$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa File: 38E45CE08C2511EDB64DB410C4F9AE02.roa (raw, json) Hash identifier: cR87tK+M2QvPpStj15TUAHSw7pMeZSCsKtclKhkYsV4= Subject key identifier: F7:5F:C7:F1:95:8C:CD:4A:FA:06:7D:EB:6B:7E:43:D7:52:45:2A:A5 Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 01F6 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa Signing time: Thu 03 Jul 2025 03:06:49 +0000 ROA not before: Thu 03 Jul 2025 03:06:49 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 131471 IP address blocks: 103.152.42.0/24 maxlen: 24 103.152.43.0/24 maxlen: 24 2001:df7:1f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE, serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Validity Not Before: Jul 3 03:06:49 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6865f3c9-7800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f9:0d:4a:f0:f6:47:65:96:cc:38:7e:e8:23: d8:91:df:8d:d4:6b:35:b0:95:f2:43:04:81:18:e7: de:d4:b4:5e:84:57:83:cc:2f:13:48:8a:57:99:28: d6:83:d9:9e:44:7e:b4:09:f6:bd:6b:eb:d3:b6:d6: f4:7f:52:a6:fa:a2:ae:e7:69:ae:ea:16:77:88:8d: e0:65:9e:06:9a:61:65:bc:c8:31:2e:d2:f0:82:36: 0d:c0:d5:f9:3f:c7:99:3a:67:c5:ae:70:c6:57:22: 74:60:ad:6e:1c:70:c8:f5:61:57:0a:ce:d9:ad:d6: 64:e6:14:20:4f:1e:6d:a3:79:d3:ae:72:d0:6d:6c: d3:20:1c:69:a8:02:c3:2b:9b:94:6a:07:0a:67:2a: d6:eb:d3:dd:4d:1d:56:c6:19:0b:70:11:95:eb:2b: 05:59:1f:f4:58:67:c5:9c:9f:b5:73:7d:92:42:c1: 0f:c0:87:5a:1b:2e:95:2c:31:c8:69:45:76:58:38: a7:ce:60:57:61:a6:51:63:7a:ec:1f:4b:73:f2:bb: 05:07:c9:0a:32:cc:ca:21:7a:24:2e:78:bc:2c:5b: 1b:3d:f5:8b:a7:03:2b:3a:9d:a9:ce:83:4b:58:88: ec:6a:91:07:81:83:f5:7a:ef:a1:7e:cc:43:6a:67: 39:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:5F:C7:F1:95:8C:CD:4A:FA:06:7D:EB:6B:7E:43:D7:52:45:2A:A5 X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.42.0/23 IPv6: 2001:df7:1f80::/48 Signature Algorithm: sha256WithRSAEncryption c3:ce:2c:6d:a7:be:b8:35:2a:2b:7d:63:e2:1e:f4:5e:1b:ba: 7b:87:14:7e:e8:12:c1:5e:6d:aa:ed:ce:dd:88:b3:f2:44:c3: b3:f7:31:cf:70:39:52:27:ad:c5:4b:8b:e5:0c:f4:f4:19:48: 97:71:cb:57:31:84:01:bf:96:13:8c:a2:6b:dd:6d:80:c5:a6: ca:7e:29:59:38:39:c3:cb:21:16:01:54:4b:e9:98:ee:0f:0b: cc:41:5c:04:d5:8d:0a:e0:1d:44:7f:e7:f7:74:4a:85:07:2d: d8:94:2f:0e:1e:ef:d2:0d:a1:dd:75:e2:b1:dd:d3:2d:2f:7c: 1f:28:51:f9:bf:1b:79:2a:13:cf:32:2e:71:d2:cb:47:59:72: 4e:7b:87:8a:ef:e9:c6:8d:5f:9b:84:7c:44:65:da:c6:81:57: 2c:a2:3d:91:c4:b7:59:92:49:f8:4b:a1:8f:e8:7b:97:4a:aa: c2:3f:96:c9:2d:fb:6e:d7:70:94:3a:e3:13:0f:ea:44:ec:3d: 89:4f:4e:b9:ab:58:13:c6:0a:39:c9:d0:d6:68:68:37:97:46: d2:d5:bd:84:91:5b:28:a7:79:ee:3d:e6:b7:24:8b:f8:8f:e3: 94:76:95:d8:e2:39:6c:96:cf:6b:2d:eb:58:23:90:65:0c:b0: 45:c5:2a:63 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjUwNzAzMDMwNjQ5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1ZjNjOS03ODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPkNSvD2R2WWzDh+6CPYkd+N1Gs1sJXyQwSBGOfe1LRehFeDzC8TSIpXmSjW g9meRH60Cfa9a+vTttb0f1Km+qKu52mu6hZ3iI3gZZ4GmmFlvMgxLtLwgjYNwNX5 P8eZOmfFrnDGVyJ0YK1uHHDI9WFXCs7ZrdZk5hQgTx5to3nTrnLQbWzTIBxpqALD K5uUagcKZyrW69PdTR1WxhkLcBGV6ysFWR/0WGfFnJ+1c32SQsEPwIdaGy6VLDHI aUV2WDinzmBXYaZRY3rsH0tz8rsFB8kKMszKIXokLni8LFsbPfWLpwMrOp2pzoNL WIjsapEHgYP1eu+hfsxDamc59wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPdfx/GV jM1K+gZ962t+Q9dSRSqlMB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvMzhFNDVDRTA4 QzI1MTFFREI2NERCNDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmCowDwQCAAIwCQMHACABDfcfgDANBgkqhkiG9w0BAQsF AAOCAQEAw84sbae+uDUqK31j4h70Xhu6e4cUfugSwV5tqu3O3Yiz8kTDs/cxz3A5 UietxUuL5Qz09BlIl3HLVzGEAb+WE4yia91tgMWmyn4pWTg5w8shFgFUS+mY7g8L zEFcBNWNCuAdRH/n93RKhQct2JQvDh7v0g2h3XXisd3TLS98HyhR+b8beSoTzzIu cdLLR1lyTnuHiu/pxo1fm4R8RGXaxoFXLKI9kcS3WZJJ+Euhj+h7l0qqwj+WyS37 btdwlDrjEw/qROw9iU9OuatYE8YKOcnQ1mhoN5dG0tW9hJFbKKd57j3mtySL+I/j lHaV2OI5bJbPay3rWCOQZQywRcUqYw== -----END CERTIFICATE-----Generated at Thu Jul 3 16:38:28 2025 by rpki-client