$ rpki-client -vvf rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa File: 6FF4CA0E006311EAB403274DC4F9AE02.roa (raw, json) Hash identifier: 38J2MM7f9ujaRxSK9Wf5Oifb+Q5gxrpsn27nhrXs2/A= Subject key identifier: 11:61:D9:79:2D:C9:1A:2D:32:8C:FC:4D:63:9B:1B:E2:B0:C2:15:2E Certificate issuer: /CN=A91870C2/serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Certificate serial: 0C69 Authority key identifier: 8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa Signing time: Mon 02 Jun 2025 19:00:53 +0000 ROA not before: Mon 02 Jun 2025 19:00:53 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133945 IP address blocks: 103.91.52.0/23 maxlen: 23 103.91.52.0/24 maxlen: 24 103.91.53.0/24 maxlen: 24 2001:df3:ea80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 18:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870C2, serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Validity Not Before: Jun 2 19:00:53 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683df4e4-3637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:d9:d8:75:52:7c:7a:1d:0d:6e:e2:d5:73: 01:79:46:93:2d:50:83:e1:73:2c:22:b0:1e:c2:8c: d9:45:f9:08:18:d8:5a:72:97:90:c1:f6:92:48:2d: 0d:89:19:d0:37:1f:73:0b:e7:92:20:97:47:68:3c: 1a:90:c0:c3:9a:82:5e:dd:7a:fe:cc:5b:e2:b9:e2: 12:3f:3b:2d:84:df:ce:8c:89:cb:1b:d6:97:45:e3: c3:c2:60:21:bc:39:e2:77:b9:ca:5d:b6:8c:c8:18: 72:9d:83:31:9b:ce:2f:60:a8:b7:5c:df:74:29:b5: d5:eb:9a:4c:9b:b1:8f:4e:19:2a:27:c3:dc:6b:c0: 69:e1:17:d6:e5:32:63:4c:9a:ed:a3:71:b5:72:a6: ee:7f:8b:53:7d:51:3b:2a:75:c7:4a:3c:9e:07:3c: f9:ef:ca:d3:e8:34:81:7a:0f:7c:6b:8a:e3:fb:5a: 40:77:d7:8a:74:04:fe:c3:96:ba:0f:77:54:36:f8: 4b:a3:c5:70:32:60:94:b3:22:91:25:cc:ea:de:b3: 86:31:c1:11:31:a8:78:5b:39:ba:d9:a6:af:a4:98: c5:a2:b1:8d:f0:8e:43:3a:f8:ae:f7:10:52:0a:23: 6e:84:47:be:c7:fb:f4:a3:5c:ac:70:17:e4:73:08: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:61:D9:79:2D:C9:1A:2D:32:8C:FC:4D:63:9B:1B:E2:B0:C2:15:2E X509v3 Authority Key Identifier: keyid:8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.52.0/23 IPv6: 2001:df3:ea80::/48 Signature Algorithm: sha256WithRSAEncryption 17:50:ac:25:b9:86:69:38:62:c7:15:ca:9a:1d:c5:c2:01:47: b4:63:7f:7d:73:af:ec:af:6a:b9:d8:6e:bb:ae:7c:95:de:f4: 56:21:b0:fd:28:41:55:a5:6d:f6:2d:36:0b:9f:44:63:50:9b: 52:26:82:c5:bc:49:b0:e2:f9:c7:6f:1c:2f:5b:8e:fe:02:7d: fd:19:a2:32:93:d7:ee:39:50:e2:2b:57:6a:73:14:05:14:6c: 4c:ae:f4:af:ce:d6:17:1a:1a:c0:f8:1e:79:be:38:4d:1c:3f: 13:07:36:c6:c0:e4:ad:9a:8d:7b:50:b2:e7:67:a0:4e:d1:d4: 1a:4b:22:89:df:2f:65:08:e5:bf:df:73:96:cf:86:59:9b:46: 01:ec:bc:d0:d1:89:dc:bb:27:6e:6f:f6:ba:cc:b9:cc:21:81: 83:79:9c:ea:0b:bb:0b:30:cf:9b:14:a2:b5:7d:c2:82:8f:86: 50:f7:fe:3a:51:78:d2:fa:f6:94:3e:5f:eb:a3:5d:86:94:d9: b7:ba:3d:f0:3e:1f:4c:fa:ca:4e:75:05:2d:4c:06:e6:aa:54: 5e:06:06:d7:e3:2f:3b:9f:d0:ec:62:3b:6f:91:a2:41:99:bb: 40:3d:35:07:ea:5c:01:a3:7a:d1:f3:a9:5d:2f:6d:75:d6:d5: 4e:a8:26:e7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQzIxMTAvBgNVBAUTKDhDNzhGRUM3NDU1OTIwQ0JGREUwMzBGRTU0NEU1N0Yx RUM5RkM4NjQwHhcNMjUwNjAyMTkwMDUzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkZjRlNC0zNjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskXZ2HVSfHodDW7i1XMBeUaTLVCD4XMsIrAewozZRfkIGNhacpeQwfaSSC0N iRnQNx9zC+eSIJdHaDwakMDDmoJe3Xr+zFviueISPzsthN/OjInLG9aXRePDwmAh vDnid7nKXbaMyBhynYMxm84vYKi3XN90KbXV65pMm7GPThkqJ8Pca8Bp4RfW5TJj TJrto3G1cqbuf4tTfVE7KnXHSjyeBzz578rT6DSBeg98a4rj+1pAd9eKdAT+w5a6 D3dUNvhLo8VwMmCUsyKRJczq3rOGMcERMah4Wzm62aavpJjForGN8I5DOviu9xBS CiNuhEe+x/v0o1yscBfkcwiFUwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBFh2Xkt yRotMoz8TWObG+KwwhUuMB8GA1UdIwQYMBaAFIx4/sdFWSDL/eAw/lROV/Hsn8hk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBDMi84RDcxMkVBMjAw NjIxMUVBQUJFNzNGNENDNEY5QUUwMi9qSGoteDBWWklNdjk0REQtVkU1WDhleWZ5 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pIai14MFZaSU12OTRERC1WRTVYOGV5ZnlHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODcwQzIvOEQ3MTJFQTIwMDYyMTFFQUFCRTczRjRDQzRGOUFFMDIvNkZGNENBMEUw MDYzMTFFQUI0MDMyNzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnWzQwDwQCAAIwCQMHACABDfPqgDANBgkqhkiG9w0BAQsF AAOCAQEAF1CsJbmGaThixxXKmh3FwgFHtGN/fXOv7K9qudhuu658ld70ViGw/ShB VaVt9i02C59EY1CbUiaCxbxJsOL5x28cL1uO/gJ9/RmiMpPX7jlQ4itXanMUBRRs TK70r87WFxoawPgeeb44TRw/Ewc2xsDkrZqNe1Cy52egTtHUGksiid8vZQjlv99z ls+GWZtGAey80NGJ3Lsnbm/2usy5zCGBg3mc6gu7CzDPmxSitX3Cgo+GUPf+OlF4 0vr2lD5f66NdhpTZt7o98D4fTPrKTnUFLUwG5qpUXgYG1+MvO5/Q7GI7b5GiQZm7 QD01B+pcAaN60fOpXS9tddbVTqgm5w== -----END CERTIFICATE-----Generated at Mon Jun 9 20:07:55 2025 by rpki-client