$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/8E321A2AF96011EF89D9E37DC4F9AE02.roa File: 8E321A2AF96011EF89D9E37DC4F9AE02.roa (raw, json) Hash identifier: /HkRVF6I9zCORm5qImKmX7p9VJKW5R3gl/2f3lxVKBo= Subject key identifier: C7:56:07:29:F3:06:1D:FD:65:F0:2B:4F:9B:1B:AD:74:A8:F2:C3:C2 Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 32 Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/8E321A2AF96011EF89D9E37DC4F9AE02.roa Signing time: Tue 27 May 2025 07:46:26 +0000 ROA not before: Tue 27 May 2025 07:46:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142046 IP address blocks: 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:32:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: May 27 07:46:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68356dd2-bba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:28:0e:c6:97:01:c2:71:74:95:0e:4e:55:c6: 98:bb:53:bb:53:71:40:9c:13:51:64:ed:66:4c:b5: 61:6f:5b:09:a1:0d:5e:c6:e5:ab:bf:21:04:1a:78: fe:86:5e:6b:fe:e6:09:0f:96:b8:49:b6:53:5e:9e: 8f:73:1c:39:03:e9:10:d0:c7:b7:13:d3:17:09:52: cd:b2:80:6f:5e:ee:7a:02:11:19:bd:b3:00:e4:97: ca:78:7a:c1:f4:42:01:65:ca:36:1d:91:81:fc:f0: 21:02:a7:10:24:32:fa:44:61:d2:f4:61:b1:d2:10: c0:d4:e5:e4:28:e8:d3:6a:ef:45:23:5c:6f:bc:92: 87:01:c3:78:1f:9d:40:87:07:9b:14:a5:ff:73:ad: 2f:84:5a:94:ac:7c:8b:bf:86:3a:49:ad:d4:37:3e: a6:69:85:7e:b8:f7:a7:ea:ad:06:b4:b2:15:57:22: 92:a6:e1:ab:14:ff:f4:35:bd:e8:a7:43:54:07:38: 6f:51:31:e3:40:22:fc:24:4e:d9:42:65:a2:9a:e2: e1:21:9d:6b:25:e8:1d:0a:aa:7f:d3:83:f2:bf:75: 0d:0a:c5:0d:c2:8c:5b:b1:ce:61:23:71:e1:54:f2: 21:77:42:9a:6b:6c:af:bd:aa:64:bc:b9:6e:fe:1b: b6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:56:07:29:F3:06:1D:FD:65:F0:2B:4F:9B:1B:AD:74:A8:F2:C3:C2 X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/8E321A2AF96011EF89D9E37DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption a1:b6:f5:cd:69:86:cb:3c:12:7a:54:71:43:e3:29:28:67:8c: 90:ac:c2:ea:3c:25:38:24:a8:40:74:ac:56:60:7b:0a:3b:28: 49:11:c4:a3:25:47:6d:d4:c3:4d:a5:98:f1:a8:3c:a7:06:9d: de:e4:1b:16:f5:5c:0d:34:73:e3:c6:dc:95:9e:62:d2:1d:48: 2b:f1:72:02:1a:cc:52:f5:bd:09:8d:8d:92:4e:b5:86:c7:9a: d8:57:2e:ab:fc:fd:c1:cd:c8:0b:18:25:15:1b:54:f1:d0:e9: 08:54:48:06:50:12:4b:ae:fc:f0:36:37:21:2c:64:00:cd:23: 98:8f:bd:fd:a3:ae:f4:7e:0a:44:7a:35:26:4b:f2:fb:0d:19: 96:46:61:d0:27:24:5f:cd:73:c6:3c:7c:37:da:04:8e:d5:03: 95:2b:22:01:e7:1c:61:e7:cb:d2:b1:33:5d:e1:b4:be:4f:89: dc:6f:f1:3f:a0:5a:07:b5:44:b1:fb:3b:c3:6f:f0:2e:e0:ed: 1d:b6:f8:80:27:cb:28:c0:20:2c:6b:41:59:3b:5d:61:98:42: 3a:ca:26:41:44:22:28:68:6f:ab:db:89:d0:d7:45:42:12:90: 39:13:13:85:a9:89:1a:a8:d7:be:96:92:cd:e3:77:bf:43:ac: 47:71:bd:9a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OERGNTExMC8GA1UEBRMoQzZGNzU4RUNEREM0QzlCMEY3MkYwNjVDMzVBRDU0Njk3 NDMyNzExQjAeFw0yNTA1MjcwNzQ2MjZaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzU2ZGQyLWJiYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAKA7GlwHCcXSVDk5Vxpi7U7tTcUCcE1Fk7WZMtWFvWwmhDV7G5au/IQQaeP6G Xmv+5gkPlrhJtlNeno9zHDkD6RDQx7cT0xcJUs2ygG9e7noCERm9swDkl8p4esH0 QgFlyjYdkYH88CECpxAkMvpEYdL0YbHSEMDU5eQo6NNq70UjXG+8kocBw3gfnUCH B5sUpf9zrS+EWpSsfIu/hjpJrdQ3PqZphX6496fqrQa0shVXIpKm4asU//Q1vein Q1QHOG9RMeNAIvwkTtlCZaKa4uEhnWsl6B0Kqn/Tg/K/dQ0KxQ3CjFuxzmEjceFU 8iF3QpprbK+9qmS8uW7+G7ZhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUx1YHKfMG Hf1l8CtPmxutdKjyw8IwHwYDVR0jBBgwFoAUxvdY7N3EybD3LwZcNa1UaXQycRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4REY1LzMxRTBGMTZBRjk2 MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHZkWTdOM0V5YkQzTHdaY05hMVVhWFF5Y1JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OERGNS8zMUUwRjE2QUY5NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi84RTMyMUEyQUY5 NjAxMUVGODlEOUUzN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf0ozANBgkqhkiG9w0BAQsFAAOCAQEAobb1zWmGyzwSelRx Q+MpKGeMkKzC6jwlOCSoQHSsVmB7CjsoSRHEoyVHbdTDTaWY8ag8pwad3uQbFvVc DTRz48bclZ5i0h1IK/FyAhrMUvW9CY2Nkk61hsea2Fcuq/z9wc3ICxglFRtU8dDp CFRIBlASS6788DY3ISxkAM0jmI+9/aOu9H4KRHo1Jkvy+w0ZlkZh0CckX81zxjx8 N9oEjtUDlSsiAeccYefL0rEzXeG0vk+J3G/xP6BaB7VEsfs7w2/wLuDtHbb4gCfL KMAgLGtBWTtdYZhCOsomQUQiKGhvq9uJ0NdFQhKQORMThamJGqjXvpaSzeN3v0Os R3G9mg== -----END CERTIFICATE-----Generated at Wed Jun 4 00:12:23 2025 by rpki-client