$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa File: A8A44B84F13511ECB096F867C4F9AE02.roa (raw, json) Hash identifier: qa15tYjyvK+v+9+dFGqhDZRxQn9RFba+Z/+v8OfQMJw= Subject key identifier: 61:F0:64:1F:3D:EA:2A:F2:F8:30:B2:FD:B5:DA:E9:B7:49:B8:C9:B8 Certificate issuer: /CN=A91CDF83/serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Certificate serial: 02CA Authority key identifier: 2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa Signing time: Sat 31 May 2025 01:47:51 +0000 ROA not before: Sat 31 May 2025 01:47:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133012 IP address blocks: 103.187.10.0/24 maxlen: 24 103.187.11.0/24 maxlen: 24 2400:7860:100::/40 maxlen: 40 2400:7860:200::/40 maxlen: 40 2400:7860:200::/48 maxlen: 48 2400:7860:200:1::/64 maxlen: 64 2400:7860:300::/40 maxlen: 40 2400:7860:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDF83, serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Validity Not Before: May 31 01:47:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a5fc6-783f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:61:c6:b6:fd:8a:5b:06:fe:c6:db:71:97:68: 68:cd:4f:4f:81:fc:81:4b:10:91:4c:c3:3f:70:cd: e5:ea:9e:55:bf:f8:29:24:c2:c0:c5:f0:7a:80:e2: b9:a6:e9:54:5e:02:a5:fd:56:c0:68:e2:c7:cb:84: b0:5a:ca:3b:9f:31:76:8a:1d:bc:54:a7:53:24:a6: 87:93:1c:8b:14:83:42:1c:e9:00:63:85:4f:a0:4c: 57:b8:70:06:62:f1:38:04:fc:a4:6f:bd:d9:3a:08: 38:b2:9d:69:cc:53:e4:02:2b:af:fa:60:c0:35:4e: 81:5e:d6:52:9f:5b:74:17:91:ab:db:d8:ef:44:ec: 86:e7:21:c7:fd:48:85:25:b1:ef:7b:db:4e:ac:fc: ef:af:0c:06:a3:13:4a:32:26:34:6f:af:d3:7c:78: 50:6f:af:fa:a8:ce:97:aa:11:3a:de:3e:32:7f:a9: 99:dc:13:4e:f6:7e:dd:ea:be:82:d6:5c:58:49:ca: f2:ea:91:35:87:09:0b:3c:ff:ce:df:5e:ed:5a:fc: 72:54:2e:aa:b9:27:7d:07:6c:83:4c:e7:65:0a:45: 6d:06:d3:09:b8:9b:f2:75:d9:78:9d:64:3a:4f:27: 09:66:55:53:05:2b:63:9a:18:c4:34:d2:a8:b8:ca: 31:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F0:64:1F:3D:EA:2A:F2:F8:30:B2:FD:B5:DA:E9:B7:49:B8:C9:B8 X509v3 Authority Key Identifier: keyid:2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.10.0/23 IPv6: 2400:7860:100::-2400:7860:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 80:d6:48:2a:05:19:a9:0c:25:c2:96:d1:2a:25:05:9c:5a:02: bb:99:f7:e8:25:b8:b3:83:8a:e3:4f:7a:2c:af:ac:e2:f5:3c: ac:64:b8:7f:99:7c:8a:60:04:57:04:ab:33:75:3a:13:41:19: f8:4a:a6:73:d4:17:48:fd:6b:e8:99:92:2b:32:79:1a:a1:b6: c5:b1:03:de:64:e3:41:51:45:4a:93:2c:cf:ac:00:05:46:63: c3:31:a7:33:e8:0a:5c:7a:3b:12:59:eb:3b:ae:d1:a9:3a:5b: da:9c:e3:0d:97:f6:15:9d:8f:bc:af:7f:8c:fe:d1:86:bf:49: 10:e5:c9:26:2c:2d:ca:95:83:04:d0:32:25:52:1d:10:d4:ed: 3b:8e:c0:12:2e:e8:14:4f:a5:76:bc:80:c7:bd:ce:46:ce:70: 31:32:10:97:bb:18:61:73:c1:0a:82:da:3a:4b:9d:ae:25:56: 8b:28:6e:50:4e:77:93:8b:8a:c1:38:75:88:ee:1d:8d:0a:bc: 6f:6c:2d:11:f6:e8:f7:64:0a:4f:2b:48:76:83:00:f2:92:6c: e9:ca:1b:65:a4:a2:33:9c:d7:89:48:11:ac:38:97:8f:93:c0: a1:da:ee:a8:c6:6a:30:09:06:bc:c9:74:92:0d:b5:38:7e:73: bc:eb:b3:3f -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGODMxMTAvBgNVBAUTKDJFRjg3NkE2NjRFNUQ4QjZDREUwMUNGMDg0MTBEQkFE OTZCQzQ5OTgwHhcNMjUwNTMxMDE0NzUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNWZjNi03ODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WHGtv2KWwb+xttxl2hozU9PgfyBSxCRTMM/cM3l6p5Vv/gpJMLAxfB6gOK5 pulUXgKl/VbAaOLHy4SwWso7nzF2ih28VKdTJKaHkxyLFINCHOkAY4VPoExXuHAG YvE4BPykb73ZOgg4sp1pzFPkAiuv+mDANU6BXtZSn1t0F5Gr29jvROyG5yHH/UiF JbHve9tOrPzvrwwGoxNKMiY0b6/TfHhQb6/6qM6XqhE63j4yf6mZ3BNO9n7d6r6C 1lxYScry6pE1hwkLPP/O317tWvxyVC6quSd9B2yDTOdlCkVtBtMJuJvyddl4nWQ6 TycJZlVTBStjmhjENNKouMoxVQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFGHwZB89 6iry+DCy/bXa6bdJuMm4MB8GA1UdIwQYMBaAFC74dqZk5di2zeAc8IQQ262WvEmY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREY4My9FMkFFM0IwQUYx MzAxMUVDODZERTdENjNDNEY5QUUwMi9MdmgycG1UbDJMYk40Qnp3aEJEYnJaYThT WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x2aDJwbVRsMkxiTjRCendoQkRiclphOFNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RGODMvRTJBRTNCMEFGMTMwMTFFQzg2REU3RDYzQzRGOUFFMDIvQThBNDRCODRG MTM1MTFFQ0IwOTZGODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnuwowGAQCAAIwEjAQAwYAJAB4YAEDBgAkAHhgBDANBgkq hkiG9w0BAQsFAAOCAQEAgNZIKgUZqQwlwpbRKiUFnFoCu5n36CW4s4OK4096LK+s 4vU8rGS4f5l8imAEVwSrM3U6E0EZ+Eqmc9QXSP1r6JmSKzJ5GqG2xbED3mTjQVFF SpMsz6wABUZjwzGnM+gKXHo7ElnrO67RqTpb2pzjDZf2FZ2PvK9/jP7Rhr9JEOXJ JiwtypWDBNAyJVIdENTtO47AEi7oFE+ldryAx73ORs5wMTIQl7sYYXPBCoLaOkud riVWiyhuUE53k4uKwTh1iO4djQq8b2wtEfbo92QKTytIdoMA8pJs6cobZaSiM5zX iUgRrDiXj5PAodruqMZqMAkGvMl0kg21OH5zvOuzPw== -----END CERTIFICATE-----Generated at Mon Jun 2 06:29:55 2025 by rpki-client