$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa File: C5AFD098167311F0916F5435C4F9AE02.roa (raw, json) Hash identifier: T/t95RGiv+MhA6WaLbxmQnLnySE9uteSKwYbrk4jpmc= Subject key identifier: DF:EC:86:FF:53:5D:60:4E:4A:E9:D7:7A:4C:7A:37:02:BE:25:72:22 Certificate issuer: /CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Certificate serial: 019D Authority key identifier: ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa Signing time: Tue 03 Jun 2025 04:01:25 +0000 ROA not before: Tue 03 Jun 2025 04:01:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17828 IP address blocks: 103.20.76.0/22 maxlen: 22 202.58.128.0/22 maxlen: 22 202.165.192.0/20 maxlen: 24 2001:c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA0AA, serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Validity Not Before: Jun 3 04:01:25 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e7394-dd8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c8:09:fa:ee:b7:c1:3c:29:67:7b:17:af:52: 59:bb:6d:d0:4f:f0:18:af:96:b0:81:90:dd:10:47: e6:36:ba:11:c8:a9:cd:a7:76:7a:00:bc:da:d1:c5: 47:bc:6c:06:75:5d:76:df:c7:be:a4:85:01:e4:e9: e4:bd:38:1f:0c:23:ef:40:4d:0f:6a:ab:7f:5c:09: 7c:50:59:cb:79:07:ab:69:f3:72:07:bf:66:16:4b: 53:bb:d9:a2:62:a7:fc:aa:bf:a2:a7:74:10:80:0a: 9c:87:86:9d:52:d2:ba:aa:02:bb:b1:d5:ad:33:ae: c7:e7:90:a8:64:f2:bb:09:8a:9c:43:7e:ad:0f:84: d1:1b:8d:66:10:17:83:5f:60:27:02:21:3a:c0:98: 45:5e:bb:75:38:ad:f7:7e:e5:6b:0b:0f:db:82:cb: b0:1b:4f:5a:5a:db:93:61:a9:7e:0a:e2:f6:30:2b: 54:df:14:57:48:42:07:db:55:80:f1:36:62:7f:3d: a2:20:2f:64:46:96:35:2b:78:ed:d6:41:4c:35:f3: 4d:48:58:d3:79:19:ad:50:51:3c:d6:19:c9:73:e6: 7f:10:dc:fe:fe:ad:55:48:6b:f1:5d:91:b1:06:b1: 17:fd:31:93:d4:69:95:c6:07:a7:bc:e8:81:2d:ab: e7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:EC:86:FF:53:5D:60:4E:4A:E9:D7:7A:4C:7A:37:02:BE:25:72:22 X509v3 Authority Key Identifier: keyid:ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.76.0/22 202.58.128.0/22 202.165.192.0/20 IPv6: 2001:c60::/32 Signature Algorithm: sha256WithRSAEncryption 44:75:e8:cd:7c:8b:a7:78:f7:f6:b0:73:b0:35:07:07:4f:e6: 21:79:ec:93:32:43:f9:85:c4:a8:b7:81:60:83:b5:96:a7:e5: 1e:00:da:f9:5f:34:90:07:8e:99:51:ac:22:8b:b9:8c:e6:e1: e7:26:12:07:9b:9c:29:21:67:8e:d3:07:50:13:44:12:dd:d3: 91:d5:cd:49:23:24:9f:97:cc:5e:7c:ad:38:3e:8c:24:90:2d: 3d:e5:c7:6f:6e:ec:77:1b:cc:75:c3:00:b7:0d:a8:6c:5b:b0: f3:7f:20:a7:2e:b0:ad:6d:ca:76:fd:db:c2:36:c8:f8:fd:8a: 80:23:50:8b:5a:db:6f:f3:96:49:dc:e8:bd:6e:ef:73:97:6c: 9b:c0:4e:04:b7:c6:15:2f:63:f9:07:c6:10:0b:b4:1a:00:cb: 93:3c:93:51:f2:f0:08:66:2b:9c:07:78:03:83:22:e8:00:e3: ed:1c:85:31:80:d9:b7:89:a4:9d:eb:56:07:54:09:c0:ca:68: a3:e2:61:29:c9:ea:51:9b:4f:4e:1c:97:1f:de:1e:fc:e4:ab: 66:90:b0:0f:ff:57:88:30:21:44:3e:5e:85:33:0b:d1:c9:13: 22:01:bf:8a:0f:0f:5a:16:f3:6d:9d:db:ac:54:2a:16:0d:b3: 69:de:13:44 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwQUExMTAvBgNVBAUTKEVEOEY1RDZDOUJGQzE0OEY3QUJCNzA4QzUyOTFEMzg0 NzgxQzYxRkQwHhcNMjUwNjAzMDQwMTI1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNzM5NC1kZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMgJ+u63wTwpZ3sXr1JZu23QT/AYr5awgZDdEEfmNroRyKnNp3Z6ALza0cVH vGwGdV1238e+pIUB5OnkvTgfDCPvQE0Paqt/XAl8UFnLeQerafNyB79mFktTu9mi Yqf8qr+ip3QQgAqch4adUtK6qgK7sdWtM67H55CoZPK7CYqcQ36tD4TRG41mEBeD X2AnAiE6wJhFXrt1OK33fuVrCw/bgsuwG09aWtuTYal+CuL2MCtU3xRXSEIH21WA 8TZifz2iIC9kRpY1K3jt1kFMNfNNSFjTeRmtUFE81hnJc+Z/ENz+/q1VSGvxXZGx BrEX/TGT1GmVxgenvOiBLavndwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFN/shv9T XWBOSunXekx6NwK+JXIiMB8GA1UdIwQYMBaAFO2PXWyb/BSPertwjFKR04R4HGH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTBBQS84MkJCQjU1MjAw M0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJOTZ1M0NNVXBIVGhIZ2NZ ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZOWRiSnY4Rkk5NnUzQ01VcEhUaEhnY1lmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEwQUEvODJCQkI1NTIwMDNEMTFFRTk2MDhGMTQ3QzRGOUFFMDIvQzVBRkQwOTgx NjczMTFGMDkxNkY1NDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnFEwDBALKOoADBATKpcAwDQQCAAIwBwMFACABDGAwDQYJ KoZIhvcNAQELBQADggEBAER16M18i6d49/awc7A1BwdP5iF57JMyQ/mFxKi3gWCD tZan5R4A2vlfNJAHjplRrCKLuYzm4ecmEgebnCkhZ47TB1ATRBLd05HVzUkjJJ+X zF58rTg+jCSQLT3lx29u7HcbzHXDALcNqGxbsPN/IKcusK1tynb928I2yPj9ioAj UIta22/zlknc6L1u73OXbJvATgS3xhUvY/kHxhALtBoAy5M8k1Hy8AhmK5wHeAOD IugA4+0chTGA2beJpJ3rVgdUCcDKaKPiYSnJ6lGbT04clx/eHvzkq2aQsA//V4gw IUQ+XoUzC9HJEyIBv4oPD1oW822d26xUKhYNs2neE0Q= -----END CERTIFICATE-----Generated at Wed Jun 4 00:01:04 2025 by rpki-client