$ rpki-client -vvf rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa File: BB199EBC6F8711EB9E412A2BC4F9AE02.roa (raw, json) Hash identifier: CN//aPXI7Vd/gecvzpNyd6NzvBQ86Pd0fnZS1wzYkqY= Subject key identifier: 44:0F:2B:B4:B6:C1:20:8D:5B:8B:A9:30:4A:1D:14:3E:BC:B2:71:6A Certificate issuer: /CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Certificate serial: 06A0 Authority key identifier: DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa Signing time: Sun 18 May 2025 22:31:02 +0000 ROA not before: Sun 18 May 2025 22:31:02 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141726 IP address blocks: 103.162.208.0/24 maxlen: 24 103.162.209.0/24 maxlen: 24 2001:df5:fc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:16:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919910B, serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Validity Not Before: May 18 22:31:02 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=682a5fa6-79ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:83:14:89:30:17:a2:56:6e:3c:a2:4f:c7:28: e9:48:b7:84:82:f0:e6:76:4a:63:44:58:2b:f9:02: e2:4c:a8:9c:06:61:c6:41:32:c9:24:f2:0b:92:16: 31:f4:69:60:cf:5f:c2:54:34:76:15:82:de:55:17: c6:90:70:c0:a8:48:d9:d6:93:9e:5a:52:00:31:4d: 04:85:45:07:d8:5f:e9:d2:11:cb:64:af:c7:eb:e3: 92:c6:de:38:ee:59:f5:e4:8c:1f:ac:11:db:f5:8b: 0b:62:19:4f:a1:ad:bd:26:33:e7:f7:45:dd:0f:8c: 81:11:5b:50:99:d2:4e:bc:9b:b8:a0:85:db:b4:0b: 5a:40:79:60:ef:24:72:f4:8b:12:1a:b3:e4:37:e9: 3f:94:76:22:0a:bc:8e:fc:bf:48:82:4a:90:65:08: 7b:df:ec:45:14:86:63:1c:9d:86:5c:33:12:6b:e3: f2:c7:90:47:11:e9:50:5c:99:48:98:56:2d:e1:70: 04:67:2d:d1:bb:89:f7:a8:ea:ec:11:15:9e:c7:8f: bc:21:66:9c:c1:75:36:ba:e3:af:dd:c0:be:1e:ad: ab:94:e6:a0:fd:b0:a3:72:a0:1b:80:76:6a:cf:d1: 49:3c:38:d6:70:3e:19:6a:ec:c4:d5:22:26:19:18: cb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0F:2B:B4:B6:C1:20:8D:5B:8B:A9:30:4A:1D:14:3E:BC:B2:71:6A X509v3 Authority Key Identifier: keyid:DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.208.0/23 IPv6: 2001:df5:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 14:24:ff:a2:37:f0:8b:33:4b:01:7c:b8:9f:42:31:3a:19:51: d7:77:48:c8:7e:72:a3:23:5e:21:3a:a3:4b:44:88:ad:7c:1c: 37:0d:a7:97:67:59:6b:f5:ef:75:e8:f5:a0:fd:5f:da:43:ea: 68:94:1f:67:3a:e5:a7:58:a6:4c:9c:ae:3d:e8:f9:65:92:6e: 35:44:91:31:c6:1a:e9:92:ed:dd:38:ae:25:ed:57:8f:7d:c4: 70:7a:c0:00:16:65:37:fa:55:e4:da:fc:4a:1b:e2:b5:45:b8: 17:0f:fc:2d:2f:2e:5f:ab:a9:9c:93:8d:df:fe:71:a6:a0:51: 58:95:90:62:e8:78:73:3d:45:ee:28:68:92:b0:b5:bf:28:fd: 1d:e6:48:fe:2e:be:28:7d:a0:19:6b:cf:fe:f5:b6:6c:df:b8: 07:79:a9:48:81:6e:c9:fe:08:24:81:3d:7d:18:72:74:05:9d: f4:40:21:6b:7c:c9:1e:f5:90:28:6d:dc:a4:56:e2:6d:60:e8: 84:5a:43:b7:11:13:98:84:fe:e1:41:01:38:df:b2:d6:ab:b4: 8a:34:2c:1e:9c:5e:95:04:c3:0f:13:3d:7d:7f:db:97:18:2c: 62:32:02:ee:4c:7b:a3:90:8e:58:f4:de:7f:65:d0:ba:0d:7b: 53:7e:06:72 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxMEIxMTAvBgNVBAUTKERDOTE4NEIwNEE1M0M3QTE3MkY3Q0QyNjI1NUVCNUQ4 MDNFMzQ3MDUwHhcNMjUwNTE4MjIzMTAyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhNWZhNi03OWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYMUiTAXolZuPKJPxyjpSLeEgvDmdkpjRFgr+QLiTKicBmHGQTLJJPILkhYx 9Glgz1/CVDR2FYLeVRfGkHDAqEjZ1pOeWlIAMU0EhUUH2F/p0hHLZK/H6+OSxt44 7ln15IwfrBHb9YsLYhlPoa29JjPn90XdD4yBEVtQmdJOvJu4oIXbtAtaQHlg7yRy 9IsSGrPkN+k/lHYiCryO/L9IgkqQZQh73+xFFIZjHJ2GXDMSa+Pyx5BHEelQXJlI mFYt4XAEZy3Ru4n3qOrsERWex4+8IWacwXU2uuOv3cC+Hq2rlOag/bCjcqAbgHZq z9FJPDjWcD4ZauzE1SImGRjLVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEQPK7S2 wSCNW4upMEodFD68snFqMB8GA1UdIwQYMBaAFNyRhLBKU8ehcvfNJiVetdgD40cF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTEwQi82MjNEMUUwNjZG ODUxMUVCQUM1QUM5NkNDNEY5QUUwMi8zSkdFc0VwVHg2Rnk5ODBtSlY2MTJBUGpS d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKR0VzRXBUeDZGeTk4MG1KVjYxMkFQalJ3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxMEIvNjIzRDFFMDY2Rjg1MTFFQkFDNUFDOTZDQzRGOUFFMDIvQkIxOTlFQkM2 Rjg3MTFFQjlFNDEyQTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnotAwDwQCAAIwCQMHACABDfX8gDANBgkqhkiG9w0BAQsF AAOCAQEAFCT/ojfwizNLAXy4n0IxOhlR13dIyH5yoyNeITqjS0SIrXwcNw2nl2dZ a/Xvdej1oP1f2kPqaJQfZzrlp1imTJyuPej5ZZJuNUSRMcYa6ZLt3TiuJe1Xj33E cHrAABZlN/pV5Nr8ShvitUW4Fw/8LS8uX6upnJON3/5xpqBRWJWQYuh4cz1F7iho krC1vyj9HeZI/i6+KH2gGWvP/vW2bN+4B3mpSIFuyf4IJIE9fRhydAWd9EAha3zJ HvWQKG3cpFbibWDohFpDtxETmIT+4UEBON+y1qu0ijQsHpxelQTDDxM9fX/blxgs YjIC7kx7o5COWPTef2XQug17U34Gcg== -----END CERTIFICATE-----Generated at Mon Jun 2 06:53:51 2025 by rpki-client