$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa File: FA7CB46C8AB411EA89D83541C4F9AE02.roa (raw, json) Hash identifier: ZKzXf/DOzsl1EKQee5k9LA/isQewfxrXPq7TVjAdiX4= Subject key identifier: 00:F9:1B:D0:AF:CC:AE:09:79:1A:70:7F:58:43:82:6D:4B:F0:43:E6 Certificate issuer: /CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Certificate serial: 09A9 Authority key identifier: ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa Signing time: Tue 24 Jun 2025 19:55:44 +0000 ROA not before: Tue 24 Jun 2025 19:55:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140611 IP address blocks: 103.150.254.0/23 maxlen: 23 103.150.254.0/24 maxlen: 24 103.150.255.0/24 maxlen: 24 2001:df3:9980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F6C, serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Validity Not Before: Jun 24 19:55:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685b02c0-5d4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:66:8f:47:e5:21:73:7b:11:ae:aa:79:70:84: cc:30:d7:19:93:d3:50:11:84:a1:28:2b:29:e8:98: 10:6e:0d:ab:7a:d4:1f:39:17:50:7d:43:77:5b:59: ca:c8:42:8b:ac:cb:64:6e:cf:b8:69:ca:4f:c9:45: 26:55:77:21:d8:92:07:7a:73:82:06:c1:c5:fa:33: 06:ac:03:aa:0f:af:c7:b0:81:02:7d:d2:be:f7:51: 3e:ea:ff:8e:ec:82:8b:21:7b:e9:99:b7:9c:81:45: 1d:d9:c3:1a:9e:38:33:dd:8c:79:19:98:de:9d:6a: 9d:b6:18:c9:44:b7:9f:64:2c:ef:36:47:98:e8:b1: 9c:95:46:47:a6:01:44:3f:9d:60:e2:7b:f2:19:65: 4e:df:04:09:f2:58:1a:23:62:6b:8e:d5:4f:cc:a2: 4b:06:f5:ef:89:90:72:b6:9e:80:a2:23:1d:13:c5: d6:b1:ec:22:c8:e3:bd:46:ce:00:0b:db:5a:7c:6e: 6d:b6:af:3e:c5:97:c2:18:4b:33:3c:0c:d4:9a:8d: 6c:a6:4b:4e:b3:ad:81:f6:ae:54:5a:ac:f8:fb:89: 26:e7:32:64:4b:db:97:19:56:1d:b9:17:a7:10:0d: 0c:69:e8:72:85:0c:97:f3:3f:93:99:47:22:c1:3d: 10:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F9:1B:D0:AF:CC:AE:09:79:1A:70:7F:58:43:82:6D:4B:F0:43:E6 X509v3 Authority Key Identifier: keyid:ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/FA7CB46C8AB411EA89D83541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.254.0/23 IPv6: 2001:df3:9980::/48 Signature Algorithm: sha256WithRSAEncryption b0:d5:42:8b:cd:f6:21:21:0b:ad:96:89:51:16:fa:a0:4a:d2: 5c:1f:0f:72:0c:d6:28:6e:99:7a:41:99:35:85:b6:b2:2e:84: c1:ad:89:ce:e6:e8:ff:50:6c:89:1a:5b:3b:c2:66:8b:9d:7a: 03:e8:9c:14:c2:af:21:01:2f:2e:cf:96:c3:29:48:de:4c:0b: c4:ac:ba:42:db:cf:36:aa:34:a3:4c:1d:30:ce:3f:02:fa:bb: c0:f8:74:94:2b:5a:33:7d:59:f4:84:90:17:83:bb:d3:74:03: 94:38:a3:09:e2:46:7e:f3:5e:03:10:5b:29:9e:58:00:2d:2a: 3b:df:65:ce:08:02:b8:56:52:c3:6c:45:35:27:e3:ef:a9:f7: 59:ee:09:3e:d1:be:07:cb:e5:64:de:5e:20:50:c7:91:a0:e5: 21:50:a2:bf:e4:97:13:52:ae:0f:80:94:4a:ad:24:7a:b5:23: 6a:26:44:42:18:af:fa:16:f0:28:8a:7c:0b:e9:65:b3:0a:75: 79:3f:6d:52:9a:8c:88:38:77:7e:3e:ed:5c:c0:b2:ef:1a:ce: 51:ab:86:1b:59:63:11:28:8c:68:49:00:c5:06:47:6d:41:f5: a2:92:92:83:5f:e1:16:6f:60:0a:f1:d9:02:47:0b:d6:39:6b: ab:8c:5e:cf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGNkMxMTAvBgNVBAUTKEVEQUYxRTlBNzlEOUZFQ0IxMDc4ODNBRkQzNzU3RkE4 RjcwQTMyRDcwHhcNMjUwNjI0MTk1NTQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViMDJjMC01ZDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumaPR+Uhc3sRrqp5cITMMNcZk9NQEYShKCsp6JgQbg2retQfORdQfUN3W1nK yEKLrMtkbs+4acpPyUUmVXch2JIHenOCBsHF+jMGrAOqD6/HsIECfdK+91E+6v+O 7IKLIXvpmbecgUUd2cManjgz3Yx5GZjenWqdthjJRLefZCzvNkeY6LGclUZHpgFE P51g4nvyGWVO3wQJ8lgaI2JrjtVPzKJLBvXviZBytp6AoiMdE8XWsewiyOO9Rs4A C9tafG5ttq8+xZfCGEszPAzUmo1spktOs62B9q5UWqz4+4km5zJkS9uXGVYduRen EA0MaehyhQyX8z+TmUciwT0QWwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAD5G9Cv zK4JeRpwf1hDgm1L8EPmMB8GA1UdIwQYMBaAFO2vHpp52f7LEHiDr9N1f6j3CjLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY2Qy85RTMxRjNCMjhB QjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9zc1FlSU92MDNWX3FQY0tN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhOGVtbm5aX3NzUWVJT3YwM1ZfcVBjS010Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJGNkMvOUUzMUYzQjI4QUIzMTFFQTkzQTZCQTNFQzRGOUFFMDIvRkE3Q0I0NkM4 QUI0MTFFQTg5RDgzNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlv4wDwQCAAIwCQMHACABDfOZgDANBgkqhkiG9w0BAQsF AAOCAQEAsNVCi832ISELrZaJURb6oErSXB8PcgzWKG6ZekGZNYW2si6Ewa2Jzubo /1BsiRpbO8Jmi516A+icFMKvIQEvLs+WwylI3kwLxKy6QtvPNqo0o0wdMM4/Avq7 wPh0lCtaM31Z9ISQF4O703QDlDijCeJGfvNeAxBbKZ5YAC0qO99lzggCuFZSw2xF NSfj76n3We4JPtG+B8vlZN5eIFDHkaDlIVCiv+SXE1KuD4CUSq0kerUjaiZEQhiv +hbwKIp8C+llswp1eT9tUpqMiDh3fj7tXMCy7xrOUauGG1ljESiMaEkAxQZHbUH1 opKSg1/hFm9gCvHZAkcL1jlrq4xezw== -----END CERTIFICATE-----Generated at Wed Jul 2 02:00:44 2025 by rpki-client