$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa File: 8D9A6E1246CC11E8B5408617C4F9AE02.roa (raw, json) Hash identifier: UB3e/BzYZNzSWafIfT/8shx3CMwEAB4npfcc5DFGpRs= Subject key identifier: A8:84:17:59:F3:E8:31:F9:AF:A1:87:15:A7:C7:E2:2E:A9:C8:6D:BD Certificate issuer: /CN=A91BE8F6/serialNumber=4A388DAD13DF69C2D0E9EA16B98B0C23358FDB03 Certificate serial: 1525 Authority key identifier: 4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa Signing time: Fri 16 May 2025 17:09:05 +0000 ROA not before: Fri 16 May 2025 17:09:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9541 IP address blocks: 103.213.108.0/22 maxlen: 24 192.140.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.crl rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5413 (0x1525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE8F6, serialNumber=4A388DAD13DF69C2D0E9EA16B98B0C23358FDB03 Validity Not Before: May 16 17:09:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68277131-5d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b1:54:44:80:f1:89:de:87:66:9b:1e:11:44: d5:0b:98:f2:7e:5e:ab:96:e6:93:ad:a0:d4:6a:03: aa:39:78:43:12:ad:7b:ab:b0:fb:38:ff:d2:56:ad: 8c:95:e7:c4:49:08:06:2f:71:25:89:8e:0e:82:45: 43:cf:7a:f0:ee:cf:7a:7f:a5:38:fb:30:49:d8:9c: cb:26:bd:74:77:e9:dc:85:d0:1d:b0:39:7d:00:85: 00:af:e5:d2:1b:12:53:9f:d8:3f:91:be:b1:b4:7b: 6a:ab:24:38:ee:0d:83:de:d5:2c:34:52:6c:71:22: 71:5f:47:c6:67:d4:a2:0e:c9:38:5b:8e:44:1c:c6: b4:74:8b:ac:7f:f1:7f:93:46:59:d5:79:03:cd:87: 20:23:45:7f:ed:f6:44:51:10:a1:82:7c:59:de:4c: 71:15:3d:f6:0b:69:7d:f8:f1:53:db:59:89:89:0f: c7:79:8d:6f:ea:26:f7:ec:ea:a3:8c:95:2a:69:ef: 93:15:cc:c1:d2:50:5c:d2:5c:c3:e5:d3:e1:2a:b4: 74:9a:f5:19:53:eb:a8:1a:cd:14:9e:7a:d1:31:a0: 2e:03:df:aa:d0:28:50:ad:df:c5:21:ee:48:64:15: 3f:10:90:b6:92:3d:32:33:3b:c3:ac:d3:67:8e:6c: e6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:84:17:59:F3:E8:31:F9:AF:A1:87:15:A7:C7:E2:2E:A9:C8:6D:BD X509v3 Authority Key Identifier: keyid:4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.108.0/22 192.140.144.0/22 Signature Algorithm: sha256WithRSAEncryption 50:a2:15:b5:fc:4a:ab:a2:1c:cd:0d:74:0b:f5:3a:eb:a7:0d: 07:ad:36:0b:e3:4b:09:00:60:bc:d3:fb:03:f0:9c:b7:5c:5e: c4:24:cf:3a:db:46:e3:cf:ab:8f:76:7a:7f:f1:b3:9e:9e:d2: c0:c0:39:dc:5a:b0:49:65:3d:45:e3:18:8f:67:63:a8:72:52: 92:f0:6b:60:d6:17:ec:9d:54:45:f1:95:29:0d:37:ee:8b:55: 1e:de:31:3b:d6:f9:65:35:19:50:87:54:e1:47:c0:69:ad:95: 9e:fe:8a:4b:6e:9e:4d:91:84:9c:48:a5:88:77:76:85:3d:3e: 9f:74:f0:d8:47:cf:83:59:f0:30:fb:e7:82:9a:ce:75:bf:72: c4:02:4e:33:7d:82:e1:54:5b:ae:00:1d:d8:d5:12:52:da:f6: 51:7f:6e:ed:89:07:03:65:59:23:1d:11:e1:da:1f:3c:8a:f5: 09:4b:23:62:26:ec:92:5a:bf:b4:c7:c9:c4:5e:0a:84:37:8b: af:7e:ed:f4:87:ca:8c:63:9a:94:e8:ec:e0:7d:45:a6:81:22: b9:2a:dd:5d:44:e9:e5:b6:67:55:01:5a:7b:62:21:ec:5e:ea: 72:38:45:63:50:1b:30:ff:e6:21:10:6c:d0:f6:3b:db:18:4b: 12:47:ff:0c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU4RjYxMTAvBgNVBAUTKDRBMzg4REFEMTNERjY5QzJEMEU5RUExNkI5OEIwQzIz MzU4RkRCMDMwHhcNMjUwNTE2MTcwOTA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3NzEzMS01ZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7FURIDxid6HZpseEUTVC5jyfl6rluaTraDUagOqOXhDEq17q7D7OP/SVq2M lefESQgGL3EliY4OgkVDz3rw7s96f6U4+zBJ2JzLJr10d+nchdAdsDl9AIUAr+XS GxJTn9g/kb6xtHtqqyQ47g2D3tUsNFJscSJxX0fGZ9SiDsk4W45EHMa0dIusf/F/ k0ZZ1XkDzYcgI0V/7fZEURChgnxZ3kxxFT32C2l9+PFT21mJiQ/HeY1v6ib37Oqj jJUqae+TFczB0lBc0lzD5dPhKrR0mvUZU+uoGs0UnnrRMaAuA9+q0ChQrd/FIe5I ZBU/EJC2kj0yMzvDrNNnjmzmEwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKiEF1nz 6DH5r6GHFafH4i6pyG29MB8GA1UdIwQYMBaAFEo4ja0T32nC0OnqFrmLDCM1j9sD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRThGNi9CMjZFNUYyRTQ2 Q0IxMUU4ODQyQjRCMTZDNEY5QUUwMi9TamlOclJQZmFjTFE2ZW9XdVlzTUl6V1Ay d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NqaU5yUlBmYWNMUTZlb1d1WXNNSXpXUDJ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkU4RjYvQjI2RTVGMkU0NkNCMTFFODg0MkI0QjE2QzRGOUFFMDIvOEQ5QTZFMTI0 NkNDMTFFOEI1NDA4NjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1WwDBALAjJAwDQYJKoZIhvcNAQELBQADggEBAFCiFbX8 SquiHM0NdAv1OuunDQetNgvjSwkAYLzT+wPwnLdcXsQkzzrbRuPPq492en/xs56e 0sDAOdxasEllPUXjGI9nY6hyUpLwa2DWF+ydVEXxlSkNN+6LVR7eMTvW+WU1GVCH VOFHwGmtlZ7+iktunk2RhJxIpYh3doU9Pp908NhHz4NZ8DD754KaznW/csQCTjN9 guFUW64AHdjVElLa9lF/bu2JBwNlWSMdEeHaHzyK9QlLI2Im7JJav7THycReCoQ3 i69+7fSHyoxjmpTo7OB9RaaBIrkq3V1E6eW2Z1UBWntiIexe6nI4RWNQGzD/5iEQ bND2O9sYSxJH/ww= -----END CERTIFICATE-----Generated at Wed Jun 4 00:15:25 2025 by rpki-client