$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa File: B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa (raw, json) Hash identifier: hvomTHOFg3fOu5UVv4a+8zSBR7jdgf3xO/+H6ZJICO8= Subject key identifier: 6F:04:87:E9:32:37:FF:EE:3C:FC:9D:FC:16:15:B0:06:40:B8:79:F2 Certificate issuer: /CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Certificate serial: 09D0 Authority key identifier: A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa Signing time: Mon 02 Jun 2025 20:24:51 +0000 ROA not before: Mon 02 Jun 2025 20:24:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17941 IP address blocks: 103.26.32.0/22 maxlen: 22 103.26.33.0/24 maxlen: 24 103.26.34.0/24 maxlen: 24 103.26.35.0/24 maxlen: 24 2404:5480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 19:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2512 (0x9d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A6C, serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Validity Not Before: Jun 2 20:24:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e0893-8e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:0c:81:56:63:a7:83:58:ce:9c:a3:73:94: 6e:1b:de:31:14:b2:4b:82:e9:23:00:04:37:01:a9: 64:30:44:19:b8:f0:31:7b:60:e3:89:cb:3b:72:ff: 0d:df:f5:cc:0e:ad:b5:7f:cd:06:fe:9a:f9:a2:63: 8d:a7:41:87:00:19:bd:cd:f2:af:45:97:a3:99:be: 05:6c:92:40:9e:95:1f:0f:4a:ab:46:3e:0b:c2:64: 6e:8e:b0:82:c2:06:71:36:da:ef:06:f5:fd:fe:e4: 84:49:66:ff:74:15:32:14:8e:ca:19:06:c0:0a:3d: de:37:d3:58:9a:d9:fc:55:bf:27:ee:a1:66:ef:85: 4f:2d:2e:f7:fb:12:34:e4:e8:57:d6:aa:1e:71:92: 0d:da:e0:2b:f0:a6:dd:f6:1a:02:ad:94:15:34:da: b6:2f:8d:6b:94:f8:8a:af:01:fc:f7:b3:97:95:85: 94:63:45:7b:35:41:e5:ae:35:08:fb:b7:b6:8a:11: 8f:4b:70:51:b4:fb:ac:b0:6d:93:d7:ea:53:eb:bd: ea:1b:62:7e:84:f7:f6:35:18:8b:64:09:b6:b7:a8: 0e:ac:9a:55:b7:7d:84:77:88:da:4b:af:53:12:17: f2:c5:b9:be:76:6c:83:87:09:d1:c7:7a:78:14:43: 7d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:04:87:E9:32:37:FF:EE:3C:FC:9D:FC:16:15:B0:06:40:B8:79:F2 X509v3 Authority Key Identifier: keyid:A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.32.0/22 IPv6: 2404:5480::/32 Signature Algorithm: sha256WithRSAEncryption 01:2f:b7:e5:48:4e:fd:e0:d0:e5:29:fc:6e:6e:77:0a:80:f7: 9b:4e:0f:10:48:e6:2c:ce:6e:44:5c:37:dc:48:cb:b5:19:bf: d2:75:aa:e5:86:24:e0:90:0a:dc:65:31:58:16:0c:fa:cd:e4: d3:69:c7:c1:9f:89:42:59:33:46:31:1b:8e:36:d7:db:c7:c6: 1d:44:e4:8d:9a:ca:30:37:86:5c:85:53:17:02:1b:1b:a3:a8: 49:99:be:a1:ba:61:61:36:4d:8d:03:88:88:dc:a3:e0:57:6d: 8a:59:6a:75:2f:98:57:84:fb:f2:10:7f:b5:b5:ce:fc:e1:5f: a5:ca:41:23:41:c5:b0:f7:be:8f:20:19:42:4b:0a:e9:ee:f0: 23:f6:25:5f:1d:0c:51:9b:b6:7d:02:bd:4e:6d:34:da:6d:b1: 36:f8:e5:62:36:e6:0c:6f:e1:05:95:55:e8:cc:6b:ec:24:ca: 7f:f0:08:4c:78:ba:e9:14:cd:1e:bf:cd:0e:92:9a:35:11:73: 80:fa:81:c5:07:21:3c:24:69:ee:7c:bb:96:53:b8:1a:95:37: d5:1a:5a:1f:f9:d1:35:fa:88:2c:f0:1e:e1:72:62:5a:b6:65: 94:41:fb:62:8c:35:1b:71:45:bb:e3:73:a9:95:17:1f:d2:d5: d0:29:50:4e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBNkMxMTAvBgNVBAUTKEE3ODdBNjNFNDlFRThFQzZGOTc1MTE2MDdGMUI3QzVC MERGMTE2NEUwHhcNMjUwNjAyMjAyNDUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMDg5My04ZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraUMgVZjp4NYzpyjc5RuG94xFLJLgukjAAQ3AalkMEQZuPAxe2Djics7cv8N 3/XMDq21f80G/pr5omONp0GHABm9zfKvRZejmb4FbJJAnpUfD0qrRj4LwmRujrCC wgZxNtrvBvX9/uSESWb/dBUyFI7KGQbACj3eN9NYmtn8Vb8n7qFm74VPLS73+xI0 5OhX1qoecZIN2uAr8Kbd9hoCrZQVNNq2L41rlPiKrwH897OXlYWUY0V7NUHlrjUI +7e2ihGPS3BRtPussG2T1+pT673qG2J+hPf2NRiLZAm2t6gOrJpVt32Ed4jaS69T Ehfyxbm+dmyDhwnRx3p4FEN9DQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG8Eh+ky N//uPPyd/BYVsAZAuHnyMB8GA1UdIwQYMBaAFKeHpj5J7o7G+XURYH8bfFsN8RZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEE2Qy9COTE2RjM4ODgy QzIxMUVBOUE1MTQ2MzlDNEY5QUUwMi9wNGVtUGtudWpzYjVkUkZnZnh0OFd3M3hG azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0ZW1Qa251anNiNWRSRmdmeHQ4V3czeEZrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBBNkMvQjkxNkYzODg4MkMyMTFFQTlBNTE0NjM5QzRGOUFFMDIvQjEzQjJFNUE1 QjVEMTFFRUFERjVDNjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnGiAwDQQCAAIwBwMFACQEVIAwDQYJKoZIhvcNAQELBQAD ggEBAAEvt+VITv3g0OUp/G5udwqA95tODxBI5izObkRcN9xIy7UZv9J1quWGJOCQ CtxlMVgWDPrN5NNpx8GfiUJZM0YxG44219vHxh1E5I2ayjA3hlyFUxcCGxujqEmZ vqG6YWE2TY0DiIjco+BXbYpZanUvmFeE+/IQf7W1zvzhX6XKQSNBxbD3vo8gGUJL Cunu8CP2JV8dDFGbtn0CvU5tNNptsTb45WI25gxv4QWVVejMa+wkyn/wCEx4uukU zR6/zQ6SmjURc4D6gcUHITwkae58u5ZTuBqVN9UaWh/50TX6iCzwHuFyYlq2ZZRB +2KMNRtxRbvjc6mVFx/S1dApUE4= -----END CERTIFICATE-----Generated at Thu Jun 5 19:58:19 2025 by rpki-client