$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa File: 5AFFB9E48C2211EDAE44DD87C4F9AE02.roa (raw, json) Hash identifier: GsQb9OViPtlvdrFlGnTmdER4z6tAGgYqQ3UiB63DzdQ= Subject key identifier: 28:5A:62:53:35:16:7E:15:BE:4A:B3:F6:47:B9:F8:E8:5C:80:53:85 Certificate issuer: /CN=A91E8903/serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Certificate serial: 01EE Authority key identifier: 45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa Signing time: Thu 03 Jul 2025 03:06:44 +0000 ROA not before: Thu 03 Jul 2025 03:06:44 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 131471 IP address blocks: 103.221.246.0/24 maxlen: 24 103.221.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8903, serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Validity Not Before: Jul 3 03:06:44 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6865f3c4-9b7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:65:56:ac:f8:47:89:fd:2d:7c:a1:d0:08:48: 84:f9:a4:7e:c4:8d:ce:5a:40:b7:cd:01:5e:84:f5: be:f7:6b:ce:76:4a:53:5d:e6:89:d4:49:54:8c:99: 10:d4:5d:42:ba:dd:cf:70:1c:b4:37:0a:09:4f:56: a6:b1:d0:6f:ec:86:52:2b:3c:cf:20:37:a0:fb:be: 9f:ec:b5:fb:fb:56:6b:76:35:96:9c:5f:af:f0:34: ac:70:b1:4a:86:e8:37:64:09:fa:10:16:38:71:33: 14:8a:a6:4e:4e:ae:48:6c:69:dc:c4:66:97:27:6b: 71:5f:3c:42:44:b6:80:4d:5e:08:52:d6:a9:6f:da: 2a:b4:51:2c:01:20:59:1b:8c:1e:09:1f:31:a6:d9: d0:f4:ae:bf:dd:a0:83:ca:82:06:25:c7:f6:84:e3: da:ff:50:51:52:f7:5a:7d:b3:c3:7e:f2:be:5f:09: c4:e7:ce:1f:60:62:27:0d:b3:4e:ae:86:ab:bf:fb: e2:99:c0:26:64:a8:72:e9:37:93:fc:b5:e1:f4:d3: 87:9e:83:57:8e:b0:52:75:8d:fe:3f:76:1d:8c:b2: 17:5c:e7:9a:bc:c5:24:82:12:5e:e0:37:a7:90:46: 08:00:6c:bd:bc:ef:53:7b:f7:65:d6:c0:36:48:eb: d9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:5A:62:53:35:16:7E:15:BE:4A:B3:F6:47:B9:F8:E8:5C:80:53:85 X509v3 Authority Key Identifier: keyid:45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.221.246.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:61:7f:79:b0:ad:71:86:75:0c:b0:e5:54:a9:5b:f7:31:ea: c5:b2:06:a1:2d:72:35:4d:92:06:d4:4d:dd:5e:ad:c0:94:f3: 51:88:c0:22:0d:09:65:33:d2:52:4f:9e:ab:0b:f9:cf:55:27: 84:d0:74:96:92:74:5e:17:31:60:ce:c7:df:df:92:61:27:94: ef:64:37:a3:71:85:fb:1f:94:94:dc:dc:cd:07:25:99:a7:f0: 7b:a9:92:cd:3a:7e:19:fb:76:89:b1:c2:ed:e2:04:03:a6:96: 70:ad:d4:df:53:9b:33:a5:f3:0e:be:3c:e4:7b:9e:c6:75:4b: cb:14:30:3e:65:bf:76:69:31:10:c1:d7:b5:1a:fe:40:a6:1a: dd:6c:bb:d8:d6:b1:85:6f:00:11:45:00:d5:ec:b8:00:5c:e5: 2c:d3:b7:92:b6:54:47:71:7e:1d:cc:8d:21:60:b0:9d:0d:f6: c6:84:3c:c6:f4:fa:d6:04:4a:80:9d:a0:4c:1b:4b:cb:87:9f: a2:7a:05:39:9a:0c:96:12:e2:52:be:ac:a9:9b:13:3e:b0:48: 20:b2:84:0c:64:2b:92:13:43:cb:7a:1b:47:25:64:17:99:f5: 92:38:02:f3:dc:36:55:a1:49:db:e9:45:4f:5e:75:9f:22:a1: 79:92:6f:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MDMxMTAvBgNVBAUTKDQ1NkFGNUU1NjY3REUyNDhBOUNGMENFQjkwQzZEMUIz RDNFRDZGQTgwHhcNMjUwNzAzMDMwNjQ0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1ZjNjNC05YjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42VWrPhHif0tfKHQCEiE+aR+xI3OWkC3zQFehPW+92vOdkpTXeaJ1ElUjJkQ 1F1Cut3PcBy0NwoJT1amsdBv7IZSKzzPIDeg+76f7LX7+1ZrdjWWnF+v8DSscLFK hug3ZAn6EBY4cTMUiqZOTq5IbGncxGaXJ2txXzxCRLaATV4IUtapb9oqtFEsASBZ G4weCR8xptnQ9K6/3aCDyoIGJcf2hOPa/1BRUvdafbPDfvK+XwnE584fYGInDbNO roarv/vimcAmZKhy6TeT/LXh9NOHnoNXjrBSdY3+P3YdjLIXXOeavMUkghJe4Den kEYIAGy9vO9Te/dl1sA2SOvZ5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFChaYlM1 Fn4Vvkqz9ke5+OhcgFOFMB8GA1UdIwQYMBaAFEVq9eVmfeJIqc8M65DG0bPT7W+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkwMy9EODk4MjY1QThD MUYxMUVEQUU0NDFEODdDNEY5QUUwMi9SV3IxNVdaOTRraXB6d3pya01iUnM5UHRi NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXcjE1V1o5NGtpcHp3enJrTWJSczlQdGI2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MDMvRDg5ODI2NUE4QzFGMTFFREFFNDQxRDg3QzRGOUFFMDIvNUFGRkI5RTQ4 QzIyMTFFREFFNDRERDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn3fYwDQYJKoZIhvcNAQELBQADggEBAD9hf3mwrXGGdQyw 5VSpW/cx6sWyBqEtcjVNkgbUTd1ercCU81GIwCINCWUz0lJPnqsL+c9VJ4TQdJaS dF4XMWDOx9/fkmEnlO9kN6NxhfsflJTc3M0HJZmn8Hupks06fhn7domxwu3iBAOm lnCt1N9TmzOl8w6+POR7nsZ1S8sUMD5lv3ZpMRDB17Ua/kCmGt1su9jWsYVvABFF ANXsuABc5SzTt5K2VEdxfh3MjSFgsJ0N9saEPMb0+tYESoCdoEwbS8uHn6J6BTma DJYS4lK+rKmbEz6wSCCyhAxkK5ITQ8t6G0clZBeZ9ZI4AvPcNlWhSdvpRU9edZ8i oXmSbzw= -----END CERTIFICATE-----Generated at Sun Jul 20 06:28:32 2025 by rpki-client