$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/F407F0D49B8C11EC98C88432C4F9AE02.roa File: F407F0D49B8C11EC98C88432C4F9AE02.roa (raw, json) Hash identifier: dKiBbXwlV8u8FDrOxz1dafmZEMA4uTdGMztHkVpNkQ0= Subject key identifier: 6A:0F:A3:78:22:1F:46:56:84:15:CF:A3:80:69:5A:0F:46:CE:CF:68 Certificate issuer: /CN=A91C4502/serialNumber=CB4C95F839E21D1DE0F458553D9A4CE28E414D88 Certificate serial: 08EC Authority key identifier: CB:4C:95:F8:39:E2:1D:1D:E0:F4:58:55:3D:9A:4C:E2:8E:41:4D:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/F407F0D49B8C11EC98C88432C4F9AE02.roa Signing time: Wed 14 May 2025 20:57:31 +0000 ROA not before: Wed 14 May 2025 20:57:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 41378 IP address blocks: 103.149.248.0/23 maxlen: 24 2405:f3c0::/40 maxlen: 48 2405:f3c0:100::/40 maxlen: 48 2405:f3c0:200::/40 maxlen: 48 2405:f3c0:300::/40 maxlen: 48 2405:f3c0:400::/40 maxlen: 48 2405:f3c0:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.crl rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4502, serialNumber=CB4C95F839E21D1DE0F458553D9A4CE28E414D88 Validity Not Before: May 14 20:57:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682503bb-1112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5b:3f:04:46:8a:e7:43:f5:52:0f:de:d1:d6: 01:2d:89:34:78:2d:4e:90:e9:92:5b:af:9c:5b:94: dd:71:b1:3c:b7:37:4c:aa:6a:f7:b0:44:c3:f6:2e: e4:02:a5:d5:ca:91:f1:3a:72:e7:aa:94:f1:ff:24: 86:46:51:6b:37:61:94:d2:91:dc:48:e7:95:5b:29: 11:19:7a:39:f5:d5:3b:1a:27:90:c7:eb:f3:59:22: c3:09:8e:da:52:4a:c3:ba:0d:e7:91:ac:8f:e5:80: db:e0:fe:6b:df:9c:63:9b:d7:ed:d2:74:cd:5e:a0: 03:3f:8a:3c:bd:12:cb:0f:8f:5f:8c:52:a4:7a:bb: 1d:2e:17:22:a6:d4:ee:1b:88:00:6f:a3:92:1c:1b: b9:73:0a:f6:cd:64:3a:d1:66:6e:a6:40:a8:00:c6: 66:a3:ad:ff:e8:68:29:e7:9e:da:c1:30:20:de:0a: c9:4c:dc:6d:02:57:81:9b:b5:67:90:12:6c:93:f1: f2:18:2c:4e:89:64:0f:a6:2f:d6:b5:7b:a4:f0:f2: ff:b6:1e:c8:e9:95:72:0e:ec:0d:fd:05:17:0c:ef: e6:84:fd:a7:81:2c:d3:a5:ef:19:24:cf:e7:e4:df: c7:12:81:f4:e6:3f:ca:44:c9:5e:32:4b:21:d4:8f: 17:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:0F:A3:78:22:1F:46:56:84:15:CF:A3:80:69:5A:0F:46:CE:CF:68 X509v3 Authority Key Identifier: keyid:CB:4C:95:F8:39:E2:1D:1D:E0:F4:58:55:3D:9A:4C:E2:8E:41:4D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/F407F0D49B8C11EC98C88432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.248.0/23 IPv6: 2405:f3c0::-2405:f3c0:5ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 