$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/44E001183C5C11F095C6A259C4F9AE02.roa File: 44E001183C5C11F095C6A259C4F9AE02.roa (raw, json) Hash identifier: UIAwr+xolshjF2OO5cazsfh4ngJlaSJ3aa0HRbMpd70= Subject key identifier: 64:F4:AD:29:F8:E2:13:09:AA:CE:6B:43:50:D0:F4:B6:DD:51:1C:3D Certificate issuer: /CN=A91BB221/serialNumber=AEE17DDB8C6B3599646187D081E7C8F79883E19D Certificate serial: 16 Authority key identifier: AE:E1:7D:DB:8C:6B:35:99:64:61:87:D0:81:E7:C8:F7:98:83:E1:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/44E001183C5C11F095C6A259C4F9AE02.roa Signing time: Thu 29 May 2025 07:13:40 +0000 ROA not before: Thu 29 May 2025 07:13:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 40676 IP address blocks: 103.140.44.0/24 maxlen: 24 2001:df0:a880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/ruF924xrNZlkYYfQgefI95iD4Z0.crl rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/ruF924xrNZlkYYfQgefI95iD4Z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB221, serialNumber=AEE17DDB8C6B3599646187D081E7C8F79883E19D Validity Not Before: May 29 07:13:40 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68380924-961f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a3:e7:96:77:f9:30:ed:bf:98:48:b0:1e:f4: 4a:8a:27:a7:a6:ae:cc:ba:28:97:6f:94:b3:51:e4: a7:95:a1:8d:7b:b9:93:1c:4e:01:34:b5:db:d1:81: 4e:c5:c9:ff:6f:5e:ab:48:d7:c9:0e:14:22:e2:ce: 70:2b:26:a1:f7:84:b1:7d:c8:85:bd:54:cc:5c:37: 60:13:63:72:cc:8b:77:a9:df:23:e6:e1:02:30:ae: 3b:74:4a:69:ce:11:3f:b5:e9:3d:b5:f0:9f:5c:af: 7e:06:ea:fc:6a:4d:b7:79:10:f3:f5:a4:98:94:cd: d3:ed:3a:39:bf:8f:d1:8c:bb:38:d5:ff:60:20:6d: 4f:07:f7:05:ae:ba:da:58:24:b8:0f:4f:6a:84:27: ea:7d:94:68:09:b0:c1:dd:3a:27:d9:d2:d5:63:89: 5b:a9:c5:94:89:79:4e:6e:0c:51:2a:6b:ad:8e:4d: 68:68:53:b4:ec:e3:cd:6f:63:42:fb:32:dc:8c:28: ba:33:e9:70:ae:60:12:f0:42:61:7e:d2:52:c4:1d: 21:e1:65:53:32:d8:1f:b7:96:c1:99:52:8c:fd:53: 80:4e:60:b8:6c:cf:8a:3f:12:66:42:6e:aa:42:bc: 7f:2b:dd:1e:b1:2d:f4:30:97:24:a2:77:23:8d:e6: 41:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F4:AD:29:F8:E2:13:09:AA:CE:6B:43:50:D0:F4:B6:DD:51:1C:3D X509v3 Authority Key Identifier: keyid:AE:E1:7D:DB:8C:6B:35:99:64:61:87:D0:81:E7:C8:F7:98:83:E1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/ruF924xrNZlkYYfQgefI95iD4Z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/44E001183C5C11F095C6A259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.44.0/24 IPv6: 2001:df0:a880::/48 Signature