$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa File: 8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa (raw, json) Hash identifier: 6aQ+QEkhyP67dFrpsvVM6rkjPj6nrw0WoToKZmFoX6Q= Subject key identifier: CF:7C:38:1F:76:82:E4:12:3F:44:94:3B:2C:2B:EF:A7:48:E2:65:61 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4B00 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa Signing time: Wed 14 May 2025 07:50:20 +0000 ROA not before: Wed 14 May 2025 07:50:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63741 IP address blocks: 103.51.120.0/23 maxlen: 24 103.216.72.0/22 maxlen: 24 103.245.244.0/22 maxlen: 24 163.227.120.0/24 maxlen: 24 163.227.121.0/24 maxlen: 24 163.227.228.0/23 maxlen: 24 203.167.8.0/22 maxlen: 24 2001:df5:66c0::/48 maxlen: 48 2001:df5:7c40::/48 maxlen: 48 2404:ee80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19200 (0x4b00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: May 14 07:50:20 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68244b3c-334f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d6:e2:57:93:2e:46:b1:43:5e:00:55:e1:c5: b4:29:e1:1b:b2:0c:f1:fd:55:73:93:ca:3f:f2:6c: 56:29:37:d7:e1:ad:04:1a:b2:7d:60:7f:e9:62:ec: 07:8d:16:02:6d:60:e9:30:94:05:c4:a2:42:ec:b4: 47:cd:ce:38:21:64:79:99:33:e5:35:46:ba:b5:4f: 71:78:9e:41:13:32:80:b6:bc:c3:a3:4e:68:a9:a6: a9:97:0b:2e:05:7a:ff:11:52:d4:79:88:ce:2e:40: c5:70:c2:31:ec:38:e1:36:f5:5d:23:da:eb:54:73: c3:5a:27:d0:58:0b:db:04:31:12:1b:af:3e:29:92: 4b:3a:4d:a6:f7:29:18:74:78:75:28:14:40:77:57: 51:90:ec:ba:e0:3f:89:01:70:6f:14:94:6a:38:d6: c9:e1:cc:7d:f8:34:5a:b3:1a:46:e5:e0:1b:b5:95: bd:5f:6a:31:44:10:24:f7:bc:d1:59:f4:22:db:c6: ae:29:30:09:de:6f:9b:65:a1:91:ec:79:7a:df:90: 39:4c:8b:e6:2a:4f:ae:e7:7e:00:a3:c7:66:10:cf: 87:d3:3b:8b:1e:74:31:a6:6e:10:57:68:2f:c5:02: 7d:06:7f:4f:d0:71:a5:f0:01:f6:82:f8:19:3c:24: b2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7C:38:1F:76:82:E4:12:3F:44:94:3B:2C:2B:EF:A7:48:E2:65:61 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.120.0/23 103.216.72.0/22 103.245.244.0/22 163.227.120.0/23 163.227.228.0/23 203.167.8.0/22 IPv6: 2001:df5:66c0::/48 2001:df5:7c40::/48 2404:ee80::/48 Signature Algorithm: sha256WithRSAEncryption 99:b5:f9:b6:51:d5:17:66:15:e3:4f:ee:9a:9c:00:9b:00:48: 83:09:2f:db:eb:4d:95:9b:68:5a:ee:15:9c:cc:bb:03:b9:20: 9c:ee:ca:22:29:e4:36:4e:e5:86:b3:db:b0:63:8f:9f:c6:a1: 51:7f:7e:ee:e8:11:ab:45:2f:8c:15:fa:48:c0:a0:87:fc:73: ca:d6:d6:94:c2:7e:2a:05:3d:37:2f:03:2e:39:09:22:10:8c: 2e:76:b1:70:2b:15:d5:d0:29:2c:ab:e5:27:b4:58:db:7b:cb: da:f0:df:1a:96:f9:fe:55:e5:98:d4:6f:60:80:02:f6:23:f0: 3e:f4:1f:56:b0:85:ba:b4:15:5b:de:a9:f5:f1:7f:5b:b1:e8: 5a:b1:5c:e9:58:d0:1a:52:34:8e:db:a3:b5:0d:37:f0:90:07: 9a:00:6b:4b:7a:19:00:2a:05:fa:9a:47:f3:5a:4d:54:b1:97: e6:3e:7f:34:5e:f5:fe:44:47:1f:71:a7:bc:96:38:dd:4d:c1: 44:85:56:03:3d:63:d0:41:db:e3:0f:f3:e9:5b:bd:7b:cd:28: 62:9d:3a:57:93:c7:a8:02:71:dd:7f:71:38:96:46:3b:60:2e: ad:38:41:21:ea:8f:f1:fc:ea:a8:33:15:c0:5a:9a:44:c2:62: 1a:9e:fc:cd -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgICSwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNTE0MDc1MDIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0NGIzYy0zMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9biV5MuRrFDXgBV4cW0KeEbsgzx/VVzk8o/8mxWKTfX4a0EGrJ9YH/pYuwH jRYCbWDpMJQFxKJC7LRHzc44IWR5mTPlNUa6tU9xeJ5BEzKAtrzDo05oqaaplwsu BXr/EVLUeYjOLkDFcMIx7DjhNvVdI9rrVHPDWifQWAvbBDESG68+KZJLOk2m9ykY dHh1KBRAd1dRkOy64D+JAXBvFJRqONbJ4cx9+DRasxpG5eAbtZW9X2oxRBAk97zR WfQi28auKTAJ3m+bZaGR7Hl635A5TIvmKk+u534Ao8dmEM+H0zuLHnQxpm4QV2gv xQJ9Bn9P0HGl8AH2gvgZPCSyYQIDAQABo4IC1jCCAtIwHQYDVR0OBBYEFM98OB92 guQSP0SUOywr76dI4mVhMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEFFQThEM0NE RkZDMTFFQ0FFN0NFNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYAYIKwYBBQUHAQcBAf8E UTBPMCoEAgABMCQDBAFnM3gDBAJn2EgDBAJn9fQDBAGj43gDBAGj4+QDBALLpwgw IQQCAAIwGwMHACABDfVmwAMHACABDfV8QAMHACQE7oAAADANBgkqhkiG9w0BAQsF AAOCAQEAmbX5tlHVF2YV40/umpwAmwBIgwkv2+tNlZtoWu4VnMy7A7kgnO7KIink Nk7lhrPbsGOPn8ahUX9+7ugRq0UvjBX6SMCgh/xzytbWlMJ+KgU9Ny8DLjkJIhCM LnaxcCsV1dApLKvlJ7RY23vL2vDfGpb5/lXlmNRvYIAC9iPwPvQfVrCFurQVW96p 9fF/W7HoWrFc6VjQGlI0jtujtQ038JAHmgBrS3oZACoF+ppH81pNVLGX5j5/NF71 /kRHH3GnvJY43U3BRIVWAz1j0EHb4w/z6Vu9e80oYp06V5PHqAJx3X9xOJZGO2Au rThBIeqP8fzqqDMVwFqaRMJiGp78zQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:17:55 2025 by rpki-client