$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa File: F3B716768F2F11EE86964D62C4F9AE02.roa (raw, json) Hash identifier: Ez3fMRvxWFNiR5F6idq+GUYygoYJpqIuMgbojOp3vAE= Subject key identifier: BC:08:9D:0F:1B:15:0D:27:03:40:BE:36:F9:6C:6D:7E:98:65:CC:7B Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 01F7 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa Signing time: Thu 03 Jul 2025 03:06:50 +0000 ROA not before: Thu 03 Jul 2025 03:06:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140721 IP address blocks: 103.152.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE, serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Validity Not Before: Jul 3 03:06:50 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6865f3ca-dff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b2:f0:72:87:88:a6:a3:50:18:30:9a:a0:02: e0:35:9b:3e:58:5a:46:98:18:bd:db:b3:03:8a:29: 99:b8:8f:b3:a3:5c:c2:0a:a6:a3:71:ae:34:4a:0e: 9d:6a:52:09:8d:c0:c3:b1:6e:83:1e:b6:45:9b:89: c9:10:56:f1:2f:d2:b8:ec:51:41:39:fc:4b:5c:1c: 2d:1d:38:9a:32:e5:9e:00:e2:4a:5a:9b:60:66:a1: df:cc:de:45:2c:ac:b1:6c:d3:79:d5:01:f4:34:54: 12:3b:7a:5e:c2:84:40:da:81:37:37:86:19:6b:ad: 05:10:b6:29:ca:be:2b:d8:58:6b:14:98:fe:9c:ab: b0:8f:60:f9:fb:4a:d1:45:5c:da:64:b3:88:a4:fc: 12:12:ed:73:63:18:88:20:b6:73:52:9b:04:86:c9: 2a:19:11:d0:39:12:5b:be:57:1e:62:8c:c9:de:9d: 30:b6:e8:b8:ba:4e:72:46:24:eb:76:ce:9b:51:97: bd:53:88:87:7c:0a:c1:9c:2c:77:25:2d:28:d3:2d: 0f:f2:85:90:96:bd:49:d9:6f:51:34:97:e9:48:f6: fd:28:7c:0f:db:f7:93:7a:cf:2e:0a:f9:fc:ab:f9: 6b:14:c8:3a:c3:11:37:30:0a:c9:38:52:e1:69:95: 4f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:08:9D:0F:1B:15:0D:27:03:40:BE:36:F9:6C:6D:7E:98:65:CC:7B X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.43.0/24 Signature Algorithm: sha256WithRSAEncryption 81:0a:08:2c:f0:1b:bd:1c:c4:e5:21:51:77:3b:96:93:d7:c4: 14:88:e0:56:d6:05:09:7b:ad:58:c9:c7:b6:6e:4d:40:3a:ec: ee:a3:89:84:cb:70:f4:90:d2:f7:5f:a0:1a:a3:e0:26:4d:79: 34:29:ba:bb:d7:f4:b0:f7:e5:bc:f9:bb:b7:22:3c:df:42:05: f2:93:e0:b4:cd:39:17:0a:a3:2d:10:70:4b:22:16:2e:39:f8: 8a:51:d4:03:2a:e2:28:0a:20:51:f9:79:20:4d:30:13:09:11: 4a:fa:02:7f:a1:ea:a7:7e:56:dd:6b:c3:65:32:4a:3a:5f:7d: fd:7b:2c:11:a8:52:d7:8a:be:c2:70:0d:54:96:28:b7:73:c4: 92:7b:b0:24:08:7b:0e:ba:27:36:85:e5:d2:dd:74:f6:8b:59: a0:fc:dc:fa:1c:7b:d9:b8:56:12:a4:32:02:ba:24:35:0c:92: fe:71:f6:0a:97:fe:a7:c6:3b:73:bf:41:54:de:02:94:38:70: 28:15:a7:75:57:1a:13:a6:ce:4a:ef:da:6e:97:78:cf:d9:80: c6:2a:f9:db:85:cd:1f:2e:66:15:a2:59:1c:9e:86:3f:c8:67: 70:37:8d:de:1b:96:34:b0:9e:dd:20:a4:c5:74:db:f9:07:c3: e3:64:bd:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjUwNzAzMDMwNjUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1ZjNjYS1kZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7LwcoeIpqNQGDCaoALgNZs+WFpGmBi927MDiimZuI+zo1zCCqajca40Sg6d alIJjcDDsW6DHrZFm4nJEFbxL9K47FFBOfxLXBwtHTiaMuWeAOJKWptgZqHfzN5F LKyxbNN51QH0NFQSO3pewoRA2oE3N4YZa60FELYpyr4r2FhrFJj+nKuwj2D5+0rR RVzaZLOIpPwSEu1zYxiIILZzUpsEhskqGRHQORJbvlceYozJ3p0wtui4uk5yRiTr ds6bUZe9U4iHfArBnCx3JS0o0y0P8oWQlr1J2W9RNJfpSPb9KHwP2/eTes8uCvn8 q/lrFMg6wxE3MArJOFLhaZVPswIDAQABo4IClTCCApEwHQYDVR0OBBYEFLwInQ8b FQ0nA0C+NvlsbX6YZcx7MB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvRjNCNzE2NzY4 RjJGMTFFRTg2OTY0RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmCswDQYJKoZIhvcNAQELBQADggEBAIEKCCzwG70cxOUh UXc7lpPXxBSI4FbWBQl7rVjJx7ZuTUA67O6jiYTLcPSQ0vdfoBqj4CZNeTQpurvX 9LD35bz5u7ciPN9CBfKT4LTNORcKoy0QcEsiFi45+IpR1AMq4igKIFH5eSBNMBMJ EUr6An+h6qd+Vt1rw2UySjpfff17LBGoUteKvsJwDVSWKLdzxJJ7sCQIew66JzaF 5dLddPaLWaD83Poce9m4VhKkMgK6JDUMkv5x9gqX/qfGO3O/QVTeApQ4cCgVp3VX GhOmzkrv2m6XeM/ZgMYq+duFzR8uZhWiWRyehj/IZ3A3jd4bljSwnt0gpMV02/kH w+Nkvfc= -----END CERTIFICATE-----Generated at Thu Jul 3 13:18:30 2025 by rpki-client