$ rpki-client -vvf rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/4C6FB118CDEC11EB85313B22C4F9AE02.roa File: 4C6FB118CDEC11EB85313B22C4F9AE02.roa (raw, json) Hash identifier: 1qRqu4QH9HDd1EyRcy6qURNfK14QqgjZ5hEdOKADVjI= Subject key identifier: A0:F3:39:F2:01:28:90:A5:63:85:33:AE:BF:39:47:46:04:B9:4E:19 Certificate issuer: /CN=A911F1E6/serialNumber=606580F76ED392537D5FCA259694CF9261417C41 Certificate serial: 05C0 Authority key identifier: 60:65:80:F7:6E:D3:92:53:7D:5F:CA:25:96:94:CF:92:61:41:7C:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGWA927TklN9X8ollpTPkmFBfEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/4C6FB118CDEC11EB85313B22C4F9AE02.roa Signing time: Fri 30 May 2025 23:34:27 +0000 ROA not before: Fri 30 May 2025 23:34:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 142430 IP address blocks: 103.168.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/YGWA927TklN9X8ollpTPkmFBfEE.crl rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/YGWA927TklN9X8ollpTPkmFBfEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGWA927TklN9X8ollpTPkmFBfEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1472 (0x5c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F1E6, serialNumber=606580F76ED392537D5FCA259694CF9261417C41 Validity Not Before: May 30 23:34:27 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=683a4082-ddc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:de:59:30:17:e1:95:b5:70:1d:6e:a0:e0:ab: fc:a6:93:74:d2:e4:d6:f6:a6:93:e7:c0:96:f9:58: aa:c3:30:b9:98:38:83:58:1f:65:45:a3:68:e5:25: e8:24:d4:8b:1b:0e:b4:95:27:86:85:46:ed:07:88: ca:c2:8b:f0:88:ce:54:7d:67:91:2a:f0:e3:a8:9b: da:7f:27:09:5f:2c:91:7a:9e:c7:b9:a2:be:a2:01: 40:71:de:e9:aa:2e:61:d3:70:4e:2b:f3:f7:d5:ff: 46:97:e1:92:1a:54:e4:a4:86:54:c0:45:bd:4a:85: b2:a7:95:cc:1d:21:27:d3:a9:74:90:4f:ff:76:75: b0:ad:8d:8e:2d:a0:f1:d8:b3:2c:84:86:81:c4:20: 24:5b:a3:9e:1a:c4:17:6f:10:75:c8:25:21:31:18: 4d:bc:92:fd:c5:dc:8b:eb:9a:8d:50:dc:36:8b:83: 0e:3e:6d:1c:be:04:39:b9:f3:65:43:a6:d7:a9:cc: 43:fb:44:e5:85:bf:64:c6:93:c5:1d:bd:04:9d:56: 8d:18:42:cc:ee:5a:33:c7:ba:a8:ca:37:93:dc:23: 73:e2:de:6b:49:27:c1:c4:8f:b0:14:a3:6d:e2:cd: 8e:7f:27:8f:14:08:eb:13:61:8f:84:1c:1e:59:47: 06:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F3:39:F2:01:28:90:A5:63:85:33:AE:BF:39:47:46:04:B9:4E:19 X509v3 Authority Key Identifier: keyid:60:65:80:F7:6E:D3:92:53:7D:5F:CA:25:96:94:CF:92:61:41:7C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/YGWA927TklN9X8ollpTPkmFBfEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGWA927TklN9X8ollpTPkmFBfEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/4C6FB118CDEC11EB85313B22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.66.