$ rpki-client -vvf rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa File: EA903484DBE011EF8B7B8868C4F9AE02.roa (raw, json) Hash identifier: F9++BbjjmMUe8vc/0zV646ZfgUr7qUiZRpjhYm31XaE= Subject key identifier: 7F:0D:4C:BA:B5:4A:DB:2E:28:3C:1C:8D:13:0C:C5:1B:79:88:24:EE Certificate issuer: /CN=A91E72AB/serialNumber=31D09E24D5DB8C58F414EEA3EF0EEDFB355DABF4 Certificate serial: 0C1F Authority key identifier: 31:D0:9E:24:D5:DB:8C:58:F4:14:EE:A3:EF:0E:ED:FB:35:5D:AB:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa Signing time: Sat 26 Apr 2025 18:57:49 +0000 ROA not before: Sat 26 Apr 2025 18:57:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138953 IP address blocks: 103.137.160.0/24 maxlen: 24 2001:df0:2480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.crl rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E72AB, serialNumber=31D09E24D5DB8C58F414EEA3EF0EEDFB355DABF4 Validity Not Before: Apr 26 18:57:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680d2cad-ecdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:87:be:83:0f:7c:c7:01:b5:6e:da:fc:23:c1: 9b:2e:cc:ce:51:85:df:43:21:1a:09:99:1b:20:6b: 98:56:ea:d4:e7:9f:00:b7:df:cf:86:40:c1:cc:92: f4:ed:da:5c:ec:ab:b8:5f:a6:4c:20:0b:e3:9a:e0: f7:18:62:52:8a:af:3f:ee:fa:f7:0b:f8:dd:0e:1a: be:0e:cc:a8:1c:19:ca:c3:75:ed:10:0e:98:de:c4: c0:df:70:db:ff:38:90:00:56:13:57:d6:f7:17:a7: 8d:cb:c4:8c:26:d6:ce:41:b0:04:78:fa:a7:22:6d: 0a:ab:6c:82:d0:ad:cf:a6:73:fc:d9:74:ad:d9:2c: e6:ad:fb:72:51:09:4a:30:45:8b:da:8a:76:ee:b1: 71:4f:e0:42:f7:bc:21:58:92:f6:b4:05:dc:40:6d: 24:9d:e6:ac:48:15:d0:56:57:fe:02:60:39:3b:19: 57:df:9b:e0:f3:11:e6:ab:20:01:71:8c:3d:f0:80: af:84:69:7c:b1:d8:47:00:2a:69:25:5f:59:1f:77: 78:7a:ff:b1:c0:33:9b:13:b0:91:83:98:cb:4a:87: e9:48:76:85:86:4a:a5:ad:1a:79:f1:82:aa:d9:80: 4c:92:e2:87:66:c3:c1:ce:db:83:c2:e1:6c:cd:49: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0D:4C:BA:B5:4A:DB:2E:28:3C:1C:8D:13:0C:C5:1B:79:88:24:EE X509v3 Authority Key Identifier: keyid:31:D0:9E:24:D5:DB:8C:58:F4:14:EE:A3:EF:0E:ED:FB:35:5D:AB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.160.0/24 IPv6: 2001:df0:2480::/48 Signature Algorithm: sha256WithRSAEncryption b2:64:b9:00:f8:e7:01:cf:8d:5f:1f:ed:25:22:d2:81:c5:71: 73:35:f3:47:8d:2d:a3:86:61:79:a8:13:dd:d8:77:6e:32:54: 