$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/C27BAE1E63B411EF9A87155DC4F9AE02.roa File: C27BAE1E63B411EF9A87155DC4F9AE02.roa (raw, json) Hash identifier: SSYQhoePXSEZdBWsz2dSUFdjtoPBSwBZmvZLvzmRmE0= Subject key identifier: 97:0C:F8:3E:5E:73:84:11:5A:B6:67:E7:56:D4:28:52:00:28:A3:28 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: D7 Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/C27BAE1E63B411EF9A87155DC4F9AE02.roa Signing time: Fri 23 May 2025 04:56:24 +0000 ROA not before: Fri 23 May 2025 04:56:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55933 IP address blocks: 103.23.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D, serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: May 23 04:56:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682ffff8-2d83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:44:a7:4d:2e:f5:8d:49:54:e3:45:60:eb:0b: 1e:d8:a2:ac:34:55:3c:0a:c8:5b:51:d1:90:39:21: 78:2b:61:55:95:68:1f:c3:0d:06:34:a4:58:08:fe: 69:cd:64:be:86:f3:a2:dd:78:60:ff:ad:74:b4:95: ae:bb:8a:ac:58:60:2c:44:09:54:4a:f0:16:17:c5: 4e:de:e9:c1:86:1b:3a:51:08:2c:0c:ea:a2:d4:ae: 30:a1:b7:57:06:f4:ac:ec:19:06:0c:ef:c3:3b:70: d3:1f:e1:e0:f2:2f:e2:73:55:93:10:a2:de:47:42: 3f:4f:2f:7c:e6:32:68:b0:23:51:c5:7d:ad:2f:59: 74:b0:90:45:dd:8e:3a:44:20:4c:46:57:d3:3a:f2: 99:d9:8d:24:b8:49:c7:18:5a:cc:d0:fe:86:37:50: 59:0f:fc:0a:fa:0e:56:25:3f:89:ea:b8:e3:5a:7c: 7f:64:15:f5:d3:39:c8:74:52:7e:b4:18:cb:c1:62: c4:63:48:88:83:1b:2d:3b:2d:00:fe:62:d6:3e:46: ee:99:b5:26:c9:7d:09:35:81:9b:a9:50:c4:99:c2: 16:cc:e6:ae:9d:a6:db:3e:66:10:43:78:d8:b3:bf: 4e:3b:10:aa:0d:31:a6:ae:ee:4b:e5:e8:f8:e3:27: 74:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0C:F8:3E:5E:73:84:11:5A:B6:67:E7:56:D4:28:52:00:28:A3:28 X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/C27BAE1E63B411EF9A87155DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.172.0/23 Signature Algorithm: sha256WithRSAEncryption 12:09:ac:c6:b3:b3:8a:5d:07:b1:75:48:e0:ca:b4:da:0d:74: a6:2e:1b:5d:2b:1f:82:cb:1b:54:23:20:6f:92:c7:22:38:47: 2f:b9:0c:1d:a7:9a:dd:b1:0c:2f:6e:af:15:8b:f9:3d:be:2a: 59:52:85:89:a6:30:79:b5:2d:19:67:87:26:14:28:c3:f7:3c: 4a:eb:e0:35:4d:9f:e9:50:1d:2c:f6:80:54:fe:f7:cc:5f:83: 90:0f:de:22:39:66:42:55:9b:23:a3:0a:06:f7:29:a5:8b:10: 85:bb:79:1c:6e:02:bd:bc:14:b9:84:f3:99:24:16:fe:4f:5e: 69:64:87:8b:03:a3:a6:82:df:ce:96:49:ff:83:4b:ed:8a:62: 80:01:a8:b0:a8:20:a8:04:40:d9:39:ad:86:86:ae:77:e7:11: 69:59:77:4e:de:a6:fa:1b:4f:22:0e:a3:65:60:3a:92:fc:2a: df:20:cf:d7:cf:f9:dc:ee:26:24:56:cf:ca:25:f5:8a:7d:95: fe:ba:62:08:cd:d4:76:0f:58:a2:65:16:da:96:57:29:30:14: a7:a4:d2:0e:67:f7:59:2c:3e:79:43:63:ae:c4:bc:cd:7f:ce: 33:10:a7:33:4e:81:3f:7d:2d:fa:8d:ff:98:9e:c3:c3:38:6a: d3:e5:12:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGNUQxMTAvBgNVBAUTKEI0MDgxODE1QzZCQUVEOThBMUNDOTUwQUM2RkExMEJD NjAwNTg5MDIwHhcNMjUwNTIzMDQ1NjI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZmZmOC0yZDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kSnTS71jUlU40Vg6wse2KKsNFU8CshbUdGQOSF4K2FVlWgfww0GNKRYCP5p zWS+hvOi3Xhg/610tJWuu4qsWGAsRAlUSvAWF8VO3unBhhs6UQgsDOqi1K4wobdX BvSs7BkGDO/DO3DTH+Hg8i/ic1WTEKLeR0I/Ty985jJosCNRxX2tL1l0sJBF3Y46 RCBMRlfTOvKZ2Y0kuEnHGFrM0P6GN1BZD/wK+g5WJT+J6rjjWnx/ZBX10znIdFJ+ tBjLwWLEY0iIgxstOy0A/mLWPkbumbUmyX0JNYGbqVDEmcIWzOaunabbPmYQQ3jY s79OOxCqDTGmru5L5ej44yd0WQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJcM+D5e c4QRWrZn51bUKFIAKKMoMB8GA1UdIwQYMBaAFLQIGBXGuu2YocyVCsb6ELxgBYkC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Y1RC8xMEY5NEVGMDA2 QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjdaaWh6SlVLeHZvUXZHQUZp UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNGNUQvMTBGOTRFRjAwNkFCMTFFRjg3QkZBNzI1QzRGOUFFMDIvQzI3QkFFMUU2 M0I0MTFFRjlBODcxNTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnF6wwDQYJKoZIhvcNAQELBQADggEBABIJrMazs4pdB7F1 SODKtNoNdKYuG10rH4LLG1QjIG+SxyI4Ry+5DB2nmt2xDC9urxWL+T2+KllShYmm MHm1LRlnhyYUKMP3PErr4DVNn+lQHSz2gFT+98xfg5AP3iI5ZkJVmyOjCgb3KaWL EIW7eRxuAr28FLmE85kkFv5PXmlkh4sDo6aC386WSf+DS+2KYoABqLCoIKgEQNk5 rYaGrnfnEWlZd07epvobTyIOo2VgOpL8Kt8gz9fP+dzuJiRWz8ol9Yp9lf66YgjN 1HYPWKJlFtqWVykwFKek0g5n91ksPnlDY67EvM1/zjMQpzNOgT99LfqN/5iew8M4 atPlEpI= -----END CERTIFICATE-----Generated at Mon Jun 2 07:05:41 2025 by rpki-client