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:0e:fb:1e:be:57:49:1d:b8:fc:1d:5b:ff:c8:5f:54:af:1e: 82:64:09:6a:28:74:65:78:f4:24:a6:d0:eb:fb:ac:96:c8:36: a9:ba:50:ab:6d:24:18:1b:85:1a:87:26:f3:b3:cf:dc:00:2a: 36:e5:71:14:22:5c:f8:db:03:c1:8b:ee:ab:a7:4d:da:16:a5: 98:bd:3c:d2:54:e3:aa:c0:77:ac:4a:70:cf:ca:0b:5a:df:d8: 70:e7:3d:34:0f:7c:3d:75:bc:41:d7:ad:2c:a9:94:a0:47:85: 2d:ed:80:ff:d4:6c:9f:1e:c4:bc:95:f0:53:eb:af:57:0a:ba: 46:95:d7:b7:20:c3:8b:49:d8:d6:54:41:53:d5:1a:80:c4:57: e1:a9:04:b2:93:e2:bc:60:1f:ad:f3:69:0e:ea:33:07:3c:13: d5:ba:06:ac:9a:7c:98:d8:aa:3f:0b:22:9d:b7:ea:88:2a:2c: 2d:1e:35:8f:0a:f3:a7:4e:1a:ef:24:7f:fb:df:0f:f3:23:7b: 93:0c:b0:dc:fa:c8:5e:02:88:f1:05:94:9a:8a:fa:70:90:f1: 85:aa:4e:e2:b6:82:62:5f:47:09:dc:99:b2:d8:90:d6:e8:34: ae:be:e6:51:0b:1d:7e:f6:e2:fb:d4:21:cc:26:e2:07:aa:22: b6:f1:81:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxRTYxMTAvBgNVBAUTKDYwNjU4MEY3NkVEMzkyNTM3RDVGQ0EyNTk2OTRDRjky NjE0MTdDNDEwHhcNMjUwNTMwMjMzNDI3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNDA4Mi1kZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvt5ZMBfhlbVwHW6g4Kv8ppN00uTW9qaT58CW+ViqwzC5mDiDWB9lRaNo5SXo JNSLGw60lSeGhUbtB4jKwovwiM5UfWeRKvDjqJvafycJXyyRep7HuaK+ogFAcd7p qi5h03BOK/P31f9Gl+GSGlTkpIZUwEW9SoWyp5XMHSEn06l0kE//dnWwrY2OLaDx 2LMshIaBxCAkW6OeGsQXbxB1yCUhMRhNvJL9xdyL65qNUNw2i4MOPm0cvgQ5ufNl Q6bXqcxD+0Tlhb9kxpPFHb0EnVaNGELM7lozx7qoyjeT3CNz4t5rSSfBxI+wFKNt 4s2OfyePFAjrE2GPhBweWUcGWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKDzOfIB KJClY4Uzrr85R0YEuU4ZMB8GA1UdIwQYMBaAFGBlgPdu05JTfV/KJZaUz5JhQXxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjFFNi82MjdFRjE0MkNE RTkxMUVCQjdFNkJFMUNDNEY5QUUwMi9ZR1dBOTI3VGtsTjlYOG9sbHBUUGttRkJm RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHV0E5MjdUa2xOOVg4b2xscFRQa21GQmZFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUYxRTYvNjI3RUYxNDJDREU5MTFFQkI3RTZCRTFDQzRGOUFFMDIvNEM2RkIxMThD REVDMTFFQjg1MzEzQjIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqEIwDQYJKoZIhvcNAQELBQADggEBAAsO+x6+V0kduPwd W//IX1SvHoJkCWoodGV49CSm0Ov7rJbINqm6UKttJBgbhRqHJvOzz9wAKjblcRQi XPjbA8GL7qunTdoWpZi9PNJU46rAd6xKcM/KC1rf2HDnPTQPfD11vEHXrSyplKBH hS3tgP/UbJ8exLyV8FPrr1cKukaV17cgw4tJ2NZUQVPVGoDEV+GpBLKT4rxgH63z aQ7qMwc8E9W6BqyafJjYqj8LIp236ogqLC0eNY8K86dOGu8kf/vfD/Mje5MMsNz6 yF4CiPEFlJqK+nCQ8YWqTuK2gmJfRwncmbLYkNboNK6+5lELHX724vvUIcwm4geq IrbxgRk= -----END CERTIFICATE-----Generated at Mon Jun 2 06:52:18 2025 by rpki-client