$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa File: CE3C7EF66FEB11EB91967864C4F9AE02.roa (raw, json) Hash identifier: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk= Subject key identifier: A3:AF:27:E8:74:38:1B:03:31:30:1F:9F:C1:DD:1B:00:92:04:D4:29 Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0C68 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa Signing time: Thu 22 May 2025 17:29:53 +0000 ROA not before: Thu 22 May 2025 17:29:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18053 IP address blocks: 103.137.24.0/22 maxlen: 22 118.107.128.0/20 maxlen: 20 2404:8300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3176 (0xc68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: May 22 17:29:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=682f5f11-4597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4a:67:11:ee:9f:c8:61:cf:bc:9b:1d:50:16: 8f:5f:78:07:e2:fd:8f:7e:56:d1:42:3e:9c:e1:14: 22:e3:f6:fb:b4:69:c8:99:c5:e3:3b:9d:5c:7a:bc: 99:7b:b9:18:0e:31:8a:d1:8c:3b:3d:37:57:0a:24: 8d:b2:d5:e5:6f:1e:d7:c1:61:73:7e:ea:8d:6c:3f: 58:d6:5d:7d:88:c5:ff:08:9f:7f:ba:a6:88:48:07: a5:f0:b6:79:e0:0d:3a:a4:98:61:29:06:1e:38:19: 84:e5:da:4c:d9:bf:42:96:d1:3d:55:7c:f9:58:cb: 62:59:5b:53:27:76:4a:66:65:e8:9f:ef:fd:6e:c4: b2:b4:28:9e:44:62:bd:7e:d3:e0:b5:26:af:2e:3a: 50:96:17:84:b5:3f:1f:e6:04:39:90:01:a8:8f:73: 19:da:a0:29:62:54:0d:fd:ae:c1:35:6d:83:cb:ec: 0e:dd:81:3e:2d:d5:5d:c6:ce:a5:9d:3f:65:c0:14: bf:c6:1a:aa:57:f6:a4:2b:8a:e0:b5:62:16:74:9d: 81:8a:a8:c7:34:76:ee:92:39:66:8e:a2:b0:0a:10: 00:7d:7c:69:84:94:37:22:a3:4d:c1:a4:b7:4a:00: e4:6d:8a:64:73:5e:87:45:10:c9:19:d7:84:b3:71: f3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AF:27:E8:74:38:1B:03:31:30:1F:9F:C1:DD:1B:00:92:04:D4:29 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.24.0/22 118.107.128.0/20 IPv6: 2404:8300::/32 Signature Algorithm: sha256WithRSAEncryption 1b:de:32:54:59:1e:8f:69:5e:29:87:e9:af:b9:e9:40:ac:29: bf:bf:10:e7:a4:d7:50:d3:2d:e8:89:4c:d0:7a:fc:98:63:86: b4:10:27:76:a6:59:49:76:56:f4:98:43:60:9c:7b:d5:c1:e3: 80:7d:95:93:84:f1:38:22:34:bc:6d:80:b8:12:34:98:cc:35: ce:c6:74:85:f9:43:eb:54:43:c0:b1:d9:80:2e:87:29:58:44: 71:32:7d:b3:52:43:92:fa:80:29:95:53:c1:cf:ce:e2:e0:17: c6:9f:f4:12:0b:e8:11:d8:6f:bd:d5:2c:13:15:80:78:35:a5: 85:83:76:f6:a9:03:0a:32:8c:8e:53:17:db:c6:92:90:07:bd: b7:6b:eb:20:f8:bb:d8:63:c9:12:2e:8e:28:2f:22:12:56:90: 45:5e:14:9d:72:47:10:29:13:8f:a3:a4:88:21:b1:c9:d4:d5: 67:d4:a1:4d:07:d2:91:f1:86:fd:29:41:7b:18:ea:1d:7b:30: a1:7d:47:44:21:0c:5f:36:ea:5a:ff:6e:d7:5b:dd:3d:bd:7b: 1a:5d:2b:ac:c2:b0:55:37:3e:82:aa:2c:6e:c8:61:05:e1:e0: d4:25:a2:e8:a4:31:99:bf:92:16:6a:f7:f7:30:ef:fa:a5:8c: ee:bc:8d:3b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUwNTIyMTcyOTUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmNWYxMS00NTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUpnEe6fyGHPvJsdUBaPX3gH4v2PflbRQj6c4RQi4/b7tGnImcXjO51ceryZ e7kYDjGK0Yw7PTdXCiSNstXlbx7XwWFzfuqNbD9Y1l19iMX/CJ9/uqaISAel8LZ5 4A06pJhhKQYeOBmE5dpM2b9CltE9VXz5WMtiWVtTJ3ZKZmXon+/9bsSytCieRGK9 ftPgtSavLjpQlheEtT8f5gQ5kAGoj3MZ2qApYlQN/a7BNW2Dy+wO3YE+LdVdxs6l nT9lwBS/xhqqV/akK4rgtWIWdJ2BiqjHNHbukjlmjqKwChAAfXxphJQ3IqNNwaS3 SgDkbYpkc16HRRDJGdeEs3HzlwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKOvJ+h0 OBsDMTAfn8HdGwCSBNQpMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBBRjAvRTM3NjI5NTAwRkZGMTFFOTg4MTVBRTIyQzRGOUFFMDIvQ0UzQzdFRjY2 RkVCMTFFQjkxOTY3ODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJniRgDBAR2a4AwDQQCAAIwBwMFACQEgwAwDQYJKoZIhvcN AQELBQADggEBABveMlRZHo9pXimH6a+56UCsKb+/EOek11DTLeiJTNB6/JhjhrQQ J3amWUl2VvSYQ2Cce9XB44B9lZOE8TgiNLxtgLgSNJjMNc7GdIX5Q+tUQ8Cx2YAu hylYRHEyfbNSQ5L6gCmVU8HPzuLgF8af9BIL6BHYb73VLBMVgHg1pYWDdvapAwoy jI5TF9vGkpAHvbdr6yD4u9hjyRIujigvIhJWkEVeFJ1yRxApE4+jpIghscnU1WfU oU0H0pHxhv0pQXsY6h17MKF9R0QhDF826lr/btdb3T29expdK6zCsFU3PoKqLG7I YQXh4NQlouikMZm/khZq9/cw7/qljO68jTs= -----END CERTIFICATE-----Generated at Mon Jun 2 04:58:43 2025 by rpki-client