$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/A216EC4E3C7911F0B25C0585C4F9AE02.roa File: A216EC4E3C7911F0B25C0585C4F9AE02.roa (raw, json) Hash identifier: vKLf2rHEIG3SZoTwG/5Mh6FH3VoQv1z4rOoGSmOI4Fs= Subject key identifier: 48:0E:52:21:D9:FC:FF:2A:47:94:A5:12:A1:D7:94:39:F9:2C:E7:71 Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 01D3 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/A216EC4E3C7911F0B25C0585C4F9AE02.roa Signing time: Thu 29 May 2025 10:42:36 +0000 ROA not before: Thu 29 May 2025 10:42:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 34985 IP address blocks: 103.96.0.0/24 maxlen: 24 103.96.2.0/24 maxlen: 24 103.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: May 29 10:42:36 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68383a1b-421b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:71:4c:7e:03:34:fa:e5:2a:08:32:49:79:b4: 45:03:18:9d:2d:a4:a1:83:a0:9b:82:f7:33:1d:24: b9:51:ad:93:b6:b6:17:a7:73:cb:d9:a7:6b:f1:de: 00:32:b3:80:59:de:ab:c3:97:24:16:f6:df:5d:3b: 1b:f6:37:ca:33:f2:68:32:b0:c0:81:4d:67:fe:e3: be:bd:0f:1a:dc:9e:b4:e1:27:b3:1a:43:7c:6c:93: bb:d7:f5:01:4f:43:e1:3b:fb:0b:2e:ad:10:05:40: c7:ac:36:2d:4d:3f:d5:20:62:e4:bd:79:2c:b2:64: 3f:4a:69:87:30:fd:2a:26:7c:da:40:24:8f:fe:6e: de:b6:14:85:84:27:09:60:d1:e3:1d:f7:82:31:14: 28:d8:cd:bd:f2:d9:0f:5a:9b:83:43:1e:a6:a5:7e: c3:2a:35:d9:34:5b:c5:56:86:5b:4a:f6:c4:6a:b8: 82:9a:a0:a5:bd:c1:5d:d2:fc:13:b0:c8:47:d6:cc: b4:43:65:d8:fe:01:e7:b5:62:1b:22:1a:26:73:fc: 4c:49:d1:e3:ee:f5:f8:9c:de:7f:29:dd:08:ad:6c: 7e:7e:52:49:13:bc:1f:a0:8b:d5:e1:ce:f4:84:23: 3c:2d:c7:79:18:d5:05:9a:5b:ed:77:bc:57:96:da: 32:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0E:52:21:D9:FC:FF:2A:47:94:A5:12:A1:D7:94:39:F9:2C:E7:71 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/A216EC4E3C7911F0B25C0585C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.0.0/24 103.96.2.0/23 Signature Algorithm: sha256WithRSAEncryption 21:9f:67:25:2f:9f:09:bc:e9:29:74:c8:db:8d:b9:40:97:93: 7f:cf:c9:be:36:4b:49:1f:29:7c:6f:83:4d:00:04:2c:52:b2: 4a:b3:fd:66:71:d4:f7:dd:41:5f:92:27:f1:bc:cf:69:e4:0d: d1:e5:a3:51:ec:17:1e:3b:af:85:55:ca:2f:32:4f:65:ea:ce: 48:7f:1a:fa:d4:15:1f:36:d7:92:f1:fe:12:4c:51:1b:d1:a6: 57:15:fe:c4:21:e0:46:f1:8e:a2:f3:11:fc:99:72:d5:a3:6e: ca:fc:47:e0:c2:e2:bc:0d:36:00:3d:4f:a5:c0:76:86:63:9d: 3a:c7:b4:3a:28:93:b6:c9:fa:f2:ff:77:2b:71:82:39:99:b8: 9e:88:dd:8a:d8:ee:8a:60:9a:ff:bb:48:3f:4c:f7:1a:04:ad: 79:96:1a:63:f1:ff:2d:e3:64:ad:78:6f:a9:2f:77:97:4e:03: c7:18:4f:71:ff:04:3d:6e:58:9f:08:e4:a1:e3:29:78:6f:0c: 2c:f2:7c:41:61:70:75:d6:15:0c:21:10:ce:be:62:f4:0d:82: 7c:d9:95:14:77:e8:e4:33:4c:d5:0b:74:e9:20:79:4d:1d:79: 18:2f:10:fe:b5:29:bf:1d:04:cd:96:7f:3b:8b:6f:48:6c:11: 91:cd:00:07 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUwNTI5MTA0MjM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM4M2ExYi00MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk3FMfgM0+uUqCDJJebRFAxidLaShg6CbgvczHSS5Ua2TtrYXp3PL2adr8d4A MrOAWd6rw5ckFvbfXTsb9jfKM/JoMrDAgU1n/uO+vQ8a3J604SezGkN8bJO71/UB T0PhO/sLLq0QBUDHrDYtTT/VIGLkvXkssmQ/SmmHMP0qJnzaQCSP/m7ethSFhCcJ YNHjHfeCMRQo2M298tkPWpuDQx6mpX7DKjXZNFvFVoZbSvbEariCmqClvcFd0vwT sMhH1sy0Q2XY/gHntWIbIhomc/xMSdHj7vX4nN5/Kd0IrWx+flJJE7wfoIvV4c70 hCM8Lcd5GNUFmlvtd7xXltoyqwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEgOUiHZ /P8qR5SlEqHXlDn5LOdxMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvQTIxNkVDNEUz Qzc5MTFGMEIyNUMwNTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnYAADBAFnYAIwDQYJKoZIhvcNAQELBQADggEBACGfZyUv nwm86Sl0yNuNuUCXk3/Pyb42S0kfKXxvg00ABCxSskqz/WZx1PfdQV+SJ/G8z2nk DdHlo1HsFx47r4VVyi8yT2Xqzkh/GvrUFR8215Lx/hJMURvRplcV/sQh4EbxjqLz EfyZctWjbsr8R+DC4rwNNgA9T6XAdoZjnTrHtDook7bJ+vL/dytxgjmZuJ6I3YrY 7opgmv+7SD9M9xoErXmWGmPx/y3jZK14b6kvd5dOA8cYT3H/BD1uWJ8I5KHjKXhv DCzyfEFhcHXWFQwhEM6+YvQNgnzZlRR36OQzTNULdOkgeU0deRgvEP61Kb8dBM2W fzuLb0hsEZHNAAc= -----END CERTIFICATE-----Generated at Wed Jun 4 00:15:21 2025 by rpki-client