$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa File: 935947E8234B11F0B6DF721FC4F9AE02.roa (raw, json) Hash identifier: H5Ajktl0QcAUjjjN3KtJEIqSFF+VP9DSE9anvuAM0K8= Subject key identifier: 8B:A3:3F:F1:62:DF:FB:7F:B0:11:E4:1E:F4:E9:F8:E9:27:70:97:BA Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Certificate serial: 0166 Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa Signing time: Sun 27 Apr 2025 09:39:55 +0000 ROA not before: Sun 27 Apr 2025 09:39:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151336 IP address blocks: 103.204.2.0/23 maxlen: 24 2400:ff60::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:26:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD5B5, serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Validity Not Before: Apr 27 09:39:55 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=680dfb6b-1f60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:26:97:05:22:6d:cf:20:4a:d9:cc:13:b8:b7: c9:f9:04:3a:76:29:d4:73:d5:ef:e9:72:8d:d1:88: e4:80:a3:4a:eb:a9:91:5b:58:6a:73:87:ae:4d:2c: a5:75:76:1f:3e:ac:79:6d:c0:51:7f:6c:3a:66:69: 97:7a:3a:9a:9d:8f:54:65:e1:d1:20:60:d3:52:17: cf:42:0a:7c:b8:7d:36:01:c3:c6:3e:14:8f:d6:bc: 4a:eb:30:0e:b0:8d:05:40:cf:c3:3d:ef:2b:46:37: 78:96:cc:75:da:4d:0a:a8:b7:d3:bc:15:93:e9:e9: 28:e4:10:5c:eb:89:e6:0c:36:79:41:f8:86:33:a5: d7:a6:37:06:f6:be:83:c1:f4:b5:0e:f8:b4:8e:9f: b0:e1:ec:f9:8d:86:7e:f4:84:11:b4:1e:df:0f:a4: 39:2d:cb:40:56:64:24:e1:01:fb:f5:f8:0b:a0:63: 4e:0a:f5:09:d1:6b:55:4b:10:94:d5:ed:dd:5e:76: 9c:6a:d2:87:51:1e:bd:d7:17:2d:c4:4f:f2:72:e6: 03:4f:7e:e7:37:b2:3d:17:41:af:b2:76:35:95:f5: bd:7a:39:4b:26:84:67:37:b4:02:8d:2f:53:b1:ad: 62:29:d1:a1:a4:46:63:82:5e:99:7d:4a:8b:62:1a: 99:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A3:3F:F1:62:DF:FB:7F:B0:11:E4:1E:F4:E9:F8:E9:27:70:97:BA X509v3 Authority Key Identifier: keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.2.0/23 IPv6: 2400:ff60::/32 Signature Algorithm: sha256WithRSAEncryption 68:d0:3c:4e:a7:8e:48:8e:7d:83:f9:52:8d:23:a4:30:80:1d: ee:fb:23:31:fd:5d:3b:47:09:58:a2:97:0c:2d:02:fb:e7:da: d7:7f:a3:c4:42:89:cf:71:81:fb:a0:c2:52:e4:2d:cc:d2:71: 2c:a1:f3:93:55:55:5c:e2:49:1c:ab:b0:b4:7b:75:04:2e:bd: 85:b0:ea:b3:ae:90:6a:26:1a:9b:1b:5a:12:f3:fd:83:e1:58: d3:d3:8d:39:d9:90:93:03:cf:75:db:30:8c:11:2f:5b:3e:4e: e6:db:0d:1f:2b:01:ad:06:62:5b:37:73:7c:bf:40:58:3b:5d: 4d:18:1a:99:96:6c:f9:ad:8f:4e:c1:cd:c0:fa:2d:dc:33:6b: fc:8c:c1:49:2b:24:d0:79:f9:19:de:d4:81:bb:3e:1e:2d:7b: 23:42:95:9c:77:05:28:15:62:bf:2b:d5:6c:5e:e0:54:50:5a: db:7b:c0:82:31:49:4f:eb:82:6a:04:d9:17:bc:1c:de:77:aa: 01:8e:62:fb:7d:20:8b:34:d6:af:c2:01:7b:5d:bb:2d:c0:48: 3b:b5:06:e8:ff:0b:be:84:7e:0c:3f:ab:79:30:a8:bd:1a:35: ed:1c:5d:b7:c6:ee:2e:4b:c3:06:ad:8e:79:91:ea:b9:3f:a8: 3d:5b:47:7c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4 NkRCMDQxNzkwHhcNMjUwNDI3MDkzOTU1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkZmI2Yi0xZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5SaXBSJtzyBK2cwTuLfJ+QQ6dinUc9Xv6XKN0YjkgKNK66mRW1hqc4euTSyl dXYfPqx5bcBRf2w6ZmmXejqanY9UZeHRIGDTUhfPQgp8uH02AcPGPhSP1rxK6zAO sI0FQM/DPe8rRjd4lsx12k0KqLfTvBWT6eko5BBc64nmDDZ5QfiGM6XXpjcG9r6D wfS1Dvi0jp+w4ez5jYZ+9IQRtB7fD6Q5LctAVmQk4QH79fgLoGNOCvUJ0WtVSxCU 1e3dXnacatKHUR691xctxE/ycuYDT37nN7I9F0GvsnY1lfW9ejlLJoRnN7QCjS9T sa1iKdGhpEZjgl6ZfUqLYhqZPwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIujP/Fi 3/t/sBHkHvTp+OkncJe6MB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2 NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Q1QjUvQTQ2Qjk5MTIxNjREMTFFRTk2ODU4NTM0QzRGOUFFMDIvOTM1OTQ3RTgy MzRCMTFGMEI2REY3MjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnzAIwDQQCAAIwBwMFACQA/2AwDQYJKoZIhvcNAQELBQAD ggEBAGjQPE6njkiOfYP5Uo0jpDCAHe77IzH9XTtHCViilwwtAvvn2td/o8RCic9x gfugwlLkLczScSyh85NVVVziSRyrsLR7dQQuvYWw6rOukGomGpsbWhLz/YPhWNPT jTnZkJMDz3XbMIwRL1s+TubbDR8rAa0GYls3c3y/QFg7XU0YGpmWbPmtj07BzcD6 Ldwza/yMwUkrJNB5+Rne1IG7Ph4teyNClZx3BSgVYr8r1Wxe4FRQWtt7wIIxSU/r gmoE2Re8HN53qgGOYvt9IIs01q/CAXtduy3ASDu1Buj/C76Efgw/q3kwqL0aNe0c XbfG7i5LwwatjnmR6rk/qD1bR3w= -----END CERTIFICATE-----Generated at Mon Jun 9 00:35:27 2025 by rpki-client