$ rpki-client -vvf rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/06D9E242335211E79AC36F87C4F9AE02.roa File: 06D9E242335211E79AC36F87C4F9AE02.roa (raw, json) Hash identifier: cOF8JZVjOiBr4JiE8EO1rOQQwXV4Z3nniDklK+R3JE4= Subject key identifier: 56:2D:F8:AD:11:00:72:49:55:8C:39:F7:58:C1:9D:D3:2A:42:AC:06 Certificate issuer: /CN=A91A279C/serialNumber=0BA34E6430B10E6A7F2D29964425D1F714AF865C Certificate serial: 1AB4 Authority key identifier: 0B:A3:4E:64:30:B1:0E:6A:7F:2D:29:96:44:25:D1:F7:14:AF:86:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6NOZDCxDmp_LSmWRCXR9xSvhlw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/06D9E242335211E79AC36F87C4F9AE02.roa Signing time: Mon 26 May 2025 16:25:52 +0000 ROA not before: Mon 26 May 2025 16:25:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 64515 IP address blocks: 103.87.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/C6NOZDCxDmp_LSmWRCXR9xSvhlw.crl rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/C6NOZDCxDmp_LSmWRCXR9xSvhlw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6NOZDCxDmp_LSmWRCXR9xSvhlw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6836 (0x1ab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A279C, serialNumber=0BA34E6430B10E6A7F2D29964425D1F714AF865C Validity Not Before: May 26 16:25:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68349610-16fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:2d:e4:3e:5a:63:82:b4:29:b5:87:9a:be: 37:c5:3a:73:5e:16:69:69:f5:c8:0b:4b:c8:df:e9: 87:c5:35:e6:9b:85:d3:cf:6b:77:03:cf:71:8d:37: 44:95:46:e9:49:7f:0a:31:70:ef:11:96:dd:66:78: eb:5b:c4:c3:1b:e6:18:6d:f8:7e:3c:99:38:3f:8c: 7b:b3:39:0c:9a:bb:52:0a:41:b9:f0:03:81:43:55: 43:04:93:6f:4c:f1:00:d0:82:4f:7f:1b:9b:13:9a: ba:a2:b6:3c:cd:ff:5b:55:77:ca:3b:de:f0:e3:5b: 1c:3f:6d:1b:80:13:7b:bc:1b:52:4b:92:7c:28:ef: 8f:8e:9d:45:24:2c:1a:a6:bf:1d:90:95:f4:54:89: 8c:82:0c:05:1a:11:2f:4c:17:cc:80:ad:1e:ad:cf: 01:2c:29:8c:fb:80:29:bd:78:d1:60:80:2e:63:ce: f6:c5:6d:bd:8d:40:30:12:6f:97:5c:50:64:19:ee: ca:7f:59:60:d7:f2:70:dd:41:ab:7d:de:2a:65:dd: b9:ea:23:c2:cb:34:6b:35:f2:c4:cc:f8:3c:a4:03: 97:b1:aa:89:6d:25:b4:88:9e:28:72:96:5c:79:dd: 82:aa:8f:6b:06:48:39:d5:25:72:39:95:52:d6:ba: ff:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2D:F8:AD:11:00:72:49:55:8C:39:F7:58:C1:9D:D3:2A:42:AC:06 X509v3 Authority Key Identifier: keyid:0B:A3:4E:64:30:B1:0E:6A:7F:2D:29:96:44:25:D1:F7:14:AF:86:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/C6NOZDCxDmp_LSmWRCXR9xSvhlw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6NOZDCxDmp_LSmWRCXR9xSvhlw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/06D9E242335211E79AC36F87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.91.