$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/9412C93EDC6F11EABFEF2548C4F9AE02.roa File: 9412C93EDC6F11EABFEF2548C4F9AE02.roa (raw, json) Hash identifier: rU8D6mpdC1BmC/amQMPPP7kqQ/zxbdarw0Ro6gKcd88= Subject key identifier: 1B:A1:C6:21:1D:6E:E1:79:21:E9:48:F9:1A:BE:B8:7F:E5:5E:7F:64 Certificate issuer: /CN=A91F0CF4/serialNumber=FD25BA961101B5CE6014993CE7488FDB6F08A423 Certificate serial: 0816 Authority key identifier: FD:25:BA:96:11:01:B5:CE:60:14:99:3C:E7:48:8F:DB:6F:08:A4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/9412C93EDC6F11EABFEF2548C4F9AE02.roa Signing time: Thu 22 May 2025 19:13:54 +0000 ROA not before: Thu 22 May 2025 19:13:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135356 IP address blocks: 103.215.2.0/24 maxlen: 24 2404:ce80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.crl rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0CF4, serialNumber=FD25BA961101B5CE6014993CE7488FDB6F08A423 Validity Not Before: May 22 19:13:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f7771-e587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:da:aa:53:91:17:52:fb:e7:33:4b:fd:ab:c3: 1d:c5:ce:11:5b:d0:a0:d9:f1:c5:55:4b:aa:36:88: 5c:8c:a9:20:ce:4b:35:42:8c:ed:5e:91:da:bc:c1: 76:a7:25:d2:a4:d9:d0:3d:8c:fe:80:78:c8:6c:4b: 2b:43:ce:6d:b9:7c:4c:d1:a4:3f:07:02:38:85:b0: 48:d3:8d:a4:65:db:9b:17:71:e4:7c:36:85:d7:84: 36:4d:4e:05:9d:b7:f1:cf:e6:ec:db:6d:e3:04:80: 2f:bb:49:5f:b6:00:bb:80:a0:fb:38:96:f1:d4:75: 3f:b4:c1:9a:09:c7:65:b8:22:39:fb:9b:ff:16:ce: 62:1c:ad:ec:19:e9:4c:9a:1c:35:9d:78:6c:f3:99: 67:39:b8:33:30:fa:ce:21:9c:e5:64:df:af:a0:f6: 41:4d:72:14:c9:42:39:ef:1d:7e:7a:61:c6:cc:91: a2:42:dc:f4:de:ce:09:4b:ee:27:d1:f4:61:a4:92: 3f:85:21:53:fb:34:94:80:48:e9:14:57:24:72:52: b3:82:53:c3:aa:f0:cb:13:c5:45:53:47:7d:c2:a5: d9:a1:eb:4a:d7:48:00:ad:34:9d:7c:4e:89:a4:42: 50:74:df:60:fc:9f:1b:18:7b:e2:f5:73:ff:57:58: 87:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A1:C6:21:1D:6E:E1:79:21:E9:48:F9:1A:BE:B8:7F:E5:5E:7F:64 X509v3 Authority Key Identifier: keyid:FD:25:BA:96:11:01:B5:CE:60:14:99:3C:E7:48:8F:DB:6F:08:A4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/9412C93EDC6F11EABFEF2548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.2.0/24 IPv6: 2404:ce80::/32 Signature Algorithm: sha256WithRSAEncryption 7f:9a:21:54:28:77:44:f8:2c:09:da:a5:b1:c8:10:4e:44:82: