$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/DE07328A778911ECBD9C7748C4F9AE02.roa File: DE07328A778911ECBD9C7748C4F9AE02.roa (raw, json) Hash identifier: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0= Subject key identifier: 06:9B:F9:CA:5F:2E:95:DE:87:93:37:74:42:35:64:67:62:69:5D:87 Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 0996 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/DE07328A778911ECBD9C7748C4F9AE02.roa Signing time: Mon 30 Jun 2025 20:36:16 +0000 ROA not before: Mon 30 Jun 2025 20:36:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38070 IP address blocks: 103.151.79.0/24 maxlen: 24 103.157.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2454 (0x996) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Jun 30 20:36:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6862f540-c12e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e2:22:92:cf:b3:02:90:be:88:c5:ac:ed:a1: 42:e0:e8:c7:bd:02:2f:5c:d6:67:18:9d:29:fc:67: 2b:d0:d2:b1:8e:be:d3:30:33:e0:ec:5e:e3:29:1a: 6c:61:90:10:77:11:39:77:5a:69:c3:95:96:69:ec: 9e:bf:e7:7b:83:3a:24:4f:7b:95:8f:a9:52:4c:42: 7b:cf:35:24:a1:4b:be:71:54:56:6d:13:ee:23:73: 4d:b9:eb:79:f7:e9:bf:71:20:2b:83:2d:c7:1a:23: b8:7f:82:8f:ae:6b:7a:07:44:5f:f9:d4:cb:b4:53: 09:cd:61:01:5b:4f:32:e1:ac:ff:9b:ef:98:52:59: 51:0b:cd:b5:bf:bf:60:c0:70:d0:e5:b2:bc:59:e5: 18:84:d8:b8:54:4a:e8:ed:8c:c8:c6:46:13:fb:5f: b9:d4:4e:3a:f0:b8:e3:cd:d2:32:ea:33:51:a5:29: d7:59:e9:bc:51:2f:74:27:7c:64:fc:e2:5e:8b:2a: 7c:fd:b3:35:bc:0c:17:12:4f:42:03:ba:0e:1d:20: 9d:ed:3e:07:c1:b8:84:93:c1:11:e0:8e:f9:86:f9: 7a:08:f0:f8:89:f4:a4:7f:b0:be:5c:c8:d0:d8:19: 6a:e2:31:35:4d:6b:69:36:ba:6f:c7:bc:8b:61:fb: 32:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9B:F9:CA:5F:2E:95:DE:87:93:37:74:42:35:64:67:62:69:5D:87 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/DE07328A778911ECBD9C7748C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.79.0/24 103.157.100.0/24 Signature Algorithm: sha256WithRSAEncryption bf:42:4f:ad:1a:25:0f:d7:6d:87:59:a0:24:0d:b2:0d:57:77: fd:c4:22:4d:8f:a6:79:7e:5c:e6:b0:64:82:7a:45:ee:8a:48: 92:88:67:f1:de:01:72:18:7b:30:c3:61:98:bd:1c:26:22:c2: a6:ba:4f:7c:e2:48:1d:75:cb:b8:3d:7d:de:4b:0d:3b:b1:de: 6d:3e:0e:7a:63:d2:b9:2a:d5:eb:e7:f4:4a:75:9e:14:0e:4b: 06:3e:57:5b:ad:6e:03:39:47:25:40:1d:c6:79:79:5c:cb:ca: a1:0b:63:90:f2:f0:f8:2e:62:8c:96:9f:5d:86:09:38:bb:ad: 03:e6:5c:33:ab:29:08:98:47:cc:3f:07:66:04:da:dd:9d:23: ef:28:24:ed:11:e7:eb:dd:4c:b8:c0:fd:9d:20:77:fc:c6:a0: eb:a4:e6:da:e0:5b:1f:cd:a7:ab:3f:a8:56:da:af:2e:52:2f: f6:c2:92:4b:bd:d1:89:d2:59:d3:97:ba:88:08:4d:30:81:65: c2:6f:f1:b7:32:1d:8c:19:c7:21:0d:01:55:19:94:b1:1a:97: e7:a4:ab:ba:e3:cb:dd:a9:70:d3:0d:4e:53:ac:5a:2d:bd:86: 3b:20:83:e4:06:09:18:04:e2:92:05:1c:60:cb:10:9d:27:0f: 87:0e:5e:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUwNjMwMjAzNjE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyZjU0MC1jMTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOIiks+zApC+iMWs7aFC4OjHvQIvXNZnGJ0p/Gcr0NKxjr7TMDPg7F7jKRps YZAQdxE5d1ppw5WWaeyev+d7gzokT3uVj6lSTEJ7zzUkoUu+cVRWbRPuI3NNuet5 9+m/cSArgy3HGiO4f4KPrmt6B0Rf+dTLtFMJzWEBW08y4az/m++YUllRC821v79g wHDQ5bK8WeUYhNi4VEro7YzIxkYT+1+51E468LjjzdIy6jNRpSnXWem8US90J3xk /OJeiyp8/bM1vAwXEk9CA7oOHSCd7T4HwbiEk8ER4I75hvl6CPD4ifSkf7C+XMjQ 2Blq4jE1TWtpNrpvx7yLYfsyXwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAab+cpf LpXeh5M3dEI1ZGdiaV2HMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJGMkMvRkZCNzYxRkE5Njc4MTFFQTg0MEYwMDI5QzRGOUFFMDIvREUwNzMyOEE3 Nzg5MTFFQ0JEOUM3NzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnl08DBABnnWQwDQYJKoZIhvcNAQELBQADggEBAL9CT60a JQ/XbYdZoCQNsg1Xd/3EIk2Ppnl+XOawZIJ6Re6KSJKIZ/HeAXIYezDDYZi9HCYi wqa6T3ziSB11y7g9fd5LDTux3m0+Dnpj0rkq1evn9Ep1nhQOSwY+V1utbgM5RyVA HcZ5eVzLyqELY5Dy8PguYoyWn12GCTi7rQPmXDOrKQiYR8w/B2YE2t2dI+8oJO0R 5+vdTLjA/Z0gd/zGoOuk5trgWx/Np6s/qFbary5SL/bCkku90YnSWdOXuogITTCB ZcJv8bcyHYwZxyENAVUZlLEal+ekq7rjy92pcNMNTlOsWi29hjsgg+QGCRgE4pIF HGDLEJ0nD4cOXsc= -----END CERTIFICATE-----Generated at Fri Jul 4 11:15:20 2025 by rpki-client