$ rpki-client -vvf rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/26DB1136FDFC11ECBB977313C4F9AE02.roa File: 26DB1136FDFC11ECBB977313C4F9AE02.roa (raw, json) Hash identifier: U/JXwEqtoHC/7jQ68sFwAQsy+SIpyQHakkosmR6Gtvk= Subject key identifier: 31:45:F5:EE:A9:2C:64:92:5C:14:57:63:FB:ED:A4:C3:C0:BB:2C:59 Certificate issuer: /CN=A91DED5A/serialNumber=0D98418F84C22CE351395E1E5C4D5D91AE60FE1F Certificate serial: 032D Authority key identifier: 0D:98:41:8F:84:C2:2C:E3:51:39:5E:1E:5C:4D:5D:91:AE:60:FE:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/26DB1136FDFC11ECBB977313C4F9AE02.roa Signing time: Sun 29 Jun 2025 00:46:38 +0000 ROA not before: Sun 29 Jun 2025 00:46:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139667 IP address blocks: 103.187.38.0/23 maxlen: 23 103.187.38.0/24 maxlen: 24 103.187.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.crl rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DED5A, serialNumber=0D98418F84C22CE351395E1E5C4D5D91AE60FE1F Validity Not Before: Jun 29 00:46:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68608cee-fc62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:34:32:05:cf:23:dc:08:91:ee:22:9a:b9:b0: e2:5e:41:fb:3b:6f:da:f9:7d:08:7f:87:92:f5:91: e0:18:22:cd:8e:52:41:5b:e9:4f:47:17:c3:94:8e: a6:b4:80:31:76:13:2e:af:ab:e9:84:3b:98:04:d9: 3c:c0:3f:ca:a4:aa:4e:6e:64:24:da:ee:bc:b2:20: f2:7b:e4:a4:c1:dd:31:ea:a4:26:cf:94:b9:51:1a: 71:ae:f9:c8:ba:3f:32:c8:0b:12:59:ea:56:27:ae: 8b:92:61:99:bb:e3:f3:35:1c:03:18:cb:4f:4d:a1: cd:a8:b6:0a:a0:9c:b2:c8:73:4c:c2:fd:d8:d6:6a: 03:63:21:ae:2c:65:a7:68:81:ad:23:04:7b:63:a2: 58:f0:74:95:6d:7a:63:3d:ca:f2:24:2e:7d:ee:28: 94:fb:32:4c:47:57:04:10:cb:50:7c:01:a0:51:3a: ef:8d:2d:55:dc:88:18:47:7f:09:2e:97:dd:fe:73: a4:d7:b6:2c:e6:87:7f:5d:39:3b:21:ca:2d:49:eb: 8c:85:cf:bd:1c:5c:17:bb:3c:6e:a7:70:35:63:31: c2:78:f8:51:d3:6c:35:eb:92:24:b3:85:f4:b1:c5: 18:36:cc:40:f5:e9:77:4c:92:89:2f:a3:92:90:c5: 83:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:45:F5:EE:A9:2C:64:92:5C:14:57:63:FB:ED:A4:C3:C0:BB:2C:59 X509v3 Authority Key Identifier: keyid:0D:98:41:8F:84:C2:2C:E3:51:39:5E:1E:5C:4D:5D:91:AE:60:FE:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/DZhBj4TCLONROV4eXE1dka5g_h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DZhBj4TCLONROV4eXE1dka5g_h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DED5A/5DEDA028CF7E11EC932E024AC4F9AE02/26DB1136FDFC11ECBB977313C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.38.0/23 