$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa File: 2F220BBA95AA11ED84962E13C4F9AE02.roa (raw, json) Hash identifier: tNP9+2nzm8wftPIS9csYEXaUq+mqRmQ5CYwfV6WquDE= Subject key identifier: B8:52:80:DF:0F:CA:C4:FA:52:5E:0C:4E:CD:85:B5:76:57:37:AD:9E Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 081A Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa Signing time: Mon 26 May 2025 21:19:18 +0000 ROA not before: Mon 26 May 2025 21:19:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 61414 IP address blocks: 103.213.244.0/22 maxlen: 24 144.48.4.0/22 maxlen: 24 2401:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2074 (0x81a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 26 21:19:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6834dad5-47e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:13:39:d8:31:73:93:84:28:d3:8f:2f:19:a5: eb:6e:78:e8:df:66:1e:ab:fb:9e:4c:ba:71:51:69: 29:b8:83:32:ed:54:13:dc:98:9d:8d:05:36:ea:3c: 59:c0:41:74:b0:52:fe:97:06:cf:6f:08:4e:43:89: 9b:83:7e:db:00:59:7d:0f:d4:b6:a5:88:5c:18:86: 50:75:50:dc:fc:27:75:03:ee:21:ae:80:d2:12:d5: 42:28:85:fc:30:8b:89:56:0d:01:97:65:33:5a:74: 8d:bc:5c:c9:52:65:4b:2d:3e:94:bd:17:a2:85:80: 2f:8b:57:0e:17:ed:f7:ac:58:e9:ac:94:04:27:d4: d5:66:e6:e6:24:22:a0:95:65:d1:3e:78:10:a2:06: b1:ab:5c:94:2e:ed:d4:c6:64:9f:6a:c7:4b:33:98: 77:c3:54:96:83:3c:0c:74:77:bc:8c:7e:50:e5:f2: b9:ea:6b:55:d5:8c:5c:10:ec:79:19:ff:eb:5c:53: c6:bd:94:3f:55:0f:40:52:a5:4b:67:d4:b3:56:c9: 25:3a:49:04:17:37:32:54:4d:fd:c1:ba:48:67:07: ca:fe:4e:a9:d7:cf:46:72:2c:1e:be:e7:1d:69:5e: 83:73:cc:4a:c3:54:7e:c4:08:ce:ff:6f:18:74:92: 11:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:52:80:DF:0F:CA:C4:FA:52:5E:0C:4E:CD:85:B5:76:57:37:AD:9E X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 IPv6: 2401:1640::/32 Signature Algorithm: sha256WithRSAEncryption 87:80:30:a7:91:c2:91:b6:61:7b:64:39:34:45:b9:54:9d:42: 4c:5d:40:3d:59:5c:c1:d8:76:4b:62:86:2a:c0:3f:f9:e3:cf: bb:11:bf:89:20:40:68:94:83:bc:83:58:ab:6a:55:4f:76:1c: f9:85:b1:ea:58:42:30:35:a2:75:97:d7:dd:21:46:c0:dc:fb: d3:f9:b7:7f:37:3b:1e:b9:d1:38:05:a2:b3:73:82:f1:98:9d: 4a:df:7f:ae:aa:c1:af:9a:5d:46:39:35:93:13:d7:92:e9:26: 28:cd:7c:6c:56:11:3f:d8:48:7c:40:22:23:1a:52:3a:db:02: 13:66:a0:a1:0d:4d:30:ac:5a:ed:71:e9:6d:d0:01:41:ed:32: 19:36:71:a9:db:7a:2c:cc:f0:a4:6e:67:cc:00:ad:4e:fb:a2: 08:3c:dc:8f:79:a3:4c:19:e7:c1:0c:17:7a:cd:82:85:ca:bb: 80:a0:14:89:32:aa:70:db:4d:68:d4:44:00:c3:2f:21:64:f0: 6c:33:34:48:2f:c5:1d:35:b3:b4:e7:bc:95:3b:51:55:dd:73: 5c:3b:56:46:a1:d2:d6:78:54:1f:8d:13:8c:43:c8:90:37:95: 81:76:d0:ea:f6:e4:1c:fc:77:6c:bc:05:a1:ec:95:83:28:95: d7:48:54:c8 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUwNTI2MjExOTE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ZGFkNS00N2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthM52DFzk4Qo048vGaXrbnjo32Yeq/ueTLpxUWkpuIMy7VQT3JidjQU26jxZ wEF0sFL+lwbPbwhOQ4mbg37bAFl9D9S2pYhcGIZQdVDc/Cd1A+4hroDSEtVCKIX8 MIuJVg0Bl2UzWnSNvFzJUmVLLT6UvReihYAvi1cOF+33rFjprJQEJ9TVZubmJCKg lWXRPngQogaxq1yULu3UxmSfasdLM5h3w1SWgzwMdHe8jH5Q5fK56mtV1YxcEOx5 Gf/rXFPGvZQ/VQ9AUqVLZ9SzVsklOkkEFzcyVE39wbpIZwfK/k6p189Gciwevucd aV6Dc8xKw1R+xAjO/28YdJIRAQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLhSgN8P ysT6Ul4MTs2FtXZXN62eMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvMkYyMjBCQkE5 NUFBMTFFRDg0OTYyRTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1fQDBAKQMAQwDQQCAAIwBwMFACQBFkAwDQYJKoZIhvcN AQELBQADggEBAIeAMKeRwpG2YXtkOTRFuVSdQkxdQD1ZXMHYdktihirAP/njz7sR v4kgQGiUg7yDWKtqVU92HPmFsepYQjA1onWX190hRsDc+9P5t383Ox650TgForNz gvGYnUrff66qwa+aXUY5NZMT15LpJijNfGxWET/YSHxAIiMaUjrbAhNmoKENTTCs Wu1x6W3QAUHtMhk2canbeizM8KRuZ8wArU77ogg83I95o0wZ58EMF3rNgoXKu4Cg FIkyqnDbTWjURADDLyFk8GwzNEgvxR01s7TnvJU7UVXdc1w7Vkah0tZ4VB+NE4xD yJA3lYF20Or25Bz8d2y8BaHslYMolddIVMg= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:18 2025 by rpki-client