$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/5B5ECC52474711ECA7B2426CC4F9AE02.roa File: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (raw, json) Hash identifier: t8ZApbp8ZgdmZpVbm08QjAGg0vnpe//NggnR/4OMSk8= Subject key identifier: B4:98:0F:24:58:37:38:ED:6B:36:4F:20:62:01:52:1A:77:35:0B:71 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34F1 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/5B5ECC52474711ECA7B2426CC4F9AE02.roa Signing time: Thu 10 Jul 2025 14:50:49 +0000 ROA not before: Thu 10 Jul 2025 14:50:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38077 IP address blocks: 103.112.36.0/22 maxlen: 24 180.189.160.0/20 maxlen: 24 2405:1f00::/32 maxlen: 33 2405:1f00::/36 maxlen: 36 2405:1f00:1000::/36 maxlen: 36 2405:1f00:2000::/36 maxlen: 36 2405:1f00:3000::/36 maxlen: 36 2405:1f00:4000::/36 maxlen: 36 2405:1f00:5000::/36 maxlen: 36 2405:1f00:6000::/36 maxlen: 36 2405:1f00:7000::/36 maxlen: 36 2405:1f00:8000::/36 maxlen: 36 2405:1f00:9000::/36 maxlen: 36 2405:1f00:a000::/36 maxlen: 36 2405:1f00:b000::/36 maxlen: 36 2405:1f00:c000::/36 maxlen: 36 2405:1f00:d000::/36 maxlen: 36 2405:1f00:e000::/36 maxlen: 36 2405:1f00:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Jul 10 14:50:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686fd349-7b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0e:46:de:59:46:91:bf:b4:30:a3:2b:c3:58: 62:89:3e:84:d2:a5:6b:f1:f1:4f:76:4b:a7:74:57: ae:a7:16:59:34:76:e4:ff:69:9e:11:fe:02:37:02: 9c:07:5e:e0:6e:96:6b:90:14:03:5d:ce:35:7d:41: ae:12:a1:e0:91:7d:0e:e4:42:be:cb:91:2e:e7:45: ce:64:36:2e:6b:d6:3b:e7:8d:e6:43:8d:9d:76:55: 2e:59:64:01:b8:94:ae:0e:71:fe:f0:a1:a9:f3:91: 27:11:39:52:96:a1:95:42:00:b3:44:34:8f:a2:77: c7:9e:e9:b4:97:12:d4:23:54:2b:e3:e9:d1:99:7a: 6e:61:f5:82:8c:68:73:72:31:3e:61:23:89:eb:7d: 2a:74:ff:00:54:a5:46:0a:62:15:32:ce:4f:97:ec: 65:30:58:40:65:93:f6:b4:da:21:dd:4c:77:03:fb: 41:2f:d7:5f:0e:0a:01:c6:c1:8b:c5:1a:9a:41:9d: b5:d9:c0:57:75:6b:e2:45:ef:ec:53:70:6b:57:e0: 49:08:b8:ef:79:8c:54:62:90:bc:91:0e:bd:9d:ad: d0:34:b5:15:90:93:8a:90:ab:ac:88:3a:e4:ce:55: c7:53:da:4f:0d:de:32:1b:51:b8:47:40:cd:14:23: 28:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:98:0F:24:58:37:38:ED:6B:36:4F:20:62:01:52:1A:77:35:0B:71 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/5B5ECC52474711ECA7B2426CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.36.0/22 180.189.160.0/20 IPv6: 2405:1f00::/32 Signature Algorithm: sha256WithRSAEncryption 36:ac:48:02:31:e1:bb:91:a3:41:85:3f:c0:86:89:84:10:e5: 69:26:fd:c2:c1:bc:04:4b:d0:57:f1:42:14:3b:93:6d:2e:99: a3:d5:50:a4:e9:93:53:5b:fd:03:c1:01:b9:95:d8:e5:61:46: 93:74:9c:92:e9:44:83:19:91:e9:9d:b2:2a:75:fb:db:96:16: 36:ec:fe:15:9e:d7:df:59:f5:30:45:76:f2:cf:9e:3b:34:48: 58:e9:08:7a:bd:28:47:74:54:ac:2b:be:b4:fb:f4:c6:24:d3: 9e:cc:c1:77:90:33:cf:e4:be:43:da:f0:8c:f5:33:8c:16:c7: 82:30:75:60:d9:ed:7b:22:40:99:b8:1d:22:f7:4c:5a:aa:4a: 83:5e:4f:4f:22:12:60:20:85:b2:c9:77:77:65:f7:a8:17:1d: 40:be:5d:4a:73:79:cd:a6:e5:47:19:1c:88:e4:a4:b3:86:b9: 75:75:00:3c:ed:be:51:8c:33:ec:53:d8:4f:d4:00:5e:66:18: e3:13:09:19:42:03:6f:dd:7e:15:3a:54:6b:08:2f:cc:d2:42: 93:e1:57:ab:98:7c:27:9d:ef:d7:10:0e:74:22:08:eb:16:09: 77:98:35:38:ca:02:87:34:8d:fb:81:b9:52:b8:fe:d0:e7:2f: f7:53:d1:75 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNzEwMTQ1MDQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZmZDM0OS03YjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwA5G3llGkb+0MKMrw1hiiT6E0qVr8fFPdkundFeupxZZNHbk/2meEf4CNwKc B17gbpZrkBQDXc41fUGuEqHgkX0O5EK+y5Eu50XOZDYua9Y7543mQ42ddlUuWWQB uJSuDnH+8KGp85EnETlSlqGVQgCzRDSPonfHnum0lxLUI1Qr4+nRmXpuYfWCjGhz cjE+YSOJ630qdP8AVKVGCmIVMs5Pl+xlMFhAZZP2tNoh3Ux3A/tBL9dfDgoBxsGL xRqaQZ212cBXdWviRe/sU3BrV+BJCLjveYxUYpC8kQ69na3QNLUVkJOKkKusiDrk zlXHU9pPDd4yG1G4R0DNFCMo7wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLSYDyRY NzjtazZPIGIBUhp3NQtxMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThEMjIvMjUyNjk3OTgxRDkyMTFFMkI2MThDQUY0MDhCMDJDRDIvNUI1RUNDNTI0 NzQ3MTFFQ0E3QjI0MjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJncCQDBAS0vaAwDQQCAAIwBwMFACQFHwAwDQYJKoZIhvcN AQELBQADggEBADasSAIx4buRo0GFP8CGiYQQ5Wkm/cLBvARL0FfxQhQ7k20umaPV UKTpk1Nb/QPBAbmV2OVhRpN0nJLpRIMZkemdsip1+9uWFjbs/hWe199Z9TBFdvLP njs0SFjpCHq9KEd0VKwrvrT79MYk057MwXeQM8/kvkPa8Iz1M4wWx4IwdWDZ7Xsi QJm4HSL3TFqqSoNeT08iEmAghbLJd3dl96gXHUC+XUpzec2m5UcZHIjkpLOGuXV1 ADztvlGMM+xT2E/UAF5mGOMTCRlCA2/dfhU6VGsIL8zSQpPhV6uYfCed79cQDnQi COsWCXeYNTjKAoc0jfuBuVK4/tDnL/dT0XU= -----END CERTIFICATE-----Generated at Mon Jul 21 05:47:05 2025 by rpki-client