$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa File: 04B0D250076211EFB14D3B12C4F9AE02.roa (raw, json) Hash identifier: P3/wZ7DQvbJJfKWvdajqCfHfPIC9vT8MvrKGyjWYukc= Subject key identifier: 39:95:87:B6:83:60:81:1C:FE:74:7D:6D:F7:76:11:6B:12:7D:FE:DB Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: D9 Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa Signing time: Fri 23 May 2025 04:56:26 +0000 ROA not before: Fri 23 May 2025 04:56:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 917 IP address blocks: 103.23.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D, serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: May 23 04:56:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682ffffa-1891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:03:27:02:79:f3:3d:c5:32:d6:03:20:cb:78: 2b:c8:fa:e9:1f:82:5f:0a:00:28:73:d7:09:22:9d: 20:85:17:68:7f:b1:25:41:15:95:03:74:59:ac:0e: 45:7e:fe:95:bb:45:ec:23:38:72:58:c0:31:b8:7d: 60:1c:06:c0:b8:d9:31:52:5f:ce:c7:55:d9:a4:cb: f5:66:ba:37:df:57:ee:d1:7b:cd:31:9f:36:bb:e9: db:9c:05:77:9d:5c:63:d1:58:d2:6b:e2:96:ae:3c: fb:4b:a7:7b:2f:90:36:b8:ca:73:35:4e:e5:d2:18: bf:8f:aa:25:b5:d1:32:17:7b:de:5b:71:c0:c9:21: 72:47:a4:9d:8a:4a:1c:df:5c:03:08:6d:04:b2:5b: 91:d8:b6:78:4d:23:66:2a:11:66:96:88:d6:1e:eb: 07:cb:33:5f:24:dd:9d:13:ef:4d:77:02:c6:45:d2: f0:44:45:79:f1:0c:c3:82:44:a7:e2:0a:e1:38:b1: 7f:b4:a5:5a:83:70:c9:ec:d4:01:9b:63:d7:09:94: 51:f0:19:f3:43:73:7b:2d:d3:22:c5:34:b1:5a:48: 67:ad:22:db:1e:c6:b8:d8:ec:2b:e3:fe:5b:c5:1c: 62:20:59:22:4e:9b:47:29:8a:f1:db:56:63:2b:07: 36:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:95:87:B6:83:60:81:1C:FE:74:7D:6D:F7:76:11:6B:12:7D:FE:DB X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.172.0/23 Signature Algorithm: sha256WithRSAEncryption 31:3c:0e:61:66:0b:9c:45:90:a1:3c:d8:bc:ae:97:6e:23:9a: d0:32:83:c9:79:46:26:58:28:18:ec:e6:11:1b:1e:59:f1:8a: e5:ae:34:61:35:fc:b8:a4:30:b9:6c:bc:b2:14:c6:27:75:55: b4:69:0c:7b:93:99:e4:81:35:f3:08:9a:4f:3b:11:be:4e:c4: da:17:81:2b:ee:c8:2b:fb:b4:8a:d2:f5:5f:18:01:5c:bb:7d: 5a:6e:2d:50:96:16:bd:8d:0a:4f:c4:c9:79:33:52:10:d5:33: 7d:fc:4f:7d:21:8a:1b:33:37:f5:0d:74:7c:3d:64:d7:e5:ea: 82:80:d5:3d:f4:79:c6:d5:00:0a:ab:d1:f6:9c:f0:09:e3:e8: 24:45:39:46:85:a9:21:e6:89:50:51:05:22:c2:e2:aa:98:68: 04:57:66:e1:a4:c6:61:e7:ef:23:8e:20:8d:b9:86:5d:32:5f: 47:1d:d5:26:61:8e:7f:a3:3c:fc:36:03:29:74:e2:89:d2:db: d8:a8:b4:45:5c:ed:59:59:81:cf:78:d4:e4:14:94:fa:a9:f6: 8b:d3:bc:27:1c:83:ca:9f:35:0f:81:a6:11:87:8b:30:79:8e: c3:ab:cf:d7:8f:c9:61:67:eb:e8:a7:99:75:fc:f9:da:da:12: 3e:5d:8c:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGNUQxMTAvBgNVBAUTKEI0MDgxODE1QzZCQUVEOThBMUNDOTUwQUM2RkExMEJD NjAwNTg5MDIwHhcNMjUwNTIzMDQ1NjI2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZmZmYS0xODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwMnAnnzPcUy1gMgy3gryPrpH4JfCgAoc9cJIp0ghRdof7ElQRWVA3RZrA5F fv6Vu0XsIzhyWMAxuH1gHAbAuNkxUl/Ox1XZpMv1Zro331fu0XvNMZ82u+nbnAV3 nVxj0VjSa+KWrjz7S6d7L5A2uMpzNU7l0hi/j6oltdEyF3veW3HAySFyR6Sdikoc 31wDCG0EsluR2LZ4TSNmKhFmlojWHusHyzNfJN2dE+9NdwLGRdLwREV58QzDgkSn 4grhOLF/tKVag3DJ7NQBm2PXCZRR8BnzQ3N7LdMixTSxWkhnrSLbHsa42Owr4/5b xRxiIFkiTptHKYrx21ZjKwc2AwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDmVh7aD YIEc/nR9bfd2EWsSff7bMB8GA1UdIwQYMBaAFLQIGBXGuu2YocyVCsb6ELxgBYkC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Y1RC8xMEY5NEVGMDA2 QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjdaaWh6SlVLeHZvUXZHQUZp UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNGNUQvMTBGOTRFRjAwNkFCMTFFRjg3QkZBNzI1QzRGOUFFMDIvMDRCMEQyNTAw NzYyMTFFRkIxNEQzQjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnF6wwDQYJKoZIhvcNAQELBQADggEBADE8DmFmC5xFkKE8 2Lyul24jmtAyg8l5RiZYKBjs5hEbHlnxiuWuNGE1/LikMLlsvLIUxid1VbRpDHuT meSBNfMImk87Eb5OxNoXgSvuyCv7tIrS9V8YAVy7fVpuLVCWFr2NCk/EyXkzUhDV M338T30hihszN/UNdHw9ZNfl6oKA1T30ecbVAAqr0fac8Anj6CRFOUaFqSHmiVBR BSLC4qqYaARXZuGkxmHn7yOOII25hl0yX0cd1SZhjn+jPPw2Ayl04onS29iotEVc 7VlZgc941OQUlPqp9ovTvCccg8qfNQ+BphGHizB5jsOrz9ePyWFn6+inmXX8+dra Ej5djDM= -----END CERTIFICATE-----Generated at Mon Jun 2 07:15:27 2025 by rpki-client