$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/ECCDCA04809A11EB9093216EC4F9AE02.roa File: ECCDCA04809A11EB9093216EC4F9AE02.roa (raw, json) Hash identifier: //P4Dwc0yC8aNI6dL5grZWmAPuUGPAB2QMNisS1s91o= Subject key identifier: 8E:32:FA:F1:6A:E6:E1:1D:A3:B1:B8:37:14:5C:B3:B8:B7:47:5A:4E Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 067D Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/ECCDCA04809A11EB9093216EC4F9AE02.roa Signing time: Fri 30 May 2025 22:42:38 +0000 ROA not before: Fri 30 May 2025 22:42:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136187 IP address blocks: 103.215.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1, serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: May 30 22:42:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a345e-cee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:76:a4:3d:02:8c:9f:c4:db:83:70:e1:cd:8b: 05:c3:c8:9a:84:b7:36:b4:34:bd:64:51:7e:26:b5: 8b:78:89:04:b7:bd:32:9d:18:35:07:67:e3:02:c0: 5a:6a:b3:8d:f5:f6:3c:79:48:07:73:9d:9a:e3:8f: 30:60:0b:58:64:49:6b:2f:9a:8d:4b:bd:dd:8a:a9: 16:d2:09:03:66:3d:df:2a:fe:06:ea:bc:3d:be:d3: ef:4d:d6:74:be:e2:2b:c9:8f:a6:eb:ff:1e:97:3d: d0:1e:fb:7b:a9:a7:5b:9a:83:07:e0:e0:9d:16:64: 27:51:2c:64:90:12:3b:27:db:3b:37:e2:fe:13:ba: c5:a8:08:ce:f4:cc:1b:cd:c5:16:d3:3b:39:1a:35: f5:c3:3f:58:c1:a0:f4:e3:d5:99:d8:24:0b:30:ed: 34:98:f4:29:5e:57:03:65:3b:97:40:75:31:80:51: e6:d8:d6:ca:17:0a:00:38:76:b0:0a:be:70:12:f2: c6:36:7f:54:39:61:31:b3:be:89:c3:10:fc:fe:62: f1:c0:50:0b:41:32:72:69:43:7a:d7:40:98:32:32: 08:eb:07:0c:10:61:0c:68:9b:03:e2:1e:c0:07:10: 3d:e8:27:d2:ba:60:c7:3f:34:00:eb:fa:ff:76:ce: bb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:32:FA:F1:6A:E6:E1:1D:A3:B1:B8:37:14:5C:B3:B8:B7:47:5A:4E X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/ECCDCA04809A11EB9093216EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.67.0/24 Signature Algorithm: sha256WithRSAEncryption 65:dd:10:67:72:3f:cd:98:95:44:0c:de:17:c1:bb:1e:57:4c: 83:c0:5b:40:b2:61:9c:4b:62:52:79:97:18:fd:b3:72:3a:11: ce:77:cb:de:4b:4d:da:9b:df:7e:19:c9:5d:70:b7:ff:0e:96: df:b4:94:8a:18:f3:2a:f1:77:ee:8c:19:77:0e:82:b6:c4:ee: 94:74:f7:93:84:2e:1d:15:dc:92:c2:ac:ad:73:63:4f:bb:16: d2:39:68:4f:94:ce:c3:6b:cc:07:16:e4:ae:76:9a:2f:d9:c3: 39:c4:ef:f9:f3:cd:d9:84:98:3e:7d:71:3f:8f:06:6b:45:04: 2c:c4:7e:8e:69:54:4a:6d:f3:89:0c:55:f3:66:3f:8d:08:f1: 3a:6d:cc:c5:31:a4:23:97:1b:d4:ef:81:41:a8:47:47:5b:93: 8e:ff:6a:48:e5:3e:45:44:72:1e:ed:13:a9:a4:6b:2e:3d:7f: f9:4f:e1:c7:a2:77:eb:16:cd:a7:2f:e2:6c:0b:c9:80:da:f1: fe:ad:23:db:65:22:89:bb:2b:ec:88:f7:0b:46:72:d2:7b:32: d5:3f:23:25:e0:9c:47:72:ea:46:68:39:b0:e7:83:ea:47:19: 52:1d:8b:75:9e:8d:a3:ce:7c:ae:23:8a:64:67:3b:86:5d:9f: 32:d0:89:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjUwNTMwMjI0MjM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMzQ1ZS1jZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XakPQKMn8Tbg3DhzYsFw8iahLc2tDS9ZFF+JrWLeIkEt70ynRg1B2fjAsBa arON9fY8eUgHc52a448wYAtYZElrL5qNS73diqkW0gkDZj3fKv4G6rw9vtPvTdZ0 vuIryY+m6/8elz3QHvt7qadbmoMH4OCdFmQnUSxkkBI7J9s7N+L+E7rFqAjO9Mwb zcUW0zs5GjX1wz9YwaD049WZ2CQLMO00mPQpXlcDZTuXQHUxgFHm2NbKFwoAOHaw Cr5wEvLGNn9UOWExs76JwxD8/mLxwFALQTJyaUN610CYMjII6wcMEGEMaJsD4h7A BxA96CfSumDHPzQA6/r/ds672wIDAQABo4IClTCCApEwHQYDVR0OBBYEFI4y+vFq 5uEdo7G4NxRcs7i3R1pOMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYyRTEvM0Y2OUNDNjY3RjAzMTFFQkEwODFBMDJCQzRGOUFFMDIvRUNDRENBMDQ4 MDlBMTFFQjkwOTMyMTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn10MwDQYJKoZIhvcNAQELBQADggEBAGXdEGdyP82YlUQM 3hfBux5XTIPAW0CyYZxLYlJ5lxj9s3I6Ec53y95LTdqb334ZyV1wt/8Olt+0lIoY 8yrxd+6MGXcOgrbE7pR095OELh0V3JLCrK1zY0+7FtI5aE+UzsNrzAcW5K52mi/Z wznE7/nzzdmEmD59cT+PBmtFBCzEfo5pVEpt84kMVfNmP40I8TptzMUxpCOXG9Tv gUGoR0dbk47/akjlPkVEch7tE6mkay49f/lP4ceid+sWzacv4mwLyYDa8f6tI9tl Iom7K+yI9wtGctJ7MtU/IyXgnEdy6kZoObDng+pHGVIdi3WejaPOfK4jimRnO4Zd nzLQiYs= -----END CERTIFICATE-----Generated at Mon Jun 2 06:35:14 2025 by rpki-client