$ rpki-client -vvf rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa File: 021C59CCD1D011EAA2763743C4F9AE02.roa (raw, json) Hash identifier: 9/6FBIuUpW3NyM8fzRBAE8GJH3DWuJevjPt7vt5pHkc= Subject key identifier: 1B:1B:B7:92:C4:A8:53:10:3A:74:6E:EB:F3:0C:4B:E9:92:C8:83:95 Certificate issuer: /CN=A91454A8/serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Certificate serial: 082D Authority key identifier: 9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa Signing time: Mon 02 Jun 2025 21:08:10 +0000 ROA not before: Mon 02 Jun 2025 21:08:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132335 IP address blocks: 103.150.187.0/24 maxlen: 24 2001:df3:8880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2093 (0x82d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454A8, serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Validity Not Before: Jun 2 21:08:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e12ba-8684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:70:b7:51:93:ef:e7:25:74:ec:9d:21:9d: 03:37:6c:17:6a:57:18:d0:74:e3:37:0b:fa:fd:74: 52:28:95:ac:f5:ee:f3:72:6d:56:eb:6e:3d:64:52: ff:45:df:95:0a:a1:e4:07:44:67:2f:21:8f:bf:43: 09:e2:51:55:b7:3e:30:aa:79:34:a9:54:72:e2:6c: b2:a0:b9:e2:a7:9b:b8:eb:0b:a2:43:c3:2c:15:f6: 14:d4:84:80:6d:26:02:2f:e7:69:81:3c:87:94:d0: 6e:b0:87:e9:a9:f7:cb:17:7a:d8:98:a1:f8:c3:8f: 2c:61:46:1e:53:7b:ee:53:20:df:39:e7:30:64:a1: d8:e8:35:f3:98:44:67:da:28:17:9b:43:2b:d6:28: ce:af:f8:32:63:6a:04:0b:86:44:84:32:65:2a:31: 3e:dd:95:ab:22:b9:e7:58:18:c6:ca:46:77:71:b7: 4c:aa:09:47:15:4d:e7:6d:b6:49:7a:97:40:82:5f: e2:38:1f:30:0f:9e:a0:ea:13:d4:03:e8:11:a5:61: 50:c7:b1:6c:07:96:af:41:c0:f3:63:c1:85:b5:34: ef:75:a2:ae:d9:55:f1:de:6a:53:d4:4e:07:36:77: d4:d1:9f:67:36:1d:03:88:b4:de:10:6b:36:4a:46: 3e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:1B:B7:92:C4:A8:53:10:3A:74:6E:EB:F3:0C:4B:E9:92:C8:83:95 X509v3 Authority Key Identifier: keyid:9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.187.0/24 IPv6: 2001:df3:8880::/48 Signature Algorithm: sha256WithRSAEncryption 90:9f:92:30:c9:43:31:6f:1c:43:56:77:10:72:0d:ee:70:81: 57:f7:7d:da:dd:ae:2b:92:50:2a:9f:2c:11:c4:ea:ef:8c:a7: e5:ae:a7:8f:58:ce:8a:28:99:8a:89:6b:60:2a:e0:f6:64:73: c2:19:13:0d:f5:7b:b1:53:d2:88:14:a7:90:c8:f3:f2:4d:9b: c6:79:2f:d1:f3:cf:fa:81:44:fe:4f:e3:e6:bb:53:53:60:47: b6:f2:5a:20:c7:35:7b:a0:01:cf:6f:4f:19:35:01:0a:6c:49: 3c:61:fa:f1:c1:f0:67:86:22:22:49:ee:86:a8:ec:b1:0f:58: 92:1c:dc:2e:06:2e:65:c5:7b:5b:4d:a1:d4:5b:0a:ec:9e:24: f2:e1:37:31:1e:5e:55:88:76:d9:bd:c1:ae:b2:ce:34:20:70: 98:78:1c:97:8a:e6:67:d9:51:7e:22:e6:fc:39:1a:02:6b:c0: ab:b2:da:fa:54:fa:f7:07:1f:39:e1:29:b5:6c:77:ea:9b:b5: 3c:e4:d1:8f:72:15:b9:ad:b5:d6:01:34:57:fd:e4:50:b2:77: c0:3c:d8:3b:09:54:b1:ca:a8:91:9c:2e:bb:58:8f:71:fd:78: 5b:14:f8:f8:c6:ba:8a:df:1e:c4:be:a3:d6:56:ca:3b:9f:64: 1f:c2:aa:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QTgxMTAvBgNVBAUTKDlCQjJCNEQxQThGRTgxMURDNDk1M0Q4MDJEMTAyRjVE MDQ4RDA4MUQwHhcNMjUwNjAyMjEwODEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTJiYS04Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKVwt1GT7+cldOydIZ0DN2wXalcY0HTjNwv6/XRSKJWs9e7zcm1W6249ZFL/ Rd+VCqHkB0RnLyGPv0MJ4lFVtz4wqnk0qVRy4myyoLnip5u46wuiQ8MsFfYU1ISA bSYCL+dpgTyHlNBusIfpqffLF3rYmKH4w48sYUYeU3vuUyDfOecwZKHY6DXzmERn 2igXm0Mr1ijOr/gyY2oEC4ZEhDJlKjE+3ZWrIrnnWBjGykZ3cbdMqglHFU3nbbZJ epdAgl/iOB8wD56g6hPUA+gRpWFQx7FsB5avQcDzY8GFtTTvdaKu2VXx3mpT1E4H NnfU0Z9nNh0DiLTeEGs2SkY+/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBsbt5LE qFMQOnRu6/MMS+mSyIOVMB8GA1UdIwQYMBaAFJuytNGo/oEdxJU9gC0QL10EjQgd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRBOC9FMjk1MjBCOEQx Q0QxMUVBQkE0QTM0NDBDNEY5QUUwMi9tN0swMGFqLWdSM0VsVDJBTFJBdlhRU05D QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL203SzAwYWotZ1IzRWxUMkFMUkF2WFFTTkNCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0QTgvRTI5NTIwQjhEMUNEMTFFQUJBNEEzNDQwQzRGOUFFMDIvMDIxQzU5Q0NE MUQwMTFFQUEyNzYzNzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnlrswDwQCAAIwCQMHACABDfOIgDANBgkqhkiG9w0BAQsF AAOCAQEAkJ+SMMlDMW8cQ1Z3EHIN7nCBV/d92t2uK5JQKp8sEcTq74yn5a6nj1jO iiiZiolrYCrg9mRzwhkTDfV7sVPSiBSnkMjz8k2bxnkv0fPP+oFE/k/j5rtTU2BH tvJaIMc1e6ABz29PGTUBCmxJPGH68cHwZ4YiIknuhqjssQ9YkhzcLgYuZcV7W02h 1FsK7J4k8uE3MR5eVYh22b3BrrLONCBwmHgcl4rmZ9lRfiLm/DkaAmvAq7La+lT6 9wcfOeEptWx36pu1POTRj3IVua211gE0V/3kULJ3wDzYOwlUscqokZwuu1iPcf14 WxT4+Ma6it8exL6j1lbKO59kH8KqeQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:42 2025 by rpki-client