$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/CFB6C2ECB55511EFB8F19317C4F9AE02.roa File: CFB6C2ECB55511EFB8F19317C4F9AE02.roa (raw, json) Hash identifier: Nuqi/DwAfsIbvqEslH1o2Nq9pgL64KpNEMZ+W/5PR6U= Subject key identifier: 64:61:E9:B8:5B:6F:99:2E:6C:74:D7:9F:FF:48:2F:58:2E:12:E9:3D Certificate issuer: /CN=A91C6BB2/serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE Certificate serial: 02B5 Authority key identifier: 03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/CFB6C2ECB55511EFB8F19317C4F9AE02.roa Signing time: Wed 09 Jul 2025 02:38:29 +0000 ROA not before: Wed 09 Jul 2025 02:38:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134186 IP address blocks: 45.117.60.0/24 maxlen: 24 103.57.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB2, serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE Validity Not Before: Jul 9 02:38:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686dd625-9306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7e:c3:74:69:7f:74:d0:2c:71:93:cd:e8:6f: 29:fd:dc:a1:26:21:df:7a:b2:60:81:bb:11:2f:e5: ab:be:1a:c1:dc:93:20:20:df:03:0a:61:fd:ac:9e: c7:32:7a:35:68:3b:9f:ed:a1:e9:74:4e:46:b4:57: b5:d5:50:9c:76:b9:00:07:c7:4b:a7:b0:89:9c:ae: 4f:76:2e:b2:bd:6a:d7:89:c8:e3:48:51:b2:c8:d1: 7d:8d:43:8c:df:2a:37:fa:f6:46:d0:01:89:85:db: d2:e8:fc:51:ed:3b:c0:32:a8:a6:e6:28:09:83:07: 48:f9:25:31:60:e8:92:6a:5d:fb:00:77:cf:80:c0: ce:03:75:46:d5:e7:5c:9d:4f:e5:33:d4:77:a8:9b: 59:9d:c8:b5:4d:ab:87:27:23:4b:5f:2f:52:7f:e9: db:6f:77:60:ea:84:8c:d1:2f:62:03:d9:1f:fd:ab: 11:80:d6:f6:6c:db:ea:30:21:8d:e8:7b:3d:75:0e: e8:db:5d:73:ad:3a:00:d6:1a:c9:e0:f4:e0:06:2c: ca:c1:43:b2:14:2d:52:bd:0b:d3:45:cb:c4:9a:41: 0b:56:9e:e6:6c:5c:33:29:24:77:f9:e0:a8:93:9f: 9c:99:ed:8c:61:96:83:89:b5:19:fb:ed:de:73:67: 11:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:61:E9:B8:5B:6F:99:2E:6C:74:D7:9F:FF:48:2F:58:2E:12:E9:3D X509v3 Authority Key Identifier: keyid:03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/CFB6C2ECB55511EFB8F19317C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.60.0/24 103.57.120.0/22 Signature Algorithm: sha256WithRSAEncryption 33:47:62:65:15:2e:62:ce:ce:e9:87:c6:03:27:10:48:42:da: 14:00:f0:71:fe:6a:b3:55:42:c1:d9:97:0d:12:f6:e2:80:06: 23:68:96:44:87:97:25:f5:9a:a7:0b:95:19:d7:e8:d9:64:e3: 9b:ce:b9:9f:58:36:4b:17:a3:4b:57:9f:0b:ff:8a:51:bc:bb: 6a:8e:4c:cf:47:f3:c8:04:05:4b:5a:90:1f:11:54:1e:e4:eb: 60:1a:03:f0:da:b7:a7:a5:64:5f:e2:ef:92:66:58:36:e2:58: e2:1f:e3:8b:82:e9:08:aa:29:a6:2b:54:d7:db:3a:81:6a:85: 92:34:93:03:8e:97:67:7a:c6:f0:50:11:02:c1:a0:7e:70:f6: 1f:16:ac:7f:95:9e:4f:c7:a5:f8:3c:43:a0:be:45:da:46:e4: 7e:63:da:db:24:3e:89:28:1b:a0:4a:fa:e8:02:44:45:31:9c: 7c:98:a8:87:19:62:08:ac:eb:15:2e:75:3d:67:25:54:90:a3: 7f:9e:b0:18:0b:da:b4:5f:98:df:ce:aa:a5:de:2b:c4:c3:04: 77:4d:1c:d2:cd:61:3c:29:bd:a0:af:6f:07:eb:b1:66:72:93: c3:49:09:70:93:1f:c2:81:5a:16:3f:24:3d:a8:b1:b4:8c:e4: d5:41:5d:eb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjIxMTAvBgNVBAUTKDAzQkM3NDlBQzE2ODJDNEI0NkRBMjU5QUI3RUI2NjJB QTIyNUIwRUUwHhcNMjUwNzA5MDIzODI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkZDYyNS05MzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2n7DdGl/dNAscZPN6G8p/dyhJiHferJggbsRL+WrvhrB3JMgIN8DCmH9rJ7H Mno1aDuf7aHpdE5GtFe11VCcdrkAB8dLp7CJnK5Pdi6yvWrXicjjSFGyyNF9jUOM 3yo3+vZG0AGJhdvS6PxR7TvAMqim5igJgwdI+SUxYOiSal37AHfPgMDOA3VG1edc nU/lM9R3qJtZnci1TauHJyNLXy9Sf+nbb3dg6oSM0S9iA9kf/asRgNb2bNvqMCGN 6Hs9dQ7o211zrToA1hrJ4PTgBizKwUOyFC1SvQvTRcvEmkELVp7mbFwzKSR3+eCo k5+cme2MYZaDibUZ++3ec2cR0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGRh6bhb b5kubHTXn/9IL1guEuk9MB8GA1UdIwQYMBaAFAO8dJrBaCxLRtolmrfrZiqiJbDu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCMi81RDRDQzJGNjA4 QzgxMUVEOTQ0RjI1NjZDNEY5QUUwMi9BN3gwbXNGb0xFdEcyaVdhdC10bUtxSWxz TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3eDBtc0ZvTEV0RzJpV2F0LXRtS3FJbHNPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjIvNUQ0Q0MyRjYwOEM4MTFFRDk0NEYyNTY2QzRGOUFFMDIvQ0ZCNkMyRUNC NTU1MTFFRkI4RjE5MzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAtdTwDBAJnOXgwDQYJKoZIhvcNAQELBQADggEBADNHYmUV LmLOzumHxgMnEEhC2hQA8HH+arNVQsHZlw0S9uKABiNolkSHlyX1mqcLlRnX6Nlk 45vOuZ9YNksXo0tXnwv/ilG8u2qOTM9H88gEBUtakB8RVB7k62AaA/Dat6elZF/i 75JmWDbiWOIf44uC6QiqKaYrVNfbOoFqhZI0kwOOl2d6xvBQEQLBoH5w9h8WrH+V nk/Hpfg8Q6C+RdpG5H5j2tskPokoG6BK+ugCREUxnHyYqIcZYgis6xUudT1nJVSQ o3+esBgL2rRfmN/OqqXeK8TDBHdNHNLNYTwpvaCvbwfrsWZyk8NJCXCTH8KBWhY/ JD2osbSM5NVBXes= -----END CERTIFICATE-----Generated at Sun Jul 20 07:33:20 2025 by rpki-client