$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa File: F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa (raw, json) Hash identifier: LUrVRFHpHNZiTqSy0L8SOTOMfbUQlb1OEo2uN/0dmZA= Subject key identifier: 6F:79:1A:AC:AD:3E:01:E8:AB:0B:7E:E3:83:42:03:C5:3B:15:3F:98 Certificate issuer: /CN=A91E8632/serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA Certificate serial: 1B02 Authority key identifier: EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa Signing time: Sat 31 May 2025 15:47:20 +0000 ROA not before: Sat 31 May 2025 15:47:20 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139009 IP address blocks: 103.43.149.0/24 maxlen: 24 2401:c680:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6914 (0x1b02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8632, serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA Validity Not Before: May 31 15:47:20 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=683b2488-9e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:89:ce:93:63:1e:27:a3:e0:45:78:f8:52:13: c6:75:85:5b:8f:74:09:26:83:2c:a7:35:e4:0e:1d: 6d:ae:02:1b:3b:56:e3:ed:41:b9:27:48:1a:0e:e0: 07:6b:9f:00:8f:79:7e:64:e8:c9:42:af:d3:df:40: a7:19:43:53:bb:77:57:b6:4d:62:f9:2c:55:37:4b: 16:80:2c:9e:46:85:d0:f5:b3:f3:de:06:f1:88:60: 72:d1:ee:74:40:e7:04:13:94:c5:d1:8c:80:c4:53: f6:71:03:1c:b2:e5:2b:c2:e9:06:dc:00:6c:92:2f: 2d:b9:b4:90:d2:b3:98:b0:05:84:f0:cf:86:84:ed: 29:d3:56:1f:3b:e8:bc:4b:ab:a7:3d:41:34:5b:ba: 0e:fc:41:77:56:9c:f3:1f:fd:e5:31:88:eb:8c:cb: 82:c0:d0:e1:0c:62:4c:49:6b:d0:e7:be:cb:9a:b2: c1:8f:56:ab:7c:ff:f6:62:5b:d4:85:62:9f:4d:1d: fd:b1:20:d8:70:7f:15:63:b3:7a:66:14:be:63:12: 0b:1a:03:b9:08:1e:16:2c:bd:bd:8d:73:a0:25:a5: 44:76:9d:5e:67:90:85:09:60:0a:11:72:fb:cc:06: 05:64:ed:cc:fb:a9:74:7c:65:b2:e2:23:d2:df:72: bd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:79:1A:AC:AD:3E:01:E8:AB:0B:7E:E3:83:42:03:C5:3B:15:3F:98 X509v3 Authority Key Identifier: keyid:EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.149.0/24 IPv6: 2401:c680:e::/48 Signature Algorithm: sha256WithRSAEncryption ca:96:6f:77:9b:c9:51:8b:43:a3:34:50:b8:c2:32:e5:0f:c2: 1f:ab:c3:b9:f7:c0:82:6a:e9:5f:61:87:81:d3:e2:a3:4a:84: c7:34:49:89:fb:30:ad:9c:10:1f:26:83:1e:92:df:b7:42:da: da:e4:fe:4c:9a:58:8b:7c:4b:08:6d:6b:d0:ca:1a:6b:9e:90: 5e:c8:8b:c4:bf:4f:1b:77:c5:75:fb:52:fd:9b:24:47:61:66: 35:7e:9d:a5:cd:eb:90:26:fb:8a:bc:80:b8:41:77:c6:33:93: a7:34:82:20:f2:1a:fe:1d:9a:ff:3a:10:68:1e:4e:b0:63:00: 5f:8a:e7:b0:48:8f:ea:f1:85:10:b9:ee:85:8a:b9:66:0b:70: c7:36:c9:bc:59:68:54:d5:f5:dd:13:4d:12:2d:46:2a:2e:c3: 9b:6a:9c:90:3b:d0:7e:df:18:0e:97:9a:03:89:5b:3b:b4:ed: 2c:e0:ff:b4:df:e2:6e:c7:98:94:e1:b3:3f:eb:ca:32:9d:1e: 61:e7:d7:47:e0:40:28:7b:53:6a:05:ed:1b:9a:38:52:47:3b: bd:3c:7b:fe:4f:23:dd:a1:ee:d7:30:68:8c:f2:2f:03:4f:2e: 44:78:5e:22:ae:df:50:2e:58:1e:15:f3:35:cf:ac:ac:f3:6f: 31:31:65:dc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICGwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2MzIxMTAvBgNVBAUTKEVDNTYzREJGRTJGMzk4QzhFOUZCMTlGOUY3NDIzMkI2 QjU0QUE2RUEwHhcNMjUwNTMxMTU0NzIwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiMjQ4OC05ZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4nOk2MeJ6PgRXj4UhPGdYVbj3QJJoMspzXkDh1trgIbO1bj7UG5J0gaDuAH a58Aj3l+ZOjJQq/T30CnGUNTu3dXtk1i+SxVN0sWgCyeRoXQ9bPz3gbxiGBy0e50 QOcEE5TF0YyAxFP2cQMcsuUrwukG3ABski8tubSQ0rOYsAWE8M+GhO0p01YfO+i8 S6unPUE0W7oO/EF3VpzzH/3lMYjrjMuCwNDhDGJMSWvQ577LmrLBj1arfP/2YlvU hWKfTR39sSDYcH8VY7N6ZhS+YxILGgO5CB4WLL29jXOgJaVEdp1eZ5CFCWAKEXL7 zAYFZO3M+6l0fGWy4iPS33K9nwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG95Gqyt PgHoqwt+44NCA8U7FT+YMB8GA1UdIwQYMBaAFOxWPb/i85jI6fsZ+fdCMra1Sqbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODYzMi8wNUNFNDRFQTJF NUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1NanAteG41OTBJeXRyVktw dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGWTl2LUx6bU1qcC14bjU5MEl5dHJWS3B1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2MzIvMDVDRTQ0RUEyRTVFMTFFN0JBQzg4QjY5QzRGOUFFMDIvRjhFRDg3QjhG Q0U4MTFFQzlFNEUzQTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnK5UwDwQCAAIwCQMHACQBxoAADjANBgkqhkiG9w0BAQsF AAOCAQEAypZvd5vJUYtDozRQuMIy5Q/CH6vDuffAgmrpX2GHgdPio0qExzRJifsw rZwQHyaDHpLft0La2uT+TJpYi3xLCG1r0Moaa56QXsiLxL9PG3fFdftS/ZskR2Fm NX6dpc3rkCb7iryAuEF3xjOTpzSCIPIa/h2a/zoQaB5OsGMAX4rnsEiP6vGFELnu hYq5ZgtwxzbJvFloVNX13RNNEi1GKi7Dm2qckDvQft8YDpeaA4lbO7TtLOD/tN/i bseYlOGzP+vKMp0eYefXR+BAKHtTagXtG5o4Ukc7vTx7/k8j3aHu1zBojPIvA08u RHheIq7fUC5YHhXzNc+srPNvMTFl3A== -----END CERTIFICATE-----Generated at Mon Jun 2 06:29:04 2025 by rpki-client