$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/949F398CDC6F11EABFEF2548C4F9AE02.roa File: 949F398CDC6F11EABFEF2548C4F9AE02.roa (raw, json) Hash identifier: IQeY/vSsnV7lGmsF5ET0EctBxomkDxr65Km/1S0yvs0= Subject key identifier: 48:7E:39:23:B2:28:8C:F8:0F:D9:C8:CF:BA:71:11:BF:67:FA:7B:8C Certificate issuer: /CN=A91F0CF4/serialNumber=FD25BA961101B5CE6014993CE7488FDB6F08A423 Certificate serial: 0817 Authority key identifier: FD:25:BA:96:11:01:B5:CE:60:14:99:3C:E7:48:8F:DB:6F:08:A4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/949F398CDC6F11EABFEF2548C4F9AE02.roa Signing time: Thu 22 May 2025 19:13:55 +0000 ROA not before: Thu 22 May 2025 19:13:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136907 IP address blocks: 103.215.0.0/24 maxlen: 24 103.215.1.0/24 maxlen: 24 103.215.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.crl rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0CF4, serialNumber=FD25BA961101B5CE6014993CE7488FDB6F08A423 Validity Not Before: May 22 19:13:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f7772-3944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e7:2a:8e:fa:b8:0d:05:c3:6e:41:f0:21:39: 14:89:de:7a:f2:88:a5:62:da:e2:82:3e:5a:a2:cf: 19:13:34:30:07:cd:97:69:46:c4:fc:57:78:23:15: 34:44:76:ad:45:4f:eb:f4:c2:2b:a9:a2:05:dc:42: eb:76:fc:f4:c4:65:c0:e0:b9:34:de:cd:e1:de:d6: d9:ee:bd:08:6b:43:3d:21:04:38:7e:96:80:cd:db: 21:27:80:ce:f1:86:f6:92:f0:88:6e:78:c7:4a:41: 20:47:c9:e4:03:ba:87:d4:1f:ca:d6:05:e5:b1:e3: 8f:8c:cc:bf:81:69:98:5b:ef:0e:8d:f2:f5:1a:aa: e6:52:26:d8:da:ff:f3:4f:88:99:2c:b0:72:dd:a9: f5:8a:d4:3c:22:ba:12:c9:2c:21:01:80:fa:40:b0: b8:bb:a4:66:56:c5:3e:10:cb:1e:89:19:64:2b:03: a5:48:ab:08:36:81:68:68:51:c8:88:6f:cc:8a:81: ef:33:92:09:0e:23:03:52:87:2f:8f:20:32:4f:ac: ca:e8:8f:b4:79:7c:46:5a:94:43:46:c0:32:42:29: 86:5f:57:c6:e9:26:78:9d:b6:33:80:a5:db:3d:68: 99:1f:4a:34:93:77:61:d0:ad:79:e3:61:1f:4b:12: 5b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7E:39:23:B2:28:8C:F8:0F:D9:C8:CF:BA:71:11:BF:67:FA:7B:8C X509v3 Authority Key Identifier: keyid:FD:25:BA:96:11:01:B5:CE:60:14:99:3C:E7:48:8F:DB:6F:08:A4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/949F398CDC6F11EABFEF2548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.0.0/23 103.215.3.0/24 Signature Algorithm: sha256WithRSAEncryption 35:ae:51:05:8b:92:8a:1e:6e:5f:48:83:f5:af:66:bb:29:33: 