$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/8224E55C345F11F0BD514C6CC4F9AE02.roa File: 8224E55C345F11F0BD514C6CC4F9AE02.roa (raw, json) Hash identifier: 8yHBq1O4OTtRzTta/kqVDa7IpUINsQkqazMx6yafkpw= Subject key identifier: 8C:54:9B:15:4C:DA:48:C6:71:19:BD:D1:EE:87:E6:6F:1F:18:BF:D8 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1120 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/8224E55C345F11F0BD514C6CC4F9AE02.roa Signing time: Mon 19 May 2025 03:15:26 +0000 ROA not before: Mon 19 May 2025 03:15:26 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152918 IP address blocks: 103.149.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4384 (0x1120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: May 19 03:15:26 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=682aa24e-532b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5b:d9:cb:da:f2:85:25:26:57:ea:9e:a3:4b: 7d:ce:69:ee:f5:4b:c9:ae:5b:98:ae:7c:ce:0e:28: 44:c3:0b:99:64:9e:d5:35:c8:c2:4e:37:39:4e:9f: a7:fe:0f:15:d4:89:25:d3:24:52:56:3a:98:7e:21: 7d:b5:6e:ae:3b:79:e9:53:05:68:32:13:88:db:9b: 32:fe:2f:18:34:f0:f1:6e:d5:ce:31:58:8a:a0:45: 1d:57:68:45:1f:70:80:ef:65:52:29:84:4d:30:83: 2d:8e:ba:c0:43:ab:87:89:b3:1d:a6:54:ed:cc:3e: e6:65:0e:f0:11:76:ca:21:4e:f8:7f:31:bf:f5:59: 97:77:7f:ea:63:ac:b5:7c:5b:78:f7:a6:b7:b3:38: 04:c7:8f:e4:4a:ce:c4:cd:ce:d5:e9:21:f1:44:00: 85:1c:e1:07:3e:16:13:ac:46:5c:c5:3a:c2:24:f3: d3:06:a6:1c:d0:aa:93:0f:81:db:24:8f:57:16:38: b0:dc:b2:4d:87:8d:3c:9f:3c:26:9d:28:3b:0f:6b: 43:36:74:2a:a3:20:de:b4:f6:05:cc:4a:34:da:27: 24:47:aa:5c:f5:de:f0:0b:b2:a8:8e:8f:9b:b6:d2: f6:12:d3:b8:ba:1f:a1:2f:6d:b7:e7:e2:e9:1c:fc: 4e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:54:9B:15:4C:DA:48:C6:71:19:BD:D1:EE:87:E6:6F:1F:18:BF:D8 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/8224E55C345F11F0BD514C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.144.0/24 Signature Algorithm: sha256WithRSAEncryption 91:9c:8c:da:88:11:57:3b:5c:2e:e3:c4:60:84:a9:ee:d1:cf: ab:01:ac:cc:e0:19:0c:1c:95:d9:00:0b:e7:a9:d5:c3:ba:3a: a1:7d:c5:62:83:74:d5:c9:5d:ab:e5:31:b4:a0:e4:05:e6:32: 88:3f:cf:c1:ad:2e:32:bd:84:94:e6:bb:94:90:71:a0:13:89: b2:e2:68:8e:cf:46:29:99:91:e8:03:9a:8b:9b:c3:14:e8:01: 64:70:4f:1b:22:24:cf:7b:65:25:77:6a:61:ee:7a:b2:af:20: e7:01:79:30:05:5b:8b:d1:54:f0:27:ba:f8:d1:ae:04:86:90: dd:9a:0a:fe:4a:f0:a8:52:0d:79:e7:ff:0a:67:32:0a:27:74: 4d:fb:2a:c7:cf:27:ac:c8:e1:f7:69:da:22:fa:07:c7:5e:79: 4e:cd:20:63:83:52:80:50:e2:b1:08:d5:4d:3a:c7:8d:41:3e: 8e:97:6f:ee:49:83:95:9e:aa:32:72:6f:b6:f3:f0:4d:3e:77: 89:c5:03:16:e9:36:fc:bb:de:8d:83:53:39:4b:f1:7d:5f:5b: 88:e6:4e:57:a5:bd:eb:49:e4:1e:f3:4f:21:63:d7:00:02:3a: 80:de:5e:17:38:e1:7e:41:b9:52:1d:d1:5c:9a:21:0f:dc:e6: b1:bb:06:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICESAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwNTE5MDMxNTI2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhYTI0ZS01MzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVvZy9ryhSUmV+qeo0t9zmnu9UvJrluYrnzODihEwwuZZJ7VNcjCTjc5Tp+n /g8V1Ikl0yRSVjqYfiF9tW6uO3npUwVoMhOI25sy/i8YNPDxbtXOMViKoEUdV2hF H3CA72VSKYRNMIMtjrrAQ6uHibMdplTtzD7mZQ7wEXbKIU74fzG/9VmXd3/qY6y1 fFt496a3szgEx4/kSs7Ezc7V6SHxRACFHOEHPhYTrEZcxTrCJPPTBqYc0KqTD4Hb JI9XFjiw3LJNh408nzwmnSg7D2tDNnQqoyDetPYFzEo02ickR6pc9d7wC7Kojo+b ttL2EtO4uh+hL2235+LpHPxOdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIxUmxVM 2kjGcRm90e6H5m8fGL/YMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvODIyNEU1NUMz NDVGMTFGMEJENTE0QzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlZAwDQYJKoZIhvcNAQELBQADggEBAJGcjNqIEVc7XC7j xGCEqe7Rz6sBrMzgGQwcldkAC+ep1cO6OqF9xWKDdNXJXavlMbSg5AXmMog/z8Gt LjK9hJTmu5SQcaATibLiaI7PRimZkegDmoubwxToAWRwTxsiJM97ZSV3amHuerKv IOcBeTAFW4vRVPAnuvjRrgSGkN2aCv5K8KhSDXnn/wpnMgondE37KsfPJ6zI4fdp 2iL6B8deeU7NIGODUoBQ4rEI1U06x41BPo6Xb+5Jg5WeqjJyb7bz8E0+d4nFAxbp Nvy73o2DUzlL8X1fW4jmTlelvetJ5B7zTyFj1wACOoDeXhc44X5BuVId0VyaIQ/c 5rG7Bus= -----END CERTIFICATE-----Generated at Wed Jun 4 12:28:46 2025 by rpki-client