$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa File: 8291E388EA0811EFB385192AC4F9AE02.roa (raw, json) Hash identifier: Ca2pEWIV/EJ5w4q8uyfY/09SxRF8GtoaKpWxctigiRA= Subject key identifier: 7B:04:17:17:CF:F8:DE:07:D5:B2:A0:9A:BD:9E:C9:BB:39:DE:64:54 Certificate issuer: /CN=A91E1CB1/serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Certificate serial: 3A Authority key identifier: 06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa Signing time: Tue 27 May 2025 07:46:05 +0000 ROA not before: Tue 27 May 2025 07:46:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142594 IP address blocks: 103.166.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1CB1, serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Validity Not Before: May 27 07:46:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68356dbc-55df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:24:af:f1:c3:e5:fb:1e:df:db:b9:37:83:65: e3:3c:06:63:c4:1f:c7:77:f7:c4:93:91:ca:d4:e6: d6:3c:7f:3a:10:7c:bd:9d:05:3a:e0:5e:67:3e:22: d1:2c:89:00:60:45:4a:9c:2b:d4:8b:0d:0f:07:9c: eb:b5:57:b6:0f:18:56:0a:fd:0a:1b:07:36:3f:d4: da:f9:b2:c5:ec:c0:43:7f:21:73:f7:c1:ff:8f:e7: 1c:57:b2:c8:8c:8e:23:0b:84:75:cd:a6:70:f8:84: 02:0d:6e:07:f5:65:a4:7c:46:25:bb:1b:b5:7a:f8: 2d:83:aa:cf:ff:08:4d:b5:07:9a:2b:e9:a0:ed:43: 0b:77:7c:13:5e:93:46:28:31:1b:97:8e:8f:ad:a9: 06:cd:87:89:65:64:8f:da:f2:24:67:8e:58:d1:53: 32:bf:b9:c4:54:f5:33:11:29:e7:5a:06:8a:32:ba: 26:ef:0f:07:2a:c0:7d:31:76:27:60:77:80:b0:33: db:7a:dc:01:14:0a:9b:86:ff:cb:71:af:6f:a7:d9: b7:57:04:2b:4e:36:b0:b9:a6:3d:c2:50:97:23:51: 43:e8:fb:54:e5:68:74:ed:0b:9d:ce:35:6b:c6:40: 4e:34:7a:17:35:2c:76:f2:c6:80:83:8c:55:ff:54: f8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:04:17:17:CF:F8:DE:07:D5:B2:A0:9A:BD:9E:C9:BB:39:DE:64:54 X509v3 Authority Key Identifier: keyid:06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.228.0/24 Signature Algorithm: sha256WithRSAEncryption 29:a9:0c:2c:95:ec:79:30:ef:05:ef:3c:c5:6d:5b:a6:16:5e: 56:59:41:a1:60:e1:4f:4e:17:32:25:01:27:69:26:98:79:67: 62:79:a1:e7:72:99:35:57:db:3a:a8:39:93:81:39:da:fd:4d: d0:8c:6d:5e:68:ae:e1:cf:53:57:64:f1:ff:07:10:93:ce:f0: a7:66:d5:d7:cf:6a:8d:a2:23:ae:1f:06:3f:fd:b6:c0:38:1c: 14:f3:b0:5f:45:24:72:31:91:dd:7d:c5:cd:8c:cf:9e:9b:f8: d3:f2:fe:7e:65:4d:62:36:82:df:7c:5f:5c:38:09:86:1c:f6: ad:c2:33:90:b2:c3:fc:25:47:be:69:c9:c7:13:0f:25:a2:1a: 1d:af:b5:89:e5:0e:4d:71:80:17:73:3b:5a:d4:27:7c:3b:26: 6d:7d:8f:12:16:60:0f:a4:61:46:db:f5:5b:40:5f:80:8d:46: d3:ce:02:5a:a8:7c:18:a0:09:75:da:e4:63:dd:e4:98:fa:fa: 20:64:b8:37:b0:48:ad:27:55:ab:24:4a:73:56:f1:0c:56:0a: d7:59:0b:93:0f:c7:15:d9:82:47:55:9b:f8:52:6c:77:be:79: 4b:16:da:0e:f5:d0:21:be:71:a9:90:04:99:a6:d8:89:cd:24: ad:a9:70:26 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUNCMTExMC8GA1UEBRMoMDYzRTAxMjc0NzJBN0UyQTZGODQ3MDQwOUM5QjgyMzkw NUZBRkU4RTAeFw0yNTA1MjcwNzQ2MDVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzU2ZGJjLTU1ZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0JK/xw+X7Ht/buTeDZeM8BmPEH8d398STkcrU5tY8fzoQfL2dBTrgXmc+ItEs iQBgRUqcK9SLDQ8HnOu1V7YPGFYK/QobBzY/1Nr5ssXswEN/IXP3wf+P5xxXssiM jiMLhHXNpnD4hAINbgf1ZaR8RiW7G7V6+C2Dqs//CE21B5or6aDtQwt3fBNek0Yo MRuXjo+tqQbNh4llZI/a8iRnjljRUzK/ucRU9TMRKedaBooyuibvDwcqwH0xdidg d4CwM9t63AEUCpuG/8txr2+n2bdXBCtONrC5pj3CUJcjUUPo+1TlaHTtC53ONWvG QE40ehc1LHbyxoCDjFX/VPhFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUewQXF8/4 3gfVsqCavZ7JuzneZFQwHwYDVR0jBBgwFoAUBj4BJ0cqfipvhHBAnJuCOQX6/o4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQ0IxLzNGNEE1QTJFRUEw ODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlwdmhIQkFuSnVDT1FYNl9v NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQmo0QkowY3FmaXB2aEhCQW5KdUNPUVg2X280LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUNCMS8zRjRBNUEyRUVBMDgxMUVGOUQzMzlCMjlDNEY5QUUwMi84MjkxRTM4OEVB MDgxMUVGQjM4NTE5MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGem5DANBgkqhkiG9w0BAQsFAAOCAQEAKakMLJXseTDvBe88 xW1bphZeVllBoWDhT04XMiUBJ2kmmHlnYnmh53KZNVfbOqg5k4E52v1N0IxtXmiu 4c9TV2Tx/wcQk87wp2bV189qjaIjrh8GP/22wDgcFPOwX0UkcjGR3X3FzYzPnpv4 0/L+fmVNYjaC33xfXDgJhhz2rcIzkLLD/CVHvmnJxxMPJaIaHa+1ieUOTXGAF3M7 WtQnfDsmbX2PEhZgD6RhRtv1W0BfgI1G084CWqh8GKAJddrkY93kmPr6IGS4N7BI rSdVqyRKc1bxDFYK11kLkw/HFdmCR1Wb+FJsd755SxbaDvXQIb5xqZAEmabYic0k ralwJg== -----END CERTIFICATE-----Generated at Mon Jun 2 07:14:22 2025 by rpki-client