$ rpki-client -vvf rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/659779341A4511EAA4C46765C4F9AE02.roa File: 659779341A4511EAA4C46765C4F9AE02.roa (raw, json) Hash identifier: COZjXXHmsAr243ikhBQiH/+xCiQuWS4OIqMygfy8ftc= Subject key identifier: A1:48:30:1A:5B:4D:EE:9A:69:C3:F3:61:9B:4E:F1:9E:8F:7F:15:2E Certificate issuer: /CN=A91C81E8/serialNumber=8F56EB8E7277A217F467E89C81F64B75DFB87D1E Certificate serial: 0BD9 Authority key identifier: 8F:56:EB:8E:72:77:A2:17:F4:67:E8:9C:81:F6:4B:75:DF:B8:7D:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1brjnJ3ohf0Z-icgfZLdd-4fR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/659779341A4511EAA4C46765C4F9AE02.roa Signing time: Fri 30 May 2025 19:13:33 +0000 ROA not before: Fri 30 May 2025 19:13:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137575 IP address blocks: 103.113.244.0/24 maxlen: 24 103.113.245.0/24 maxlen: 24 103.115.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/j1brjnJ3ohf0Z-icgfZLdd-4fR4.crl rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/j1brjnJ3ohf0Z-icgfZLdd-4fR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1brjnJ3ohf0Z-icgfZLdd-4fR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C81E8, serialNumber=8F56EB8E7277A217F467E89C81F64B75DFB87D1E Validity Not Before: May 30 19:13:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a035d-8021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bf:22:e8:ac:18:16:9c:f3:06:be:cd:b7:8c: 98:9b:b6:f3:fe:36:23:60:e9:29:5f:95:5d:99:2c: f5:90:aa:21:de:da:da:82:40:b7:ab:7c:05:9f:33: 11:24:d1:dc:89:c9:ed:64:63:f8:f9:90:bf:6a:12: 40:06:e3:1b:e2:02:56:6d:13:19:8f:80:f6:66:4c: c0:a3:ea:ad:e9:ef:59:ce:77:dd:48:69:60:50:44: cd:6f:2b:62:1c:88:47:36:1c:eb:63:bb:ab:29:95: a7:23:66:1c:d7:eb:f5:6d:af:0f:3b:e6:8a:49:31: 2e:a9:b6:70:ef:74:8d:69:45:54:2f:10:fd:58:e9: 9e:ef:45:8e:57:33:8b:72:07:33:f7:5c:ac:80:4f: c4:08:fa:2e:45:2d:61:b7:aa:9d:ea:b5:c6:f2:1c: cc:3c:48:0f:0d:68:61:ca:5b:87:c2:6c:1e:02:eb: e9:8a:3b:3d:d4:97:2c:d1:54:de:31:66:98:39:31: e0:ee:5a:31:2e:9c:33:69:92:04:10:7d:7e:4f:a6: 35:38:79:e7:3a:01:e8:3c:6d:43:e4:3b:08:a8:59: f3:7c:12:54:89:cb:02:4b:54:93:19:f3:89:8d:c7: 81:b9:71:ed:14:55:4f:4f:ae:eb:60:c9:86:5a:81: 47:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:48:30:1A:5B:4D:EE:9A:69:C3:F3:61:9B:4E:F1:9E:8F:7F:15:2E X509v3 Authority Key Identifier: keyid:8F:56:EB:8E:72:77:A2:17:F4:67:E8:9C:81:F6:4B:75:DF:B8:7D:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/j1brjnJ3ohf0Z-icgfZLdd-4fR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1brjnJ3ohf0Z-icgfZLdd-4fR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C81E8/951252081A4311EAA1A5F161C4F9AE02/659779341A4511EAA4C46765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.244.0/23 103.115.22.