$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFC48/DBBD81FE753A11EEBF49E534C4F9AE02/259AE280753B11EEBF306F35C4F9AE02.roa File: 259AE280753B11EEBF306F35C4F9AE02.roa (raw, json) Hash identifier: XlNDLwL1s4PNyju0F9J/L57gx4vJtRRqq2V9lyDq2Mo= Subject key identifier: EF:65:6E:EC:7E:45:C9:1D:34:3D:DA:C5:55:16:11:B1:AA:96:7E:94 Certificate issuer: /CN=A91AFC48/serialNumber=261596B556E92C12D2EBC8DD8B25CFB8758E078C Certificate serial: 012F Authority key identifier: 26:15:96:B5:56:E9:2C:12:D2:EB:C8:DD:8B:25:CF:B8:75:8E:07:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhWWtVbpLBLS68jdiyXPuHWOB4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFC48/DBBD81FE753A11EEBF49E534C4F9AE02/259AE280753B11EEBF306F35C4F9AE02.roa Signing time: Thu 15 May 2025 04:54:13 +0000 ROA not before: Thu 15 May 2025 04:54:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151408 IP address blocks: 103.224.94.0/23 maxlen: 24 2401:8b20::/32 maxlen: 32 2401:8b20::/34 maxlen: 34 2401:8b20:4000::/34 maxlen: 34 2401:8b20:8000::/34 maxlen: 34 2401:8b20:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFC48/DBBD81FE753A11EEBF49E534C4F9AE02/JhWWtVbpLBLS68jdiyXPuHWOB4w.crl rsync://rpki.apnic.net/member_repository/A91AFC48/DBBD81FE753A11EEBF49E534C4F9AE02/JhWWtVbpLBLS68jdiyXPuHWOB4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhWWtVbpLBLS68jdiyXPuHWOB4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFC48, serialNumber=261596B556E92C12D2EBC8DD8B25CFB8758E078C Validity Not Before: May 15 04:54:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68257375-9889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:23:d7:a3:8e:47:89:2f:0b:e2:b2:3a:df:87: ec:37:96:5f:c4:52:40:c4:38:09:47:65:44:77:7b: 38:57:6f:34:3e:8f:dc:24:59:c0:14:eb:f6:06:2d: 13:ec:67:d4:ba:cd:ad:ce:3d:bd:7e:66:01:90:c3: f5:bb:2f:39:41:10:9c:bf:12:0b:fc:0c:04:8d:30: 4a:c6:c6:1b:fb:ae:05:32:71:36:55:50:01:ff:7b: 44:7c:a7:13:3f:6c:a5:35:9d:59:ec:5a:8b:12:fd: 24:f7:a0:96:4e:b8:64:12:7b:98:89:92:30:91:41: 1e:64:29:8e:04:5b:d4:41:17:1a:02:5a:59:b8:78: 5b:4f:6f:3d:e6:cf:aa:23:80:c5:85:cc:2c:51:d6: 76:2d:86:48:bd:65:9b:1a:c3:88:ab:51:69:86:eb: 93:d1:e6:08:ae:25:5b:a2:70:a3:27:69:17:11:35: a4:f8:ba:c6:d7:78:cf:05:a5:98:db:67:2f:44:66: b8:56:4c:7e:81:98:66:73:21:2f:41:9c:a0:e6:e1: 46:ae:82:29:cb:37:76:ba:40:bd:ea:36:a9:ec:d5: 1d:b8:2e:95:04:a3:c4:73:ef:68:4f:39:18:57:df: 25:91:c2:7b:04:19:72:0b:cb:e3:e3:88:1e:97:de: 08:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:65:6E:EC:7E:45:C9:1D:34:3D:DA:C5:55:16:11:B1:AA:96:7E:94 X509v3 Authority Key Identifier: