$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DC79515C011411EAAB0EF153C4F9AE02.roa File: DC79515C011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: S09PILGMyTlUME8baJPdO5/QImyMfRyviwRhAxvfwcM= Subject key identifier: 43:84:CB:DD:F7:72:14:82:6B:12:F7:1C:A8:65:6A:3D:0F:CE:C2:09 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0C8E Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DC79515C011411EAAB0EF153C4F9AE02.roa Signing time: Wed 04 Jun 2025 18:41:54 +0000 ROA not before: Wed 04 Jun 2025 18:41:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24516 IP address blocks: 43.239.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 18:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE, serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 4 18:41:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68409372-dadd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f1:29:5f:f3:5f:e4:e5:b1:bc:ee:ca:bb:1d: 92:f4:5e:95:f7:bc:14:d8:d6:ee:f4:71:d8:05:65: 00:a7:1d:6a:1c:4d:c9:a5:38:2c:7b:b2:a1:49:67: 54:24:97:d3:97:86:0c:4c:25:94:08:8c:97:74:00: 33:bb:d3:37:2e:a3:6f:58:cd:3c:3e:c8:bb:8c:19: f8:0f:c5:37:9b:f0:f6:cb:6b:9b:27:b3:a8:98:91: 73:22:a1:80:9f:59:98:9a:61:8e:b2:2a:c4:32:b5: 20:2d:57:78:09:03:8d:7d:68:39:11:43:36:f9:9f: 97:e7:cf:ea:f8:17:e5:fd:94:6f:81:2d:93:39:16: 89:9e:6f:f9:7e:cc:5e:e9:51:0c:1f:b3:50:0b:da: f1:aa:08:a6:26:1d:8e:7d:d4:8c:15:dc:b8:07:f7: ba:2d:f4:0d:4b:80:ed:53:c2:6d:cd:37:6b:64:69: 4f:19:ea:25:b8:0b:e9:d1:0e:19:ac:c3:cb:f9:3d: 5e:35:31:7f:ed:74:3b:4a:7b:d6:b6:7b:0a:35:52: 5d:bf:96:59:4b:0b:f0:f9:bc:83:0b:88:1a:2c:32: 7e:34:58:5d:fa:f7:6a:6c:11:19:83:18:80:b4:86: 18:18:74:90:78:01:2c:20:84:74:ff:ec:98:2f:7d: 1f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:84:CB:DD:F7:72:14:82:6B:12:F7:1C:A8:65:6A:3D:0F:CE:C2:09 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DC79515C011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.103.0/24 Signature Algorithm: sha256WithRSAEncryption 21:4e:09:0b:4b:1f:8c:48:26:a2:b4:5d:69:cb:60:58:7c:d6: 8c:72:45:25:1a:93:c7:26:76:3e:b0:f8:68:b4:cb:a6:dc:bc: 1e:1c:89:eb:d9:49:42:cf:b9:17:e9:53:32:17:55:85:e9:2f: 55:98:11:80:ad:81:09:49:60:52:0e:84:dc:63:2e:59:a4:42: 0a:78:51:5c:c6:32:2e:43:b9:dc:a4:32:9a:96:41:13:0f:0a: 6f:e6:b1:b5:e8:aa:af:3d:b2:22:2f:c6:c7:e9:a5:16:71:11: 37:87:c1:46:4c:30:8a:59:eb:87:2d:fd:fc:6d:f8:05:e9:4f: 02:76:d1:69:ed:b1:27:90:7d:67:85:11:85:c2:d5:82:6d:32: 14:7f:a2:2b:46:ea:2a:30:f0:67:6c:72:3b:29:61:12:b2:b3: ba:73:cc:6f:a7:b8:fc:23:a9:18:15:3a:c2:b0:dd:d3:b5:57: 27:82:05:1a:90:5d:c1:ef:8d:56:fd:e8:38:b4:6b:76:f2:e5: 6b:5e:00:0d:41:59:1d:56:1b:c4:32:98:fb:86:42:16:d4:cc: 1e:90:1d:c4:c9:51:b8:a1:4c:16:a3:5d:0c:8d:b3:71:1f:9d: 5f:35:0a:e5:b1:10:d1:83:a6:fa:16:40:f4:c5:09:e8:f1:cb: a6:de:1e:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjUwNjA0MTg0MTU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwOTM3Mi1kYWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvEpX/Nf5OWxvO7Kux2S9F6V97wU2Nbu9HHYBWUApx1qHE3JpTgse7KhSWdU JJfTl4YMTCWUCIyXdAAzu9M3LqNvWM08Psi7jBn4D8U3m/D2y2ubJ7OomJFzIqGA n1mYmmGOsirEMrUgLVd4CQONfWg5EUM2+Z+X58/q+Bfl/ZRvgS2TORaJnm/5fsxe 6VEMH7NQC9rxqgimJh2OfdSMFdy4B/e6LfQNS4DtU8JtzTdrZGlPGeoluAvp0Q4Z rMPL+T1eNTF/7XQ7SnvWtnsKNVJdv5ZZSwvw+byDC4gaLDJ+NFhd+vdqbBEZgxiA tIYYGHSQeAEsIIR0/+yYL30fPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEOEy933 chSCaxL3HKhlaj0PzsIJMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREM3OTUxNUMw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72cwDQYJKoZIhvcNAQELBQADggEBACFOCQtLH4xIJqK0 XWnLYFh81oxyRSUak8cmdj6w+Gi0y6bcvB4cievZSULPuRfpUzIXVYXpL1WYEYCt gQlJYFIOhNxjLlmkQgp4UVzGMi5DudykMpqWQRMPCm/msbXoqq89siIvxsfppRZx ETeHwUZMMIpZ64ct/fxt+AXpTwJ20WntsSeQfWeFEYXC1YJtMhR/oitG6iow8Gds cjspYRKys7pzzG+nuPwjqRgVOsKw3dO1VyeCBRqQXcHvjVb96Di0a3by5WteAA1B WR1WG8QymPuGQhbUzB6QHcTJUbihTBajXQyNs3EfnV81CuWxENGDpvoWQPTFCejx y6beHnw= -----END CERTIFICATE-----Generated at Thu Jun 5 19:18:39 2025 by rpki-client