$ rpki-client -vvf rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa File: 86019882E2A311EEA6A97425C4F9AE02.roa (raw, json) Hash identifier: yaqGJ55mUP3MHEApA47X+44ZI9rv9+pSI8dIE6Q7v10= Subject key identifier: 26:9A:69:69:27:5C:D4:CF:2D:50:BB:32:FF:E7:B1:25:29:08:3B:42 Certificate issuer: /CN=A91B517C/serialNumber=9FAF8341675EF438964199362542572C8928540C Certificate serial: F6 Authority key identifier: 9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa Signing time: Tue 27 May 2025 05:41:09 +0000 ROA not before: Tue 27 May 2025 05:41:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63981 IP address blocks: 45.117.96.0/22 maxlen: 22 45.117.96.0/24 maxlen: 24 45.117.97.0/24 maxlen: 24 45.117.98.0/24 maxlen: 24 45.117.99.0/24 maxlen: 24 45.251.64.0/23 maxlen: 24 45.251.66.0/24 maxlen: 24 103.29.140.0/22 maxlen: 24 103.117.76.0/22 maxlen: 24 103.220.8.0/22 maxlen: 24 203.166.220.0/22 maxlen: 24 2405:a480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B517C, serialNumber=9FAF8341675EF438964199362542572C8928540C Validity Not Before: May 27 05:41:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68355075-e6bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:04:55:61:dd:53:82:86:ae:8b:3d:6b:c2:4f: ad:4b:02:9e:bd:c1:4d:25:19:67:7e:bb:99:5c:b9: 35:84:e7:81:25:f5:36:36:c2:43:47:e3:f1:d1:f0: 18:a3:19:e5:ff:bc:0f:e8:40:e5:6b:d9:c1:ba:8e: 21:dd:2f:3f:fb:17:60:32:f3:b7:5b:31:b7:e5:71: c6:05:77:bb:2d:e2:d5:4d:60:98:dd:cb:87:00:11: 25:2e:c1:22:b6:4f:99:7e:4b:72:20:37:a6:52:e5: d5:a5:3c:67:6d:57:94:0f:c7:83:d5:93:f2:b0:5a: 38:69:b6:5f:c3:1c:e3:05:a0:c3:81:2c:fd:bc:e1: 16:d0:c6:57:51:e7:b0:13:13:43:78:34:ab:87:73: e3:e3:ef:f8:8e:33:f6:57:b5:1e:7e:1f:ab:1f:c8: 89:35:f9:8c:9d:47:dd:88:d3:19:d5:92:5e:5d:d0: 7a:83:b7:b5:d7:0e:e4:3a:e5:4f:52:16:b2:e3:ba: 1c:ca:a8:f6:ba:8d:54:88:b5:fd:cf:32:72:b5:b9: fa:e1:d7:a6:3f:6a:fa:ba:c2:44:5d:89:f1:7e:3d: f0:55:86:58:c3:75:91:8d:ad:67:34:ff:93:9a:3d: 05:01:32:f4:df:1e:18:20:97:e9:67:ad:e3:ed:52: e9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:9A:69:69:27:5C:D4:CF:2D:50:BB:32:FF:E7:B1:25:29:08:3B:42 X509v3 Authority Key Identifier: keyid:9F:AF:83:41:67:5E:F4:38:96:41:99:36:25:42:57:2C:89:28:54:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/n6-DQWde9DiWQZk2JUJXLIkoVAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n6-DQWde9DiWQZk2JUJXLIkoVAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B517C/CD3763E6DCED11EEBDE00E30C4F9AE02/86019882E2A311EEA6A97425C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.96.0/22 45.251.64.0-45.251.66.255 103.29.140.0/22 103.117.76.0/22 103.220.8.0/22 