$ rpki-client -vvf rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa File: 8446564EF96611E8BE431B17C4F9AE02.roa (raw, json) Hash identifier: S4PonvpkLuqmrbtgnv8T9QMFORQi4oK8GF7Qf1Ow3ok= Subject key identifier: A1:6F:55:28:A0:2B:86:40:DE:63:D4:DA:4C:57:B0:62:73:61:39:03 Certificate issuer: /CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Certificate serial: 119A Authority key identifier: C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa Signing time: Thu 22 May 2025 17:29:31 +0000 ROA not before: Thu 22 May 2025 17:29:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38303 IP address blocks: 103.114.174.0/23 maxlen: 23 103.114.174.0/24 maxlen: 24 103.114.175.0/24 maxlen: 24 103.219.114.0/23 maxlen: 23 103.219.114.0/24 maxlen: 24 103.219.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4506 (0x119a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C85E9, serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Validity Not Before: May 22 17:29:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=682f5efb-158a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a2:55:13:6a:6d:fd:0c:a5:87:fe:75:38:19: 87:fd:65:90:9b:32:c5:b1:87:7f:86:91:59:cb:da: ac:89:6a:e2:c5:49:29:f1:35:e6:8a:e7:6c:51:7e: 7d:b1:51:63:c5:c6:b7:44:42:2d:96:e1:33:e5:99: e8:fb:d8:65:04:b4:e6:84:9f:a4:17:39:50:20:c3: 8b:81:52:08:bc:48:60:65:7d:95:75:4c:7f:a2:26: 0e:cc:59:d0:b4:4d:49:a9:af:52:8d:f9:3e:59:b1: f2:b3:69:44:a5:6e:57:c6:5a:2a:13:a7:23:77:b4: 15:08:74:28:67:10:2e:aa:70:77:07:5a:f3:0c:26: 30:1b:ee:60:7f:ed:3f:25:76:58:bf:48:02:1f:da: 58:53:85:b8:1b:60:df:81:b6:0b:4f:2f:ce:f1:e4: ba:d8:e2:15:10:5c:8d:ff:fd:63:87:25:88:43:25: 67:54:5e:1a:b4:14:e8:bd:6e:6c:75:c0:4d:d0:7b: 29:27:75:55:a5:bd:f7:19:bc:45:a3:6e:1f:dd:15: c3:d9:78:fc:7c:55:28:e3:fa:8a:47:37:36:dc:d4: 07:a9:2f:02:1a:ee:ab:fb:b8:31:0b:b4:1c:74:97: bd:dc:06:36:30:4b:87:e4:e0:22:87:9b:1a:28:b0: fd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6F:55:28:A0:2B:86:40:DE:63:D4:DA:4C:57:B0:62:73:61:39:03 X509v3 Authority Key Identifier: keyid:C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.174.0/23 103.219.114.0/23 Signature Algorithm: sha256WithRSAEncryption 39:77:11:54:3b:ec:b2:8c:8f:9c:cb:6f:a3:25:65:d6:c2:0a: 4d:63:1c:11:23:d1:ba:54:0d:9a:7f:93:5f:f9:be:c8:3e:aa: dc:90:73:6a:a0:69:75:f6:ca:fd:5f:a0:74:8d:a8:e4:b8:d0: 80:ce:6d:3f:f0:69:76:c5:08:9a:54:82:6c:1a:24:9c:62:ab: 1c:e5:72:7b:07:d0:35:8d:59:84:53:eb:f2:8d:16:8e:1d:97: 0c:4f:bc:3b:c4:33:76:f8:6e:7e:24:7f:cb:09:d2:7d:60:b7: 51:96:77:08:6f:df:54:56:f3:d7:bd:7a:d8:4e:08:ad:fa:54: 11:2e:47:81:49:5d:2d:c7:68:5d:15:77:06:c0:22:1c:c5:0e: 78:44:d9:4e:55:c2:cf:3a:d8:5a:21:69:bc:a6:b6:d0:62:a8: 06:10:66:43:da:c4:51:3a:97:85:72:54:49:1c:aa:da:8f:63: f7:bf:93:2e:ba:47:20:9a:e2:d2:62:7c:ff:70:13:9c:b2:65: ba:68:cf:c3:0d:54:43:62:e5:06:9d:a4:76:44:96:79:3d:b2: b6:ab:cf:0a:c7:72:d1:af:82:94:ef:44:df:5f:67:bc:71:e8: df:df:3e:e4:a5:46:cf:53:31:0d:08:40:0e:8e:ef:b0:72:bb: 75:56:85:9c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1RTkxMTAvBgNVBAUTKEM3Q0Y5NDNFM0E3NjRGMzdDMDAzQ0Q0MzVBMkI4NTQz QkNFNDc2MDkwHhcNMjUwNTIyMTcyOTMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmNWVmYi0xNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aJVE2pt/Qylh/51OBmH/WWQmzLFsYd/hpFZy9qsiWrixUkp8TXmiudsUX59 sVFjxca3REItluEz5Zno+9hlBLTmhJ+kFzlQIMOLgVIIvEhgZX2VdUx/oiYOzFnQ tE1Jqa9Sjfk+WbHys2lEpW5XxloqE6cjd7QVCHQoZxAuqnB3B1rzDCYwG+5gf+0/ JXZYv0gCH9pYU4W4G2DfgbYLTy/O8eS62OIVEFyN//1jhyWIQyVnVF4atBTovW5s dcBN0HspJ3VVpb33GbxFo24f3RXD2Xj8fFUo4/qKRzc23NQHqS8CGu6r+7gxC7Qc dJe93AY2MEuH5OAih5saKLD9PwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKFvVSig K4ZA3mPU2kxXsGJzYTkDMB8GA1UdIwQYMBaAFMfPlD46dk83wAPNQ1orhUO85HYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODVFOS8wODI1MzhFQ0Y5 NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6ZkFBODFEV2l1RlE3emtk Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4LVVQanAyVHpmQUE4MURXaXVGUTd6a2Rnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg1RTkvMDgyNTM4RUNGOTY1MTFFOEJDMDUyNDExQzRGOUFFMDIvODQ0NjU2NEVG OTY2MTFFOEJFNDMxQjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFncq4DBAFn23IwDQYJKoZIhvcNAQELBQADggEBADl3EVQ7 7LKMj5zLb6MlZdbCCk1jHBEj0bpUDZp/k1/5vsg+qtyQc2qgaXX2yv1foHSNqOS4 0IDObT/waXbFCJpUgmwaJJxiqxzlcnsH0DWNWYRT6/KNFo4dlwxPvDvEM3b4bn4k f8sJ0n1gt1GWdwhv31RW89e9ethOCK36VBEuR4FJXS3HaF0VdwbAIhzFDnhE2U5V ws862FohabymttBiqAYQZkPaxFE6l4VyVEkcqtqPY/e/ky66RyCa4tJifP9wE5yy Zbpoz8MNVENi5QadpHZElnk9srarzwrHctGvgpTvRN9fZ7xx6N/fPuSlRs9TMQ0I QA6O77Byu3VWhZw= -----END CERTIFICATE-----Generated at Mon Jun 2 07:06:50 2025 by rpki-client