$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/813CF67A858111EB914A5377C4F9AE02.roa File: 813CF67A858111EB914A5377C4F9AE02.roa (raw, json) Hash identifier: HvQM/EpIOcxtsakqm5fBHMGZc8MdIewsQwp8yX5c0vo= Subject key identifier: 53:B5:84:E7:3A:33:BC:0B:4A:2B:D3:88:B1:44:14:EA:25:5E:31:C4 Certificate issuer: /CN=A91A1CF4/serialNumber=32A4F670DA0F52858EDDEF0690C8E550DFDB3411 Certificate serial: 0661 Authority key identifier: 32:A4:F6:70:DA:0F:52:85:8E:DD:EF:06:90:C8:E5:50:DF:DB:34:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MqT2cNoPUoWO3e8GkMjlUN_bNBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/813CF67A858111EB914A5377C4F9AE02.roa Signing time: Thu 29 May 2025 08:39:11 +0000 ROA not before: Thu 29 May 2025 08:39:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141988 IP address blocks: 103.163.246.0/23 maxlen: 24 2001:df6:3180::/48 maxlen: 48 2402:e20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/MqT2cNoPUoWO3e8GkMjlUN_bNBE.crl rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/MqT2cNoPUoWO3e8GkMjlUN_bNBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MqT2cNoPUoWO3e8GkMjlUN_bNBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CF4, serialNumber=32A4F670DA0F52858EDDEF0690C8E550DFDB3411 Validity Not Before: May 29 08:39:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68381d2f-6343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:b0:2c:3a:8e:34:b2:2d:52:4e:00:a9:c3: 45:e8:1c:af:6f:28:00:cc:2e:69:ef:fe:ae:4d:98: 77:10:60:fa:c4:9d:5a:b0:3b:71:10:12:8c:f5:bd: 3d:32:b5:89:cc:97:34:45:25:3f:95:37:f7:84:6d: 50:0d:6e:c9:39:4c:74:58:cb:3d:39:4d:03:a3:f3: 5d:cb:ea:a3:9a:a6:39:fc:94:c5:4f:85:c2:72:7d: 74:96:66:2c:df:a2:ce:21:eb:1a:e7:fe:bf:8d:44: 50:46:5b:65:5e:3b:77:84:4f:2e:ea:05:19:ab:07: b1:e1:e3:11:09:a1:ad:43:12:0f:3a:0c:2c:4c:e6: 52:a8:00:4c:cd:c6:f6:f3:31:ad:2d:43:aa:4f:62: 4a:15:bd:b3:a7:6e:68:a2:6d:29:38:92:13:77:6c: 0d:b7:fb:d0:9e:af:c8:d8:24:1b:47:0d:11:65:f2: f8:a6:50:0f:9d:05:9c:1e:94:0e:ee:68:aa:b1:fb: 3e:36:4a:4a:d2:58:56:87:75:bf:61:31:25:2d:b2: 15:ea:aa:e0:6c:2e:89:c6:2e:19:4a:b9:2d:b1:bf: c4:0e:65:e5:26:93:2c:63:26:61:8a:16:56:e6:ed: 8f:44:e3:93:59:d7:ef:f9:36:e4:9d:7d:b0:41:79: cd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B5:84:E7:3A:33:BC:0B:4A:2B:D3:88:B1:44:14:EA:25:5E:31:C4 X509v3 Authority Key Identifier: keyid:32:A4:F6:70:DA:0F:52:85:8E:DD:EF:06:90:C8:E5:50:DF:DB:34:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/MqT2cNoPUoWO3e8GkMjlUN_bNBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MqT2cNoPUoWO3e8GkMjlUN_bNBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CF4/9AC4851A857F11EB9B285775C4F9AE02/813CF67A858111EB914A5377C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.246.0/23 