$ rpki-client -vvf rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa File: 61096B522DB111EDA42EBE42C4F9AE02.roa (raw, json) Hash identifier: 24dZPAjPwsi+X/J+G66aSyT7fcYpOELO2E3lKkZX6no= Subject key identifier: 92:DC:6B:A5:58:88:0C:DA:3E:58:E0:19:BF:AF:4F:CB:8A:9F:53:E2 Certificate issuer: /CN=A9142661/serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Certificate serial: 0A4A Authority key identifier: 7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa Signing time: Fri 30 May 2025 20:06:19 +0000 ROA not before: Fri 30 May 2025 20:06:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58895 IP address blocks: 103.87.192.0/22 maxlen: 22 103.87.192.0/24 maxlen: 24 103.87.193.0/24 maxlen: 24 103.87.194.0/24 maxlen: 24 103.87.195.0/24 maxlen: 24 203.96.168.0/24 maxlen: 24 203.96.169.0/24 maxlen: 24 203.96.170.0/24 maxlen: 24 203.96.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2634 (0xa4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142661, serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Validity Not Before: May 30 20:06:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683a0fbb-5013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4c:0c:9d:0c:c3:eb:88:7f:28:3f:cc:6a:f0: 77:14:98:cf:d5:2d:20:ef:e7:54:9c:08:6a:8e:27: ff:be:68:bb:df:e9:8c:ab:b0:a3:46:4f:2e:75:8b: 14:3d:0d:29:42:49:6e:08:d3:da:99:ee:4e:af:0a: 40:dc:98:b7:16:e0:da:3d:62:f5:3d:ed:26:5c:52: 88:28:ab:56:89:c4:46:89:11:3f:12:e5:0d:e2:7c: eb:56:b7:05:02:f7:86:5d:e1:08:b0:85:3e:b5:cf: 6a:63:35:c1:b3:cd:57:b9:41:a8:e4:32:cb:a2:d5: 44:a8:7e:be:1f:85:5a:13:e6:71:b4:13:3d:11:ee: 6d:11:db:ee:03:77:40:61:49:f6:93:20:bd:7d:3a: 9b:7c:0b:8f:f7:0a:5f:b9:3c:bc:88:34:73:fa:d6: df:f0:4e:d2:17:d2:a6:23:71:0c:bd:34:d4:59:a5: d5:8e:a0:58:36:bc:f2:11:b6:bb:b1:f8:82:fa:87: 61:40:37:7c:89:d9:3c:5c:cc:f2:43:cd:2f:b1:0a: 92:88:e2:c8:48:44:fe:e7:89:4d:4e:08:f7:10:ee: 77:de:a8:06:31:b4:af:ad:41:eb:33:93:17:16:ac: ad:ac:b8:24:00:30:27:f8:e0:0c:97:12:b1:65:38: 8a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DC:6B:A5:58:88:0C:DA:3E:58:E0:19:BF:AF:4F:CB:8A:9F:53:E2 X509v3 Authority Key Identifier: keyid:7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.192.0/22 203.96.168.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:f2:4f:da:2b:5c:18:9f:35:31:1d:a8:a8:4f:5d:16:58:bd: c3:f9:95:0f:b6:63:5b:e7:0b:80:34:03:4d:6d:16:93:53:3f: e7:a5:c1:f4:13:13:a3:b6:13:4b:83:63:42:b4:68:b8:7d:78: 4c:ae:02:26:86:ca:eb:bf:f2:08:82:a4:60:4d:83:4d:41:13: 17:35:29:b4:c1:31:3f:e5:fb:5f:0f:2c:f3:94:19:bd:f6:0b: c8:a9:d6:61:50:bc:a7:01:ba:d2:4b:61:0f:cd:fb:23:ca:9a: 3b:37:1a:38:de:25:cc:59:04:29:74:2a:f2:c2:86:47:ca:0c: d2:1d:58:ef:c1:11:3c:fe:b0:9f:34:50:92:56:a3:f4:96:90: 56:46:b0:5c:64:7e:c2:3c:52:25:0a:01:39:37:b0:e7:32:91: 40:49:a4:c7:b1:24:76:b3:ad:f1:c0:a9:9c:db:2c:33:05:d4: 67:16:f7:d3:0a:48:bd:f3:6c:43:20:22:43:9d:25:70:0a:d7: 43:76:b1:46:22:de:07:0e:48:66:43:5f:b7:3c:73:ee:cc:49: 3b:02:47:cf:dd:b9:72:e5:aa:e1:d7:d7:44:2b:f6:22:4f:97: 49:7c:2e:f4:eb:e6:bb:f1:10:be:85:23:84:39:80:1c:83:66: 25:90:8a:7e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI2NjExMTAvBgNVBAUTKDdBRTk2MjJGODM0Q0Y0QzZDRjVBRDFBOThBRjA3RDUw MTU0NUE0QkYwHhcNMjUwNTMwMjAwNjE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMGZiYi01MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0wMnQzD64h/KD/MavB3FJjP1S0g7+dUnAhqjif/vmi73+mMq7CjRk8udYsU PQ0pQkluCNPame5OrwpA3Ji3FuDaPWL1Pe0mXFKIKKtWicRGiRE/EuUN4nzrVrcF AveGXeEIsIU+tc9qYzXBs81XuUGo5DLLotVEqH6+H4VaE+ZxtBM9Ee5tEdvuA3dA YUn2kyC9fTqbfAuP9wpfuTy8iDRz+tbf8E7SF9KmI3EMvTTUWaXVjqBYNrzyEba7 sfiC+odhQDd8idk8XMzyQ80vsQqSiOLISET+54lNTgj3EO533qgGMbSvrUHrM5MX FqytrLgkADAn+OAMlxKxZTiKewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJLca6VY iAzaPljgGb+vT8uKn1PiMB8GA1UdIwQYMBaAFHrpYi+DTPTGz1rRqYrwfVAVRaS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjY2MS80Q0M3NzI3NjY5 QkMxMUVBQUYxQjlGNjlDNEY5QUUwMi9ldWxpTDROTTlNYlBXdEdwaXZCOVVCVkZw TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V1bGlMNE5NOU1iUFd0R3BpdkI5VUJWRnBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI2NjEvNENDNzcyNzY2OUJDMTFFQUFGMUI5RjY5QzRGOUFFMDIvNjEwOTZCNTIy REIxMTFFREE0MkVCRTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnV8ADBALLYKgwDQYJKoZIhvcNAQELBQADggEBAEvyT9or XBifNTEdqKhPXRZYvcP5lQ+2Y1vnC4A0A01tFpNTP+elwfQTE6O2E0uDY0K0aLh9 eEyuAiaGyuu/8giCpGBNg01BExc1KbTBMT/l+18PLPOUGb32C8ip1mFQvKcButJL YQ/N+yPKmjs3GjjeJcxZBCl0KvLChkfKDNIdWO/BETz+sJ80UJJWo/SWkFZGsFxk fsI8UiUKATk3sOcykUBJpMexJHazrfHAqZzbLDMF1GcW99MKSL3zbEMgIkOdJXAK 10N2sUYi3gcOSGZDX7c8c+7MSTsCR8/duXLlquHX10Qr9iJPl0l8LvTr5rvxEL6F I4Q5gByDZiWQin4= -----END CERTIFICATE-----Generated at Mon Jun 2 06:36:15 2025 by rpki-client