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:25:9d:88:b1:72:55:00:9a:77:a6:00:ca:ad:d6:59:14:7b: d4:ab:c1:e4:00:9a:63:67:cf:ef:4c:4b:db:28:b1:1a:0c:0f: 5a:a6:fe:b7:21:35:22:52:e9:b8:c9:ff:a8:72:f0:a1:64:a5: bf:1f:01:31:64:67:44:43:fa:be:ac:d1:23:7c:e3:61:4f:54: fa:da:64:c6:b2:1d:04:56:f8:b6:c5:4d:44:5e:00:61:ce:b0: fe:85:d8:31:b0:61:76:ac:79:30:33:31:86:44:d8:c7:5a:42: 44:89:e6:fc:3f:fb:11:b8:d2:00:64:8c:11:7a:5b:75:39:59: e0:e6:8d:5f:25:a6:2c:7f:8f:42:dd:9c:72:f9:c0:91:c8:f0: 91:eb:7d:b3:fe:ef:b2:ee:fb:5e:bc:8e:15:73:e6:8e:02:0c: 27:53:92:d8:60:6c:b4:c7:33:a4:9f:2f:1b:3a:a9:b4:c7:e5: 2b:31:9a:88:fe:5a:b6:73:a1:22:ef:2b:fa:88:d8:ad:41:11: 52:56:76:c3:60:29:c2:91:fd:16:3c:f0:e3:56:29:33:37:a3: d1:8c:c7:79:fa:21:02:c1:cc:91:fa:46:93:ce:52:9d:a5:c2: 94:b4:07:e0:00:2d:9a:31:c9:8d:74:5c:84:81:c7:2b:0d:79: d2:cb:c8:0b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgxRTgxMTAvBgNVBAUTKDhGNTZFQjhFNzI3N0EyMTdGNDY3RTg5QzgxRjY0Qjc1 REZCODdEMUUwHhcNMjUwNTMwMTkxMzMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMDM1ZC04MDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAor8i6KwYFpzzBr7Nt4yYm7bz/jYjYOkpX5VdmSz1kKoh3tragkC3q3wFnzMR JNHcicntZGP4+ZC/ahJABuMb4gJWbRMZj4D2ZkzAo+qt6e9ZznfdSGlgUETNbyti HIhHNhzrY7urKZWnI2Yc1+v1ba8PO+aKSTEuqbZw73SNaUVULxD9WOme70WOVzOL cgcz91ysgE/ECPouRS1ht6qd6rXG8hzMPEgPDWhhyluHwmweAuvpijs91Jcs0VTe MWaYOTHg7loxLpwzaZIEEH1+T6Y1OHnnOgHoPG1D5DsIqFnzfBJUicsCS1STGfOJ jceBuXHtFFVPT67rYMmGWoFHHQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKFIMBpb Te6aacPzYZtO8Z6PfxUuMB8GA1UdIwQYMBaAFI9W645yd6IX9GfonIH2S3XfuH0e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODFFOC85NTEyNTIwODFB NDMxMUVBQTFBNUYxNjFDNEY5QUUwMi9qMWJyam5KM29oZjBaLWljZ2ZaTGRkLTRm UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2oxYnJqbkozb2hmMFotaWNnZlpMZGQtNGZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgxRTgvOTUxMjUyMDgxQTQzMTFFQUExQTVGMTYxQzRGOUFFMDIvNjU5Nzc5MzQx QTQ1MTFFQUE0QzQ2NzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFncfQDBABncxYwDQYJKoZIhvcNAQELBQADggEBAHolnYix clUAmnemAMqt1lkUe9SrweQAmmNnz+9MS9sosRoMD1qm/rchNSJS6bjJ/6hy8KFk pb8fATFkZ0RD+r6s0SN842FPVPraZMayHQRW+LbFTUReAGHOsP6F2DGwYXaseTAz MYZE2MdaQkSJ5vw/+xG40gBkjBF6W3U5WeDmjV8lpix/j0LdnHL5wJHI8JHrfbP+ 77Lu+168jhVz5o4CDCdTkthgbLTHM6SfLxs6qbTH5Ssxmoj+WrZzoSLvK/qI2K1B EVJWdsNgKcKR/RY88ONWKTM3o9GMx3n6IQLBzJH6RpPOUp2lwpS0B+AALZoxyY10 XISBxysNedLLyAs= -----END CERTIFICATE-----Generated at Sun Jun 15 04:09:40 2025 by rpki-client