Algorithm: sha256WithRSAEncryption a3:71:47:22:97:b5:65:94:5f:4b:0f:ae:c3:4c:77:19:66:c8: b5:49:3e:55:aa:1b:65:c8:24:b2:c4:aa:9e:e9:9c:4f:17:8b: 51:bb:ed:db:20:ba:a1:8d:68:2e:db:bb:dc:19:e0:06:63:d6: 93:ee:0a:26:41:cb:b5:23:71:00:b7:04:1a:6c:12:0c:4c:36: 5a:01:85:68:0c:cd:ae:70:4d:f4:fe:a0:df:a9:24:00:f0:e8: 4c:8b:42:c2:3e:18:81:8c:f8:e5:14:b4:e1:36:2f:96:08:52: 31:aa:3d:62:45:79:e7:d7:14:bc:b5:5c:6b:78:71:80:0b:35: 80:a5:b9:42:b3:16:cc:ba:d7:8b:b5:8c:0f:db:81:83:de:62: 08:ee:31:1b:95:93:c8:3f:96:2c:2f:19:22:10:7b:4d:6d:cf: d6:d0:fa:0c:2e:99:0e:16:7d:e0:63:4e:d5:56:cf:6f:af:54: 41:a7:76:c5:a4:e3:6f:0c:cd:23:ba:fd:bb:2e:f6:cd:e9:12: 9e:21:fd:d6:17:2d:4b:f7:44:1e:90:c1:78:dc:0d:ba:b1:cb: 33:db:fe:f5:a3:54:aa:8e:1e:24:d4:b2:89:19:59:26:0d:ee: ce:ed:cb:c2:fd:09:1b:71:50:56:c3:be:ea:d5:0e:b4:e5:30: 89:19:d5:36 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjIyMTExMC8GA1UEBRMoQUVFMTdEREI4QzZCMzU5OTY0NjE4N0QwODFFN0M4Rjc5 ODgzRTE5RDAeFw0yNTA1MjkwNzEzNDBaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzgwOTI0LTk2MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRo+eWd/kw7b+YSLAe9EqKJ6emrsy6KJdvlLNR5KeVoY17uZMcTgE0tdvRgU7F yf9vXqtI18kOFCLiznArJqH3hLF9yIW9VMxcN2ATY3LMi3ep3yPm4QIwrjt0SmnO ET+16T218J9cr34G6vxqTbd5EPP1pJiUzdPtOjm/j9GMuzjV/2AgbU8H9wWuutpY JLgPT2qEJ+p9lGgJsMHdOifZ0tVjiVupxZSJeU5uDFEqa62OTWhoU7Ts481vY0L7 MtyMKLoz6XCuYBLwQmF+0lLEHSHhZVMy2B+3lsGZUoz9U4BOYLhsz4o/EmZCbqpC vH8r3R6xLfQwlySidyON5kE/AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUZPStKfji EwmqzmtDUND0tt1RHD0wHwYDVR0jBBgwFoAUruF924xrNZlkYYfQgefI95iD4Z0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMjIxLzMzRUFBQzY4MkQw MzExRjA4M0VCQjM3QUM0RjlBRTAyL3J1RjkyNHhyTlpsa1lZZlFnZWZJOTVpRDRa MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcnVGOTI0eHJOWmxrWVlmUWdlZkk5NWlENFowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjIyMS8zM0VBQUM2ODJEMDMxMUYwODNFQkIzN0FDNEY5QUUwMi80NEUwMDExODND NUMxMUYwOTVDNkEyNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeMLDAPBAIAAjAJAwcAIAEN8KiAMA0GCSqGSIb3DQEBCwUA A4IBAQCjcUcil7VllF9LD67DTHcZZsi1ST5VqhtlyCSyxKqe6ZxPF4tRu+3bILqh jWgu27vcGeAGY9aT7gomQcu1I3EAtwQabBIMTDZaAYVoDM2ucE30/qDfqSQA8OhM i0LCPhiBjPjlFLThNi+WCFIxqj1iRXnn1xS8tVxreHGACzWApblCsxbMuteLtYwP 24GD3mII7jEblZPIP5YsLxkiEHtNbc/W0PoMLpkOFn3gY07VVs9vr1RBp3bFpONv DM0juv27LvbN6RKeIf3WFy1L90QekMF43A26scsz2/71o1Sqjh4k1LKJGVkmDe7O 7cvC/QkbcVBWw77q1Q605TCJGdU2 -----END CERTIFICATE-----Generated at Mon Jun 2 07:17:43 2025 by rpki-client