$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/2BA212DC306D11EA81D19B38C4F9AE02.roa File: 2BA212DC306D11EA81D19B38C4F9AE02.roa (raw, json) Hash identifier: 3O/Wog4x2tDqfQkXBLn8rR3jiMrnPghGptwvVcI/q+8= Subject key identifier: C8:93:57:EF:8E:EA:07:4B:80:43:C9:76:46:FD:BC:18:B6:14:11:20 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0B83 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/2BA212DC306D11EA81D19B38C4F9AE02.roa Signing time: Mon 30 Jun 2025 19:12:58 +0000 ROA not before: Mon 30 Jun 2025 19:12:58 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 139283 IP address blocks: 103.140.212.0/23 maxlen: 23 103.140.212.0/24 maxlen: 24 103.140.213.0/24 maxlen: 24 2407:f4c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Jun 30 19:12:58 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=6862e1ba-6052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:cd:12:e6:7e:9b:30:30:71:3b:ca:8c:fe: 46:e6:e8:1e:b2:c4:ab:c4:2f:46:c4:27:3e:76:2b: 46:60:bb:10:f9:32:f8:35:bc:92:57:80:bd:1b:e3: 03:03:1a:9e:7e:19:b7:1c:26:92:94:a0:87:fb:ca: a2:ed:dc:fb:7b:8f:47:71:21:7d:ad:88:3b:e2:71: bd:44:7f:c7:61:5e:e0:84:fe:ce:e4:52:ad:69:95: a1:37:a8:37:03:18:59:f6:ed:b6:52:8a:d5:8b:d9: d0:cd:d2:59:0d:a0:08:24:18:4e:3a:6b:c6:0d:3f: c5:42:1d:d1:69:9c:1e:3d:fb:fb:03:10:5f:61:16: 2a:44:e2:1f:95:34:55:8e:82:54:1d:b2:5f:ad:f8: bd:25:3e:fd:49:eb:d9:fc:3f:4d:cb:84:36:8a:0d: 59:81:a7:dc:ec:82:20:da:a1:0f:cf:cc:6e:d1:64: 1c:e3:5a:c2:d4:2d:6c:04:d2:74:41:48:2c:53:a3: 20:f1:70:09:e9:18:48:8f:9f:fa:59:4b:c8:fb:51: 2d:8b:df:8b:54:06:6b:81:04:9f:16:e9:4b:ba:07: dc:83:28:be:db:18:52:e9:e2:f2:11:5a:f3:81:6f: 63:4b:cc:b4:32:f5:4b:aa:6f:be:bd:e1:7d:95:13: 77:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:93:57:EF:8E:EA:07:4B:80:43:C9:76:46:FD:BC:18:B6:14:11:20 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/2BA212DC306D11EA81D19B38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.212.0/23 IPv6: 2407:f4c0::/32 Signature Algorithm: sha256WithRSAEncryption 45:17:f7:09:97:c4:fe:64:f9:b6:40:f7:53:e0:d4:d2:bd:e4: c8:16:dd:87:87:42:df:fe:2b:1c:6c:67:f3:4d:8a:71:5a:4f: 27:20:73:8f:89:9e:8c:7a:17:08:c5:f3:de:50:e9:d8:ef:4b: 3d:4e:34:c3:d7:c3:37:32:24:93:84:f3:27:7f:7f:b5:50:d8: fc:68:5e:83:66:37:ff:41:24:5b:16:f7:49:1b:7c:c7:c2:d6: 01:87:47:1b:9b:c1:81:d8:c2:41:d5:d0:80:6d:77:da:5a:d8: e0:24:77:46:76:36:93:1e:87:3c:53:6c:df:e1:54:73:e3:7c: c6:8c:3b:fd:b4:aa:ed:88:4c:90:00:24:d1:8a:4b:c8:90:97: 85:1d:86:68:89:cb:c3:6c:c0:6e:fc:1b:7d:52:43:48:ad:4b: b9:dd:d9:b0:fb:be:35:d3:9d:10:e5:56:cb:91:4e:4e:b4:8c: ef:dd:1c:e9:0c:7f:fe:22:48:d3:49:0c:53:0e:a5:f9:68:b9: 3f:58:3a:13:2e:a3:32:03:61:a4:b4:6e:e1:0b:c9:ee:3f:c2: 77:ac:9b:a0:de:d4:66:a2:e3:17:42:71:82:64:2c:e2:8e:da: db:1f:63:77:a4:79:66:53:91:04:89:41:cd:eb:11:c8:cb:4e: 46:1b:2b:aa -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUwNjMwMTkxMjU4WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyZTFiYS02MDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozvNEuZ+mzAwcTvKjP5G5ugessSrxC9GxCc+ditGYLsQ+TL4NbySV4C9G+MD Axqefhm3HCaSlKCH+8qi7dz7e49HcSF9rYg74nG9RH/HYV7ghP7O5FKtaZWhN6g3 AxhZ9u22UorVi9nQzdJZDaAIJBhOOmvGDT/FQh3RaZwePfv7AxBfYRYqROIflTRV joJUHbJfrfi9JT79SevZ/D9Ny4Q2ig1Zgafc7IIg2qEPz8xu0WQc41rC1C1sBNJ0 QUgsU6Mg8XAJ6RhIj5/6WUvI+1Eti9+LVAZrgQSfFulLugfcgyi+2xhS6eLyEVrz gW9jS8y0MvVLqm++veF9lRN3GQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMiTV++O 6gdLgEPJdkb9vBi2FBEgMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFMjUvNjhFNTdBRUUzMDY4MTFFQUE3MDZFMzJBQzRGOUFFMDIvMkJBMjEyREMz MDZEMTFFQTgxRDE5QjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjNQwDQQCAAIwBwMFACQH9MAwDQYJKoZIhvcNAQELBQAD ggEBAEUX9wmXxP5k+bZA91Pg1NK95MgW3YeHQt/+KxxsZ/NNinFaTycgc4+Jnox6 FwjF895Q6djvSz1ONMPXwzcyJJOE8yd/f7VQ2PxoXoNmN/9BJFsW90kbfMfC1gGH RxubwYHYwkHV0IBtd9pa2OAkd0Z2NpMehzxTbN/hVHPjfMaMO/20qu2ITJAAJNGK S8iQl4UdhmiJy8NswG78G31SQ0itS7nd2bD7vjXTnRDlVsuRTk60jO/dHOkMf/4i SNNJDFMOpflouT9YOhMuozIDYaS0buELye4/wnesm6De1Gai4xdCcYJkLOKO2tsf Y3ekeWZTkQSJQc3rEcjLTkYbK6o= -----END CERTIFICATE-----Generated at Thu Jul 3 03:09:16 2025 by rpki-client