Signature Algorithm: sha256WithRSAEncryption a2:ed:16:c0:0a:d8:93:f7:5e:4c:07:03:fb:14:f2:b1:a2:b2: ba:c9:73:6f:46:8c:a4:3f:c9:d6:aa:7a:7a:e9:06:fd:77:1c: 33:6b:7d:a4:bf:c2:1d:ca:88:24:2b:0e:91:ef:16:cd:45:f8: a5:50:0a:30:59:8a:ad:80:4e:58:b6:bb:0f:e2:1d:52:22:73: b4:b5:93:a5:43:d4:94:21:1e:92:5a:7d:26:c7:11:98:85:d3: 65:a8:c9:47:16:41:06:bc:c6:74:eb:5d:75:19:4f:8a:dc:8a: 15:c0:96:ca:88:a9:4a:88:75:64:93:28:6a:ee:cb:db:39:75: 02:82:13:15:12:44:ac:be:6c:4a:72:25:bc:d7:67:25:08:67: 52:52:c0:28:5f:0b:f4:01:32:ac:68:66:00:51:9d:81:d0:64: 5e:24:ef:95:a0:1e:0e:9e:ab:80:a6:e5:71:46:17:31:cf:bb: ce:95:02:ba:b7:c4:50:d8:3b:a0:63:fd:4b:b3:03:ae:0a:75: 0c:7c:4e:5a:74:94:a4:09:79:2e:a7:f1:6b:b7:0c:2f:05:64: 7a:88:b0:66:59:2b:cd:cb:3d:e0:2f:fc:07:b2:fa:15:fb:44: 55:1d:d2:98:6a:77:36:e7:d4:15:b3:f0:51:53:8d:bd:08:cc: 52:bf:1f:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVENUExMTAvBgNVBAUTKDBEOTg0MThGODRDMjJDRTM1MTM5NUUxRTVDNEQ1RDkx QUU2MEZFMUYwHhcNMjUwNjI5MDA0NjM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYwOGNlZS1mYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jQyBc8j3AiR7iKaubDiXkH7O2/a+X0If4eS9ZHgGCLNjlJBW+lPRxfDlI6m tIAxdhMur6vphDuYBNk8wD/KpKpObmQk2u68siDye+Skwd0x6qQmz5S5URpxrvnI uj8yyAsSWepWJ66LkmGZu+PzNRwDGMtPTaHNqLYKoJyyyHNMwv3Y1moDYyGuLGWn aIGtIwR7Y6JY8HSVbXpjPcryJC597iiU+zJMR1cEEMtQfAGgUTrvjS1V3IgYR38J Lpfd/nOk17Ys5od/XTk7IcotSeuMhc+9HFwXuzxup3A1YzHCePhR02w165Iks4X0 scUYNsxA9el3TJKJL6OSkMWDgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFF9e6p LGSSXBRXY/vtpMPAuyxZMB8GA1UdIwQYMBaAFA2YQY+EwizjUTleHlxNXZGuYP4f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUQ1QS81REVEQTAyOENG N0UxMUVDOTMyRTAyNEFDNEY5QUUwMi9EWmhCajRUQ0xPTlJPVjRlWEUxZGthNWdf aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RaaEJqNFRDTE9OUk9WNGVYRTFka2E1Z19oOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVENUEvNURFREEwMjhDRjdFMTFFQzkzMkUwMjRBQzRGOUFFMDIvMjZEQjExMzZG REZDMTFFQ0JCOTc3MzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuyYwDQYJKoZIhvcNAQELBQADggEBAKLtFsAK2JP3XkwH A/sU8rGisrrJc29GjKQ/ydaqenrpBv13HDNrfaS/wh3KiCQrDpHvFs1F+KVQCjBZ iq2ATli2uw/iHVIic7S1k6VD1JQhHpJafSbHEZiF02WoyUcWQQa8xnTrXXUZT4rc ihXAlsqIqUqIdWSTKGruy9s5dQKCExUSRKy+bEpyJbzXZyUIZ1JSwChfC/QBMqxo ZgBRnYHQZF4k75WgHg6eq4Cm5XFGFzHPu86VArq3xFDYO6Bj/UuzA64KdQx8Tlp0 lKQJeS6n8Wu3DC8FZHqIsGZZK83LPeAv/Aey+hX7RFUd0phqdzbn1BWz8FFTjb0I zFK/Hxo= -----END CERTIFICATE-----Generated at Tue Jul 1 23:26:02 2025 by rpki-client