$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/9985244A2D1411EEAA9EA45DC4F9AE02.roa File: 9985244A2D1411EEAA9EA45DC4F9AE02.roa (raw, json) Hash identifier: gPmbtMjtLenMFEAnNmFzzGl8ckVYYI4uHTkTnXpU64U= Subject key identifier: D9:FB:77:60:F3:BE:19:6D:02:25:1D:2F:7C:C9:94:C8:FA:61:E1:2C Certificate issuer: /CN=A91E8AF5/serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Certificate serial: 014D Authority key identifier: E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/9985244A2D1411EEAA9EA45DC4F9AE02.roa Signing time: Tue 29 Apr 2025 04:40:20 +0000 ROA not before: Tue 29 Apr 2025 04:40:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151342 IP address blocks: 103.219.146.0/24 maxlen: 24 2001:df2:2840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF5, serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Validity Not Before: Apr 29 04:40:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68105833-6b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:91:b6:65:d0:41:2e:6e:a5:89:48:af:b0:12: b9:0c:af:da:a1:d1:6a:38:85:08:cd:2c:0f:ba:a3: c7:e9:fd:f0:49:a1:bd:92:66:8d:24:be:e4:82:50: 35:4e:d3:14:36:4f:2e:ce:bd:0a:1a:73:99:e2:fc: 93:6c:cf:90:35:30:02:0c:68:97:5a:69:97:11:a2: ec:bf:35:16:64:d9:06:59:7c:70:c7:bb:a2:24:ba: 01:23:92:cd:52:a7:af:0b:7c:28:8c:1a:13:70:c1: e6:9f:bc:b0:f3:93:90:73:f9:26:36:19:bd:4e:17: 50:a1:07:f4:c6:cc:b6:3f:78:f2:90:4e:29:20:cf: b0:da:71:96:fe:58:95:32:6c:89:dc:ff:a0:11:51: 74:14:c6:d1:df:5a:f1:07:3e:b4:fe:49:00:47:26: 1d:d0:9c:6e:9c:85:21:05:94:d3:1c:3b:2c:94:81: a7:f6:b3:5c:71:2c:48:e7:26:91:4f:de:a6:8d:b6: c5:43:57:12:f0:9a:f4:64:43:a4:b3:f4:62:33:2e: 14:be:09:aa:d4:4b:3d:3c:54:b1:86:0b:b8:a5:5f: 86:42:3f:11:ac:b1:43:74:f0:69:f0:d6:38:c6:cc: 31:34:ef:02:cc:93:c2:88:c8:b1:8d:cc:59:eb:f9: 62:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FB:77:60:F3:BE:19:6D:02:25:1D:2F:7C:C9:94:C8:FA:61:E1:2C X509v3 Authority Key Identifier: keyid:E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/9985244A2D1411EEAA9EA45DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.146.0/24 IPv6: 2001:df2:2840::/48 Signature Algorithm: sha256WithRSAEncryption 65:bf:8d:89:73:29:6b:f8:24:d2:99:e5:94:fd:d4:24:59:27: 51:ee:dc:64:a5:c8:2c:b2:76:b3:ab:57:ab:5d:48:15:20:fe: 9b:a2:7e:51:e3:46:e4:a9:f0:a9:1f:c6:d4:ac:b4:22:58:f9: 83:a5:c3:f2:ed:41:c3:ac:55:7f:f1:57:7b:b3:b9:d9:31:5e: 9f:db:a3:d4:8b:b9:41:73:ac:ee:04:33:29:91:77:74:ee:2d: 3b:6d:f2:72:47:43:eb:cb:53:6f:21:3f:7b:2c:06:82:da:fc: 33:5a:2c:cb:16:e2:e1:32:d3:70:9e:f6:f0:14:fd:4e:05:58: 67:14:ac:0a:03:0e:27:d4:a2:c8:83:7e:db:22:23:8d:32:cb: d9:b7:11:c9:8a:e7:20:2a:cc:8f:29:19:c6:ac:8a:a3:11:e6: 9a:fa:8d:18:ca:df:d5:23:75:c1:29:13:ad:ea:75:05:86:cd: c7:20:8d:2f:a2:b3:d7:7c:49:17:f0:58:f3:f9:16:63:47:67: ea:be:8a:fc:ac:63:3b:27:2b:b9:e8:ac:24:76:34:6b:7b:7d: 88:61:7e:34:1a:25:22:dd:8f:06:be:d8:20:62:04:86:24:4e: fd:1f:50:33:16:d6:3b:49:92:45:6f:41:c4:10:cc:32:d1:76: 9e:aa:f2:37 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjUxMTAvBgNVBAUTKEUzNUY3NDE5RDU3MkE4NkY3NkQyRUJGNzgyOUFCNkQ5 RDAzNDA5MDUwHhcNMjUwNDI5MDQ0MDIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNTgzMy02YjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJG2ZdBBLm6liUivsBK5DK/aodFqOIUIzSwPuqPH6f3wSaG9kmaNJL7kglA1 TtMUNk8uzr0KGnOZ4vyTbM+QNTACDGiXWmmXEaLsvzUWZNkGWXxwx7uiJLoBI5LN UqevC3wojBoTcMHmn7yw85OQc/kmNhm9ThdQoQf0xsy2P3jykE4pIM+w2nGW/liV MmyJ3P+gEVF0FMbR31rxBz60/kkARyYd0JxunIUhBZTTHDsslIGn9rNccSxI5yaR T96mjbbFQ1cS8Jr0ZEOks/RiMy4Uvgmq1Es9PFSxhgu4pV+GQj8RrLFDdPBp8NY4 xswxNO8CzJPCiMixjcxZ6/li2QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNn7d2Dz vhltAiUdL3zJlMj6YeEsMB8GA1UdIwQYMBaAFONfdBnVcqhvdtLr94KattnQNAkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGNS8zM0Y3MjU4NjJE MTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFHOTIwdXYzZ3BxMjJkQTBD UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxOTBHZFZ5cUc5MjB1djNncHEyMmRBMENRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThBRjUvMzNGNzI1ODYyRDExMTFFRTk5NkNDNjEwQzRGOUFFMDIvOTk4NTI0NEEy RDE0MTFFRUFBOUVBNDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn25IwDwQCAAIwCQMHACABDfIoQDANBgkqhkiG9w0BAQsF AAOCAQEAZb+NiXMpa/gk0pnllP3UJFknUe7cZKXILLJ2s6tXq11IFSD+m6J+UeNG 5KnwqR/G1Ky0Ilj5g6XD8u1Bw6xVf/FXe7O52TFen9uj1Iu5QXOs7gQzKZF3dO4t O23yckdD68tTbyE/eywGgtr8M1osyxbi4TLTcJ728BT9TgVYZxSsCgMOJ9SiyIN+ 2yIjjTLL2bcRyYrnICrMjykZxqyKoxHmmvqNGMrf1SN1wSkTrep1BYbNxyCNL6Kz 13xJF/BY8/kWY0dn6r6K/KxjOycrueisJHY0a3t9iGF+NBolIt2PBr7YIGIEhiRO /R9QMxbWO0mSRW9BxBDMMtF2nqryNw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:47:31 2025 by rpki-client