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:3c:aa:e0:85:a8:08:d3:9b:3b:bd:d2:dd:b4:fb:f1:88:40: e3:52:57:e5:99:8e:2b:8f:aa:e1:dd:ca:6c:fb:0c:ec:ed:4a: 2e:0b:70:e1:65:aa:0a:fc:80:22:8b:f4:bd:f2:0b:db:c8:4c: 6e:a9:05:2f:51:4a:7a:01:54:eb:97:61:47:05:40:79:dd:ff: ba:5d:45:90:d5:9a:cb:a6:31:ac:b5:35:06:0e:dd:eb:9c:13: 9b:15:c9:2b:6f:7e:cd:c2:db:a6:0c:7e:56:39:7b:be:05:b6: 55:91:13:2c:55:34:88:8c:0d:1f:c8:26:ed:22:b0:f2:6d:b3: 12:c1:dc:7a:df:91:8f:f0:5e:af:ab:5b:02:bb:ab:7d:c2:32: a9:50:1d:6c:65:5c:e5:26:6f:36:b5:b9:73:73:a7:c3:2d:0b: 60:43:9d:63:e5:31:47:3f:c3:6e:7d:76:72:aa:f0:e5:b1:91: a9:e1:fe:d2:c1:27:7b:94:80:2a:35:38:ca:75:88:76:a1:2d: b0:de:90:57:6d:81:b5:d7:1a:8e:f2:ba:49:65:5d:c2:25:e9: ba:d7:b4:47:b1:81:71:3f:a0:90:03:d7:e2:cd:db:5f:f9:55: 22:ee:f0:6b:31:6e:fa:ca:47:33:39:93:04:1d:36:cc:c4:6e: ed:47:f2:80 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI3OUMxMTAvBgNVBAUTKDBCQTM0RTY0MzBCMTBFNkE3RjJEMjk5NjQ0MjVEMUY3 MTRBRjg2NUMwHhcNMjUwNTI2MTYyNTUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0OTYxMC0xNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9wt5D5aY4K0KbWHmr43xTpzXhZpafXIC0vI3+mHxTXmm4XTz2t3A89xjTdE lUbpSX8KMXDvEZbdZnjrW8TDG+YYbfh+PJk4P4x7szkMmrtSCkG58AOBQ1VDBJNv TPEA0IJPfxubE5q6orY8zf9bVXfKO97w41scP20bgBN7vBtSS5J8KO+Pjp1FJCwa pr8dkJX0VImMggwFGhEvTBfMgK0erc8BLCmM+4ApvXjRYIAuY872xW29jUAwEm+X XFBkGe7Kf1lg1/Jw3UGrfd4qZd256iPCyzRrNfLEzPg8pAOXsaqJbSW0iJ4ocpZc ed2Cqo9rBkg51SVyOZVS1rr/uQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFYt+K0R AHJJVYw591jBndMqQqwGMB8GA1UdIwQYMBaAFAujTmQwsQ5qfy0plkQl0fcUr4Zc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjc5Qy8xQ0VCNzcxODMz NTExMUU3QkY0Qjk1ODZDNEY5QUUwMi9DNk5PWkRDeERtcF9MU21XUkNYUjl4U3Zo bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2Tk9aREN4RG1wX0xTbVdSQ1hSOXhTdmhsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI3OUMvMUNFQjc3MTgzMzUxMTFFN0JGNEI5NTg2QzRGOUFFMDIvMDZEOUUyNDIz MzUyMTFFNzlBQzM2Rjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnV1swDQYJKoZIhvcNAQELBQADggEBAJs8quCFqAjTmzu9 0t20+/GIQONSV+WZjiuPquHdymz7DOztSi4LcOFlqgr8gCKL9L3yC9vITG6pBS9R SnoBVOuXYUcFQHnd/7pdRZDVmsumMay1NQYO3eucE5sVyStvfs3C26YMflY5e74F tlWREyxVNIiMDR/IJu0isPJtsxLB3HrfkY/wXq+rWwK7q33CMqlQHWxlXOUmbza1 uXNzp8MtC2BDnWPlMUc/w259dnKq8OWxkanh/tLBJ3uUgCo1OMp1iHahLbDekFdt gbXXGo7yukllXcIl6brXtEexgXE/oJAD1+LN21/5VSLu8GsxbvrKRzM5kwQdNszE bu1H8oA= -----END CERTIFICATE-----Generated at Mon Jun 2 05:29:20 2025 by rpki-client