d1:fd:9d:67:6d:84:e3:e9:f8:4a:d1:f7:a6:1c:bd:13:e9:4f: 01:e7:ad:c2:da:df:fe:64:fd:20:ac:91:e4:0f:f5:9c:f8:66: 04:3a:cf:cb:ad:74:b9:9d:97:bc:46:ba:27:3c:b8:0b:54:4c: fc:d1:e6:74:1b:d6:da:6d:41:fc:41:c2:0b:9f:2d:2a:bf:47: 5b:a8:ac:19:ee:e4:9b:d4:ee:b1:a2:67:22:95:01:bc:5e:26: 18:6f:d4:b9:3b:61:22:44:86:9d:2f:2b:b8:95:c9:bd:b8:93: 97:48:9d:1b:5c:70:81:bf:97:fb:12:ed:41:3f:0d:4d:aa:7a: b8:81:f8:b0:37:d0:01:96:da:c6:b9:f6:9f:0a:bc:5b:c2:fc: 0a:7f:6c:f0:8d:d4:cc:03:1e:7e:d0:ca:64:17:0c:3e:2f:0e: 8b:ae:71:f7:9c:23:0c:b8:a4:fc:dc:b9:a1:e2:50:4a:0f:4e: ba:13:80:6d:23:1e:b3:2b:2b:7a:1f:37:8d:60:43:e3:13:c5: 25:d2:36:73:4c:dc:02:1e:5f:f9:6c:6d:ab:26:c9:9f:86:64: 8c:d8:2c:4b:69:9f:cf:28:76:80:54:86:ed:f2:bc:34:ef:00: 9a:b1:9e:37 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDRjQxMTAvBgNVBAUTKEZEMjVCQTk2MTEwMUI1Q0U2MDE0OTkzQ0U3NDg4RkRC NkYwOEE0MjMwHhcNMjUwNTIyMTkxMzU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmNzc3MS1lNTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dqqU5EXUvvnM0v9q8Mdxc4RW9Cg2fHFVUuqNohcjKkgzks1QoztXpHavMF2 pyXSpNnQPYz+gHjIbEsrQ85tuXxM0aQ/BwI4hbBI042kZdubF3HkfDaF14Q2TU4F nbfxz+bs223jBIAvu0lftgC7gKD7OJbx1HU/tMGaCcdluCI5+5v/Fs5iHK3sGelM mhw1nXhs85lnObgzMPrOIZzlZN+voPZBTXIUyUI57x1+emHGzJGiQtz03s4JS+4n 0fRhpJI/hSFT+zSUgEjpFFckclKzglPDqvDLE8VFU0d9wqXZoetK10gArTSdfE6J pEJQdN9g/J8bGHvi9XP/V1iHhQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBuhxiEd buF5IelI+Rq+uH/lXn9kMB8GA1UdIwQYMBaAFP0lupYRAbXOYBSZPOdIj9tvCKQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMENGNC85QUU5QTkxMjFG QTUxMUVBQkU5RDE1NzVDNEY5QUUwMi9fU1c2bGhFQnRjNWdGSms4NTBpUDIyOElw Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TVzZsaEVCdGM1Z0ZKazg1MGlQMjI4SXBDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBDRjQvOUFFOUE5MTIxRkE1MTFFQUJFOUQxNTc1QzRGOUFFMDIvOTQxMkM5M0VE QzZGMTFFQUJGRUYyNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABn1wIwDQQCAAIwBwMFACQEzoAwDQYJKoZIhvcNAQELBQAD ggEBAH+aIVQod0T4LAnapbHIEE5EgtH9nWdthOPp+ErR96YcvRPpTwHnrcLa3/5k /SCskeQP9Zz4ZgQ6z8utdLmdl7xGuic8uAtUTPzR5nQb1tptQfxBwgufLSq/R1uo rBnu5JvU7rGiZyKVAbxeJhhv1Lk7YSJEhp0vK7iVyb24k5dInRtccIG/l/sS7UE/ DU2qeriB+LA30AGW2sa59p8KvFvC/Ap/bPCN1MwDHn7QymQXDD4vDouucfecIwy4 pPzcuaHiUEoPTroTgG0jHrMrK3ofN41gQ+MTxSXSNnNM3AIeX/lsbasmyZ+GZIzY LEtpn88odoBUhu3yvDTvAJqxnjc= -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:28 2025 by rpki-client