$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa File: 95DDE9D6909A11EF94AF3B26C4F9AE02.roa (raw, json) Hash identifier: EkPoQ20/AwUjRtClFN3av4liMqLnwMjPDbXxvcabSh0= Subject key identifier: 17:0B:4E:15:A7:52:8A:22:25:A0:FA:58:4F:8A:B2:F5:FA:4C:DD:49 Certificate issuer: /CN=A91A0D9C/serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Certificate serial: 14E6 Authority key identifier: FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa Signing time: Sat 31 May 2025 16:57:40 +0000 ROA not before: Sat 31 May 2025 16:57:40 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 137491 IP address blocks: 103.110.96.0/22 maxlen: 24 2402:8640::/32 maxlen: 32 2402:8640::/48 maxlen: 48 2402:8640:1::/48 maxlen: 48 2402:8640:2::/48 maxlen: 48 2402:8640:3::/48 maxlen: 48 2402:8640:4::/48 maxlen: 48 2402:8640:5::/48 maxlen: 48 2402:8640:6::/48 maxlen: 48 2402:8640:7::/48 maxlen: 48 2402:8640:8::/48 maxlen: 48 2402:8640:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5350 (0x14e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0D9C, serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Validity Not Before: May 31 16:57:40 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b3504-a3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a7:1e:29:ad:94:3a:8b:e9:b9:21:14:f0:e8: d7:03:46:2b:8b:81:11:28:22:4f:99:63:41:e4:49: db:66:f6:3c:1a:67:1f:8f:37:68:9f:16:b7:12:2f: 08:b6:c0:c7:2c:c2:0e:b0:66:8e:45:74:e1:21:82: 8c:ba:2d:90:88:76:73:1e:a3:bc:2f:32:03:2d:ce: 7a:40:f2:13:1d:95:78:e6:06:35:ac:b6:af:42:f2: 5e:5c:24:e0:72:b1:87:e2:20:c5:e9:7a:a5:fa:e1: 55:7d:08:63:e3:5a:22:f8:27:fc:b8:2a:4f:71:86: ae:b4:8b:6f:89:96:9c:28:b2:3b:56:63:da:7e:27: 09:b1:0d:d3:df:b6:23:a1:76:ae:cd:18:44:32:17: d7:2a:ec:c9:a5:e0:ef:61:26:01:a0:b0:a7:a6:ef: 0b:37:d9:17:7e:cd:50:d2:4c:84:24:3c:55:71:3b: d2:26:da:ae:71:77:14:67:e6:9d:58:4d:eb:f4:67: 84:b9:c6:50:a8:49:19:f3:64:70:0d:75:d4:25:f7: 94:0a:dc:14:95:64:77:53:0f:57:c3:de:d7:0e:b5: 26:f1:9f:19:17:53:7c:70:e1:3d:13:1f:3f:d2:21: a3:57:ee:ab:32:fc:5b:e0:3f:29:3e:72:8d:dd:01: c6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0B:4E:15:A7:52:8A:22:25:A0:FA:58:4F:8A:B2:F5:FA:4C:DD:49 X509v3 Authority Key Identifier: keyid:FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.96.0/22 IPv6: 2402:8640::/32 Signature Algorithm: sha256WithRSAEncryption a1:0d:a7:4b:76:bf:db:42:d3:31:f5:97:6b:fe:85:bc:2d:fb: