$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/A582509EC68611EFB4077137C4F9AE02.roa File: A582509EC68611EFB4077137C4F9AE02.roa (raw, json) Hash identifier: htBdLlmm2i58ANdYRz6MXQaGCSG7yL+kzZ3EQqldEig= Subject key identifier: B0:67:D5:EE:FC:F1:12:7F:3B:8E:E6:77:86:21:59:9C:9B:C2:9E:E6 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34EF Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/A582509EC68611EFB4077137C4F9AE02.roa Signing time: Thu 10 Jul 2025 14:50:47 +0000 ROA not before: Thu 10 Jul 2025 14:50:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153183 IP address blocks: 103.112.36.0/22 maxlen: 24 180.189.160.0/20 maxlen: 24 2405:1f00::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13551 (0x34ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Jul 10 14:50:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686fd347-1d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:88:03:e5:72:5d:90:a9:bb:4c:4e:d0:61:10: e4:d4:90:ea:12:f5:17:19:07:58:8a:ce:ec:99:f6: a7:d9:1c:bd:e0:22:3e:f4:62:c5:e7:89:d8:25:87: db:b8:dd:b3:12:41:37:b7:9c:97:d3:cc:2c:76:16: 61:e1:3a:cd:a4:5f:dd:71:0f:2d:11:8d:19:e1:cc: 8e:59:95:f0:19:26:43:70:30:4c:49:8f:b1:b4:78: be:0d:20:4d:4a:19:64:73:ad:b7:a0:f1:b0:a2:b0: 40:f8:66:29:2f:50:ea:93:03:b6:57:db:8e:1c:e7: b1:e0:f1:75:9d:75:b5:f7:54:80:d1:d3:93:93:d6: bf:46:12:56:ba:a2:fd:35:b1:db:7a:5f:7f:ea:e5: c2:03:46:09:86:ef:1c:7b:79:f2:6c:35:12:fe:57: e7:eb:30:77:da:3e:6d:2c:71:4c:fd:bc:37:50:81: c7:dd:1b:ea:c3:24:54:d6:56:f8:5f:73:f9:6c:9d: 11:3d:3e:d7:5b:f2:83:67:ef:39:c1:84:b2:fb:ba: 0f:bf:27:e4:38:4d:6c:a8:48:58:ef:c6:6d:73:50: 6a:b2:a4:ce:1e:13:f9:ec:42:c5:61:0d:e1:d5:c0: 7c:b4:7d:98:89:fb:47:14:00:16:9a:10:29:ff:59: c4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:67:D5:EE:FC:F1:12:7F:3B:8E:E6:77:86:21:59:9C:9B:C2:9E:E6 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/A582509EC68611EFB4077137C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.36.0/22 180.189.160.0/20 IPv6: 2405:1f00::/32 Signature Algorithm: sha256WithRSAEncryption a9:42:f6:d9:a5:c8:a1:88:32:ef:27:ac:bc:b5:2f:68:ed:22: 7f:01:de:84:0b:5f:96:84:d6:5f:93:6e:55:d8:f5:b6:e6:d8: b5:13:d3:4a:f4:6f:89:33:51:aa:e3:16:54:a1:cf:57:2b:bf: 46:fd:5e:96:8d:e2:8c:dc:ce:29:42:67:84:61:4c:93:bf:ff: d7:75:4f:d7:9c:58:68:62:e9:39:75:ad:dc:1e:7f:15:8c:64: 69:25:52:e9:da:21:b9:34:f9:94:c8:1b:b4:ce:e5:80:46:10: de:c3:62:5a:33:b9:0b:fc:a1:8a:83:b1:ea:13:a9:73:16:47: 8f:fe:5e:65:53:dc:3c:51:b0:4b:19:9a:8b:c8:59:76:90:39: 1d:ac:81:ea:b6:4d:19:71:6f:3c:c3:6b:7b:e1:e2:a5:cc:25: 1e:5b:35:b3:1d:8e:06:7f:76:29:78:f5:1d:f5:65:32:8e:00: 27:db:0f:b6:2c:bb:36:b4:2c:a9:82:aa:ea:bd:21:f2:78:70: fb:a6:ca:c8:29:60:5f:ca:59:9e:4d:de:63:31:58:ac:d1:5d: 45:62:2b:3b:7c:34:6e:c3:3a:45:f4:45:fe:f8:83:d5:8a:b8: 48:0e:0a:55:38:29:15:d0:1a:e4:d0:19:00:4d:8f:81:44:00: 76:c9:9d:85 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNzEwMTQ1MDQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZmZDM0Ny0xZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ogD5XJdkKm7TE7QYRDk1JDqEvUXGQdYis7smfan2Ry94CI+9GLF54nYJYfb uN2zEkE3t5yX08wsdhZh4TrNpF/dcQ8tEY0Z4cyOWZXwGSZDcDBMSY+xtHi+DSBN Shlkc623oPGworBA+GYpL1DqkwO2V9uOHOex4PF1nXW191SA0dOTk9a/RhJWuqL9 NbHbel9/6uXCA0YJhu8ce3nybDUS/lfn6zB32j5tLHFM/bw3UIHH3RvqwyRU1lb4 X3P5bJ0RPT7XW/KDZ+85wYSy+7oPvyfkOE1sqEhY78Ztc1BqsqTOHhP57ELFYQ3h 1cB8tH2YiftHFAAWmhAp/1nEzQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLBn1e78 8RJ/O47md4YhWZybwp7mMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThEMjIvMjUyNjk3OTgxRDkyMTFFMkI2MThDQUY0MDhCMDJDRDIvQTU4MjUwOUVD Njg2MTFFRkI0MDc3MTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJncCQDBAS0vaAwDQQCAAIwBwMFACQFHwAwDQYJKoZIhvcN AQELBQADggEBAKlC9tmlyKGIMu8nrLy1L2jtIn8B3oQLX5aE1l+TblXY9bbm2LUT 00r0b4kzUarjFlShz1crv0b9XpaN4ozczilCZ4RhTJO//9d1T9ecWGhi6Tl1rdwe fxWMZGklUunaIbk0+ZTIG7TO5YBGEN7DYlozuQv8oYqDseoTqXMWR4/+XmVT3DxR sEsZmovIWXaQOR2sgeq2TRlxbzzDa3vh4qXMJR5bNbMdjgZ/dil49R31ZTKOACfb D7Ysuza0LKmCquq9IfJ4cPumysgpYF/KWZ5N3mMxWKzRXUViKzt8NG7DOkX0Rf74 g9WKuEgOClU4KRXQGuTQGQBNj4FEAHbJnYU= -----END CERTIFICATE-----Generated at Mon Jul 21 05:47:32 2025 by rpki-client