94:60:a2:b8:53:df:b0:f0:7c:16:67:f3:a7:e6:9c:4a:fa:85: 1e:5f:fc:09:53:2a:1a:13:3a:ce:69:6c:98:bd:74:0c:58:39: 24:83:52:ca:89:0d:53:f3:8d:b1:d3:9b:20:bc:76:24:38:3d: 20:68:e0:61:63:f4:92:74:bb:3e:4e:f3:9a:ff:90:78:44:b2: 01:d2:12:0d:9d:32:76:32:27:ee:32:a0:d5:cf:19:33:3a:cd: 0f:58:53:0d:7f:9f:04:47:8f:ea:6e:d7:13:4b:c2:cd:bb:f4: 15:7b:bd:a3:22:57:a8:87:80:e1:3c:52:f4:63:31:f0:19:6d: 64:4e:c2:5a:92:7e:be:52:3d:62:13:76:34:ab:b0:5a:96:1f: de:d0:30:af:29:d5:01:c6:54:13:1a:62:5b:f2:ce:5d:30:d7: dd:e3:79:13:0e:d5:ef:51:40:c0:94:f7:08:a8:4d:21:f3:f8: 50:60:99:78:1e:29:55:6f:fc:73:7a:68:12:6c:99:bb:2d:86: 37:a0:98:3d:30:37:14:a9:be:2a:a8:46:b7:a2:30:48:84:59: 8e:35:0c:06:f4:8d:a4:ef:cf:12:e5:d0:1f:24:d4:83:47:bd: b6:7d:de:9f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDRjQxMTAvBgNVBAUTKEZEMjVCQTk2MTEwMUI1Q0U2MDE0OTkzQ0U3NDg4RkRC NkYwOEE0MjMwHhcNMjUwNTIyMTkxMzU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmNzc3Mi0zOTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuucqjvq4DQXDbkHwITkUid568oilYtrigj5aos8ZEzQwB82XaUbE/Fd4IxU0 RHatRU/r9MIrqaIF3ELrdvz0xGXA4Lk03s3h3tbZ7r0Ia0M9IQQ4fpaAzdshJ4DO 8Yb2kvCIbnjHSkEgR8nkA7qH1B/K1gXlseOPjMy/gWmYW+8OjfL1GqrmUibY2v/z T4iZLLBy3an1itQ8IroSySwhAYD6QLC4u6RmVsU+EMseiRlkKwOlSKsINoFoaFHI iG/MioHvM5IJDiMDUocvjyAyT6zK6I+0eXxGWpRDRsAyQimGX1fG6SZ4nbYzgKXb PWiZH0o0k3dh0K1542EfSxJbcQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEh+OSOy KIz4D9nIz7pxEb9n+nuMMB8GA1UdIwQYMBaAFP0lupYRAbXOYBSZPOdIj9tvCKQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMENGNC85QUU5QTkxMjFG QTUxMUVBQkU5RDE1NzVDNEY5QUUwMi9fU1c2bGhFQnRjNWdGSms4NTBpUDIyOElw Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TVzZsaEVCdGM1Z0ZKazg1MGlQMjI4SXBDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBDRjQvOUFFOUE5MTIxRkE1MTFFQUJFOUQxNTc1QzRGOUFFMDIvOTQ5RjM5OENE QzZGMTFFQUJGRUYyNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFn1wADBABn1wMwDQYJKoZIhvcNAQELBQADggEBADWuUQWL kooebl9Ig/WvZrspM5RgorhT37DwfBZn86fmnEr6hR5f/AlTKhoTOs5pbJi9dAxY OSSDUsqJDVPzjbHTmyC8diQ4PSBo4GFj9JJ0uz5O85r/kHhEsgHSEg2dMnYyJ+4y oNXPGTM6zQ9YUw1/nwRHj+pu1xNLws279BV7vaMiV6iHgOE8UvRjMfAZbWROwlqS fr5SPWITdjSrsFqWH97QMK8p1QHGVBMaYlvyzl0w193jeRMO1e9RQMCU9wioTSHz +FBgmXgeKVVv/HN6aBJsmbsthjegmD0wNxSpviqoRreiMEiEWY41DAb0jaTvzxLl 0B8k1INHvbZ93p8= -----END CERTIFICATE-----Generated at Tue Jun 3 23:44:56 2025 by rpki-client