$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/4ECF0A4C765C11E9A01A6E34C4F9AE02.roa File: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (raw, json) Hash identifier: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8= Subject key identifier: 11:CD:FD:94:FE:A1:81:91:4D:04:ED:F9:10:A5:58:4C:CF:DA:5A:65 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F02 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/4ECF0A4C765C11E9A01A6E34C4F9AE02.roa Signing time: Fri 28 Mar 2025 17:58:39 +0000 ROA not before: Fri 28 Mar 2025 17:58:39 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59340 IP address blocks: 103.87.112.0/22 maxlen: 22 103.87.112.0/23 maxlen: 23 103.87.112.0/24 maxlen: 24 103.87.113.0/24 maxlen: 24 103.87.114.0/23 maxlen: 23 103.87.114.0/24 maxlen: 24 103.87.115.0/24 maxlen: 24 116.204.220.0/22 maxlen: 22 116.204.220.0/23 maxlen: 23 116.204.220.0/24 maxlen: 24 116.204.221.0/24 maxlen: 24 116.204.222.0/23 maxlen: 23 116.204.222.0/24 maxlen: 24 116.204.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 17:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3842 (0xf02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25 Validity Not Before: Mar 28 17:58:39 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e6e34f-e86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f2:c7:51:9a:9b:37:be:48:7b:f8:52:b4:ab: 5c:37:ac:57:0f:9e:52:b2:40:4b:fe:14:a4:13:96: b0:86:17:ef:00:e0:d0:fb:a6:be:3c:42:59:ac:e0: 7c:d9:ae:83:1b:55:5b:76:2b:23:ad:05:d5:61:91: 4a:e6:cb:f8:0f:16:44:e1:76:ce:34:54:6d:ca:aa: e5:a8:60:dd:55:0f:72:c0:1e:49:72:4e:c1:d4:26: ed:98:51:2c:9c:94:8a:f1:de:77:23:78:08:95:cf: 57:21:2d:13:0d:69:cf:84:39:44:b8:c3:a4:12:3c: 63:97:3b:3f:9a:ac:5c:0c:1b:11:10:cb:18:19:22: 57:8c:41:ed:b8:51:b4:8b:c0:58:ba:e7:03:64:9b: e8:24:6b:4e:6e:99:64:3e:af:e3:d6:75:d6:21:bb: f1:89:41:26:36:22:13:86:a7:ae:55:57:dc:27:8b: 5f:c8:18:ae:09:84:ed:d3:26:a4:4c:95:92:34:d8: 58:c9:8f:14:c4:c8:9e:cf:5b:73:cc:04:04:e9:83: ff:58:99:44:9d:fb:0b:7a:85:95:a0:11:c2:42:7e: 7c:f4:e2:a4:00:7e:61:cb:e7:a9:e8:ca:e2:c9:7d: 64:a0:28:e9:9d:94:33:63:f8:4d:f2:59:e7:55:98: 3b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:CD:FD:94:FE:A1:81:91:4D:04:ED:F9:10:A5:58:4C:CF:DA:5A:65 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/4ECF0A4C765C11E9A01A6E34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.112.0/22 116.204.220.0/22 Signature Algorithm: sha256WithRSAEncryption ae:c3:67:27:da:60:5b:6b:48:bc:ed:93:8f:53:b0:60:ea:9f: 47:2f:6f:61:52:8c:1d:9e:71:ad:52:80:7c:b7:4e:b6:92:4d: 17:c9:ff:15:01:fe:be:aa:41:ca:b4:72:08:df:6c:1d:b2:4b: 1e:3f:43:70:36:9c:c8:c1:02:40:c4:29:39:27:b8:0e:30:82: 79:1d:39:88:89:ef:dd:7c:df:36:f6:82:3a:8b:fa:ff:67:25: ad:c9:13:c5:c4:b9:53:31:dc:7e:73:19:21:08:c9:ed:fc:b6: df:da:88:68:fa:f0:5a:d2:3f:22:d9:52:cb:41:fb:8a:e9:a7: 14:7c:d4:70:61:d8:70:98:00:eb:f5:59:6d:17:db:53:b3:e8: 10:c9:4a:28:12:32:78:f9:e7:c9:91:0a:4e:d5:db:dc:b2:c2: 51:bb:5e:60:8d:e7:3c:3a:28:d0:e9:c1:84:78:4a:41:23:af: 20:ab:f9:15:5e:a2:39:6d:25:8f:90:ad:af:36:64:bf:17:6a: 93:d1:c0:49:a6:c3:16:b7:f0:30:54:f3:fe:7f:e7:a7:fc:58: 29:23:02:c0:88:98:bc:47:8f:50:4b:6b:77:59:36:10:a6:c0: 9c:f2:f0:55:ca:3a:e1:b1:8e:2d:9b:8a:57:eb:08:f0:8f:3b: 95:2b:fa:83 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUwMzI4MTc1ODM5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U2ZTM0Zi1lODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfLHUZqbN75Ie/hStKtcN6xXD55SskBL/hSkE5awhhfvAODQ+6a+PEJZrOB8 2a6DG1VbdisjrQXVYZFK5sv4DxZE4XbONFRtyqrlqGDdVQ9ywB5Jck7B1CbtmFEs nJSK8d53I3gIlc9XIS0TDWnPhDlEuMOkEjxjlzs/mqxcDBsREMsYGSJXjEHtuFG0 i8BYuucDZJvoJGtObplkPq/j1nXWIbvxiUEmNiIThqeuVVfcJ4tfyBiuCYTt0yak TJWSNNhYyY8UxMiez1tzzAQE6YP/WJlEnfsLeoWVoBHCQn589OKkAH5hy+ep6Mri yX1koCjpnZQzY/hN8lnnVZg7FQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBHN/ZT+ oYGRTQTt+RClWEzP2lplMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVDMjUvNjg3QTEwQTY3NjVBMTFFOTlEMDFFNDJFQzRGOUFFMDIvNEVDRjBBNEM3 NjVDMTFFOUEwMUE2RTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnV3ADBAJ0zNwwDQYJKoZIhvcNAQELBQADggEBAK7DZyfa YFtrSLztk49TsGDqn0cvb2FSjB2eca1SgHy3TraSTRfJ/xUB/r6qQcq0cgjfbB2y Sx4/Q3A2nMjBAkDEKTknuA4wgnkdOYiJ79183zb2gjqL+v9nJa3JE8XEuVMx3H5z GSEIye38tt/aiGj68FrSPyLZUstB+4rppxR81HBh2HCYAOv1WW0X21Oz6BDJSigS Mnj558mRCk7V29yywlG7XmCN5zw6KNDpwYR4SkEjryCr+RVeojltJY+Qra82ZL8X apPRwEmmwxa38DBU8/5/56f8WCkjAsCImLxHj1BLa3dZNhCmwJzy8FXKOuGxji2b ilfrCPCPO5Ur+oM= -----END CERTIFICATE-----Generated at Sat Apr 12 00:31:13 2025 by rpki-client