$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa File: EF31E31847CE11EEB588375DC4F9AE02.roa (raw, json) Hash identifier: kILGmUlpt7DdHWZSLztcZSmK4D+q9rXXCv0iWxnKi6I= Subject key identifier: E3:50:0F:80:D0:FB:97:2F:4B:D2:D4:91:94:C8:38:82:2D:C7:59:12 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 014E Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa Signing time: Sun 01 Jun 2025 04:01:33 +0000 ROA not before: Sun 01 Jun 2025 04:01:33 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136744 IP address blocks: 43.230.12.0/22 maxlen: 24 103.248.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Jun 1 04:01:33 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683bd09d-259a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1c:ec:4b:e8:4a:1d:59:87:9c:64:4d:34:b0: 26:05:8b:57:92:d3:9a:a0:23:1f:f8:58:bd:05:35: ba:82:c2:3f:d7:9c:7f:18:e8:58:65:d7:b2:26:8f: 0a:5c:c2:00:7d:6e:7d:de:cc:6d:35:79:1a:4d:14: b4:92:be:25:cc:bc:e9:ad:da:63:8a:84:51:16:38: 9d:d0:cf:7e:27:1a:84:11:bb:b7:a5:16:3b:b5:47: 77:b5:52:3a:31:75:de:6e:32:7c:c4:63:1d:71:85: 73:01:05:ac:82:56:11:a2:df:0c:88:11:d5:ff:27: b7:6a:4d:34:57:6d:13:79:e6:2b:97:62:86:b5:31: 51:fc:52:ee:d9:b9:cb:52:2e:01:41:96:21:b8:eb: 30:a5:4f:71:04:fd:88:78:d3:c1:c8:e8:1c:d9:42: aa:21:90:9e:59:3c:cd:44:5e:8e:8c:3a:82:4f:ca: 99:92:61:70:fb:50:af:38:bb:0b:01:d3:6a:33:13: af:0b:18:61:84:21:2c:7c:88:30:b1:9c:3e:53:fd: 56:5f:e1:13:ae:d0:14:04:a6:b4:f8:f2:3c:f4:fe: a7:da:f8:83:8c:91:51:93:9d:ef:13:db:f7:68:fa: 54:14:07:88:f4:be:05:c6:64:ce:f6:fd:b5:53:d9: 7e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:50:0F:80:D0:FB:97:2F:4B:D2:D4:91:94:C8:38:82:2D:C7:59:12 X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.12.0/22 103.248.252.0/22 Signature Algorithm: sha256WithRSAEncryption 85:ed:8c:5c:fd:42:9b:ad:9b:b1:37:bf:80:81:eb:cc:1b:80: d5:6f:a8:77:97:55:33:ed:68:2d:66:73:c2:df:bf:c1:d1:24: 73:e5:ed:93:ae:a3:3d:d4:56:5d:c3:1f:c7:0c:98:07:11:5f: a6:98:4a:49:b3:94:63:62:0b:07:88:ea:76:08:04:1d:5e:cc: b9:7b:e1:6f:b8:60:3a:df:16:03:23:34:d1:66:b4:3b:99:0d: cc:b0:ff:aa:de:7a:68:c3:ca:62:d5:e0:11:41:74:79:59:2b: e6:35:cf:15:f9:11:0e:0d:cd:eb:ca:7e:4c:84:d1:2b:88:e1: e7:91:c1:14:0e:e6:d0:57:72:b2:3b:5f:cb:6b:0f:e0:e9:f4: 88:0b:e6:a8:c7:1e:37:7a:f6:89:e7:78:b9:45:61:b0:b7:68: fb:b3:94:8d:2c:af:7c:25:89:7f:fb:b2:46:d7:62:cb:e8:7d: d7:d0:15:0a:a1:3d:2f:af:18:e7:33:ff:c1:29:dd:f1:d9:2f: e0:6e:83:72:8c:76:6f:58:d4:06:36:f7:15:90:04:72:c0:3b: 29:80:d8:c0:4f:f9:04:bd:4c:06:81:b4:5e:22:a3:d8:6b:03: 30:d5:2b:c8:4c:30:36:e6:19:15:eb:aa:12:b1:8f:76:fb:68: 41:8e:5e:44 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjUwNjAxMDQwMTMzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiZDA5ZC0yNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBzsS+hKHVmHnGRNNLAmBYtXktOaoCMf+Fi9BTW6gsI/15x/GOhYZdeyJo8K XMIAfW593sxtNXkaTRS0kr4lzLzprdpjioRRFjid0M9+JxqEEbu3pRY7tUd3tVI6 MXXebjJ8xGMdcYVzAQWsglYRot8MiBHV/ye3ak00V20TeeYrl2KGtTFR/FLu2bnL Ui4BQZYhuOswpU9xBP2IeNPByOgc2UKqIZCeWTzNRF6OjDqCT8qZkmFw+1CvOLsL AdNqMxOvCxhhhCEsfIgwsZw+U/1WX+ETrtAUBKa0+PI89P6n2viDjJFRk53vE9v3 aPpUFAeI9L4FxmTO9v21U9l+WQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFONQD4DQ +5cvS9LUkZTIOIItx1kSMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE0ODUvNjJBOTI4NjY0N0NFMTFFRTg2QzIzODVDQzRGOUFFMDIvRUYzMUUzMTg0 N0NFMTFFRUI1ODgzNzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5gwDBAJn+PwwDQYJKoZIhvcNAQELBQADggEBAIXtjFz9 Qputm7E3v4CB68wbgNVvqHeXVTPtaC1mc8Lfv8HRJHPl7ZOuoz3UVl3DH8cMmAcR X6aYSkmzlGNiCweI6nYIBB1ezLl74W+4YDrfFgMjNNFmtDuZDcyw/6reemjDymLV 4BFBdHlZK+Y1zxX5EQ4NzevKfkyE0SuI4eeRwRQO5tBXcrI7X8trD+Dp9IgL5qjH Hjd69onneLlFYbC3aPuzlI0sr3wliX/7skbXYsvofdfQFQqhPS+vGOcz/8Ep3fHZ L+Bug3KMdm9Y1AY29xWQBHLAOymA2MBP+QS9TAaBtF4io9hrAzDVK8hMMDbmGRXr qhKxj3b7aEGOXkQ= -----END CERTIFICATE-----Generated at Mon Jun 2 05:27:42 2025 by rpki-client