$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5C095928345C11F0A2D20F41C4F9AE02.roa File: 5C095928345C11F0A2D20F41C4F9AE02.roa (raw, json) Hash identifier: hOEIpOWlKhq0L4p90HAJiGqiRv4kx/Il3xZRXVgPVUQ= Subject key identifier: 4A:C0:F9:26:C5:62:29:6F:7B:6A:1D:2A:F6:A6:73:E9:A3:D1:AB:CB Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4B31 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5C095928345C11F0A2D20F41C4F9AE02.roa Signing time: Mon 19 May 2025 02:52:53 +0000 ROA not before: Mon 19 May 2025 02:52:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140817 IP address blocks: 103.20.102.0/23 maxlen: 23 2400:6f60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19249 (0x4b31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: May 19 02:52:53 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=682a9d05-4d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6d:ef:04:e7:96:c8:80:c3:48:87:30:e3:d7: 00:e0:c1:7f:6d:b6:94:20:40:6a:bb:f8:c9:44:f5: 8b:5e:e7:ea:a3:40:8e:2b:a3:a0:06:14:b8:93:3d: 00:3e:f8:ba:93:73:ed:33:ba:a1:54:37:48:11:dd: 55:56:34:43:14:ad:5e:25:ae:3d:89:e3:9f:0c:9f: 1d:fa:f2:26:80:c7:87:7f:10:3e:f8:f8:67:79:7d: aa:70:1e:73:bd:6e:ed:54:29:a4:63:b7:40:3d:f9: 77:4e:a4:1c:59:31:6d:76:ec:1b:fa:fe:fa:ab:b1: fd:53:be:f7:3e:49:7b:d2:7c:09:7a:ab:b0:a2:23: 43:24:0a:01:fa:5d:0e:f5:60:e8:ef:e7:b1:43:2a: 7d:f9:9c:c8:7d:23:7f:78:50:ff:ef:f0:34:82:c5: b7:47:fd:9c:9d:8f:25:00:d5:3d:2a:7a:ba:f7:4b: 39:07:14:cd:8e:bb:b4:a7:58:22:eb:83:c9:41:e3: 2f:14:ab:d8:ab:ea:17:b5:33:d0:1c:19:5c:86:13: fb:0f:f3:b8:c0:bd:b6:3a:dd:89:6b:e0:31:77:61: 8c:e8:07:cd:92:bf:3a:5b:1e:c4:c2:57:e4:00:b6: e5:42:99:57:77:8a:db:ed:8e:e1:c5:96:50:9d:1e: 68:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C0:F9:26:C5:62:29:6F:7B:6A:1D:2A:F6:A6:73:E9:A3:D1:AB:CB X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5C095928345C11F0A2D20F41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.102.0/23 IPv6: 2400:6f60::/48 Signature Algorithm: sha256WithRSAEncryption 58:d8:e0:9a:be:7d:f7:88:83:38:1b:ab:50:9a:9e:df:3c:e4: da:1f:48:18:fb:77:cf:5d:b6:46:8b:bc:2a:8c:fb:f2:43:14: 89:de:fd:b6:b7:28:ee:9e:e7:85:58:b1:0d:37:25:11:1f:b8: cf:2a:40:fc:a4:63:8b:84:c0:7f:d3:32:42:24:63:c9:d8:a2: d6:0c:dc:8e:01:e4:4f:ed:6f:d6:e3:c5:13:2c:e7:43:90:1b: ca:0c:f3:21:c9:7d:38:e3:a3:d7:26:d3:25:e2:d1:76:f1:f5: 50:c0:2f:ee:63:34:fe:ef:9b:4e:b0:1f:96:35:d9:81:19:16: af:e8:08:87:2d:12:86:2b:6d:39:c3:81:6e:d4:24:4d:02:c7: aa:46:2e:da:da:a6:f1:cf:c6:b9:bc:7b:fa:5a:d4:63:5b:07: 8a:c0:92:67:2b:d9:2a:98:ac:7d:f5:56:a0:bb:c2:a5:d7:be: b8:97:1d:28:aa:3b:5a:90:57:70:64:bf:49:f8:9b:4d:a4:70: 25:cb:86:5f:6f:fa:26:a7:3a:5b:2c:d5:5b:a5:18:c3:1c:0a: d4:93:3e:e6:ca:46:f4:f7:c6:e8:11:af:9e:1d:81:4c:88:bf: b4:49:70:b6:f0:94:32:3f:b2:56:1e:07:c8:96:2b:c0:a0:9c: 47:46:92:89 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICSzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNTE5MDI1MjUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhOWQwNS00ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm3vBOeWyIDDSIcw49cA4MF/bbaUIEBqu/jJRPWLXufqo0COK6OgBhS4kz0A Pvi6k3PtM7qhVDdIEd1VVjRDFK1eJa49ieOfDJ8d+vImgMeHfxA++PhneX2qcB5z vW7tVCmkY7dAPfl3TqQcWTFtduwb+v76q7H9U773Pkl70nwJequwoiNDJAoB+l0O 9WDo7+exQyp9+ZzIfSN/eFD/7/A0gsW3R/2cnY8lANU9Knq690s5BxTNjru0p1gi 64PJQeMvFKvYq+oXtTPQHBlchhP7D/O4wL22Ot2Ja+Axd2GM6AfNkr86Wx7Ewlfk ALblQplXd4rb7Y7hxZZQnR5oiQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFErA+SbF Yilve2odKvamc+mj0avLMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNUMwOTU5Mjgz NDVDMTFGMEEyRDIwRjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnFGYwDwQCAAIwCQMHACQAb2AAADANBgkqhkiG9w0BAQsF AAOCAQEAWNjgmr5994iDOBurUJqe3zzk2h9IGPt3z122Rou8Koz78kMUid79trco 7p7nhVixDTclER+4zypA/KRji4TAf9MyQiRjydii1gzcjgHkT+1v1uPFEyznQ5Ab ygzzIcl9OOOj1ybTJeLRdvH1UMAv7mM0/u+bTrAfljXZgRkWr+gIhy0ShittOcOB btQkTQLHqkYu2tqm8c/Gubx7+lrUY1sHisCSZyvZKpisffVWoLvCpde+uJcdKKo7 WpBXcGS/SfibTaRwJcuGX2/6Jqc6WyzVW6UYwxwK1JM+5spG9PfG6BGvnh2BTIi/ tElwtvCUMj+yVh4HyJYrwKCcR0aSiQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:54:52 2025 by rpki-client