29:81:45:92:13:6e:0d:c9:3e:49:25:26:94:f7:9f:ae:31:2c: 70:cd:c5:ce:b4:f7:d1:39:6b:d5:5f:5f:74:3c:d6:75:1e:05: 65:33:25:ee:a1:2e:98:90:fc:49:6b:c4:58:ac:e0:d6:e3:eb: 00:35:a4:4d:10:ed:40:3e:a1:a3:e7:e3:d0:46:37:5d:a0:a1: fb:81:ae:c0:42:dc:26:2b:b8:cf:dc:f0:55:6d:c3:62:73:b1: 60:ef:25:b5:26:0f:9c:57:2e:3b:9d:b4:0f:2f:f5:1a:72:f2: 89:c4:33:61:16:a3:35:e4:ce:ac:7f:37:f9:71:81:c7:03:d6: 21:87:32:e1:af:78:79:98:60:b7:28:54:d7:61:35:45:d4:a2: 16:6c:fa:3e:47:4d:30:42:fd:f3:95:65:4c:98:8b:bc:d5:da: a7:63:89:1a:6f:e9:bb:c1:55:dd:4f:89:cb:b2:60:72:13:fc: 90:05:75:aa:f9:71:a8:66:f9:7d:e5:71:7d:a1:37:68:e6:1e: ac:69:e9:dd:c4:56:5b:27:91:d2:a1:17:3f:5f:81:f3:b4:66: c8:7c:c6:d1:fa:4a:12:a5:8b:60:52:1b:bd:59:8f:1a:89:93: 5a:43:64:90:ce:3d:fe:da:3f:74:6c:c7:60:23:db:92:35:81: 40:67:f2:5e -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ1MDIxMTAvBgNVBAUTKENCNEM5NUY4MzlFMjFEMURFMEY0NTg1NTNEOUE0Q0Uy OEU0MTREODgwHhcNMjUwNTE0MjA1NzMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1MDNiYi0xMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Fs/BEaK50P1Ug/e0dYBLYk0eC1OkOmSW6+cW5TdcbE8tzdMqmr3sETD9i7k AqXVypHxOnLnqpTx/ySGRlFrN2GU0pHcSOeVWykRGXo59dU7GieQx+vzWSLDCY7a UkrDug3nkayP5YDb4P5r35xjm9ft0nTNXqADP4o8vRLLD49fjFKkersdLhciptTu G4gAb6OSHBu5cwr2zWQ60WZupkCoAMZmo63/6Ggp557awTAg3grJTNxtAleBm7Vn kBJsk/HyGCxOiWQPpi/WtXuk8PL/th7I6ZVyDuwN/QUXDO/mhP2ngSzTpe8ZJM/n 5N/HEoH05j/KRMleMksh1I8XMwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFGoPo3gi H0ZWhBXPo4BpWg9Gzs9oMB8GA1UdIwQYMBaAFMtMlfg54h0d4PRYVT2aTOKOQU2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDUwMi80MEUyREZDQ0I1 MDIxMUVBQTI5RjI3N0FDNEY5QUUwMi95MHlWLURuaUhSM2c5RmhWUFpwTTRvNUJU WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kweVYtRG5pSFIzZzlGaFZQWnBNNG81QlRZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQ1MDIvNDBFMkRGQ0NCNTAyMTFFQUEyOUYyNzdBQzRGOUFFMDIvRjQwN0YwRDQ5 QjhDMTFFQzk4Qzg4NDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAwEAgABMAYDBAFnlfgwFwQCAAIwETAPAwUGJAXzwAMGASQF88AEMA0GCSqG SIb3DQEBCwUAA4IBAQApgUWSE24NyT5JJSaU95+uMSxwzcXOtPfROWvVX190PNZ1 HgVlMyXuoS6YkPxJa8RYrODW4+sANaRNEO1APqGj5+PQRjddoKH7ga7AQtwmK7jP 3PBVbcNic7Fg7yW1Jg+cVy47nbQPL/UacvKJxDNhFqM15M6sfzf5cYHHA9YhhzLh r3h5mGC3KFTXYTVF1KIWbPo+R00wQv3zlWVMmIu81dqnY4kab+m7wVXdT4nLsmBy E/yQBXWq+XGoZvl95XF9oTdo5h6saendxFZbJ5HSoRc/X4HztGbIfMbR+koSpYtg Uhu9WY8aiZNaQ2SQzj3+2j90bMdgI9uSNYFAZ/Je -----END CERTIFICATE-----Generated at Mon Jun 2 06:32:10 2025 by rpki-client