$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa File: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (raw, json) Hash identifier: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4= Subject key identifier: 76:7F:59:26:3D:05:3F:EF:8E:92:9B:91:7D:82:03:23:A5:16:6F:42 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0360 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa Signing time: Wed 21 May 2025 01:17:45 +0000 ROA not before: Wed 21 May 2025 01:17:45 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 198949 IP address blocks: 103.35.217.0/24 maxlen: 24 103.232.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 21 01:17:45 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=682d29b8-be80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cb:34:1b:e1:e8:99:da:dd:4e:86:95:db:7c: 25:bc:04:f3:cf:c5:a8:ad:8e:27:79:9c:1a:ba:af: 86:e3:56:20:d9:e0:64:07:a4:8a:df:9d:2e:16:99: e7:6f:bc:b1:74:35:fa:6f:b9:cd:4f:c1:21:2e:a1: 3b:a6:97:b0:a5:20:17:68:08:21:1a:7f:44:af:50: 07:5f:f6:63:d5:58:79:ce:62:e6:3a:e8:a2:3c:30: 60:c1:88:f2:cb:20:d2:40:42:31:8e:66:be:d7:0b: 7f:21:93:5e:53:c5:43:ec:5a:fb:aa:5b:b0:f2:e2: a6:e8:4b:59:89:26:5d:22:3a:9a:e8:d5:7d:35:39: 65:dc:8d:c9:0d:9b:d8:c4:75:91:05:d6:f7:f9:99: a7:f6:76:d9:a3:f9:4b:3b:24:85:ce:49:25:35:6e: 92:0c:39:69:34:84:dd:f7:1a:fd:c2:44:b8:ee:7b: 54:5c:ea:a6:50:ac:91:2a:db:4b:c1:93:b1:f4:93: 9b:ed:31:d9:55:5b:d9:29:37:7c:64:86:17:bf:28: be:7c:bf:1e:79:87:5b:56:c4:9e:05:62:45:aa:f8: 11:8e:a8:44:7f:02:a0:bd:73:39:90:02:70:0e:35: 6f:ef:8c:38:a2:09:43:fe:bd:67:36:0c:89:48:2b: eb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7F:59:26:3D:05:3F:EF:8E:92:9B:91:7D:82:03:23:A5:16:6F:42 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.217.0/24 103.232.224.0/24 Signature Algorithm: sha256WithRSAEncryption 99:8f:c5:0b:68:ad:3e:24:71:5b:f6:38:eb:63:63:21:e1:6e: 81:cd:44:68:29:b4:43:78:2e:b7:65:96:21:b8:be:f9:43:ad: 62:21:de:0f:e5:9f:4c:06:e2:50:56:01:a9:db:84:9e:f9:d2: 08:22:9a:ac:c0:15:94:fb:99:1e:8d:12:2e:89:f3:92:ce:29: 41:0c:ab:6d:83:c9:76:1a:c3:b3:29:06:d2:8f:49:fc:bb:e9: c1:25:84:6a:ea:52:e4:6b:1c:af:6b:11:08:d4:8a:b2:4c:72: eb:fd:c9:1e:7a:db:8b:3b:50:1c:52:8a:e0:4d:07:92:86:36: 31:07:c5:66:8f:ce:41:1e:b4:52:30:36:ea:ac:85:fb:d5:67: b5:50:ae:e4:e6:31:93:c0:a8:2a:8e:63:09:e1:2e:1e:fa:0e: 20:9d:93:61:86:85:40:3e:09:d1:43:88:27:b4:8d:5a:10:48: 57:54:d2:a5:63:ef:b5:3d:f8:77:4c:14:f0:75:7f:e4:86:7f: cc:c7:32:31:6e:10:3f:74:83:58:6d:5b:89:aa:4b:04:73:c7: fa:82:54:c7:f2:89:d8:82:41:08:be:33:69:15:14:2e:29:10: bb:19:2e:ec:78:7e:c6:18:2e:95:b3:d5:41:6d:21:1b:4f:cf: ea:fe:dc:5f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUwNTIxMDExNzQ1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkMjliOC1iZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ss0G+HomdrdToaV23wlvATzz8WorY4neZwauq+G41Yg2eBkB6SK350uFpnn b7yxdDX6b7nNT8EhLqE7ppewpSAXaAghGn9Er1AHX/Zj1Vh5zmLmOuiiPDBgwYjy yyDSQEIxjma+1wt/IZNeU8VD7Fr7qluw8uKm6EtZiSZdIjqa6NV9NTll3I3JDZvY xHWRBdb3+Zmn9nbZo/lLOySFzkklNW6SDDlpNITd9xr9wkS47ntUXOqmUKyRKttL wZOx9JOb7THZVVvZKTd8ZIYXvyi+fL8eeYdbVsSeBWJFqvgRjqhEfwKgvXM5kAJw DjVv74w4oglD/r1nNgyJSCvrnwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHZ/WSY9 BT/vjpKbkX2CAyOlFm9CMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI4NzUvQzI1REUwRTZCNEU4MTFFQzk4MEM0NDcxQzRGOUFFMDIvMEU5Q0Y3N0VC QTY4MTFFQzgwNThBMjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnI9kDBABn6OAwDQYJKoZIhvcNAQELBQADggEBAJmPxQto rT4kcVv2OOtjYyHhboHNRGgptEN4LrdlliG4vvlDrWIh3g/ln0wG4lBWAanbhJ75 0ggimqzAFZT7mR6NEi6J85LOKUEMq22DyXYaw7MpBtKPSfy76cElhGrqUuRrHK9r EQjUirJMcuv9yR5624s7UBxSiuBNB5KGNjEHxWaPzkEetFIwNuqshfvVZ7VQruTm MZPAqCqOYwnhLh76DiCdk2GGhUA+CdFDiCe0jVoQSFdU0qVj77U9+HdMFPB1f+SG f8zHMjFuED90g1htW4mqSwRzx/qCVMfyidiCQQi+M2kVFC4pELsZLux4fsYYLpWz 1UFtIRtPz+r+3F8= -----END CERTIFICATE-----Generated at Mon Jun 2 06:49:47 2025 by rpki-client