$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa File: D71B60EC2B5911EE81C7542FC4F9AE02.roa (raw, json) Hash identifier: wndMS9TntxEIvOO1y5ThBewHzkdYkTNV8U/orVegQT4= Subject key identifier: CF:07:3A:C4:29:BC:BC:86:6F:E4:A7:58:E4:C1:B7:9B:94:B6:66:4C Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 0180 Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa Signing time: Sat 31 May 2025 03:52:19 +0000 ROA not before: Sat 31 May 2025 03:52:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140974 IP address blocks: 103.225.118.0/23 maxlen: 23 103.225.118.0/24 maxlen: 24 103.225.119.0/24 maxlen: 24 2401:be0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 03:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: May 31 03:52:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=683a7cf3-85d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:72:24:3a:a9:ac:1c:5e:11:10:7a:29:e0:8d: 5f:36:a2:b3:d3:0d:79:50:b7:cc:ab:f8:7c:53:92: 1e:87:ac:3b:ca:6a:c2:13:a7:18:b6:bb:19:44:8a: 93:a2:32:26:80:75:e6:32:3d:48:73:da:62:50:a6: 5f:32:11:7d:fb:e4:cd:0b:d3:db:71:2f:be:66:70: 6e:fa:48:37:f5:fb:7f:ea:9d:f7:2b:a1:59:78:0d: 02:6d:99:99:cf:06:0a:5d:f6:ff:d9:7a:c7:3e:93: 85:81:74:a1:73:09:7e:ba:1e:a0:89:8e:38:06:34: 1b:77:34:55:2a:d8:15:2e:68:de:59:d5:31:97:4f: c1:6f:58:22:d9:6f:f1:83:e1:b8:d2:2c:7c:1a:e2: e2:13:35:16:2d:ab:05:e8:4b:2e:c5:14:ab:95:f7: 93:2d:f3:a6:eb:42:c5:3a:82:68:6c:56:6a:6c:db: 07:72:9e:59:24:37:15:e7:99:2f:88:1f:fa:92:94: 2d:27:cc:09:4b:4a:6f:8b:91:82:ed:3e:75:80:1f: 23:b6:12:d2:4a:a9:a0:3e:82:56:13:bb:82:d0:cf: 84:2c:93:48:11:f3:07:99:1a:1b:26:0c:19:49:71: e3:2f:5c:05:67:34:ed:e1:d2:dd:fe:6d:e8:a0:e5: 12:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:07:3A:C4:29:BC:BC:86:6F:E4:A7:58:E4:C1:B7:9B:94:B6:66:4C X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.118.0/23 IPv6: 2401:be0::/32 Signature Algorithm: sha256WithRSAEncryption b9:23:f6:27:99:dd:4e:4e:15:14:94:55:ab:dd:60:dc:50:a8: fa:76:5f:99:2b:9e:2f:13:37:de:f0:53:03:ab:cc:31:6d:95: 56:44:51:d8:7f:58:a2:9c:dd:6e:42:13:ec:45:85:f5:c9:40: 0a:2d:02:59:2b:50:9b:5d:f7:13:24:45:eb:15:cb:1e:6f:76: f9:bc:b1:47:e2:e7:fd:69:54:77:17:4b:e1:5c:d2:6f:d3:6b: de:1f:95:07:f1:62:32:dc:f3:0c:86:fd:e3:39:ac:42:49:64: 68:04:61:89:3a:18:32:ad:5d:11:f0:9e:f6:29:25:5c:a2:ad: bf:15:c6:70:83:48:8c:d2:79:6e:f7:ef:82:94:58:cd:63:b6: 80:3a:73:42:d8:c6:15:7f:f8:70:6d:40:c8:09:d3:0e:2a:e1: 8e:71:2a:34:f7:0a:c1:85:00:9f:af:b2:f8:24:44:f6:8b:80: 9f:df:0f:04:6c:e6:74:30:6b:a7:dc:49:b5:0b:a3:e0:d4:38: 5b:e0:0d:25:31:f7:0e:05:d6:27:b7:e5:f5:4b:b8:95:2d:f2: f7:a3:fd:03:dc:48:40:bc:3f:a2:c1:69:6d:8c:ea:3c:f8:57: 78:9f:9d:a3:12:ca:23:e9:8d:fc:28:93:50:96:09:48:81:de: 42:9f:c2:04 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUwNTMxMDM1MjE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhN2NmMy04NWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHIkOqmsHF4REHop4I1fNqKz0w15ULfMq/h8U5Ieh6w7ymrCE6cYtrsZRIqT ojImgHXmMj1Ic9piUKZfMhF9++TNC9PbcS++ZnBu+kg39ft/6p33K6FZeA0CbZmZ zwYKXfb/2XrHPpOFgXShcwl+uh6giY44BjQbdzRVKtgVLmjeWdUxl0/Bb1gi2W/x g+G40ix8GuLiEzUWLasF6EsuxRSrlfeTLfOm60LFOoJobFZqbNsHcp5ZJDcV55kv iB/6kpQtJ8wJS0pvi5GC7T51gB8jthLSSqmgPoJWE7uC0M+ELJNIEfMHmRobJgwZ SXHjL1wFZzTt4dLd/m3ooOUSbwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM8HOsQp vLyGb+SnWOTBt5uUtmZMMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDIwMEYvMjU3ODc0MDIxNjRGMTFFRTlFNzM0MDRFQzRGOUFFMDIvRDcxQjYwRUMy QjU5MTFFRTgxQzc1NDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn4XYwDQQCAAIwBwMFACQBC+AwDQYJKoZIhvcNAQELBQAD ggEBALkj9ieZ3U5OFRSUVavdYNxQqPp2X5krni8TN97wUwOrzDFtlVZEUdh/WKKc 3W5CE+xFhfXJQAotAlkrUJtd9xMkResVyx5vdvm8sUfi5/1pVHcXS+Fc0m/Ta94f lQfxYjLc8wyG/eM5rEJJZGgEYYk6GDKtXRHwnvYpJVyirb8VxnCDSIzSeW7374KU WM1jtoA6c0LYxhV/+HBtQMgJ0w4q4Y5xKjT3CsGFAJ+vsvgkRPaLgJ/fDwRs5nQw a6fcSbULo+DUOFvgDSUx9w4F1ie35fVLuJUt8vej/QPcSEC8P6LBaW2M6jz4V3if naMSyiPpjfwok1CWCUiB3kKfwgQ= -----END CERTIFICATE-----Generated at Fri Jun 6 17:14:56 2025 by rpki-client