$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/50063EE8822A11EDB2081A49C4F9AE02.roa File: 50063EE8822A11EDB2081A49C4F9AE02.roa (raw, json) Hash identifier: W9F0AxXLeTRt9akhBBWzGaKX1wJNYfdBQQ5r+SkSiyU= Subject key identifier: 28:14:E3:02:87:4B:27:32:DD:E7:28:29:48:80:CC:CB:51:00:C6:73 Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0D8E Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/50063EE8822A11EDB2081A49C4F9AE02.roa Signing time: Tue 06 May 2025 18:27:30 +0000 ROA not before: Tue 06 May 2025 18:27:30 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136547 IP address blocks: 103.251.36.0/24 maxlen: 24 103.251.37.0/24 maxlen: 24 103.251.38.0/24 maxlen: 24 103.251.39.0/24 maxlen: 24 150.242.228.0/24 maxlen: 24 150.242.229.0/24 maxlen: 24 150.242.230.0/24 maxlen: 24 150.242.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3470 (0xd8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: May 6 18:27:30 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681a5492-1306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:66:59:ae:fa:ac:0c:e7:66:60:78:e8:63:90: a8:9b:d7:78:3c:fb:8a:e6:50:52:4c:c0:d5:59:99: 69:da:6a:81:13:eb:bc:5f:e1:3b:3c:16:81:08:ea: a4:36:8d:5c:38:cf:d3:88:4b:87:11:0a:d3:4c:86: 67:0b:33:78:f9:f1:eb:9b:70:7c:b6:94:b2:9e:bd: 85:46:9b:c3:c7:7b:aa:12:42:f1:36:37:fe:b5:26: 45:24:a8:f5:33:cb:8f:19:64:85:46:c4:a7:e5:a3: d8:f0:cc:5e:5e:96:d1:41:c6:e8:b0:ae:b4:0c:21: 71:9c:79:42:82:47:21:e0:c4:71:04:44:41:fb:d6: dd:7e:cb:27:b9:1a:6b:34:0b:97:23:ca:ab:0d:4d: 02:9b:26:e9:e9:e0:08:b4:6f:e3:1a:a1:ca:67:f8: 69:9d:92:91:b2:56:e5:fc:39:79:57:2f:16:b1:13: 07:92:2e:43:54:4c:23:f6:55:34:10:36:9c:33:5d: 49:ac:3c:56:8a:04:1c:f5:5a:da:f6:71:69:10:aa: d1:8e:1a:dd:95:8f:80:54:32:de:c4:1f:d8:43:6d: 7b:ad:1a:8e:28:8e:3b:09:e4:9f:ab:91:e8:2c:15: 40:a4:df:54:41:d5:98:d4:03:fc:a6:e2:c3:45:1e: 82:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:14:E3:02:87:4B:27:32:DD:E7:28:29:48:80:CC:CB:51:00:C6:73 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/50063EE8822A11EDB2081A49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.251.36.0/22 150.242.228.0/22 Signature Algorithm: sha256WithRSAEncryption 75:2f:bc:84:87:1b:08:b9:82:0a:18:81:45:34:dc:49:43:1b: 77:30:e2:bc:93:d5:53:d8:6e:bc:b6:93:7d:49:03:f1:59:65: be:d9:6b:1e:f7:5d:97:bf:95:fa:d4:0f:1e:72:f2:ea:9d:1b: 69:1e:f9:1a:f2:d5:67:3a:74:23:21:13:c3:e6:4a:22:9c:60: 67:88:f6:64:f7:39:4d:da:70:76:07:1d:ea:f0:a4:8b:1e:44: ea:04:7f:c5:30:b0:96:53:b0:c2:d8:ce:96:52:45:5b:54:74: 1a:f9:b0:15:3f:5a:4a:b8:da:90:67:4e:57:73:67:88:5a:d7: 60:78:49:4e:55:f5:ba:0b:5f:25:94:b4:8d:e9:6f:d9:ea:f4: ff:7e:ab:50:9c:d9:65:48:34:43:d9:fa:dc:8c:81:92:4c:85: 96:7a:a5:66:5b:75:64:b8:99:14:3f:fa:48:32:28:1c:ea:a7: b9:eb:c3:03:58:28:64:f5:d4:a4:ca:c3:c0:7f:07:55:7e:ac: a6:b8:fa:cd:88:c1:1c:31:07:2c:68:34:a6:a8:f4:b2:f9:08: d5:5e:30:ab:63:c3:53:25:18:af:d6:91:94:55:bd:9c:a7:9e: e3:b3:aa:6a:f5:6d:7c:7b:2b:30:3a:18:26:41:f7:5c:53:92: 73:65:35:c4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNTA2MTgyNzMwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhNTQ5Mi0xMzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmZZrvqsDOdmYHjoY5Com9d4PPuK5lBSTMDVWZlp2mqBE+u8X+E7PBaBCOqk No1cOM/TiEuHEQrTTIZnCzN4+fHrm3B8tpSynr2FRpvDx3uqEkLxNjf+tSZFJKj1 M8uPGWSFRsSn5aPY8MxeXpbRQcbosK60DCFxnHlCgkch4MRxBERB+9bdfssnuRpr NAuXI8qrDU0Cmybp6eAItG/jGqHKZ/hpnZKRslbl/Dl5Vy8WsRMHki5DVEwj9lU0 EDacM11JrDxWigQc9Vra9nFpEKrRjhrdlY+AVDLexB/YQ217rRqOKI47CeSfq5Ho LBVApN9UQdWY1AP8puLDRR6CeQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCgU4wKH Sycy3ecoKUiAzMtRAMZzMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY4RjYvMzdEMDNERjZDRTI4MTFFOUE2QjZDMTdCQzRGOUFFMDIvNTAwNjNFRTg4 MjJBMTFFREIyMDgxQTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn+yQDBAKW8uQwDQYJKoZIhvcNAQELBQADggEBAHUvvISH Gwi5ggoYgUU03ElDG3cw4ryT1VPYbry2k31JA/FZZb7Zax73XZe/lfrUDx5y8uqd G2ke+Rry1Wc6dCMhE8PmSiKcYGeI9mT3OU3acHYHHerwpIseROoEf8UwsJZTsMLY zpZSRVtUdBr5sBU/Wkq42pBnTldzZ4ha12B4SU5V9boLXyWUtI3pb9nq9P9+q1Cc 2WVINEPZ+tyMgZJMhZZ6pWZbdWS4mRQ/+kgyKBzqp7nrwwNYKGT11KTKw8B/B1V+ rKa4+s2IwRwxByxoNKao9LL5CNVeMKtjw1MlGK/WkZRVvZynnuOzqmr1bXx7KzA6 GCZB91xTknNlNcQ= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:31 2025 by rpki-client