$ rpki-client -vvf rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa File: ED49BD3C649A11ECBDAC9565C4F9AE02.roa (raw, json) Hash identifier: lBw/oXqYii+CxdFQl9gOeByngEJHo8e2NzPJY0PJwPA= Subject key identifier: 73:D9:28:2F:91:CB:B8:FE:DF:3D:03:86:B4:C7:BB:B1:53:BD:6E:35 Certificate issuer: /CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Certificate serial: 058F Authority key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa Signing time: Mon 12 May 2025 17:42:56 +0000 ROA not before: Mon 12 May 2025 17:42:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 42960 IP address blocks: 43.248.8.0/22 maxlen: 24 103.39.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1423 (0x58f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E094D, serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Validity Not Before: May 12 17:42:56 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68223320-c9b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:03:78:8b:30:06:08:00:e0:a0:57:c4:95:90: 0c:df:6a:d5:69:1d:c6:3f:e2:90:d1:c5:01:54:4b: e2:93:a9:66:01:35:f6:b3:31:bf:6c:35:1a:ce:21: b3:cf:e3:d9:3f:85:a7:c7:d7:9e:43:48:f3:1a:6f: 50:0f:b6:fb:6a:8f:04:00:76:10:69:f7:44:e6:fc: 74:82:56:e7:34:57:fd:54:72:ec:9b:b2:98:34:ac: f3:8d:e9:bb:a7:24:07:5d:0f:8f:3e:a9:57:1e:d4: 95:d4:e4:34:c8:fc:ef:c0:0e:5c:30:0d:3b:73:53: c5:02:1d:b1:2f:63:a1:00:68:7b:26:33:b9:32:50: a6:94:ed:f4:7c:47:f2:e0:10:ba:21:5c:ca:96:7f: 05:eb:a5:46:00:f5:5d:2a:3f:f2:66:28:e5:2b:67: cc:dd:b0:5d:f5:e7:79:12:79:1d:46:e0:cd:fc:0a: 48:83:1c:dd:59:12:72:c8:eb:7b:9d:2e:1a:59:b2: 91:e7:f6:75:43:22:24:cd:6e:95:80:45:12:9f:e2: 67:c8:3e:c0:b1:9f:42:d4:73:9d:73:19:9d:96:72: 07:9f:35:48:7b:f9:22:a1:c1:26:79:0d:79:0d:28: 78:7d:f6:0f:e2:2b:7e:40:b0:c0:66:21:57:97:63: 71:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D9:28:2F:91:CB:B8:FE:DF:3D:03:86:B4:C7:BB:B1:53:BD:6E:35 X509v3 Authority Key Identifier: keyid:F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.8.0/22 103.39.78.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:95:97:45:d5:25:24:84:49:51:d4:7c:46:92:54:f2:82:0d: 7c:8e:88:23:a2:4a:9e:d9:5e:43:9a:c7:24:0a:f9:d6:ce:58: d1:fb:c5:cf:11:88:e3:83:83:d5:a2:47:2a:8c:ea:2c:d1:55: b5:61:04:33:75:bf:24:3b:09:2b:cd:3c:b4:e7:eb:54:47:a9: fd:85:60:ed:93:e7:89:40:de:7a:47:74:fb:7d:09:4a:9c:92: d6:47:58:cf:80:0c:94:9b:7c:32:55:05:9c:9f:64:12:45:42: 69:0a:8c:03:7a:05:81:1b:d2:cf:8a:df:af:7a:2d:b0:c4:8a: c5:a0:ff:01:47:57:0a:45:89:f2:0f:f2:04:0c:ad:77:26:3d: ea:53:bd:44:fc:e2:56:a6:af:d5:cd:d7:b6:fa:ad:7c:b7:7f: 57:2a:06:b6:a2:5a:02:b9:d8:a5:3a:cf:62:f6:f7:68:68:b1: 54:32:54:c2:19:14:45:cd:95:59:be:2f:95:c9:14:58:68:51: 3c:1b:87:dc:8f:41:f7:f0:8f:95:0d:f6:50:41:8e:ee:1a:3b: fc:ce:29:83:f5:82:35:93:ac:32:7a:ca:21:3e:69:cd:ea:84: 22:b9:ed:f7:11:60:1b:b5:f6:7a:7c:24:ac:d2:f2:41:06:87: e9:a1:61:45 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA5NEQxMTAvBgNVBAUTKEYzMTcwNUU4MThFQTQ4MDNCMDkzNDE5M0Y2MUZDNkUz MzcxNzcyRUQwHhcNMjUwNTEyMTc0MjU2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyMzMyMC1jOWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gN4izAGCADgoFfElZAM32rVaR3GP+KQ0cUBVEvik6lmATX2szG/bDUaziGz z+PZP4Wnx9eeQ0jzGm9QD7b7ao8EAHYQafdE5vx0glbnNFf9VHLsm7KYNKzzjem7 pyQHXQ+PPqlXHtSV1OQ0yPzvwA5cMA07c1PFAh2xL2OhAGh7JjO5MlCmlO30fEfy 4BC6IVzKln8F66VGAPVdKj/yZijlK2fM3bBd9ed5EnkdRuDN/ApIgxzdWRJyyOt7 nS4aWbKR5/Z1QyIkzW6VgEUSn+JnyD7AsZ9C1HOdcxmdlnIHnzVIe/kiocEmeQ15 DSh4ffYP4it+QLDAZiFXl2Nx5QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHPZKC+R y7j+3z0DhrTHu7FTvW41MB8GA1UdIwQYMBaAFPMXBegY6kgDsJNBk/YfxuM3F3Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDk0RC80MEI3Mzg2RURF ODExMUVCQTlGQzdENzJDNEY5QUUwMi84eGNGNkJqcVNBT3drMEdUOWhfRzR6Y1hj dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh4Y0Y2QmpxU0FPd2swR1Q5aF9HNHpjWGN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA5NEQvNDBCNzM4NkVERTgxMTFFQkE5RkM3RDcyQzRGOUFFMDIvRUQ0OUJEM0M2 NDlBMTFFQ0JEQUM5NTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+AgDBAFnJ04wDQYJKoZIhvcNAQELBQADggEBAC6Vl0XV JSSESVHUfEaSVPKCDXyOiCOiSp7ZXkOaxyQK+dbOWNH7xc8RiOODg9WiRyqM6izR VbVhBDN1vyQ7CSvNPLTn61RHqf2FYO2T54lA3npHdPt9CUqcktZHWM+ADJSbfDJV BZyfZBJFQmkKjAN6BYEb0s+K3696LbDEisWg/wFHVwpFifIP8gQMrXcmPepTvUT8 4lamr9XN17b6rXy3f1cqBraiWgK52KU6z2L292hosVQyVMIZFEXNlVm+L5XJFFho UTwbh9yPQffwj5UN9lBBju4aO/zOKYP1gjWTrDJ6yiE+ac3qhCK57fcRYBu19np8 JKzS8kEGh+mhYUU= -----END CERTIFICATE-----Generated at Mon Jun 2 06:29:36 2025 by rpki-client