$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/FCC951D6FB1211EDBFADE86AC4F9AE02.roa File: FCC951D6FB1211EDBFADE86AC4F9AE02.roa (raw, json) Hash identifier: G50IgyVtJtFjbRe7GXXuAS+YYFAlwWX6MNmoWMFn7H8= Subject key identifier: C6:DE:46:3B:22:B9:B0:62:1C:54:73:B9:C4:22:D7:0E:70:D5:3C:03 Certificate issuer: /CN=A91E28C1/serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2 Certificate serial: 0970 Authority key identifier: 25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/FCC951D6FB1211EDBFADE86AC4F9AE02.roa Signing time: Thu 26 Jun 2025 20:06:20 +0000 ROA not before: Thu 26 Jun 2025 20:06:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134204 IP address blocks: 103.138.122.0/24 maxlen: 24 103.138.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2416 (0x970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28C1, serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2 Validity Not Before: Jun 26 20:06:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685da83b-c08c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6e:e7:97:77:01:a4:06:d0:e8:7b:c6:9e:eb: 36:c4:bd:7c:cc:ae:a6:25:01:fd:49:b6:b8:a8:d1: b3:ca:94:cb:ff:73:5e:da:a7:d8:c0:11:98:50:61: bf:ba:c3:b1:89:91:5a:d1:62:f7:bb:6e:40:33:12: ff:e5:3b:f0:88:63:8e:0f:41:4f:0c:4d:5a:5e:d7: 34:8e:e1:c7:2c:96:92:4d:40:7f:c3:f4:37:61:7f: 08:28:51:df:e9:33:d4:bc:8d:66:67:08:cc:d5:c6: d5:f3:fb:3d:f8:bd:27:23:fa:e5:07:16:b8:4e:0c: e7:17:25:eb:ce:a3:82:99:2c:ff:1b:31:84:a5:f9: e6:33:f2:ba:ed:a8:d5:85:78:e2:fb:05:97:1d:42: 7d:8a:43:dc:84:6c:fe:e6:ce:b1:34:eb:e3:ce:3e: 30:19:52:c0:df:88:4a:a6:3c:7c:a3:9f:ad:9d:d6: d5:77:78:c1:bf:df:d3:94:f9:35:f4:ca:fd:14:7a: 01:b3:91:db:20:04:3f:d6:de:c1:6b:e5:e8:cb:3d: 51:4c:a4:81:b5:b5:df:61:8f:3a:4d:e2:d1:d9:af: b0:fc:f3:bb:77:d0:3c:8d:f3:b9:cd:fb:6a:cf:96: 73:16:97:bd:9c:3a:07:39:66:11:1f:c3:17:0e:c7: 2b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:DE:46:3B:22:B9:B0:62:1C:54:73:B9:C4:22:D7:0E:70:D5:3C:03 X509v3 Authority Key Identifier: keyid:25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/FCC951D6FB1211EDBFADE86AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.122.0/23 Signature Algorithm: sha256WithRSAEncryption 56:82:78:be:49:14:3e:c1:15:cb:db:1b:36:10:2f:d5:93:3b: 57:dc:b0:13:02:80:29:79:b0:eb:13:1c:11:e3:71:02:c3:42: 0d:31:94:25:2e:52:3d:ec:62:72:d8:ff:1f:ac:5e:76:ca:c3: 26:93:39:6a:6a:13:da:f8:f3:7c:72:45:9c:cf:72:9c:e8:dc: 03:9d:82:2f:dc:fb:bd:c7:58:44:2c:3b:2f:bf:d8:b0:c6:92: aa:96:5a:08:90:99:b1:50:7d:d7:06:78:b9:dd:f8:ec:f6:89: 1c:72:3b:92:c8:56:93:b1:eb:41:af:e9:09:0a:f8:63:2b:72: d3:a9:e3:c4:1c:41:55:24:28:cc:12:83:d0:07:24:41:2c:cf: 34:b3:26:b6:3e:11:18:6a:ff:3c:5b:02:19:f8:86:d7:4c:07: b2:a7:d5:e3:da:18:fa:0b:14:45:d3:0c:a9:16:93:24:8e:d1: ca:01:ae:11:e0:5b:ad:8e:ca:13:29:fd:fd:d3:42:c5:e4:f3: e1:d9:ef:06:80:c9:34:80:e8:1b:25:31:65:db:21:e0:72:fb: d3:da:e8:57:2f:47:94:10:9a:c6:b7:92:1f:88:6a:10:bb:51: fd:37:62:7c:2b:52:79:7c:f6:7b:22:80:0b:7a:78:86:c2:64: 58:4e:e2:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4QzExMTAvBgNVBAUTKDI1ODQxRkE3N0MwNTcxNjU4NUZFN0JEQjA2MDBCOTg2 NEUzNDA2RDIwHhcNMjUwNjI2MjAwNjIwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkYTgzYi1jMDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtm7nl3cBpAbQ6HvGnus2xL18zK6mJQH9Sba4qNGzypTL/3Ne2qfYwBGYUGG/ usOxiZFa0WL3u25AMxL/5TvwiGOOD0FPDE1aXtc0juHHLJaSTUB/w/Q3YX8IKFHf 6TPUvI1mZwjM1cbV8/s9+L0nI/rlBxa4TgznFyXrzqOCmSz/GzGEpfnmM/K67ajV hXji+wWXHUJ9ikPchGz+5s6xNOvjzj4wGVLA34hKpjx8o5+tndbVd3jBv9/TlPk1 9Mr9FHoBs5HbIAQ/1t7Ba+Xoyz1RTKSBtbXfYY86TeLR2a+w/PO7d9A8jfO5zftq z5ZzFpe9nDoHOWYRH8MXDscrYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMbeRjsi ubBiHFRzucQi1w5w1TwDMB8GA1UdIwQYMBaAFCWEH6d8BXFlhf572wYAuYZONAbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhDMS9GOEFGQTE0MDk5 RTAxMUVBOTY2NTJGMzJDNEY5QUUwMi9KWVFmcDN3RmNXV0ZfbnZiQmdDNWhrNDBC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZUWZwM3dGY1dXRl9udmJCZ0M1aGs0MEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4QzEvRjhBRkExNDA5OUUwMTFFQTk2NjUyRjMyQzRGOUFFMDIvRkNDOTUxRDZG QjEyMTFFREJGQURFODZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFninowDQYJKoZIhvcNAQELBQADggEBAFaCeL5JFD7BFcvb GzYQL9WTO1fcsBMCgCl5sOsTHBHjcQLDQg0xlCUuUj3sYnLY/x+sXnbKwyaTOWpq E9r483xyRZzPcpzo3AOdgi/c+73HWEQsOy+/2LDGkqqWWgiQmbFQfdcGeLnd+Oz2 iRxyO5LIVpOx60Gv6QkK+GMrctOp48QcQVUkKMwSg9AHJEEszzSzJrY+ERhq/zxb Ahn4htdMB7Kn1ePaGPoLFEXTDKkWkySO0coBrhHgW62OyhMp/f3TQsXk8+HZ7waA yTSA6BslMWXbIeBy+9Pa6FcvR5QQmsa3kh+IahC7Uf03YnwrUnl89nsigAt6eIbC ZFhO4no= -----END CERTIFICATE-----Generated at Fri Jul 4 00:00:28 2025 by rpki-client