$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/D75BE71A410511E7970A2A5FC4F9AE02.roa File: D75BE71A410511E7970A2A5FC4F9AE02.roa (raw, json) Hash identifier: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo= Subject key identifier: 23:D2:AF:FB:DA:F1:0A:CD:46:1F:20:3A:9A:7E:80:A0:27:4F:13:AC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A5E Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/D75BE71A410511E7970A2A5FC4F9AE02.roa Signing time: Wed 14 May 2025 16:56:34 +0000 ROA not before: Wed 14 May 2025 16:56:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9541 IP address blocks: 103.213.112.0/22 maxlen: 22 103.213.112.0/23 maxlen: 23 103.213.112.0/24 maxlen: 24 103.213.113.0/24 maxlen: 24 103.213.114.0/23 maxlen: 23 103.213.114.0/24 maxlen: 24 103.213.115.0/24 maxlen: 24 192.140.148.0/22 maxlen: 22 192.140.148.0/23 maxlen: 23 192.140.148.0/24 maxlen: 24 192.140.149.0/24 maxlen: 24 192.140.150.0/23 maxlen: 23 192.140.150.0/24 maxlen: 24 192.140.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6750 (0x1a5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: May 14 16:56:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6824cb42-b1e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e4:cb:ef:f7:48:f0:5e:7a:fd:a1:c2:24:f8: 9c:4e:7d:0e:ca:f6:42:b3:06:8a:27:c9:48:f3:d8: 86:b7:8a:6d:8c:66:47:6b:10:3a:43:ab:6d:5c:95: 87:39:c4:34:5c:fb:26:75:cc:5a:cd:34:75:82:f1: dc:94:a6:82:6e:5f:c6:b5:02:5a:66:e1:a6:cd:38: 7d:dd:6a:14:d9:f9:41:6c:5d:49:a5:1d:34:3a:94: 0c:a1:c0:6d:0c:41:ab:68:08:01:2b:16:ca:a4:a7: 56:4c:d8:ae:84:00:8c:94:2d:10:05:7f:39:b6:51: a3:cc:47:32:83:4e:6e:85:1a:70:28:a4:66:09:1a: f0:4c:29:00:ee:07:b0:80:17:d5:67:82:9d:08:76: 52:6b:b3:cf:3b:78:ef:28:50:a7:f6:27:30:30:85: 21:4a:7d:38:3b:07:32:16:f1:3a:0b:e7:32:d9:b1: 0c:da:74:15:3e:fe:50:93:93:ec:3f:58:e3:00:22: 8c:7f:f8:cf:39:2a:8a:9f:de:a7:8f:c4:51:fb:76: a8:c9:16:e7:f2:48:7c:f3:5b:6d:49:cf:e2:ee:2b: b5:3f:b0:d4:72:f7:03:50:70:cd:f8:e8:7b:f3:13: 8d:84:19:7a:64:cc:93:70:d0:0b:7d:2b:cb:6e:c8: 08:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D2:AF:FB:DA:F1:0A:CD:46:1F:20:3A:9A:7E:80:A0:27:4F:13:AC X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/D75BE71A410511E7970A2A5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.112.0/22 192.140.148.0/22 Signature Algorithm: sha256WithRSAEncryption 73:94:e7:db:4c:45:9d:eb:a4:ec:18:99:f4:28:54:ee:01:95: d9:78:ec:de:6c:8d:40:2a:e5:da:38:55:f5:61:4c:5a:a7:3d: 6e:49:04:d1:4c:f2:8a:69:02:4a:8f:2f:e6:2c:8f:7b:7c:2d: 48:9c:b1:55:32:0b:ef:47:0b:f0:4d:7f:a1:ef:26:80:56:81: 66:12:2f:24:88:13:5d:b6:1d:11:6d:0d:3f:af:cd:26:ae:15: 32:52:1e:08:03:d4:aa:41:d7:b6:c6:96:95:0e:6f:e3:4a:d7: 04:25:bc:68:23:d2:85:dc:62:f7:d0:4c:27:af:1f:55:82:00: eb:34:52:b0:cc:7f:17:e2:5a:f6:a3:70:80:ec:5d:9d:5f:7b: c6:df:da:6f:11:9e:19:a5:20:ee:db:58:26:f5:cd:c8:29:74: 65:f5:ac:e4:3d:ca:5d:4b:ff:9c:ab:62:43:ac:14:a0:90:15: b1:d2:43:9f:1d:98:ab:7f:a0:e4:d3:3f:7f:8a:80:3e:01:fe: 41:2f:77:0b:05:ae:08:d7:20:a1:d8:83:ca:b5:52:8d:4b:97: fa:8f:9a:c6:3e:a4:52:18:a5:46:1f:eb:80:e8:0d:5e:0c:af: 14:b3:63:e1:0a:ee:0f:7d:86:74:c9:88:24:6b:b9:a7:df:99: ef:d2:be:1e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUwNTE0MTY1NjM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0Y2I0Mi1iMWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOTL7/dI8F56/aHCJPicTn0OyvZCswaKJ8lI89iGt4ptjGZHaxA6Q6ttXJWH OcQ0XPsmdcxazTR1gvHclKaCbl/GtQJaZuGmzTh93WoU2flBbF1JpR00OpQMocBt DEGraAgBKxbKpKdWTNiuhACMlC0QBX85tlGjzEcyg05uhRpwKKRmCRrwTCkA7gew gBfVZ4KdCHZSa7PPO3jvKFCn9icwMIUhSn04OwcyFvE6C+cy2bEM2nQVPv5Qk5Ps P1jjACKMf/jPOSqKn96nj8RR+3aoyRbn8kh881ttSc/i7iu1P7DUcvcDUHDN+Oh7 8xONhBl6ZMyTcNALfSvLbsgI/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCPSr/va 8QrNRh8gOpp+gKAnTxOsMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQyNjQvQzU4RDZGRkE0MTA0MTFFNzlFQzAzODVEQzRGOUFFMDIvRDc1QkU3MUE0 MTA1MTFFNzk3MEEyQTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1XADBALAjJQwDQYJKoZIhvcNAQELBQADggEBAHOU59tM RZ3rpOwYmfQoVO4Bldl47N5sjUAq5do4VfVhTFqnPW5JBNFM8oppAkqPL+Ysj3t8 LUicsVUyC+9HC/BNf6HvJoBWgWYSLySIE122HRFtDT+vzSauFTJSHggD1KpB17bG lpUOb+NK1wQlvGgj0oXcYvfQTCevH1WCAOs0UrDMfxfiWvajcIDsXZ1fe8bf2m8R nhmlIO7bWCb1zcgpdGX1rOQ9yl1L/5yrYkOsFKCQFbHSQ58dmKt/oOTTP3+KgD4B /kEvdwsFrgjXIKHYg8q1Uo1Ll/qPmsY+pFIYpUYf64DoDV4MrxSzY+EK7g99hnTJ iCRruaffme/Svh4= -----END CERTIFICATE-----Generated at Mon Jun 2 07:16:19 2025 by rpki-client