$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/5334D20CDA5E11EBA323F462C4F9AE02.roa File: 5334D20CDA5E11EBA323F462C4F9AE02.roa (raw, json) Hash identifier: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg= Subject key identifier: 3F:C4:3D:CD:71:11:37:F5:DC:87:BA:9C:D8:54:82:62:B9:9B:A6:67 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 0597 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/5334D20CDA5E11EBA323F462C4F9AE02.roa Signing time: Thu 26 Jun 2025 23:33:43 +0000 ROA not before: Thu 26 Jun 2025 23:33:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.168.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1431 (0x597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Jun 26 23:33:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685dd8d7-3898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d5:55:58:3f:e3:ef:17:60:39:26:86:e9:e8: 8d:dc:a7:9d:07:ff:ca:0e:1d:92:7f:51:1f:bc:98: c7:de:46:9b:4e:72:5c:cc:55:5f:af:41:35:96:ff: e9:84:1b:e7:96:6f:32:39:d1:1e:ff:41:d8:e0:2a: bf:e8:c2:f9:09:65:70:2b:53:d2:e9:78:d5:57:07: 64:6d:fd:f5:35:75:67:cb:20:8c:a0:32:e3:ff:6a: f3:c3:0d:d6:aa:d5:04:ad:ae:e2:70:34:3c:56:22: 90:4f:e7:a5:f9:75:ab:7c:e2:80:30:09:87:9d:3d: 8d:7d:df:56:f0:dd:2c:bd:50:4b:27:8c:0a:c4:cc: 1e:fb:98:05:61:02:6d:fb:3c:4a:05:eb:34:8f:b2: ab:fa:ac:98:4e:bc:9f:9b:0f:56:93:ef:9c:bb:01: 26:c0:ba:b4:f3:9f:97:ba:b2:6a:c6:f4:52:ba:d5: c7:df:55:9c:db:20:86:d4:34:70:12:26:9f:d2:39: f1:b1:a6:02:93:2a:ff:66:3e:33:f4:ff:be:6e:4d: 0b:b5:88:94:32:83:e1:5f:fe:80:6e:4f:d2:1d:47: b9:8a:3c:5f:e9:27:c1:da:c9:f4:e2:71:af:57:89: 4c:b7:df:78:d4:2f:24:39:dd:92:17:9b:b7:c0:38: 0b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C4:3D:CD:71:11:37:F5:DC:87:BA:9C:D8:54:82:62:B9:9B:A6:67 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/5334D20CDA5E11EBA323F462C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.209.0/24 Signature Algorithm: sha256WithRSAEncryption 72:e4:0f:7d:8f:81:e6:22:5d:8e:8f:57:01:85:26:57:d8:6e: f8:5c:c5:37:4c:9b:51:3a:91:0b:1b:c2:b2:5a:e0:3f:cb:67: 5e:50:3c:eb:08:7e:24:86:f2:55:f7:a6:f4:5d:f1:fc:32:43: 18:4f:60:aa:ab:e8:cb:2c:8f:73:c5:e9:da:9e:53:dc:d9:86: 0d:6b:e2:e4:e8:af:73:86:2c:ab:f9:e7:65:73:63:09:b5:cd: 34:b6:2a:98:90:dc:e9:f1:ba:2f:4a:71:b0:43:f0:59:5d:da: b5:b9:6d:c8:38:53:f8:e2:4f:63:47:c6:34:e0:ff:de:d4:aa: e9:65:1e:3c:6b:42:b4:01:1c:93:31:db:48:56:14:dc:2f:4c: c3:59:f4:2d:0e:78:aa:65:52:10:e4:93:f5:06:04:8c:a4:ad: a3:64:8c:b6:36:1f:61:61:4c:19:8b:6d:8f:3b:6a:21:1f:30: 89:b6:ee:f5:a4:fa:96:dd:df:c2:ad:0e:b3:78:96:c2:16:f4: 1f:21:89:0a:a4:2d:16:d1:52:b4:e3:8a:01:ea:c5:f1:f2:03: 89:9e:85:41:0f:f4:4c:22:93:c5:3d:16:c5:02:48:ea:c6:f3: 72:67:43:a6:f2:37:0f:7f:39:70:f6:63:1c:c8:f5:ff:e2:d3: 7f:5b:d5:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwNjI2MjMzMzQzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkZDhkNy0zODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NVVWD/j7xdgOSaG6eiN3KedB//KDh2Sf1EfvJjH3kabTnJczFVfr0E1lv/p hBvnlm8yOdEe/0HY4Cq/6ML5CWVwK1PS6XjVVwdkbf31NXVnyyCMoDLj/2rzww3W qtUEra7icDQ8ViKQT+el+XWrfOKAMAmHnT2Nfd9W8N0svVBLJ4wKxMwe+5gFYQJt +zxKBes0j7Kr+qyYTryfmw9Wk++cuwEmwLq085+XurJqxvRSutXH31Wc2yCG1DRw Eiaf0jnxsaYCkyr/Zj4z9P++bk0LtYiUMoPhX/6Abk/SHUe5ijxf6SfB2sn04nGv V4lMt9941C8kOd2SF5u3wDgLMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD/EPc1x ETf13Ie6nNhUgmK5m6ZnMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJCNjYvNTNFOEZCRUFEQTVCMTFFQjgzQkUzNzFBQzRGOUFFMDIvNTMzNEQyMENE QTVFMTFFQkEzMjNGNDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqNEwDQYJKoZIhvcNAQELBQADggEBAHLkD32PgeYiXY6P VwGFJlfYbvhcxTdMm1E6kQsbwrJa4D/LZ15QPOsIfiSG8lX3pvRd8fwyQxhPYKqr 6Mssj3PF6dqeU9zZhg1r4uTor3OGLKv552VzYwm1zTS2KpiQ3Onxui9KcbBD8Fld 2rW5bcg4U/jiT2NHxjTg/97UqullHjxrQrQBHJMx20hWFNwvTMNZ9C0OeKplUhDk k/UGBIykraNkjLY2H2FhTBmLbY87aiEfMIm27vWk+pbd38KtDrN4lsIW9B8hiQqk LRbRUrTjigHqxfHyA4mehUEP9Ewik8U9FsUCSOrG83JnQ6byNw9/OXD2YxzI9f/i 039b1X4= -----END CERTIFICATE-----Generated at Tue Jul 1 13:22:34 2025 by rpki-client