$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4042/EFC98DE6E53611EB9926556BC4F9AE02/26F1B59437A511ECB73C9852C4F9AE02.roa File: 26F1B59437A511ECB73C9852C4F9AE02.roa (raw, json) Hash identifier: RnCdsnsA5t3rSQhlqndquIzW2+Ap7Mst87/6oAJexVI= Subject key identifier: 26:F1:2D:D7:AB:A5:0F:39:AF:DC:CC:7F:4A:03:BA:D9:E0:EB:28:B2 Certificate issuer: /CN=A91E4042/serialNumber=4F332DC08C9747AC9BC81C547D1BA345643F76B7 Certificate serial: 057C Authority key identifier: 4F:33:2D:C0:8C:97:47:AC:9B:C8:1C:54:7D:1B:A3:45:64:3F:76:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzMtwIyXR6ybyBxUfRujRWQ_drc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4042/EFC98DE6E53611EB9926556BC4F9AE02/26F1B59437A511ECB73C9852C4F9AE02.roa Signing time: Thu 03 Jul 2025 00:03:23 +0000 ROA not before: Thu 03 Jul 2025 00:03:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142424 IP address blocks: 103.168.38.0/23 maxlen: 23 103.168.38.0/24 maxlen: 24 103.168.39.0/24 maxlen: 24 2001:df6:ca80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4042/EFC98DE6E53611EB9926556BC4F9AE02/TzMtwIyXR6ybyBxUfRujRWQ_drc.crl rsync://rpki.apnic.net/member_repository/A91E4042/EFC98DE6E53611EB9926556BC4F9AE02/TzMtwIyXR6ybyBxUfRujRWQ_drc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzMtwIyXR6ybyBxUfRujRWQ_drc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1404 (0x57c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4042, serialNumber=4F332DC08C9747AC9BC81C547D1BA345643F76B7 Validity Not Before: Jul 3 00:03:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865c8cb-1a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:5a:ef:bb:da:58:07:54:20:13:19:ea:2e:fd: 6b:67:a4:f3:51:4f:04:1b:6f:ec:a6:ab:3a:af:a7: 16:55:95:ee:93:0b:6e:c9:af:a7:fd:13:4c:97:ae: 86:22:53:10:11:97:b2:cd:10:92:61:f3:9f:fc:60: 15:bd:4b:81:d0:5f:4b:00:5b:01:10:a5:c9:30:fa: 26:05:a7:8a:d9:d3:ed:2e:db:2b:0e:07:61:9c:c9: d3:78:24:e2:b2:95:f0:1a:23:7e:ab:f0:45:97:c9: da:d8:54:3c:ca:00:8c:73:e3:40:2f:dd:aa:ea:6d: fa:89:3a:cd:27:8a:56:96:96:47:91:b6:fa:ac:a3: 22:2c:f9:bf:70:4a:64:07:1d:e8:c8:91:d2:6d:72: c5:a0:92:eb:17:5f:be:98:1d:11:f8:a0:04:1d:c8: 27:d8:36:97:97:60:22:d9:9c:ba:60:0f:30:e5:d6: c8:38:68:f3:b6:ff:28:f3:c3:6a:16:4a:04:d6:88: 01:33:bb:2d:d2:78:4c:00:70:80:7d:a4:70:61:3f: b7:84:d7:76:5e:e5:5a:2c:65:62:02:e2:61:b2:43: fe:5b:08:b4:3f:23:04:fe:45:45:c5:40:d2:ea:d5: d1:91:25:e9:a8:40:7d:3d:3f:18:f6:fe:e1:37:d1: df:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F1:2D:D7:AB:A5:0F:39:AF:DC:CC:7F:4A:03:BA:D9:E0:EB:28:B2 X509v3 Authority Key Identifier: