$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/099A56FE2FB311F09E3A9373C4F9AE02.roa File: 099A56FE2FB311F09E3A9373C4F9AE02.roa (raw, json) Hash identifier: c58CHJdQfloT8cjooayoSNCaLkxE9yxaVBgoB9VE0Hs= Subject key identifier: 9C:32:B8:16:22:06:76:F0:09:C3:3C:8D:EE:57:DE:B1:83:18:B8:FE Certificate issuer: /CN=A91DBB66/serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Certificate serial: 0F Authority key identifier: E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/099A56FE2FB311F09E3A9373C4F9AE02.roa Signing time: Tue 03 Jun 2025 08:18:08 +0000 ROA not before: Tue 03 Jun 2025 08:18:08 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 131294 IP address blocks: 103.10.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB66, serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Validity Not Before: Jun 3 08:18:08 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683eafc0-2dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:dd:c4:76:ee:25:04:87:e9:92:b0:47:19:b7: 4f:9c:e6:c2:f1:e4:00:c3:96:11:a6:8a:ee:d8:91: 00:e3:eb:23:99:7d:b5:b4:09:86:0d:8e:38:a5:34: ed:80:b0:ab:4e:d9:05:e6:f8:45:a9:23:a8:f8:27: 91:fa:60:21:b1:c0:77:2a:b1:08:88:2c:b6:6c:3e: 44:6b:ec:d6:e7:84:9c:cd:36:bf:9f:c0:5f:b3:24: f5:65:0b:e7:a4:df:59:e8:e0:9e:65:02:9b:66:5a: 1e:09:7a:b9:97:cd:c1:82:ca:71:5f:02:3c:d2:6e: 42:cc:82:69:d2:b8:76:f2:8e:5e:ab:db:5f:93:0b: fa:90:31:ea:72:6f:c0:12:8f:12:d9:d5:4c:33:d0: 36:f9:df:d1:dc:e7:c8:9d:16:8a:20:12:26:5e:d0: c8:4f:cd:32:70:08:cd:11:d4:8a:69:6c:aa:b7:1d: 2c:25:16:17:45:b7:90:5c:79:09:20:3b:4c:9a:a3: 3d:5e:53:ed:f6:03:89:24:80:47:22:f0:4a:d2:d3: 87:14:e6:e1:2a:5a:5c:20:1f:19:fe:12:81:f2:7f: 92:35:27:55:47:5e:c1:14:eb:b9:2e:cd:e2:f5:6d: 00:b6:cc:b8:5e:0e:dd:03:3c:98:e3:01:6d:d2:d7: bf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:32:B8:16:22:06:76:F0:09:C3:3C:8D:EE:57:DE:B1:83:18:B8:FE X509v3 Authority Key Identifier: keyid:E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/099A56FE2FB311F09E3A9373C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.51.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:86:f0:af:3a:bb:0d:97:85:85:72:75:45:93:80:13:1e:cc: 8c:4c:de:10:76:27:f1:c4:63:e7:25:c3:cd:94:da:37:b4:70: e7:34:1e:72:05:a1:6a:cb:29:4f:1f:da:ff:46:28:cb:77:94: 0e:42:c3:e3:90:40:f8:41:3e:37:d9:e2:a5:ee:91:34:51:90: 4f:0e:21:0d:41:ae:24:20:a0:12:54:a2:a4:55:5e:e0:40:d2: 9b:08:9a:bf:86:a1:f3:e3:7f:a3:af:2d:14:a0:51:f0:ee:7a: 5b:ab:07:97:c1:30:a9:9b:f5:0b:17:d1:e3:c7:1c:90:3c:c8: 7a:eb:ae:1f:fc:16:0f:eb:ef:98:9c:14:fa:87:fb:b5:af:f3: 97:ad:5a:80:08:7f:f8:71:27:48:c4:2e:ad:d1:c5:c9:09:0e: 00:94:2c:f3:b4:96:b8:da:19:c3:22:39:40:82:cc:49:6d:58: 2b:ec:e2:6c:6c:91:ab:7b:ed:a0:b6:0c:03:33:e4:e8:c1:74: 9c:36:45:e9:53:22:98:98:50:4c:56:77:d8:8b:ee:b2:8f:12: a5:0c:89:31:46:d0:6c:80:f8:87:84:c6:bd:5f:d7:4a:ae:26: 16:e8:48:1b:ae:fe:28:32:c8:fc:87:65:6d:59:fa:51:ec:59: 00:60:30:48 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkI2NjExMC8GA1UEBRMoRTE4RDBBRDE4MzEzRTIwMjIwREVBMUI4NzE2REZCREY1 RDA5Q0NGODAeFw0yNTA2MDMwODE4MDhaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2VhZmMwLTJkZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDx3cR27iUEh+mSsEcZt0+c5sLx5ADDlhGmiu7YkQDj6yOZfbW0CYYNjjilNO2A sKtO2QXm+EWpI6j4J5H6YCGxwHcqsQiILLZsPkRr7NbnhJzNNr+fwF+zJPVlC+ek 31no4J5lAptmWh4JermXzcGCynFfAjzSbkLMgmnSuHbyjl6r21+TC/qQMepyb8AS jxLZ1Uwz0Db539Hc58idFoogEiZe0MhPzTJwCM0R1IppbKq3HSwlFhdFt5BceQkg O0yaoz1eU+32A4kkgEci8ErS04cU5uEqWlwgHxn+EoHyf5I1J1VHXsEU67kuzeL1 bQC2zLheDt0DPJjjAW3S179tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnDK4FiIG dvAJwzyN7lfesYMYuP4wHwYDVR0jBBgwFoAU4Y0K0YMT4gIg3qG4cW37310JzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQjY2LzBDMEQ4MERFMkZB QzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJZzNxRzRjVzM3MzEwSnpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFkwSzBZTVQ0Z0lnM3FHNGNXMzczMTBKelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI2Ni8wQzBEODBERTJGQUMxMUYwOENFQTBBNzFDNEY5QUUwMi8wOTlBNTZGRTJG QjMxMUYwOUUzQTkzNzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcKMzANBgkqhkiG9w0BAQsFAAOCAQEAT4bwrzq7DZeFhXJ1 RZOAEx7MjEzeEHYn8cRj5yXDzZTaN7Rw5zQecgWhasspTx/a/0Yoy3eUDkLD45BA +EE+N9nipe6RNFGQTw4hDUGuJCCgElSipFVe4EDSmwiav4ah8+N/o68tFKBR8O56 W6sHl8EwqZv1CxfR48cckDzIeuuuH/wWD+vvmJwU+of7ta/zl61agAh/+HEnSMQu rdHFyQkOAJQs87SWuNoZwyI5QILMSW1YK+zibGyRq3vtoLYMAzPk6MF0nDZF6VMi mJhQTFZ32Ivuso8SpQyJMUbQbID4h4TGvV/XSq4mFuhIG67+KDLI/IdlbVn6UexZ AGAwSA== -----END CERTIFICATE-----Generated at Wed Jun 4 00:02:01 2025 by rpki-client