$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/02B1B85C4FF011F0A7613D29C4F9AE02.roa File: 02B1B85C4FF011F0A7613D29C4F9AE02.roa (raw, json) Hash identifier: MPdYxKLEgsHSE3gXMmZ+N+jD7YVn+vMQFPEzoJGTHe0= Subject key identifier: 8E:A0:57:E1:63:A3:DE:84:E8:6C:68:11:B3:9F:72:FA:7F:6F:7E:88 Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 04F2 Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/02B1B85C4FF011F0A7613D29C4F9AE02.roa Signing time: Mon 23 Jun 2025 05:10:44 +0000 ROA not before: Mon 23 Jun 2025 05:10:44 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 834 IP address blocks: 103.73.222.0/24 maxlen: 24 103.73.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Jun 23 05:10:44 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6858e1d4-e5e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d6:15:65:df:84:88:d0:62:d4:a4:2d:46:48: 51:19:24:fd:f3:ec:ce:5d:b6:6b:ec:67:2d:71:02: 89:b3:d3:5a:b3:9b:78:4b:d5:ff:86:04:3a:c8:aa: b4:cf:01:99:91:a2:26:08:8f:b4:57:3f:15:86:47: 37:50:cb:d7:04:f8:b8:19:92:49:ad:5c:5b:91:84: fb:14:37:cd:c8:01:f4:fc:ee:24:94:09:79:7b:30: 6b:4b:31:44:43:d1:6a:51:ac:e9:3b:71:5e:5f:72: 41:ca:20:5b:30:69:73:ed:88:db:b0:c4:6d:97:41: 79:89:7d:f0:68:07:f3:c2:d8:cf:42:ec:98:26:c5: 42:26:f6:43:46:04:d8:04:83:a7:0a:94:00:e3:a4: 4c:8f:9d:4b:42:ab:b8:29:29:c1:8c:4f:25:14:de: 2f:c0:3c:11:7f:57:af:45:a7:94:fd:e6:0c:2e:90: 89:c5:17:f4:14:59:f5:02:ec:b3:dc:cd:76:20:9d: 96:2a:c2:e4:56:7e:f3:d9:9e:bd:fd:3b:84:f5:4d: a8:03:b0:14:41:09:c2:18:5d:ea:0c:81:88:69:f3: d5:fd:38:10:d2:9b:44:d4:0e:b6:91:49:7b:1c:e0: 6b:85:b2:5f:c1:c8:51:a6:97:8a:21:74:b3:15:6a: 6a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A0:57:E1:63:A3:DE:84:E8:6C:68:11:B3:9F:72:FA:7F:6F:7E:88 X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/02B1B85C4FF011F0A7613D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.222.0/23 Signature Algorithm: sha256WithRSAEncryption 01:96:94:64:58:bd:a7:cf:6a:0c:73:ba:76:c0:91:f0:6d:a7: 3b:a5:e4:c2:1c:72:c7:ae:06:86:a6:02:be:ad:bf:e8:89:1b: 48:d2:c9:ea:2e:f6:ea:63:f8:d1:08:9f:e9:b2:ec:20:86:d9: ff:bf:24:d2:bd:ec:a5:2d:20:45:bb:00:e8:67:6c:22:6f:ed: 1b:89:4a:b1:b1:df:e8:30:77:fe:48:8f:f3:c3:af:b6:63:2f: d4:d2:91:68:fe:d1:09:7a:65:28:d0:1f:ad:64:ec:91:8d:fe: e8:f0:f7:49:03:ba:ea:2f:fe:33:16:9f:2b:38:9d:35:56:e4: d9:61:0f:c5:ff:76:f2:68:18:1b:ba:3f:c9:e3:90:9c:20:4b: eb:dc:6d:b8:17:96:06:06:5a:99:23:56:86:43:48:00:a8:14: 7d:e6:00:02:a5:fd:fb:f4:69:f9:5e:a5:9b:01:1f:e5:7a:56: 26:9c:a5:67:7a:33:82:f6:ea:79:9b:05:e0:2d:4e:e5:c6:05: 63:28:1f:dd:14:b0:88:22:4b:d5:08:08:fd:1e:f2:f0:57:8c: 32:91:24:72:55:24:0a:32:64:84:ee:ba:01:93:c1:9f:42:46: c6:ea:ec:6b:b4:dc:a8:e7:c6:9c:ca:51:be:89:55:a6:f0:1f: 50:af:02:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUwNjIzMDUxMDQ0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4ZTFkNC1lNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tYVZd+EiNBi1KQtRkhRGST98+zOXbZr7GctcQKJs9Nas5t4S9X/hgQ6yKq0 zwGZkaImCI+0Vz8Vhkc3UMvXBPi4GZJJrVxbkYT7FDfNyAH0/O4klAl5ezBrSzFE Q9FqUazpO3FeX3JByiBbMGlz7YjbsMRtl0F5iX3waAfzwtjPQuyYJsVCJvZDRgTY BIOnCpQA46RMj51LQqu4KSnBjE8lFN4vwDwRf1evRaeU/eYMLpCJxRf0FFn1Auyz 3M12IJ2WKsLkVn7z2Z69/TuE9U2oA7AUQQnCGF3qDIGIafPV/TgQ0ptE1A62kUl7 HOBrhbJfwchRppeKIXSzFWpqkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI6gV+Fj o96E6GxoEbOfcvp/b36IMB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4RDQvMkY1OEU0NzIyRTUwMTFFQ0EwNEI2QzI1QzRGOUFFMDIvMDJCMUI4NUM0 RkYwMTFGMEE3NjEzRDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnSd4wDQYJKoZIhvcNAQELBQADggEBAAGWlGRYvafPagxz unbAkfBtpzul5MIccseuBoamAr6tv+iJG0jSyeou9upj+NEIn+my7CCG2f+/JNK9 7KUtIEW7AOhnbCJv7RuJSrGx3+gwd/5Ij/PDr7ZjL9TSkWj+0Ql6ZSjQH61k7JGN /ujw90kDuuov/jMWnys4nTVW5NlhD8X/dvJoGBu6P8njkJwgS+vcbbgXlgYGWpkj VoZDSACoFH3mAAKl/fv0aflepZsBH+V6ViacpWd6M4L26nmbBeAtTuXGBWMoH90U sIgiS9UICP0e8vBXjDKRJHJVJAoyZITuugGTwZ9CRsbq7Gu03KjnxpzKUb6JVabw H1CvAvg= -----END CERTIFICATE-----Generated at Sat Jul 5 21:35:17 2025 by rpki-client