56:39:f1:f3:b3:f5:82:0d:4d:b8:9d:95:31:58:15:d9:7e:df: 3f:bd:f1:06:00:2d:72:5a:3e:68:dd:4b:a9:0d:0b:b3:50:28: fa:7f:cb:a9:e5:83:bf:28:48:17:c3:93:c2:cd:05:d8:ab:a3: 01:7c:5e:b1:57:af:c3:f0:da:8a:ea:40:ea:d0:22:f0:f9:9d: ae:0b:84:01:6d:eb:b1:de:47:73:81:22:64:c1:bf:e9:a3:5c: a6:c9:7b:cb:bf:4f:80:43:0e:3e:61:65:16:e8:ad:25:51:f6: d1:cc:9f:9f:aa:be:92:b0:71:d8:a0:ef:1b:ef:f0:b0:f6:26: 24:26:49:25:1b:db:87:60:16:c0:e2:4c:1c:24:e1:2b:0c:22: 62:b2:bb:02:0d:b5:34:79:6d:f8:47:6e:03:24:57:b2:8c:1b: a7:e7:f3:3b:8c:af:a0:c6:ad:44:a3:7b:b4:18:61:5b:4f:c8: b2:e8:7e:11:54:b5:1b:bd:11:1b:a4:d2:1d:e3:fa:58:cb:a2: 0f:2e:1d:7e:00:e4:4c:15:8b:c5:64:d3:4f:37:db:ad:7a:1a: 78:85:4e:88 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcyQUIxMTAvBgNVBAUTKDMxRDA5RTI0RDVEQjhDNThGNDE0RUVBM0VGMEVFREZC MzU1REFCRjQwHhcNMjUwNDI2MTg1NzQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkMmNhZC1lY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoe+gw98xwG1btr8I8GbLszOUYXfQyEaCZkbIGuYVurU558At9/PhkDBzJL0 7dpc7Ku4X6ZMIAvjmuD3GGJSiq8/7vr3C/jdDhq+DsyoHBnKw3XtEA6Y3sTA33Db /ziQAFYTV9b3F6eNy8SMJtbOQbAEePqnIm0Kq2yC0K3PpnP82XSt2SzmrftyUQlK MEWL2op27rFxT+BC97whWJL2tAXcQG0kneasSBXQVlf+AmA5OxlX35vg8xHmqyAB cYw98ICvhGl8sdhHACppJV9ZH3d4ev+xwDObE7CRg5jLSofpSHaFhkqlrRp58YKq 2YBMkuKHZsPBztuDwuFszUl5PQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH8NTLq1 StsuKDwcjRMMxRt5iCTuMB8GA1UdIwQYMBaAFDHQniTV24xY9BTuo+8O7fs1Xav0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzJBQi9ENzE3MzRGRTBD QTQxMUVBODQ4NDFCM0VDNEY5QUUwMi9NZENlSk5YYmpGajBGTzZqN3c3dC16VmRx X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01kQ2VKTlhiakZqMEZPNmo3dzd0LXpWZHFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcyQUIvRDcxNzM0RkUwQ0E0MTFFQTg0ODQxQjNFQzRGOUFFMDIvRUE5MDM0ODRE QkUwMTFFRjhCN0I4ODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABniaAwDwQCAAIwCQMHACABDfAkgDANBgkqhkiG9w0BAQsF AAOCAQEAsmS5APjnAc+NXx/tJSLSgcVxczXzR40to4ZheagT3dh3bjJUVjnx87P1 gg1NuJ2VMVgV2X7fP73xBgAtclo+aN1LqQ0Ls1Ao+n/LqeWDvyhIF8OTws0F2Kuj AXxesVevw/DaiupA6tAi8PmdrguEAW3rsd5Hc4EiZMG/6aNcpsl7y79PgEMOPmFl FuitJVH20cyfn6q+krBx2KDvG+/wsPYmJCZJJRvbh2AWwOJMHCThKwwiYrK7Ag21 NHlt+EduAyRXsowbp+fzO4yvoMatRKN7tBhhW0/Isuh+EVS1G70RG6TSHeP6WMui Dy4dfgDkTBWLxWTTTzfbrXoaeIVOiA== -----END CERTIFICATE-----Generated at Mon Jun 2 07:15:07 2025 by rpki-client