IPv6: 2001:df6:3180::/48 2402:e20::/32 Signature Algorithm: sha256WithRSAEncryption cc:6a:81:04:e2:8b:a9:bf:b8:ca:d3:41:07:e7:95:1c:5e:8b: a3:24:24:54:93:d1:28:a3:ac:c2:82:42:07:96:55:96:ad:df: 36:45:a0:33:40:bf:e7:29:08:95:54:7e:67:de:15:97:f7:d0: 8b:89:9d:45:40:82:dc:bb:63:07:52:47:5a:5c:29:63:83:f2: 93:b0:70:0d:8e:cc:98:f8:95:08:37:81:df:e9:69:4b:65:59: 4f:d8:b7:f8:62:f6:ee:11:16:a6:ee:f3:e4:74:3e:ad:e6:4d: a5:c3:14:1b:8c:13:2f:98:f2:7c:99:85:ca:77:30:87:83:c9: a4:13:de:3e:8e:8c:f2:b8:b4:ea:37:8a:df:c9:3b:8c:62:70: 07:e9:5f:50:95:b9:22:eb:bd:99:eb:bd:60:47:37:d5:39:a0: ca:fb:74:df:8b:de:c6:67:7b:c0:60:7d:aa:4b:28:42:ec:06: d6:05:35:cd:d8:92:1c:69:f7:b9:32:f0:6a:c7:76:ed:bb:24: f1:c8:83:f5:9b:a8:12:9a:a9:f3:31:f4:b7:12:e1:63:14:45: f9:4a:65:69:9d:fb:69:ff:61:6e:12:9c:ae:a2:3a:e0:4d:ef: ef:f9:61:55:21:f7:50:21:1e:f2:7a:4a:1d:5d:68:72:69:cc: 0b:ef:20:db -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDRjQxMTAvBgNVBAUTKDMyQTRGNjcwREEwRjUyODU4RURERUYwNjkwQzhFNTUw REZEQjM0MTEwHhcNMjUwNTI5MDgzOTExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM4MWQyZi02MzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAGwLDqONLItUk4AqcNF6ByvbygAzC5p7/6uTZh3EGD6xJ1asDtxEBKM9b09 MrWJzJc0RSU/lTf3hG1QDW7JOUx0WMs9OU0Do/Ndy+qjmqY5/JTFT4XCcn10lmYs 36LOIesa5/6/jURQRltlXjt3hE8u6gUZqwex4eMRCaGtQxIPOgwsTOZSqABMzcb2 8zGtLUOqT2JKFb2zp25oom0pOJITd2wNt/vQnq/I2CQbRw0RZfL4plAPnQWcHpQO 7miqsfs+NkpK0lhWh3W/YTElLbIV6qrgbC6Jxi4ZSrktsb/EDmXlJpMsYyZhihZW 5u2PROOTWdfv+TbknX2wQXnNxQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFFO1hOc6 M7wLSivTiLFEFOolXjHEMB8GA1UdIwQYMBaAFDKk9nDaD1KFjt3vBpDI5VDf2zQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNGNC85QUM0ODUxQTg1 N0YxMUVCOUIyODU3NzVDNEY5QUUwMi9NcVQyY05vUFVvV08zZThHa01qbFVOX2JO QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01xVDJjTm9QVW9XTzNlOEdrTWpsVU5fYk5CRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDRjQvOUFDNDg1MUE4NTdGMTFFQjlCMjg1Nzc1QzRGOUFFMDIvODEzQ0Y2N0E4 NTgxMTFFQjkxNEE1Mzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAFno/YwFgQCAAIwEAMHACABDfYxgAMFACQCDiAwDQYJKoZI hvcNAQELBQADggEBAMxqgQTii6m/uMrTQQfnlRxei6MkJFST0SijrMKCQgeWVZat 3zZFoDNAv+cpCJVUfmfeFZf30IuJnUVAgty7YwdSR1pcKWOD8pOwcA2OzJj4lQg3 gd/paUtlWU/Yt/hi9u4RFqbu8+R0Pq3mTaXDFBuMEy+Y8nyZhcp3MIeDyaQT3j6O jPK4tOo3it/JO4xicAfpX1CVuSLrvZnrvWBHN9U5oMr7dN+L3sZne8BgfapLKELs BtYFNc3Ykhxp97ky8GrHdu27JPHIg/WbqBKaqfMx9LcS4WMURflKZWmd+2n/YW4S nK6iOuBN7+/5YVUh91AhHvJ6Sh1daHJpzAvvINs= -----END CERTIFICATE-----Generated at Mon Jun 2 06:34:52 2025 by rpki-client