$ rpki-client -vvf rpki.apnic.net/member_repository/A91B346D/70E26EA4CE6A11EBB0774E80C4F9AE02/2F7C5A70968A11EEB50D1D33C4F9AE02.roa File: 2F7C5A70968A11EEB50D1D33C4F9AE02.roa (raw, json) Hash identifier: Zv8tWZ5PS/AsNxyN72Eh+kXECLAaQmTfm/PY+5VYT/I= Subject key identifier: 4F:CA:F5:B6:18:F3:5C:0C:05:6E:60:AA:2C:76:7D:AA:55:DF:5F:A7 Certificate issuer: /CN=A91B346D/serialNumber=FFA095A2F4A27CA4631BC239E57E7A405B456BFF Certificate serial: 05AA Authority key identifier: FF:A0:95:A2:F4:A2:7C:A4:63:1B:C2:39:E5:7E:7A:40:5B:45:6B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_6CVovSifKRjG8I55X56QFtFa_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B346D/70E26EA4CE6A11EBB0774E80C4F9AE02/2F7C5A70968A11EEB50D1D33C4F9AE02.roa Signing time: Fri 30 May 2025 23:34:32 +0000 ROA not before: Fri 30 May 2025 23:34:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138014 IP address blocks: 103.165.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B346D/70E26EA4CE6A11EBB0774E80C4F9AE02/_6CVovSifKRjG8I55X56QFtFa_8.crl rsync://rpki.apnic.net/member_repository/A91B346D/70E26EA4CE6A11EBB0774E80C4F9AE02/_6CVovSifKRjG8I55X56QFtFa_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_6CVovSifKRjG8I55X56QFtFa_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 23:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1450 (0x5aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B346D, serialNumber=FFA095A2F4A27CA4631BC239E57E7A405B456BFF Validity Not Before: May 30 23:34:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683a4088-a5c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:af:79:21:4b:ef:51:31:cb:5d:56:cb:ba:98: 63:ba:43:6b:ae:ca:0c:25:f0:86:20:36:26:05:49: 6a:09:86:2b:94:61:39:6d:2e:e4:26:2c:6a:8d:29: ee:cb:a5:0a:b7:b8:83:c6:fd:f9:0a:59:d0:fc:8b: c4:ca:ff:b2:7f:34:a4:0d:56:0e:41:0a:cc:6a:79: 64:e2:e0:cb:ec:7f:70:88:ca:b5:44:a8:6e:e4:a5: c2:bb:4d:5d:88:6b:2d:4c:d1:9b:66:f1:a0:59:6e: a0:a2:92:7e:94:9d:82:c4:d6:bd:96:a2:5f:fa:fd: 8c:e9:f4:22:a3:52:19:bb:d4:4f:50:f6:10:a8:76: f0:67:87:90:c2:28:b7:63:ca:70:a9:64:f0:1f:d6: 19:94:1d:fb:87:45:2f:ec:93:33:ac:70:ca:68:27: f0:f0:dc:08:93:33:0f:6a:ac:b2:eb:b0:29:a7:a5: f1:2d:9a:32:f1:0a:b4:95:fb:af:ba:09:f0:79:24: 96:4c:e3:d1:26:2d:d0:05:f5:2f:42:0e:9f:64:e2: 2c:cb:99:b0:da:c1:0c:31:98:45:67:25:47:51:e0: ad:08:88:4f:99:91:44:6c:df:bb:c9:5a:43:86:e9: 8d:30:91:21:13:9d:cd:1a:14:a2:8b:27:45:49:43: 9a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:CA:F5:B6:18:F3:5C:0C:05:6E:60:AA:2C:76:7D:AA:55:DF:5F:A7 X509v3 Authority Key Identifier: keyid:FF:A0:95:A2:F4:A2:7C:A4:63:1B:C2:39:E5:7E:7A:40:5B:45:6B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B346D/70E26EA4CE6A11EBB0774E80C4F9AE02/_6CVovSifKRjG8I55X56QFtFa_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_6CVovSifKRjG8I55X56QFtFa_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B346D/70E26EA4CE6A11EBB0774E80C4F9AE02/2F7C5A70968A11EEB50D1D33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.93.