$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/824DA5B0AD8B11EFBBEBED75C4F9AE02.roa File: 824DA5B0AD8B11EFBBEBED75C4F9AE02.roa (raw, json) Hash identifier: bNOVsddFL27C5iA7Fz8a+Igfsv8ZVOwJ4NdmQ84xqFA= Subject key identifier: 30:4A:5C:0E:AD:79:66:3A:E4:16:49:60:74:4D:0E:35:45:E4:F9:CA Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 276E Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/824DA5B0AD8B11EFBBEBED75C4F9AE02.roa Signing time: Mon 02 Jun 2025 21:07:31 +0000 ROA not before: Mon 02 Jun 2025 21:07:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9387 IP address blocks: 103.11.60.0/24 maxlen: 24 113.203.234.0/24 maxlen: 24 113.203.235.0/24 maxlen: 24 113.203.236.0/24 maxlen: 24 113.203.237.0/24 maxlen: 24 113.203.238.0/24 maxlen: 24 113.203.239.0/24 maxlen: 24 113.203.240.0/24 maxlen: 24 180.178.128.0/24 maxlen: 24 180.178.129.0/24 maxlen: 24 180.178.132.0/24 maxlen: 24 180.178.133.0/24 maxlen: 24 180.178.134.0/24 maxlen: 24 180.178.135.0/24 maxlen: 24 180.178.136.0/24 maxlen: 24 180.178.137.0/24 maxlen: 24 180.178.138.0/24 maxlen: 24 180.178.139.0/24 maxlen: 24 180.178.172.0/24 maxlen: 24 180.178.174.0/24 maxlen: 24 180.178.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10094 (0x276e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Jun 2 21:07:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e1293-daf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:79:d9:df:3f:c6:60:17:44:85:18:76:d7: 23:0b:ce:be:87:00:e7:32:35:89:4a:0b:ae:7d:cf: ee:3e:6b:fa:86:a9:51:35:24:67:4a:d6:c4:c2:ac: cf:63:70:44:3e:8e:78:7a:2a:ed:4c:f5:e8:f8:03: 2d:4a:8c:f5:50:a1:e3:e8:32:82:e5:d1:43:4f:05: a1:2a:1d:23:a8:fc:ee:38:77:51:41:2e:9e:fa:fd: 55:dd:09:61:6b:64:0c:4b:07:f6:95:9d:d1:71:68: 95:d8:1d:d6:7b:13:d7:f3:5c:96:bd:84:17:4c:8b: da:cc:a8:d6:13:e4:b3:4e:bc:cb:d8:13:ad:6d:28: 84:15:93:6d:ce:49:53:38:95:f4:c9:65:ca:5d:b3: f3:12:ac:bb:81:c3:56:96:8d:3c:1a:b5:3c:c8:a5: a3:0e:0a:e2:ac:6f:13:21:bb:c8:a0:6a:27:8e:ac: 7e:b9:17:1c:28:8b:af:f5:1d:fe:4c:23:47:23:f2: a9:2a:8d:43:a3:dd:2a:b3:6e:4e:05:09:41:c3:30: 57:07:be:9c:f5:bd:64:d8:80:3e:7d:7e:85:f1:86: a2:f3:24:32:a9:8e:59:b3:b5:46:ca:59:b9:5d:39: a3:f5:a2:06:34:ac:01:33:31:b4:da:53:a9:b9:69: 8a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:4A:5C:0E:AD:79:66:3A:E4:16:49:60:74:4D:0E:35:45:E4:F9:CA X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/824DA5B0AD8B11EFBBEBED75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.60.0/24 113.203.234.0-113.203.240.255 180.178.128.0/23 180.178.132.0-180.178.139.255 180.178.172.0/24 180.178.174.0/23 Signature Algorithm: sha256WithRSAEncryption 99:86:08:77:4c:61:45:21:14:ab:f9:e2:13:94:63:84:1c:01: 88:fe:ee:e4:a9:ec:28:5c:4e:e4:87:6b:d7:8f:b0:6b:3a:21: 7d:0a:d8:d4:80:7e:bb:02:0e:43:2f:a9:e4:81:10:e2:d2:4b: 8c:37:c7:6a:f1:6e:92:f5:4f:31:ed:10:28:d0:6b:3d:6d:07: 9b:f3:1e:bd:db:0e:55:59:73:57:9b:e4:e4:94:c1:f5:db:8c: 88:cd:ea:f2:4e:4f:da:e6:88:da:64:8c:b4:dc:57:82:79:c2: b1:62:cd:bb:47:f8:28:ff:ec:3a:14:da:51:ca:84:02:9c:f3: 4a:de:90:7d:90:17:1c:ec:fc:8e:51:31:70:2d:b6:fd:6c:5d: e4:7a:64:24:20:71:75:55:ff:d8:81:58:15:fd:e2:98:cb:6d: ee:22:3c:03:ed:d2:80:df:f6:aa:d3:e9:86:e6:91:c3:50:30: 8b:52:42:79:d9:b7:cc:14:e1:71:11:95:fa:05:e1:d3:83:94: a2:8d:d4:1a:39:2f:03:ad:56:e3:56:b9:30:f3:b3:2e:9d:60: be:66:65:f0:95:ae:cf:33:7b:18:d6:84:bc:91:6b:49:f8:80: 83:a3:2b:9a:62:96:79:00:fd:e9:cb:28:02:f3:5b:93:24:77: 5e:77:67:84 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICJ24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNjAyMjEwNzMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTI5My1kYWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz952d8/xmAXRIUYdtcjC86+hwDnMjWJSguufc/uPmv6hqlRNSRnStbEwqzP Y3BEPo54eirtTPXo+AMtSoz1UKHj6DKC5dFDTwWhKh0jqPzuOHdRQS6e+v1V3Qlh a2QMSwf2lZ3RcWiV2B3WexPX81yWvYQXTIvazKjWE+SzTrzL2BOtbSiEFZNtzklT OJX0yWXKXbPzEqy7gcNWlo08GrU8yKWjDgrirG8TIbvIoGonjqx+uRccKIuv9R3+ TCNHI/KpKo1Do90qs25OBQlBwzBXB76c9b1k2IA+fX6F8Yai8yQyqY5Zs7VGylm5 XTmj9aIGNKwBMzG02lOpuWmK5wIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFDBKXA6t eWY65BZJYHRNDjVF5PnKMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvODI0REE1QjBB RDhCMTFFRkJCRUJFRDc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBABnCzwwDAMEAXHL6gMEAHHL8AMEAbSygDAMAwQCtLKEAwQC tLKIAwQAtLKsAwQBtLKuMA0GCSqGSIb3DQEBCwUAA4IBAQCZhgh3TGFFIRSr+eIT lGOEHAGI/u7kqewoXE7kh2vXj7BrOiF9CtjUgH67Ag5DL6nkgRDi0kuMN8dq8W6S 9U8x7RAo0Gs9bQeb8x692w5VWXNXm+TklMH124yIzeryTk/a5ojaZIy03FeCecKx Ys27R/go/+w6FNpRyoQCnPNK3pB9kBcc7PyOUTFwLbb9bF3kemQkIHF1Vf/YgVgV /eKYy23uIjwD7dKA3/aq0+mG5pHDUDCLUkJ52bfMFOFxEZX6BeHTg5SijdQaOS8D rVbjVrkw87MunWC+ZmXwla7PM3sY1oS8kWtJ+ICDoyuaYpZ5AP3pyygC81uTJHde d2eE -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:37 2025 by rpki-client