$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/69F7328030A611F0BBA4642EC4F9AE02.roa File: 69F7328030A611F0BBA4642EC4F9AE02.roa (raw, json) Hash identifier: LeMbdehFC4fTf/TGuaoRSnOw0VY+BgZy7lQOEpG5vyc= Subject key identifier: C3:9B:45:73:44:72:7B:36:9C:67:E8:CA:0F:15:04:6C:7F:A4:A1:DF Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Certificate serial: 028C Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/69F7328030A611F0BBA4642EC4F9AE02.roa Signing time: Wed 14 May 2025 09:32:55 +0000 ROA not before: Wed 14 May 2025 09:32:55 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 214143 IP address blocks: 103.102.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580D2, serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Validity Not Before: May 14 09:32:55 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68246347-499e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:25:4d:95:2b:0f:b2:08:ec:75:8b:2b:5f:e0: b8:a3:88:5e:d9:d7:09:04:cc:cc:87:6f:c9:f3:f2: fb:f4:22:58:35:12:15:56:40:ea:45:aa:0d:e8:a6: 43:67:fc:39:ff:c1:fc:bf:ea:34:31:a1:e7:23:b8: a5:7e:60:ec:92:45:45:37:2f:3d:33:b4:99:43:d3: 13:ea:44:d2:da:3f:58:5a:ed:d8:17:3c:0f:85:44: 5f:8b:44:69:4d:2d:59:15:56:4d:d0:2a:26:a0:65: 8f:08:90:6a:06:bc:22:bc:7a:d4:47:90:9c:63:0f: 1d:79:40:fa:ac:9b:75:27:f6:d7:f4:17:e5:77:4a: 30:8e:d1:8e:3f:00:ad:92:ca:89:c2:8e:8f:ab:11: ed:11:61:89:2b:f8:9d:ff:73:4b:f0:df:fd:52:2d: 03:97:54:07:bc:42:99:e7:08:76:51:2d:d2:56:76: 66:89:bf:ee:48:87:85:10:3a:4d:0f:a2:73:95:bf: be:56:97:57:d6:99:93:0b:a1:47:7c:69:3e:82:cb: 59:98:fb:30:b2:11:5f:11:d0:1a:30:1a:0c:9f:f7: 61:cd:04:ea:97:61:54:3f:16:9a:22:6d:da:58:7b: 77:69:01:ec:e1:7d:5b:38:c3:ba:d2:57:67:ea:b6: 1c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:9B:45:73:44:72:7B:36:9C:67:E8:CA:0F:15:04:6C:7F:A4:A1:DF X509v3 Authority Key Identifier: keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/69F7328030A611F0BBA4642EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.126.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:4b:7e:11:ba:53:3b:6d:26:5c:b6:54:79:d0:42:6d:f0:a4: d2:62:1a:d5:19:28:4c:23:9e:08:79:b7:dc:cf:50:04:15:40: 79:1b:ad:1a:50:82:d3:93:b4:a7:70:9e:0a:91:4e:4d:e0:7d: 83:0f:29:7b:f4:d5:96:01:68:de:76:88:11:e0:37:7e:03:84: 29:ff:67:02:ce:81:38:06:2a:97:0f:a7:69:a4:64:ad:3a:92: e1:d7:e7:25:f3:11:f6:1e:b1:a5:38:33:e3:09:c6:bc:ba:09: 02:a2:e6:47:b4:4c:f7:81:37:6e:dd:23:af:03:4b:b3:60:bf: fe:b5:9e:d1:ec:ea:f9:db:54:3d:70:d4:da:15:d9:88:cd:ab: 0f:57:17:3f:c1:31:56:cb:11:54:6d:b6:aa:06:91:ef:f2:16: dc:f7:bf:fd:ce:f9:1f:64:b3:12:4d:4f:4c:ef:d4:bc:20:3e: de:35:ba:b1:e0:25:6f:d5:2c:1c:c8:04:64:83:d5:58:4a:a1: e0:55:b6:05:15:e0:f3:fc:4c:08:d0:e9:d2:2d:61:51:39:d3: 3e:e0:fa:23:70:c3:f7:8f:17:53:31:fb:10:ad:ef:d2:1e:b6: 98:3d:eb:ac:f9:51:0d:9b:54:1b:99:8b:f5:10:f7:34:80:e1: 40:fb:a7:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwRDIxMTAvBgNVBAUTKENBOTBENEQyMTI1RjAzMzZCNTM5OEVFMDk5NzcyOTZG MkU0MDkyQjQwHhcNMjUwNTE0MDkzMjU1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0NjM0Ny00OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SVNlSsPsgjsdYsrX+C4o4he2dcJBMzMh2/J8/L79CJYNRIVVkDqRaoN6KZD Z/w5/8H8v+o0MaHnI7ilfmDskkVFNy89M7SZQ9MT6kTS2j9YWu3YFzwPhURfi0Rp TS1ZFVZN0ComoGWPCJBqBrwivHrUR5CcYw8deUD6rJt1J/bX9Bfld0owjtGOPwCt ksqJwo6PqxHtEWGJK/id/3NL8N/9Ui0Dl1QHvEKZ5wh2US3SVnZmib/uSIeFEDpN D6Jzlb++VpdX1pmTC6FHfGk+gstZmPswshFfEdAaMBoMn/dhzQTql2FUPxaaIm3a WHt3aQHs4X1bOMO60ldn6rYc/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMObRXNE cns2nGfoyg8VBGx/pKHfMB8GA1UdIwQYMBaAFMqQ1NISXwM2tTmO4Jl3KW8uQJK0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBEMi9FQkMxQUMyQzE4 NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6YTFPWTdnbVhjcGJ5NUFr clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwRFUwaEpmQXphMU9ZN2dtWGNwYnk1QWtyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgwRDIvRUJDMUFDMkMxODRGMTFFREFEQkMzQzY1QzRGOUFFMDIvNjlGNzMyODAz MEE2MTFGMEJCQTQ2NDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZn4wDQYJKoZIhvcNAQELBQADggEBADpLfhG6UzttJly2 VHnQQm3wpNJiGtUZKEwjngh5t9zPUAQVQHkbrRpQgtOTtKdwngqRTk3gfYMPKXv0 1ZYBaN52iBHgN34DhCn/ZwLOgTgGKpcPp2mkZK06kuHX5yXzEfYesaU4M+MJxry6 CQKi5ke0TPeBN27dI68DS7Ngv/61ntHs6vnbVD1w1NoV2YjNqw9XFz/BMVbLEVRt tqoGke/yFtz3v/3O+R9ksxJNT0zv1LwgPt41urHgJW/VLBzIBGSD1VhKoeBVtgUV 4PP8TAjQ6dItYVE50z7g+iNww/ePF1Mx+xCt79Ietpg966z5UQ2bVBuZi/UQ9zSA 4UD7p7E= -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:40 2025 by rpki-client