203.166.220.0/22 IPv6: 2405:a480::/32 Signature Algorithm: sha256WithRSAEncryption 8b:db:f0:a6:59:37:39:76:7a:20:ac:78:36:93:d1:4a:ff:5d: 47:b6:20:6d:bd:74:65:35:e7:3e:cd:16:8b:7e:8b:40:49:4c: 4b:e7:38:32:28:22:5a:86:5a:fc:a2:11:92:38:e6:31:2a:42: c8:3a:08:c8:76:78:69:54:e8:4a:21:30:12:da:7f:bd:94:f3: 43:0b:28:d9:81:9c:69:5a:e5:54:02:4a:a7:00:c2:c2:4a:31: 38:22:de:7b:12:4f:d7:09:3c:85:02:e1:9c:9c:0d:7a:26:65: cc:bf:bb:4b:d5:12:e8:16:86:f0:ba:ab:b2:6e:35:82:e1:96: f8:d0:40:18:4a:c4:77:ab:70:8a:fa:ef:f1:b7:8d:11:ab:c9: 64:f0:c1:31:18:76:e1:e3:c4:d6:1a:98:fd:38:ad:dc:d8:4b: c2:13:87:0b:69:28:c6:c7:a7:ea:ee:48:20:ad:95:c2:a2:33: 9b:0f:05:f5:62:f1:21:ae:8c:c7:c7:4d:c2:21:a5:76:b7:2d: 18:20:58:6f:9d:ce:7b:53:41:14:43:a7:08:e6:e2:70:41:67: 1c:55:de:46:2c:fd:74:ba:df:87:81:1c:08:21:9c:49:3e:3a: 9b:cd:a9:18:3c:f9:c7:df:11:d8:97:bf:49:d1:d2:23:0e:5c: 3b:a5:e9:e4 -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUxN0MxMTAvBgNVBAUTKDlGQUY4MzQxNjc1RUY0Mzg5NjQxOTkzNjI1NDI1NzJD ODkyODU0MEMwHhcNMjUwNTI3MDU0MTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1NTA3NS1lNmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7wRVYd1Tgoauiz1rwk+tSwKevcFNJRlnfruZXLk1hOeBJfU2NsJDR+Px0fAY oxnl/7wP6EDla9nBuo4h3S8/+xdgMvO3WzG35XHGBXe7LeLVTWCY3cuHABElLsEi tk+ZfktyIDemUuXVpTxnbVeUD8eD1ZPysFo4abZfwxzjBaDDgSz9vOEW0MZXUeew ExNDeDSrh3Pj4+/4jjP2V7Uefh+rH8iJNfmMnUfdiNMZ1ZJeXdB6g7e11w7kOuVP Uhay47ocyqj2uo1UiLX9zzJytbn64demP2r6usJEXYnxfj3wVYZYw3WRja1nNP+T mj0FATL03x4YIJfpZ63j7VLpKQIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFCaaaWkn XNTPLVC7Mv/nsSUpCDtCMB8GA1UdIwQYMBaAFJ+vg0FnXvQ4lkGZNiVCVyyJKFQM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTE3Qy9DRDM3NjNFNkRD RUQxMUVFQkRFMDBFMzBDNEY5QUUwMi9uNi1EUVdkZTlEaVdRWmsySlVKWExJa29W QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL242LURRV2RlOURpV1FaazJKVUpYTElrb1ZBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjUxN0MvQ0QzNzYzRTZEQ0VEMTFFRUJERTAwRTMwQzRGOUFFMDIvODYwMTk4ODJF MkEzMTFFRUE2QTk3NDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVAYIKwYBBQUHAQcBAf8E RTBDMDIEAgABMCwDBAItdWAwDAMEBi37QAMEAC37QgMEAmcdjAMEAmd1TAMEAmfc CAMEAsum3DANBAIAAjAHAwUAJAWkgDANBgkqhkiG9w0BAQsFAAOCAQEAi9vwplk3 OXZ6IKx4NpPRSv9dR7Ygbb10ZTXnPs0Wi36LQElMS+c4MigiWoZa/KIRkjjmMSpC yDoIyHZ4aVToSiEwEtp/vZTzQwso2YGcaVrlVAJKpwDCwkoxOCLeexJP1wk8hQLh nJwNeiZlzL+7S9US6BaG8Lqrsm41guGW+NBAGErEd6twivrv8beNEavJZPDBMRh2 4ePE1hqY/Tit3NhLwhOHC2koxsen6u5IIK2VwqIzmw8F9WLxIa6Mx8dNwiGldrct GCBYb53Oe1NBFEOnCObicEFnHFXeRiz9dLrfh4EcCCGcST46m82pGDz5x98R2Je/ SdHSIw5cO6Xp5A== -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:37 2025 by rpki-client