$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa File: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (raw, json) Hash identifier: T+T+1Z/cawjlF+EJ2TY+wUSApzd2WBwRzpxk9RHEA54= Subject key identifier: 6B:FC:50:1F:D9:EE:F4:57:E8:AA:A9:FC:5E:F0:BD:1D:3B:E0:74:23 Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 05FA Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa Signing time: Sat 31 May 2025 23:13:14 +0000 ROA not before: Sat 31 May 2025 23:13:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134143 IP address blocks: 45.248.196.0/22 maxlen: 24 103.4.55.0/24 maxlen: 24 103.55.92.0/24 maxlen: 24 103.55.93.0/24 maxlen: 24 103.55.94.0/24 maxlen: 24 103.55.95.0/24 maxlen: 24 103.133.52.0/22 maxlen: 24 103.217.164.0/22 maxlen: 24 103.228.104.0/22 maxlen: 24 2405:e180::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578, serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: May 31 23:13:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683b8d0a-5eb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:82:5f:65:55:1b:96:f7:b9:da:10:38:77:28: a1:68:43:b2:ca:57:ba:c9:bf:d5:a1:e1:63:bc:be: bd:7a:11:09:dc:e9:39:63:85:f3:5c:74:19:55:cd: f3:2a:f7:fb:5a:31:ea:9f:4d:bf:3d:f4:2d:99:fa: 26:ff:6c:66:15:8e:e9:32:97:74:87:f2:17:f8:17: 28:22:fd:9d:29:7d:de:93:13:16:b2:7e:22:3f:71: 26:78:ec:8d:54:b8:84:07:5d:7d:68:b9:e9:40:db: d9:38:e3:f4:04:32:7c:ff:59:e0:c9:d0:53:d8:d7: 9f:41:c3:d6:89:6d:77:7f:1e:de:8e:cf:04:3c:6a: a7:5e:98:9a:ad:60:fe:b0:d8:a8:68:68:c5:53:2a: 58:5a:1c:27:d6:cf:dc:4a:74:75:96:ea:d4:0c:fd: 45:65:0d:c7:08:d3:db:20:d1:be:6a:fa:ad:3a:ba: 0c:f0:c8:87:bd:f2:e3:6f:31:b4:11:13:b1:ff:ce: c1:1d:14:fe:76:ce:7a:3b:4a:aa:a1:5f:d6:7a:f5: 7a:3f:c3:78:06:10:c1:1e:46:5c:e4:b3:e6:58:97: 80:49:ed:d5:7b:5c:41:dc:9d:04:37:79:2c:cf:af: 7e:e7:8f:3a:6e:4c:a9:5d:14:aa:fc:b1:15:c4:e5: 06:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FC:50:1F:D9:EE:F4:57:E8:AA:A9:FC:5E:F0:BD:1D:3B:E0:74:23 X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.196.0/22 103.4.55.0/24 103.55.92.0/22 103.133.52.0/22 103.217.164.0/22 103.228.104.0/22 IPv6: 2405:e180::/32 Signature Algorithm: sha256WithRSAEncryption 61:c9:c3:17:eb:58:9f:c1:f4:a2:c4:59:3d:c6:ff:49:9c:37: 04:45:d4:90:3c:83:98:4c:99:47:cf:7c:ea:b7:e7:bf:4e:eb: 27:ac:16:7d:97:ba:cd:28:9a:b7:34:46:1d:b1:d3:bd:d8:9a: 27:ec:e0:e2:d6:20:15:c8:b8:b6:5e:fb:57:21:9f:0d:21:6e: cb:1e:5d:53:da:d8:32:7b:eb:c0:c2:9b:3b:29:84:5d:cb:96: 92:f9:ac:d7:a6:8a:4c:21:8d:09:75:4b:fc:04:2e:59:62:ef: 6d:97:4f:b0:cf:0c:39:09:35:90:7e:da:7a:d7:66:6e:6c:e0: 0e:29:d1:a0:7c:1f:dd:4c:1d:28:6f:17:59:2b:5d:7d:37:c3: bb:fa:00:77:84:3f:70:41:42:d8:68:15:eb:40:12:97:ab:3c: fc:1e:35:2d:b8:a5:bf:a7:cd:f8:d7:1d:b0:95:6b:b3:02:b8: dc:2a:34:0a:c7:a4:29:53:6d:4c:88:e7:84:a6:9f:76:5b:ac: 4a:00:3a:08:73:a4:6e:59:d5:48:02:91:d2:3a:4c:c8:84:09: 9e:de:64:07:52:24:15:44:d0:ae:68:08:05:9b:5e:f3:3a:68: 62:79:28:47:41:d2:91:71:b7:53:c3:3c:70:35:43:fa:20:f3: 6e:f9:79:d1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjUwNTMxMjMxMzE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiOGQwYS01ZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoJfZVUblve52hA4dyihaEOyyle6yb/VoeFjvL69ehEJ3Ok5Y4XzXHQZVc3z Kvf7WjHqn02/PfQtmfom/2xmFY7pMpd0h/IX+BcoIv2dKX3ekxMWsn4iP3EmeOyN VLiEB119aLnpQNvZOOP0BDJ8/1ngydBT2NefQcPWiW13fx7ejs8EPGqnXpiarWD+ sNioaGjFUypYWhwn1s/cSnR1lurUDP1FZQ3HCNPbING+avqtOroM8MiHvfLjbzG0 EROx/87BHRT+ds56O0qqoV/WevV6P8N4BhDBHkZc5LPmWJeASe3Ve1xB3J0EN3ks z69+5486bkypXRSq/LEVxOUGQwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFGv8UB/Z 7vRX6Kqp/F7wvR074HQjMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc1NzgvRDNDMDE5MENCQjlEMTFFQjg0RjczQjNBQzRGOUFFMDIvRTg1NDJERUE2 Qjg4MTFFQ0FDNzMxQjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAIt+MQDBABnBDcDBAJnN1wDBAJnhTQDBAJn2aQDBAJn5Ggw DQQCAAIwBwMFACQF4YAwDQYJKoZIhvcNAQELBQADggEBAGHJwxfrWJ/B9KLEWT3G /0mcNwRF1JA8g5hMmUfPfOq3579O6yesFn2Xus0omrc0Rh2x073Ymifs4OLWIBXI uLZe+1chnw0hbsseXVPa2DJ768DCmzsphF3LlpL5rNemikwhjQl1S/wELlli722X T7DPDDkJNZB+2nrXZm5s4A4p0aB8H91MHShvF1krXX03w7v6AHeEP3BBQthoFetA EperPPweNS24pb+nzfjXHbCVa7MCuNwqNArHpClTbUyI54Smn3ZbrEoAOghzpG5Z 1UgCkdI6TMiECZ7eZAdSJBVE0K5oCAWbXvM6aGJ5KEdB0pFxt1PDPHA1Q/og8275 edE= -----END CERTIFICATE-----Generated at Mon Jun 2 06:36:06 2025 by rpki-client