$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/D5A80432370411F0A5919873C4F9AE02.roa File: D5A80432370411F0A5919873C4F9AE02.roa (raw, json) Hash identifier: jhleaFnetRilP8PuvxdvCqw9xChQP0YqjbFI4VC52yg= Subject key identifier: 78:22:54:ED:22:60:8D:09:98:A0:EA:6C:E5:35:7E:1A:85:60:3A:31 Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: CA Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/D5A80432370411F0A5919873C4F9AE02.roa Signing time: Thu 22 May 2025 12:03:55 +0000 ROA not before: Thu 22 May 2025 12:03:55 +0000 ROA not after: Thu 30 Dec 2027 00:00:00 +0000 asID: 132384 IP address blocks: 103.76.232.0/22 maxlen: 24 2407:7a80::/42 maxlen: 42 2407:7a80:10::/45 maxlen: 45 2407:7a80:10::/46 maxlen: 46 2407:7a80:10::/47 maxlen: 47 2407:7a80:12::/48 maxlen: 48 2407:7a80:13::/48 maxlen: 48 2407:7a80:14::/48 maxlen: 48 2407:7a80:15::/48 maxlen: 48 2407:7a80:20::/44 maxlen: 44 2407:7a80:20::/45 maxlen: 45 2407:7a80:20::/48 maxlen: 48 2407:7a80:21::/48 maxlen: 48 2407:7a80:22::/48 maxlen: 48 2407:7a80:23::/48 maxlen: 48 2407:7a80:24::/46 maxlen: 46 2407:7a80:28::/48 maxlen: 48 2407:7a80:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: May 22 12:03:55 2025 GMT Not After : Dec 30 00:00:00 2027 GMT Subject: CN=682f12ab-57ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2e:c8:5e:d4:69:be:c7:cb:87:2b:4a:d0:83: 2c:fe:8f:05:dc:00:e5:7e:de:22:eb:e6:39:cd:0d: b4:56:b7:83:0c:a8:3a:eb:54:bf:04:7e:9e:95:a1: 11:f0:66:d7:ff:08:05:e8:3c:0d:dd:a9:91:f7:82: 41:1a:ab:a1:d4:22:f9:24:c5:db:a7:3b:cb:1b:e6: e9:07:b0:ad:84:7d:d0:40:60:9e:6b:c9:87:a9:77: 35:02:ed:bb:ff:27:ae:47:6e:62:1f:37:41:72:f9: bb:f3:0c:2a:9e:05:ac:55:7b:56:23:88:d1:c5:7a: 52:c4:76:c5:dc:32:ac:19:48:27:55:7f:9d:85:2c: 1d:e1:0b:83:9a:8c:ce:6d:68:86:f8:34:32:90:2e: 9d:f3:e2:1d:8e:97:14:8a:80:75:ca:e2:8d:8e:49: 24:f5:e6:2f:81:8e:fd:02:40:80:c1:5d:11:4f:81: 9c:b1:20:01:0b:cd:be:45:73:d9:52:0d:17:28:27: 11:23:8d:8a:fb:5d:81:c3:0c:e6:90:c1:e0:9c:32: 49:12:0a:be:f5:65:65:51:bc:34:98:fa:54:79:a3: 4f:86:b9:f2:02:c0:55:4a:df:fd:62:2e:b2:03:18: a8:bc:52:cf:9f:ef:12:a9:62:74:f7:e8:68:19:68: d2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:22:54:ED:22:60:8D:09:98:A0:EA:6C:E5:35:7E:1A:85:60:3A:31 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/D5A80432370411F0A5919873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.232.0/22 IPv6: 2407:7a80::/42 Signature Algorithm: sha256WithRSAEncryption 9c:96:b3:2b:04:c3:06:da:82:92:5e:7b:3b:ce:8d:7e:20:19: ee:3b:93:71:cb:1f:e2:70:9b:71:35:6c:67:a0:e4:63:42:38: bc:a2:ca:7a:d1:c7:62:a5:ed:1c:44:47:56:06:06:f6:06:9c: f5:2c:af:1e:5a:38:1e:1c:1f:2e:4a:61:38:19:c5:15:65:22: d0:a7:94:38:45:cd:4c:06:21:35:f5:e0:c8:2a:fa:1f:c7:41: 73:d5:b7:24:88:00:9a:07:ad:16:db:4e:6f:2c:e9:65:7b:af: 82:e1:85:28:d7:92:5b:55:44:3e:3d:32:67:1c:0c:6f:5c:c6: 98:23:de:39:01:14:b0:ef:92:2a:96:63:16:f5:c8:1c:66:0a: 7e:f6:89:3d:88:99:4a:48:a4:27:64:97:67:c1:cb:b8:d9:71: bd:87:16:66:83:ec:e5:46:4d:f5:b6:8b:2c:fb:40:f6:8d:6c: 82:ce:80:f6:34:47:79:31:34:a4:85:a2:83:cd:43:c0:e6:3c: 9d:82:c2:62:c8:8b:4e:c0:98:ae:e8:1e:33:1f:3a:55:e8:b0: 31:d0:09:06:ca:04:6b:16:72:e3:2e:fa:9b:07:2b:ee:94:d0: a5:c5:68:58:4d:0e:34:ad:66:e9:fd:c7:69:18:ae:6e:ab:10: c8:24:cc:68 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUwNTIyMTIwMzU1WhcNMjcxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmMTJhYi01N2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuS7IXtRpvsfLhytK0IMs/o8F3ADlft4i6+Y5zQ20VreDDKg661S/BH6elaER 8GbX/wgF6DwN3amR94JBGquh1CL5JMXbpzvLG+bpB7CthH3QQGCea8mHqXc1Au27 /yeuR25iHzdBcvm78wwqngWsVXtWI4jRxXpSxHbF3DKsGUgnVX+dhSwd4QuDmozO bWiG+DQykC6d8+IdjpcUioB1yuKNjkkk9eYvgY79AkCAwV0RT4GcsSABC82+RXPZ Ug0XKCcRI42K+12BwwzmkMHgnDJJEgq+9WVlUbw0mPpUeaNPhrnyAsBVSt/9Yi6y AxiovFLPn+8SqWJ09+hoGWjSPwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHgiVO0i YI0JmKDqbOU1fhqFYDoxMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURENjQvNTg0MEEwN0MxMzRCMTFFRjk0NDI0RDNEQzRGOUFFMDIvRDVBODA0MzIz NzA0MTFGMEE1OTE5ODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnTOgwDwQCAAIwCQMHBiQHeoAAADANBgkqhkiG9w0BAQsF AAOCAQEAnJazKwTDBtqCkl57O86NfiAZ7juTccsf4nCbcTVsZ6DkY0I4vKLKetHH YqXtHERHVgYG9gac9SyvHlo4HhwfLkphOBnFFWUi0KeUOEXNTAYhNfXgyCr6H8dB c9W3JIgAmgetFttObyzpZXuvguGFKNeSW1VEPj0yZxwMb1zGmCPeOQEUsO+SKpZj FvXIHGYKfvaJPYiZSkikJ2SXZ8HLuNlxvYcWZoPs5UZN9baLLPtA9o1sgs6A9jRH eTE0pIWig81DwOY8nYLCYsiLTsCYrugeMx86VeiwMdAJBsoEaxZy4y76mwcr7pTQ pcVoWE0ONK1m6f3HaRiubqsQyCTMaA== -----END CERTIFICATE-----Generated at Mon Jun 2 07:14:41 2025 by rpki-client