCXSp2X8 sL2+cxWMQq6NCgbUoeW3MB8GA1UdIwQYMBaAFOu7Rz0XC2uDBtHhbIuVIzSt1A8Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUY1QS8wODk4QjIzQTEx QkExMUVCQkMxQTU4NENDNEY5QUUwMi82N3RIUFJjTGE0TUcwZUZzaTVVak5LM1VE eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3dEhQUmNMYTRNRzBlRnNpNVVqTkszVUR4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDlGNUEvMDg5OEIyM0ExMUJBMTFFQkJDMUE1ODRDQzRGOUFFMDIvMUFDQTlBNzAx MUJDMTFFQkEwNzU5RjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnk8YwDQYJKoZIhvcNAQELBQADggEBABgyAMbn6QEH/r/c bfuGfWrxZeyH9Ov4QzVw5WzM9nUFgSOGFJ6O4IOUQW3E+p/5FkEhbIxvp5tEjmJ4 iDN5lMhHF7HWbNU68vlUxYOAuZhLg3pFmV36xYpkyH+oAt+qa9JqlnkhTGw1tzFf 2NehSpQ0BVw1a0+fmp8S6spusUilDrJsaeT/6pXCjouXTEIrbW4FQNmpU4Jg1YmE AyrsZR66C+o0oyVo4pESz4gjJMb04Hp7UG/ry9FDd17Sdyi/0wZtdjOSLbHlyxDA prQ19gdPzXx83JN9e9SUzR7fu/2tSRKIV31ZzpdmUOq7pCX4oM9oDrqKch8Tvr0g QOWRAEQ= -----END CERTIFICATE-----Generated at Thu Jul 3 13:14:24 2025 by rpki-client