$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa File: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (raw, json) Hash identifier: XCMHw1WVIEMLU74HMo1cPz+oPVQmbB2z+VPLna5yZDg= Subject key identifier: B5:91:99:C2:2F:0F:77:A2:52:D0:26:9C:01:ED:94:B9:82:03:3F:0C Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 0439 Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa Signing time: Wed 21 May 2025 00:27:31 +0000 ROA not before: Wed 21 May 2025 00:27:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55933 IP address blocks: 103.231.12.0/22 maxlen: 24 202.181.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: May 21 00:27:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d1df3-42e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:04:80:99:b7:75:03:f2:46:86:71:6c:c8:b8: d1:de:5f:ea:87:9e:e3:95:c0:2a:99:71:04:4f:17: 58:5a:af:d7:d5:e0:a5:f0:5c:f4:d9:cd:51:65:ea: 7c:38:48:4c:a2:8f:69:b3:d8:c4:7b:77:93:a9:47: 49:20:9c:ce:17:23:2e:7b:69:43:25:ec:2c:c4:d4: 58:50:c2:4e:2e:70:ca:50:98:04:3d:68:fb:69:02: f6:d0:a0:79:0d:50:17:9b:3e:19:5c:d8:b4:1c:41: 3f:d6:d6:10:23:f6:fc:82:b2:20:75:96:f5:8d:f7: dd:12:e1:74:35:16:fc:06:ed:79:16:18:77:6c:39: 95:30:70:0b:80:0b:bf:66:41:62:3b:a5:c7:7f:28: e7:d3:a3:90:3e:98:56:cd:13:17:40:61:e8:2b:08: 9c:ef:a0:32:f6:5c:65:47:4e:50:59:6a:6e:b1:70: 80:af:1b:fb:17:46:3c:95:9d:33:37:de:55:be:ef: 9f:f3:e3:f7:d9:0a:8f:42:d5:40:15:8b:93:6a:d1: 39:bf:80:51:8c:d3:47:7b:3b:d8:7c:0d:b4:d9:5b: f3:47:c0:84:10:23:ce:73:85:9d:77:55:b1:55:01: 4d:5a:8f:a7:f8:ec:72:4e:12:bf:92:d9:fb:22:66: 7a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:91:99:C2:2F:0F:77:A2:52:D0:26:9C:01:ED:94:B9:82:03:3F:0C X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.12.0/22 202.181.24.0/22 Signature Algorithm: sha256WithRSAEncryption a0:b7:bd:ae:74:ed:5f:02:56:6d:5f:a1:1d:73:af:b7:db:40: 48:c2:6b:27:8d:b1:d6:7d:73:27:e8:b9:1a:ed:a0:c8:24:fb: 7e:d9:29:d8:51:bc:59:2e:a6:ad:81:ed:3c:68:33:44:a8:5a: 97:f0:c1:76:36:50:6e:8f:64:e8:bb:2b:ee:ee:a9:49:a2:59: 92:74:13:3b:d7:72:66:33:13:23:1d:c0:b6:30:c1:fa:54:18: 36:bc:01:b8:92:85:97:37:f9:fd:37:01:0a:2e:6d:65:6a:a6: b7:c5:65:22:8b:96:72:6c:f0:b1:bb:8d:01:e7:9b:ab:f4:a5: c7:62:f6:2f:2c:cb:b4:d2:7c:3a:89:54:38:51:31:18:1e:2b: b3:48:ca:16:d6:5f:fc:19:4f:e2:0c:f5:15:88:6f:3b:aa:db: f0:77:45:f6:68:89:87:c4:d3:ab:93:75:b0:03:bc:ef:b9:35: 12:9c:9f:6d:af:1c:f2:2d:34:fb:14:4f:d0:e0:2d:49:c3:9f: ca:c5:d0:2d:80:c2:8f:08:5c:3a:ca:3f:85:29:46:62:1f:9b: a2:e2:d6:98:09:7e:4d:75:0e:be:6f:3e:69:76:b7:e0:f2:b7: 9b:39:bc:3a:6f:80:70:d0:0a:1d:f5:83:a2:27:19:13:c8:91: 00:f5:41:0a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjUwNTIxMDAyNzMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkMWRmMy00MmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqASAmbd1A/JGhnFsyLjR3l/qh57jlcAqmXEETxdYWq/X1eCl8Fz02c1RZep8 OEhMoo9ps9jEe3eTqUdJIJzOFyMue2lDJewsxNRYUMJOLnDKUJgEPWj7aQL20KB5 DVAXmz4ZXNi0HEE/1tYQI/b8grIgdZb1jffdEuF0NRb8Bu15Fhh3bDmVMHALgAu/ ZkFiO6XHfyjn06OQPphWzRMXQGHoKwic76Ay9lxlR05QWWpusXCArxv7F0Y8lZ0z N95Vvu+f8+P32QqPQtVAFYuTatE5v4BRjNNHezvYfA202VvzR8CEECPOc4Wdd1Wx VQFNWo+n+OxyThK/ktn7ImZ6bwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLWRmcIv D3eiUtAmnAHtlLmCAz8MMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMwMEYvMUFENUFGNzQ1RDkxMTFFQzlBRkI4RDNEQzRGOUFFMDIvOUMyREUxN0E1 RDkzMTFFQ0IyQUJCNjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn5wwDBALKtRgwDQYJKoZIhvcNAQELBQADggEBAKC3va50 7V8CVm1foR1zr7fbQEjCayeNsdZ9cyfouRrtoMgk+37ZKdhRvFkupq2B7TxoM0So WpfwwXY2UG6PZOi7K+7uqUmiWZJ0EzvXcmYzEyMdwLYwwfpUGDa8AbiShZc3+f03 AQoubWVqprfFZSKLlnJs8LG7jQHnm6v0pcdi9i8sy7TSfDqJVDhRMRgeK7NIyhbW X/wZT+IM9RWIbzuq2/B3RfZoiYfE06uTdbADvO+5NRKcn22vHPItNPsUT9DgLUnD n8rF0C2Awo8IXDrKP4UpRmIfm6Li1pgJfk11Dr5vPml2t+Dyt5s5vDpvgHDQCh31 g6InGRPIkQD1QQo= -----END CERTIFICATE-----Generated at Mon Jun 2 04:58:43 2025 by rpki-client