$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/B791EB5251A811F08D434B5BC4F9AE02.roa File: B791EB5251A811F08D434B5BC4F9AE02.roa (raw, json) Hash identifier: Ryo/ggbAvRq53R+p9bEGSceue4muKwWx8AVsuS/Cdrs= Subject key identifier: C0:53:56:0D:D6:0F:5B:F0:3B:3A:55:DC:D3:C0:5E:FF:6A:86:94:D6 Certificate issuer: /CN=A91F9665/serialNumber=3058A469B67D03072C2D8A385E9F2AABBA134E2B Certificate serial: 0734 Authority key identifier: 30:58:A4:69:B6:7D:03:07:2C:2D:8A:38:5E:9F:2A:AB:BA:13:4E:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MFikabZ9AwcsLYo4Xp8qq7oTTis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/B791EB5251A811F08D434B5BC4F9AE02.roa Signing time: Wed 25 Jun 2025 09:42:32 +0000 ROA not before: Wed 25 Jun 2025 09:42:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132203 IP address blocks: 103.242.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/MFikabZ9AwcsLYo4Xp8qq7oTTis.crl rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/MFikabZ9AwcsLYo4Xp8qq7oTTis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MFikabZ9AwcsLYo4Xp8qq7oTTis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9665, serialNumber=3058A469B67D03072C2D8A385E9F2AABBA134E2B Validity Not Before: Jun 25 09:42:32 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=685bc488-9be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:53:78:2c:63:b5:45:c3:70:85:b6:4e:e3: 8d:36:8e:ef:6f:c5:5a:7c:02:cf:3a:08:65:41:ac: 2c:79:27:4e:d5:c8:a3:42:88:29:9f:a5:f2:51:1a: 40:2d:bb:fa:aa:ec:96:22:ba:84:9e:03:2d:86:35: 70:52:0e:b9:90:61:b6:cd:ee:ef:cd:ee:03:9d:0c: 5f:4a:a9:78:1f:b4:01:2f:65:ca:1e:82:8f:46:5c: 21:1b:da:ee:73:0c:ef:17:68:ab:40:75:06:64:8e: a8:ab:1d:80:66:65:3f:fd:a2:e1:50:a8:35:6f:1b: fb:b9:17:51:28:f3:63:e0:ed:56:69:62:3b:dd:87: c6:28:f2:50:10:a8:4c:19:c9:ac:ec:f6:20:e7:d3: 27:fc:63:d3:47:46:ca:36:c2:c3:6d:84:ce:6b:f4: fa:5b:d2:1c:da:e2:37:e3:0f:76:2b:6f:21:d1:87: e5:be:bf:32:fc:8c:bb:bf:e2:d7:cc:a1:dc:cd:9e: 7c:1e:16:6f:34:e4:15:a4:36:77:16:3f:48:49:98: 7b:06:f6:17:7b:59:e6:54:4c:26:57:91:2d:7e:e1: ac:fa:cb:24:d5:5e:3c:23:02:21:d5:94:9a:74:dd: 9e:f7:a2:72:bc:06:fa:f8:b2:ee:89:86:8f:46:6e: 8c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:53:56:0D:D6:0F:5B:F0:3B:3A:55:DC:D3:C0:5E:FF:6A:86:94:D6 X509v3 Authority Key Identifier: keyid:30:58:A4:69:B6:7D:03:07:2C:2D:8A:38:5E:9F:2A:AB:BA:13:4E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/MFikabZ9AwcsLYo4Xp8qq7oTTis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MFikabZ9AwcsLYo4Xp8qq7oTTis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9665/6D0D12B84BF511EBBD83B87BC4F9AE02/B791EB5251A811F08D434B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.242.0.0/23 