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:62:0a:81:be:ab:df:d2:cb:80:90:16:21:df:4a:70:81:df: 26:62:d9:ae:b6:79:f4:08:5c:f3:8b:be:e4:96:83:44:19:07: a2:cf:42:60:82:27:34:e2:26:a5:8c:7b:0e:03:04:f9:6a:f7: d2:bc:89:28:6c:36:60:c8:8b:c4:06:f6:c9:ae:fd:05:1f:a1: 60:2a:ef:b4:de:ce:61:61:7f:a1:3a:39:0c:da:9b:6f:f5:b4: c2:f9:dd:e2:ad:fb:a2:ee:d0:24:f4:d5:0b:e7:9d:d4:76:79: 1d:ba:61:19:8e:92:a8:49:91:b6:af:99:5e:ee:05:6b:03:bd: 9f:e1:e6:1e:f8:e6:82:a3:8c:7b:2a:9b:03:f0:04:50:95:c3: 2c:68:cc:a6:fe:c1:21:0d:0b:47:aa:b7:d5:3d:be:81:13:cb: 70:02:59:8b:55:d1:9c:ba:f9:0f:f6:94:32:12:29:e0:d9:d2: d0:86:64:0c:89:c5:7e:bb:c4:18:0e:92:80:b6:8d:eb:12:fd: fc:a1:48:fa:bf:d3:b1:b6:3d:3e:e2:28:10:94:f1:8d:d9:53: 52:ba:74:08:b5:85:c9:90:68:f5:50:58:76:72:3c:83:98:28: 94:bf:11:03:be:b1:2a:b8:3c:b6:45:7a:a9:ce:9e:1c:7d:af: 78:6a:b9:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM0NkQxMTAvBgNVBAUTKEZGQTA5NUEyRjRBMjdDQTQ2MzFCQzIzOUU1N0U3QTQw NUI0NTZCRkYwHhcNMjUwNTMwMjMzNDMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNDA4OC1hNWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAna95IUvvUTHLXVbLuphjukNrrsoMJfCGIDYmBUlqCYYrlGE5bS7kJixqjSnu y6UKt7iDxv35ClnQ/IvEyv+yfzSkDVYOQQrManlk4uDL7H9wiMq1RKhu5KXCu01d iGstTNGbZvGgWW6gopJ+lJ2CxNa9lqJf+v2M6fQio1IZu9RPUPYQqHbwZ4eQwii3 Y8pwqWTwH9YZlB37h0Uv7JMzrHDKaCfw8NwIkzMPaqyy67App6XxLZoy8Qq0lfuv ugnweSSWTOPRJi3QBfUvQg6fZOIsy5mw2sEMMZhFZyVHUeCtCIhPmZFEbN+7yVpD humNMJEhE53NGhSiiydFSUOa8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE/K9bYY 81wMBW5gqix2fapV31+nMB8GA1UdIwQYMBaAFP+glaL0onykYxvCOeV+ekBbRWv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzQ2RC83MEUyNkVBNENF NkExMUVCQjA3NzRFODBDNEY5QUUwMi9fNkNWb3ZTaWZLUmpHOEk1NVg1NlFGdEZh XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL182Q1ZvdlNpZktSakc4STU1WDU2UUZ0RmFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjM0NkQvNzBFMjZFQTRDRTZBMTFFQkIwNzc0RTgwQzRGOUFFMDIvMkY3QzVBNzA5 NjhBMTFFRUI1MEQxRDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpV0wDQYJKoZIhvcNAQELBQADggEBAH1iCoG+q9/Sy4CQ FiHfSnCB3yZi2a62efQIXPOLvuSWg0QZB6LPQmCCJzTiJqWMew4DBPlq99K8iShs NmDIi8QG9smu/QUfoWAq77TezmFhf6E6OQzam2/1tML53eKt+6Lu0CT01QvnndR2 eR26YRmOkqhJkbavmV7uBWsDvZ/h5h745oKjjHsqmwPwBFCVwyxozKb+wSENC0eq t9U9voETy3ACWYtV0Zy6+Q/2lDISKeDZ0tCGZAyJxX67xBgOkoC2jesS/fyhSPq/ 07G2PT7iKBCU8Y3ZU1K6dAi1hcmQaPVQWHZyPIOYKJS/EQO+sSq4PLZFeqnOnhx9 r3hqueY= -----END CERTIFICATE-----Generated at Thu Jun 5 19:57:32 2025 by rpki-client