$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/3C15F928579311F0B296C030C4F9AE02.roa File: 3C15F928579311F0B296C030C4F9AE02.roa (raw, json) Hash identifier: nqk1ux23a4hNUp2hbZ+iR4SaGmMhlfdgLlDN61RvYPk= Subject key identifier: 8A:EF:B6:27:7E:EC:F8:36:7A:E7:53:86:19:8E:AC:1A:70:51:43:E2 Certificate issuer: /CN=A91EF6EF/serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Certificate serial: 04 Authority key identifier: 9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/3C15F928579311F0B296C030C4F9AE02.roa Signing time: Wed 02 Jul 2025 22:23:53 +0000 ROA not before: Wed 02 Jul 2025 22:23:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45411 IP address blocks: 103.153.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 08:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF6EF, serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Validity Not Before: Jul 2 22:23:53 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6865b179-2b4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fc:d5:63:c3:f5:f6:f7:13:b6:49:f9:29:b6: 86:4d:39:e7:d6:83:2f:5d:61:aa:00:e8:b5:a3:bb: 2c:95:ae:d9:eb:49:1f:39:52:70:29:00:dc:7b:5b: 8d:57:a2:86:62:4b:7e:a9:65:1b:4d:fb:23:14:6c: 2e:6d:97:c1:90:3a:0d:44:54:30:a1:08:9e:7c:fe: 18:8c:7e:ff:38:d0:e8:63:99:d4:e1:10:03:1d:1e: e1:53:75:b8:8c:03:44:df:04:e9:13:65:59:07:8d: 7c:b1:96:2a:3a:a2:55:94:50:b6:8f:60:23:9e:79: c0:34:87:ec:0e:af:69:63:c6:d0:a8:62:0f:95:74: 8b:86:9f:fa:56:0d:d0:0e:b6:0d:77:d0:ab:33:fd: 51:83:cb:0f:72:1a:19:6b:81:ef:14:75:04:fe:09: 89:7a:b3:3e:c4:59:43:bf:54:79:ac:87:98:ff:7f: 84:8a:01:7a:89:f1:49:0d:88:80:3c:ad:ba:70:94: ed:38:ef:d8:e3:b5:8e:71:fc:ba:fb:c0:08:2a:71: 67:d9:cf:ed:a9:59:d8:e0:e0:28:0a:85:00:59:47: 62:39:05:3c:c2:09:90:0c:eb:f7:8f:ad:10:d5:59: 2f:73:89:c9:e3:d2:9a:37:a4:7f:1f:35:89:f5:12: fb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:EF:B6:27:7E:EC:F8:36:7A:E7:53:86:19:8E:AC:1A:70:51:43:E2 X509v3 Authority Key Identifier: keyid:9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/3C15F928579311F0B296C030C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.158.0/23 Signature Algorithm: sha256WithRSAEncryption 79:f9:17:d5:ad:dc:37:ae:0d:94:26:86:3f:f1:c7:ca:e5:60: 0d:e4:97:cf:8b:45:e5:a3:c3:93:91:ae:ac:82:ac:af:68:0f: ff:46:3e:2a:01:30:78:c9:e3:a0:98:2a:3e:2a:05:e9:63:a1: a8:79:55:cf:20:39:10:97:0f:f2:0b:bb:84:2b:c9:7d:45:c7: b2:f9:b9:78:b8:89:c7:88:0c:b0:ff:d4:4d:8e:01:f8:56:93: 08:3c:18:b6:8e:cd:19:a4:11:74:0a:61:08:27:4d:6f:10:3b: d7:9a:85:47:73:f5:3a:23:ea:ad:a6:7c:ba:f3:4e:68:f4:0e: 28:d0:91:b9:15:92:7c:29:bf:c5:4e:b6:67:51:c5:30:22:61: 6a:83:8c:01:e2:5b:97:cb:f2:37:92:a2:6b:6a:f0:9d:ac:ba: ee:a2:61:50:9b:f3:7e:45:d0:72:02:85:f7:7f:3e:cc:f1:3e: bf:61:9f:d5:58:b6:31:19:37:90:41:ad:1f:2c:c6:aa:44:c4: 74:ca:1f:3e:b2:82:49:98:53:f6:9f:8d:88:b5:9d:98:da:06: f3:dd:f9:5a:8c:c4:61:61:81:40:1c:0f:ef:55:53:d1:23:88: 3f:f4:ae:49:0e:3a:3c:18:c3:a3:2d:84:22:3b:2d:2e:bc:ff: 5e:24:f0:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjZFRjExMC8GA1UEBRMoOUEwMjNCODBBQkNGNEU2Nzk3RDM4OEMwREU4MTYwQTE2 RUIxNURGRTAeFw0yNTA3MDIyMjIzNTNaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjViMTc5LTJiNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO/NVjw/X29xO2SfkptoZNOefWgy9dYaoA6LWjuyyVrtnrSR85UnApANx7W41X ooZiS36pZRtN+yMUbC5tl8GQOg1EVDChCJ58/hiMfv840OhjmdThEAMdHuFTdbiM A0TfBOkTZVkHjXyxlio6olWUULaPYCOeecA0h+wOr2ljxtCoYg+VdIuGn/pWDdAO tg130Ksz/VGDyw9yGhlrge8UdQT+CYl6sz7EWUO/VHmsh5j/f4SKAXqJ8UkNiIA8 rbpwlO0479jjtY5x/Lr7wAgqcWfZz+2pWdjg4CgKhQBZR2I5BTzCCZAM6/ePrRDV WS9zicnj0po3pH8fNYn1Evt3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUiu+2J37s +DZ651OGGY6sGnBRQ+IwHwYDVR0jBBgwFoAUmgI7gKvPTmeX04jA3oFgoW6xXf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNkVGL0FDQkY2RjJBNTc0 MjExRjBCRURCNDU1Q0M0RjlBRTAyL21nSTdnS3ZQVG1lWDA0akEzb0Znb1c2eFhm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWdJN2dLdlBUbWVYMDRqQTNvRmdvVzZ4WGY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjZFRi9BQ0JGNkYyQTU3NDIxMUYwQkVEQjQ1NUNDNEY5QUUwMi8zQzE1RjkyODU3 OTMxMUYwQjI5NkMwMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeZnjANBgkqhkiG9w0BAQsFAAOCAQEAefkX1a3cN64NlCaG P/HHyuVgDeSXz4tF5aPDk5GurIKsr2gP/0Y+KgEweMnjoJgqPioF6WOhqHlVzyA5 EJcP8gu7hCvJfUXHsvm5eLiJx4gMsP/UTY4B+FaTCDwYto7NGaQRdAphCCdNbxA7 15qFR3P1OiPqraZ8uvNOaPQOKNCRuRWSfCm/xU62Z1HFMCJhaoOMAeJbl8vyN5Ki a2rwnay67qJhUJvzfkXQcgKF938+zPE+v2Gf1Vi2MRk3kEGtHyzGqkTEdMofPrKC SZhT9p+NiLWdmNoG8935WozEYWGBQBwP71VT0SOIP/SuSQ46PBjDoy2EIjstLrz/ XiTwtg== -----END CERTIFICATE-----Generated at Thu Jul 17 12:18:36 2025 by rpki-client