$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/91CB97905BD211EBA9178181C4F9AE02.roa File: 91CB97905BD211EBA9178181C4F9AE02.roa (raw, json) Hash identifier: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk= Subject key identifier: EC:91:F0:E0:4C:26:C9:8C:92:9A:AD:F6:5F:94:3A:C1:42:EF:A8:07 Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A5D Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/91CB97905BD211EBA9178181C4F9AE02.roa Signing time: Wed 14 May 2025 16:56:33 +0000 ROA not before: Wed 14 May 2025 16:56:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24440 IP address blocks: 103.213.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6749 (0x1a5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: May 14 16:56:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6824cb41-f32c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6c:db:3f:79:a7:a8:4f:db:eb:90:ae:de:cc: 23:28:28:13:4c:e5:c7:89:9c:40:38:3a:dd:29:fa: ca:fc:06:93:7f:df:f2:e5:fe:a5:dc:f3:1d:a8:2d: 63:03:cc:8d:93:77:9f:b5:e7:3a:9c:a1:bc:c7:9b: fc:c1:ef:10:a0:9b:cb:d9:f6:9c:78:89:33:61:3e: 08:e9:b5:f2:f2:96:4a:7d:73:23:c9:f1:f7:04:c9: 2d:76:a6:b1:7b:3e:ec:a3:b3:d9:5e:cd:f4:75:03: 43:64:7d:ee:cf:6e:6a:cd:b6:b3:86:b8:53:b2:05: bb:aa:d4:44:71:27:50:33:3e:5e:67:af:c6:be:0d: 8c:13:07:7e:39:2f:d9:a1:cd:8e:b8:47:64:14:11: 42:7d:6f:cf:42:d0:3e:1a:80:c7:bb:f2:3b:50:0c: 59:ec:eb:d4:ad:4f:e2:9a:13:61:0a:f1:d0:98:ef: d3:9b:26:ea:ca:8f:97:d5:15:1f:74:5b:16:e2:ac: 21:bc:3e:08:d7:11:1c:af:c6:cd:d8:28:25:6e:a6: 07:a1:65:03:b7:b8:65:38:8d:71:f8:e8:05:a6:77: a7:d5:26:a3:27:b0:78:54:e9:a5:6e:5d:f1:21:fd: 2d:62:f7:bf:6c:cc:2b:af:16:bd:9c:f1:c0:80:72: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:91:F0:E0:4C:26:C9:8C:92:9A:AD:F6:5F:94:3A:C1:42:EF:A8:07 X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/91CB97905BD211EBA9178181C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.115.0/24 Signature Algorithm: sha256WithRSAEncryption 74:fc:9a:3f:e5:44:c0:93:43:95:72:4a:8e:73:79:03:4e:f2: 5e:b6:a9:af:50:57:a6:1e:f7:e5:ff:71:27:96:46:de:91:c1: ea:56:13:53:ee:a7:f2:8a:17:1d:ac:ed:5e:61:80:6a:f4:28: 0d:9c:b6:d9:da:49:57:e9:6e:00:5d:ed:c5:bc:d5:b9:b8:34: 4d:81:d2:69:4e:5c:b1:9a:74:ec:8f:c5:76:e5:b3:51:94:50: 78:9b:1d:fa:a1:7b:f1:f2:22:f2:92:51:78:c8:19:f2:bd:c0: 71:02:10:88:b4:4c:44:e0:dc:65:66:35:c7:d1:8e:dd:3a:cd: 40:53:2f:74:83:d9:91:91:25:e7:49:cf:27:83:91:c4:9c:3b: 07:19:35:06:5b:bf:80:80:fb:8d:25:95:e8:81:8d:4b:5b:5d: 98:af:f1:27:09:e3:90:ab:46:27:74:86:5c:f4:1a:df:28:cc: 4a:af:d2:de:3b:30:0b:6c:3e:a6:90:e2:9a:6a:a8:6a:43:96: fe:07:df:40:00:a0:96:48:81:7a:a4:d3:09:6f:4f:6b:f9:19: 85:a8:8c:03:03:27:64:46:a3:20:0c:55:6d:15:3e:92:87:6a: e1:7a:9f:f0:88:63:0c:75:45:08:c4:07:7f:4e:21:06:c1:5d: ba:9d:6c:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUwNTE0MTY1NjMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0Y2I0MS1mMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2zbP3mnqE/b65Cu3swjKCgTTOXHiZxAODrdKfrK/AaTf9/y5f6l3PMdqC1j A8yNk3eftec6nKG8x5v8we8QoJvL2faceIkzYT4I6bXy8pZKfXMjyfH3BMktdqax ez7so7PZXs30dQNDZH3uz25qzbazhrhTsgW7qtREcSdQMz5eZ6/Gvg2MEwd+OS/Z oc2OuEdkFBFCfW/PQtA+GoDHu/I7UAxZ7OvUrU/imhNhCvHQmO/Tmybqyo+X1RUf dFsW4qwhvD4I1xEcr8bN2CglbqYHoWUDt7hlOI1x+OgFpnen1SajJ7B4VOmlbl3x If0tYve/bMwrrxa9nPHAgHKfSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOyR8OBM JsmMkpqt9l+UOsFC76gHMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQyNjQvQzU4RDZGRkE0MTA0MTFFNzlFQzAzODVEQzRGOUFFMDIvOTFDQjk3OTA1 QkQyMTFFQkE5MTc4MTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1XMwDQYJKoZIhvcNAQELBQADggEBAHT8mj/lRMCTQ5Vy So5zeQNO8l62qa9QV6Ye9+X/cSeWRt6RwepWE1Pup/KKFx2s7V5hgGr0KA2cttna SVfpbgBd7cW81bm4NE2B0mlOXLGadOyPxXbls1GUUHibHfqhe/HyIvKSUXjIGfK9 wHECEIi0TETg3GVmNcfRjt06zUBTL3SD2ZGRJedJzyeDkcScOwcZNQZbv4CA+40l leiBjUtbXZiv8ScJ45CrRid0hlz0Gt8ozEqv0t47MAtsPqaQ4ppqqGpDlv4H30AA oJZIgXqk0wlvT2v5GYWojAMDJ2RGoyAMVW0VPpKHauF6n/CIYwx1RQjEB39OIQbB XbqdbE4= -----END CERTIFICATE-----Generated at Mon Jun 2 07:14:26 2025 by rpki-client