a1:4c:d1:e8:c6:04:71:ab:fa:94:3a:69:cc:48:15:9f:98:df: 12:de:ae:0b:6a:47:c3:50:7e:ae:9d:1c:d4:9e:23:39:36:c4: cd:2c:29:41:f0:80:2f:6d:ae:c5:48:2b:de:bb:90:0c:d0:24: 34:da:dd:9f:08:d8:e2:94:5c:0a:08:6e:7b:25:ca:27:aa:9b: db:59:e2:a0:b9:8f:60:3b:67:61:78:03:3b:75:ef:51:4d:cb: 85:a0:17:95:f2:61:d0:b4:29:53:18:7b:d7:8d:f5:c8:8a:9a: 5b:4e:7c:7b:5f:c4:07:ba:51:e8:db:24:9c:81:ca:0d:f8:26: 48:2a:fc:5a:7b:db:c0:c3:e6:79:9c:d4:86:17:db:90:1a:bb: 42:89:06:bd:58:a8:1d:94:e7:cb:34:06:d9:e7:c4:3d:36:34: 6f:c2:e8:d7:72:48:9b:41:00:9d:5f:39:bf:17:e9:26:14:4c: db:4b:2c:25:4f:c6:55:0b:3b:38:a7:d8:88:1d:de:fc:ee:67: 7f:4e:60:de:e1:78:89:b0:aa:7c:90:49:b3:b2:49:80:93:85: 99:2a:ad:4a:4b:9e:cc:1b:83:24:d2:b9:e4:ac:1b:45:24:15: 6c:fe:c4:27 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBEOUMxMTAvBgNVBAUTKEZFM0U5OEM0QzFBNzkxMkI1QTkxNkQxNjMzNDc3OEM0 QUI3QTY1MzAwHhcNMjUwNTMxMTY1NzQwWhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiMzUwNC1hM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaceKa2UOovpuSEU8OjXA0Yri4ERKCJPmWNB5EnbZvY8Gmcfjzdonxa3Ei8I tsDHLMIOsGaORXThIYKMui2QiHZzHqO8LzIDLc56QPITHZV45gY1rLavQvJeXCTg crGH4iDF6Xql+uFVfQhj41oi+Cf8uCpPcYautItviZacKLI7VmPaficJsQ3T37Yj oXauzRhEMhfXKuzJpeDvYSYBoLCnpu8LN9kXfs1Q0kyEJDxVcTvSJtqucXcUZ+ad WE3r9GeEucZQqEkZ82RwDXXUJfeUCtwUlWR3Uw9Xw97XDrUm8Z8ZF1N8cOE9Ex8/ 0iGjV+6rMvxb4D8pPnKN3QHG5QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBcLThWn UooiJaD6WE+KsvX6TN1JMB8GA1UdIwQYMBaAFP4+mMTBp5ErWpFtFjNHeMSremUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEQ5Qy85RTI4MzAwNjU3 QTgxMUU4QjRBQzA4NzdDNEY5QUUwMi9fajZZeE1HbmtTdGFrVzBXTTBkNHhLdDZa VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qNll4TUdua1N0YWtXMFdNMGQ0eEt0NlpUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBEOUMvOUUyODMwMDY1N0E4MTFFOEI0QUMwODc3QzRGOUFFMDIvOTVEREU5RDY5 MDlBMTFFRjk0QUYzQjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbmAwDQQCAAIwBwMFACQChkAwDQYJKoZIhvcNAQELBQAD ggEBAKENp0t2v9tC0zH1l2v+hbwt+6FM0ejGBHGr+pQ6acxIFZ+Y3xLergtqR8NQ fq6dHNSeIzk2xM0sKUHwgC9trsVIK967kAzQJDTa3Z8I2OKUXAoIbnslyieqm9tZ 4qC5j2A7Z2F4Azt171FNy4WgF5XyYdC0KVMYe9eN9ciKmltOfHtfxAe6UejbJJyB yg34Jkgq/Fp728DD5nmc1IYX25Aau0KJBr1YqB2U58s0BtnnxD02NG/C6NdySJtB AJ1fOb8X6SYUTNtLLCVPxlULOzin2Igd3vzuZ39OYN7heImwqnyQSbOySYCThZkq rUpLnswbgyTSueSsG0UkFWz+xCc= -----END CERTIFICATE-----Generated at Mon Jun 2 05:46:21 2025 by rpki-client