Signature Algorithm: sha256WithRSAEncryption b4:89:99:46:2d:88:37:cc:26:a7:d2:23:95:19:b5:6b:6a:95: fb:98:97:4d:11:6b:49:7b:d8:79:7e:91:cd:20:0a:07:e7:84: cb:99:a2:48:f9:71:21:86:a6:b3:1b:a0:e4:0d:47:73:06:f6: cd:26:d6:09:0c:7a:83:0a:48:52:7b:1e:ad:cc:13:4a:bf:df: 40:12:42:25:89:d2:ba:82:0f:76:79:7f:1c:2e:e6:eb:60:23: ea:a1:bb:64:fd:a7:7e:3e:b2:70:28:00:e8:74:2a:8a:67:3d: 72:66:44:e3:3b:e0:b2:2b:9a:73:5a:32:76:0f:f8:7d:44:4b: 08:48:5e:d7:41:7d:ab:8b:69:9d:cf:f9:d1:8b:f4:13:75:01: 9f:a5:32:14:76:26:b6:15:d9:4f:08:7b:de:be:16:27:a1:20: d1:b6:dd:37:c1:e9:c3:d8:4e:9f:e7:cb:5d:5b:2a:71:95:90: 22:c6:48:d6:5a:70:45:62:9f:e4:76:44:5a:e9:9d:f3:7d:07: 1f:c6:eb:1b:65:ea:f7:6c:08:67:38:ad:c8:1a:3f:71:1f:94: 7e:7d:3a:ba:db:ce:b0:b5:c8:34:3c:c0:89:5b:42:82:65:32: 32:6c:0e:ae:18:46:df:61:e6:04:41:d0:04:1a:8b:b9:b2:03: 7e:e7:80:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk2NjUxMTAvBgNVBAUTKDMwNThBNDY5QjY3RDAzMDcyQzJEOEEzODVFOUYyQUFC QkExMzRFMkIwHhcNMjUwNjI1MDk0MjMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODViYzQ4OC05YmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzJTeCxjtUXDcIW2TuONNo7vb8VafALPOghlQawseSdO1cijQogpn6XyURpA Lbv6quyWIrqEngMthjVwUg65kGG2ze7vze4DnQxfSql4H7QBL2XKHoKPRlwhG9ru cwzvF2irQHUGZI6oqx2AZmU//aLhUKg1bxv7uRdRKPNj4O1WaWI73YfGKPJQEKhM Gcms7PYg59Mn/GPTR0bKNsLDbYTOa/T6W9Ic2uI34w92K28h0Yflvr8y/Iy7v+LX zKHczZ58HhZvNOQVpDZ3Fj9ISZh7BvYXe1nmVEwmV5EtfuGs+ssk1V48IwIh1ZSa dN2e96JyvAb6+LLuiYaPRm6MoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMBTVg3W D1vwOzpV3NPAXv9qhpTWMB8GA1UdIwQYMBaAFDBYpGm2fQMHLC2KOF6fKqu6E04r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTY2NS82RDBEMTJCODRC RjUxMUVCQkQ4M0I4N0JDNEY5QUUwMi9NRmlrYWJaOUF3Y3NMWW80WHA4cXE3b1RU aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01GaWthYlo5QXdjc0xZbzRYcDhxcTdvVFRpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk2NjUvNkQwRDEyQjg0QkY1MTFFQkJEODNCODdCQzRGOUFFMDIvQjc5MUVCNTI1 MUE4MTFGMDhENDM0QjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn8gAwDQYJKoZIhvcNAQELBQADggEBALSJmUYtiDfMJqfS I5UZtWtqlfuYl00Ra0l72Hl+kc0gCgfnhMuZokj5cSGGprMboOQNR3MG9s0m1gkM eoMKSFJ7Hq3ME0q/30ASQiWJ0rqCD3Z5fxwu5utgI+qhu2T9p34+snAoAOh0Kopn PXJmROM74LIrmnNaMnYP+H1ESwhIXtdBfauLaZ3P+dGL9BN1AZ+lMhR2JrYV2U8I e96+FiehING23TfB6cPYTp/ny11bKnGVkCLGSNZacEVin+R2RFrpnfN9Bx/G6xtl 6vdsCGc4rcgaP3EflH59OrrbzrC1yDQ8wIlbQoJlMjJsDq4YRt9h5gRB0AQai7my A37ngNA= -----END CERTIFICATE-----Generated at Mon Jul 21 07:27:26 2025 by rpki-client