keyid:4F:33:2D:C0:8C:97:47:AC:9B:C8:1C:54:7D:1B:A3:45:64:3F:76:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4042/EFC98DE6E53611EB9926556BC4F9AE02/TzMtwIyXR6ybyBxUfRujRWQ_drc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzMtwIyXR6ybyBxUfRujRWQ_drc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4042/EFC98DE6E53611EB9926556BC4F9AE02/26F1B59437A511ECB73C9852C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.38.0/23 IPv6: 2001:df6:ca80::/48 Signature Algorithm: sha256WithRSAEncryption 00:3d:f7:23:d6:f9:9c:f8:83:28:d1:7f:44:da:cb:23:89:b7: 25:55:c6:eb:f9:1d:b4:0d:9d:98:bd:7e:5e:e2:fa:77:a1:b4: d7:f9:d6:c1:dc:ab:3b:f8:13:b4:4d:9e:07:1e:f4:65:45:46: b5:16:d7:97:a2:c5:5d:d4:c9:7d:a2:86:c8:10:24:7f:6a:e6: fe:d8:23:63:c3:eb:4d:7b:f2:25:60:74:60:dc:db:7e:87:8d: 3a:34:a5:a6:3d:5c:65:12:fc:f0:b6:6e:3a:60:b3:ae:69:5f: 9f:66:ce:d1:d7:b4:1a:ca:d0:7b:66:16:58:8d:de:07:8d:11: 74:cb:92:d1:f7:4c:96:17:6e:c1:f3:e9:ce:df:7b:05:f4:10: 0b:74:25:4f:82:9d:0b:51:c1:f1:ed:41:a8:09:c5:7f:e4:d0: 24:29:c1:44:bc:72:7e:e4:7d:f9:02:7d:91:2e:fe:db:b2:93: 3d:18:df:63:f1:ab:d0:75:8a:f6:89:2e:d3:6c:2d:7b:d6:86: fa:99:c1:1c:79:0e:2f:69:a5:ef:b0:c7:3d:43:c6:95:41:e7: 47:e1:8a:ab:59:56:4e:b6:e9:29:89:da:ec:12:8c:ec:ba:f4: b4:5b:88:74:fb:68:ac:70:d8:38:39:67:81:c2:c5:ba:a1:18: 12:be:53:5c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQwNDIxMTAvBgNVBAUTKDRGMzMyREMwOEM5NzQ3QUM5QkM4MUM1NDdEMUJBMzQ1 NjQzRjc2QjcwHhcNMjUwNzAzMDAwMzIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YzhjYi0xYTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Vrvu9pYB1QgExnqLv1rZ6TzUU8EG2/spqs6r6cWVZXukwtuya+n/RNMl66G IlMQEZeyzRCSYfOf/GAVvUuB0F9LAFsBEKXJMPomBaeK2dPtLtsrDgdhnMnTeCTi spXwGiN+q/BFl8na2FQ8ygCMc+NAL92q6m36iTrNJ4pWlpZHkbb6rKMiLPm/cEpk Bx3oyJHSbXLFoJLrF1++mB0R+KAEHcgn2DaXl2Ai2Zy6YA8w5dbIOGjztv8o88Nq FkoE1ogBM7st0nhMAHCAfaRwYT+3hNd2XuVaLGViAuJhskP+Wwi0PyME/kVFxUDS 6tXRkSXpqEB9PT8Y9v7hN9HfRwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCbxLder pQ85r9zMf0oDutng6yiyMB8GA1UdIwQYMBaAFE8zLcCMl0esm8gcVH0bo0VkP3a3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDA0Mi9FRkM5OERFNkU1 MzYxMUVCOTkyNjU1NkJDNEY5QUUwMi9Uek10d0l5WFI2eWJ5QnhVZlJ1alJXUV9k cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6TXR3SXlYUjZ5YnlCeFVmUnVqUldRX2RyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQwNDIvRUZDOThERTZFNTM2MTFFQjk5MjY1NTZCQzRGOUFFMDIvMjZGMUI1OTQz N0E1MTFFQ0I3M0M5ODUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqCYwDwQCAAIwCQMHACABDfbKgDANBgkqhkiG9w0BAQsF AAOCAQEAAD33I9b5nPiDKNF/RNrLI4m3JVXG6/kdtA2dmL1+XuL6d6G01/nWwdyr O/gTtE2eBx70ZUVGtRbXl6LFXdTJfaKGyBAkf2rm/tgjY8PrTXvyJWB0YNzbfoeN OjSlpj1cZRL88LZuOmCzrmlfn2bO0de0GsrQe2YWWI3eB40RdMuS0fdMlhduwfPp zt97BfQQC3QlT4KdC1HB8e1BqAnFf+TQJCnBRLxyfuR9+QJ9kS7+27KTPRjfY/Gr 0HWK9oku02wte9aG+pnBHHkOL2ml77DHPUPGlUHnR+GKq1lWTrbpKYna7BKM7Lr0 tFuIdPtorHDYODlngcLFuqEYEr5TXA== -----END CERTIFICATE-----Generated at Thu Jul 3 17:15:38 2025 by rpki-client