keyid:26:15:96:B5:56:E9:2C:12:D2:EB:C8:DD:8B:25:CF:B8:75:8E:07:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFC48/DBBD81FE753A11EEBF49E534C4F9AE02/JhWWtVbpLBLS68jdiyXPuHWOB4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhWWtVbpLBLS68jdiyXPuHWOB4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFC48/DBBD81FE753A11EEBF49E534C4F9AE02/259AE280753B11EEBF306F35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.94.0/23 IPv6: 2401:8b20::/32 Signature Algorithm: sha256WithRSAEncryption 8e:84:43:88:eb:f4:d1:d3:da:aa:1a:63:77:a3:7c:35:31:46: 14:77:fe:61:2b:01:d7:d4:6f:b6:db:5f:68:74:1f:47:e3:c0: ee:9e:ad:0c:96:d5:ba:e2:67:fb:83:90:11:bf:3f:3a:a7:c0: a2:2f:4a:87:40:b2:1a:c2:bf:a9:c9:53:d0:93:74:58:b0:45: 53:5f:3c:05:55:3a:68:9f:56:6c:f9:ed:9b:ca:0e:dc:23:7e: 7f:6e:39:1e:af:68:5a:ce:fe:41:51:43:7c:6b:bb:ac:c6:f6: b2:84:64:ec:6c:73:56:fb:99:ef:da:c5:30:f9:fb:5c:58:93: 9d:75:47:24:a2:25:cf:17:83:14:67:43:73:86:78:c1:cf:4e: c7:d9:26:05:e6:ff:8a:9b:6a:95:d8:7f:01:cd:ca:4e:62:94: ca:df:c4:80:b4:0f:fb:19:d7:21:4b:3a:65:35:f6:7e:b7:9b: 75:d5:33:c8:8a:ec:47:58:f1:ea:45:4c:7e:ce:a4:af:ec:f7: be:37:88:c7:69:3d:4a:e6:c7:b2:4d:46:82:39:8e:b1:2b:4a: 60:59:56:c4:39:76:7e:7e:67:49:61:27:b2:2f:e4:49:60:e2: ae:c5:52:46:18:ab:e2:79:43:7c:53:6e:8e:d0:0d:cc:c4:b2: ac:0c:e7:f2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZDNDgxMTAvBgNVBAUTKDI2MTU5NkI1NTZFOTJDMTJEMkVCQzhERDhCMjVDRkI4 NzU4RTA3OEMwHhcNMjUwNTE1MDQ1NDEzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1NzM3NS05ODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyPXo45HiS8L4rI634fsN5ZfxFJAxDgJR2VEd3s4V280Po/cJFnAFOv2Bi0T 7GfUus2tzj29fmYBkMP1uy85QRCcvxIL/AwEjTBKxsYb+64FMnE2VVAB/3tEfKcT P2ylNZ1Z7FqLEv0k96CWTrhkEnuYiZIwkUEeZCmOBFvUQRcaAlpZuHhbT2895s+q I4DFhcwsUdZ2LYZIvWWbGsOIq1FphuuT0eYIriVbonCjJ2kXETWk+LrG13jPBaWY 22cvRGa4Vkx+gZhmcyEvQZyg5uFGroIpyzd2ukC96jap7NUduC6VBKPEc+9oTzkY V98lkcJ7BBlyC8vj44gel94IqQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFO9lbux+ RckdND3axVUWEbGqln6UMB8GA1UdIwQYMBaAFCYVlrVW6SwS0uvI3Yslz7h1jgeM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkM0OC9EQkJEODFGRTc1 M0ExMUVFQkY0OUU1MzRDNEY5QUUwMi9KaFdXdFZicExCTFM2OGpkaXlYUHVIV09C NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0poV1d0VmJwTEJMUzY4amRpeVhQdUhXT0I0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZDNDgvREJCRDgxRkU3NTNBMTFFRUJGNDlFNTM0QzRGOUFFMDIvMjU5QUUyODA3 NTNCMTFFRUJGMzA2RjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn4F4wDQQCAAIwBwMFACQBiyAwDQYJKoZIhvcNAQELBQAD ggEBAI6EQ4jr9NHT2qoaY3ejfDUxRhR3/mErAdfUb7bbX2h0H0fjwO6erQyW1bri Z/uDkBG/PzqnwKIvSodAshrCv6nJU9CTdFiwRVNfPAVVOmifVmz57ZvKDtwjfn9u OR6vaFrO/kFRQ3xru6zG9rKEZOxsc1b7me/axTD5+1xYk511RySiJc8XgxRnQ3OG eMHPTsfZJgXm/4qbapXYfwHNyk5ilMrfxIC0D/sZ1yFLOmU19n63m3XVM8iK7EdY 8epFTH7OpK/s9743iMdpPUrmx7JNRoI5jrErSmBZVsQ5dn5+Z0lhJ7Iv5Elg4q7F UkYYq+J5Q3xTbo7QDczEsqwM5/I= -----END CERTIFICATE-----Generated at Wed Jun 4 00:15:37 2025 by rpki-client