$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/90269D3A716611ED9D80F448C4F9AE02.roa File: 90269D3A716611ED9D80F448C4F9AE02.roa (raw, json) Hash identifier: MO9P1WGnI9RODyxLdTa3D8Yco4aTU5+oDDX9VBwpv+g= Subject key identifier: A0:14:20:BD:0F:02:16:69:0F:DB:B4:C5:03:42:21:69:B0:6D:EA:D7 Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 01D8 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/90269D3A716611ED9D80F448C4F9AE02.roa Signing time: Sat 31 May 2025 19:09:37 +0000 ROA not before: Sat 31 May 2025 19:09:37 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150458 IP address blocks: 103.167.58.0/23 maxlen: 23 103.167.58.0/24 maxlen: 24 103.167.59.0/24 maxlen: 24 2001:df1:b1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: May 31 19:09:37 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=683b53f1-9db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:73:65:a4:c1:b2:e5:e6:03:2b:46:a0:f5:a5: ea:61:c0:41:8c:60:b7:b0:e0:9e:f7:a5:01:35:67: 5c:ae:bb:f7:02:73:75:86:bc:3d:8d:1c:1c:44:35: 7e:4d:e5:35:be:83:0a:19:75:48:e8:17:ae:60:e3: 4f:78:2b:d3:a5:6a:3e:30:1d:39:9e:66:02:64:3a: b9:32:84:f2:1c:47:a8:bd:cb:5a:d5:7c:0d:9e:27: 59:cf:3d:5b:95:3d:10:7f:bc:e2:71:7e:f4:e2:46: 98:9c:ac:bb:16:e1:a5:cc:ab:6e:e6:6e:6f:60:eb: bc:b4:ad:71:7a:89:82:d9:f1:03:34:b3:3a:18:6e: e7:e8:6f:56:f2:50:96:11:46:7b:9b:d7:ce:59:68: 02:47:e4:01:4e:f9:8d:f2:5a:84:d3:ed:fd:ac:92: 5c:21:d9:3a:6b:32:d0:ec:7c:70:6c:c7:5e:9e:37: b6:f4:20:d5:97:27:7c:e7:2b:aa:26:06:19:51:6b: 98:0e:4f:8a:5e:7e:a6:db:79:40:82:39:da:03:7b: 89:6e:a7:f5:7a:d7:3b:50:27:a3:35:23:5f:61:f2: 86:64:64:9c:85:f7:ab:0e:20:79:de:d2:23:6b:91: 25:1c:39:1f:5d:b2:1b:e2:06:a9:d7:cd:67:42:86: f5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:14:20:BD:0F:02:16:69:0F:DB:B4:C5:03:42:21:69:B0:6D:EA:D7 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/90269D3A716611ED9D80F448C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.58.0/23 IPv6: 2001:df1:b1c0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:7a:a4:35:b2:54:9b:02:dc:4e:27:32:67:fd:eb:85:48:84: 8e:c4:b1:7c:1c:f3:67:af:e1:34:5a:78:9f:84:e3:84:18:b5: 20:fc:e6:5a:0d:a5:4e:c9:99:13:b9:42:90:60:bc:44:f8:e5: a5:9b:78:5c:90:a3:6c:ae:b0:ff:0e:50:72:cb:01:c7:d9:00: 7c:dc:00:6c:b6:d1:9e:fc:35:27:83:16:70:70:51:c6:d1:ad: 15:7e:31:61:ac:3c:5a:b2:61:99:20:90:a2:44:12:9b:04:fb: f7:3d:3b:52:55:cf:37:ee:99:e5:e7:90:1b:56:48:d8:63:4f: 32:1f:96:0a:61:4d:56:07:58:c1:b7:eb:20:7d:3f:91:aa:c5: 90:cc:95:cd:92:b9:26:e1:4b:1e:0c:84:65:36:25:37:9e:b7: 13:09:fc:2c:3d:46:9c:61:15:0f:86:aa:d1:d4:7b:f3:0b:22: 81:4b:53:05:d5:d7:f5:f0:db:68:7a:81:8f:4c:50:b4:c8:09: 0a:ab:8f:3e:98:59:37:28:4d:95:01:1b:ef:f0:2d:e9:a5:44: 33:9f:8c:df:75:ab:3a:38:dd:55:56:4a:4a:77:8a:5d:b8:b5: a3:2a:c8:9f:54:05:1a:4f:0f:e8:db:b3:2d:b3:a3:21:41:6c: 84:7b:9a:fd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUwNTMxMTkwOTM3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiNTNmMS05ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznNlpMGy5eYDK0ag9aXqYcBBjGC3sOCe96UBNWdcrrv3AnN1hrw9jRwcRDV+ TeU1voMKGXVI6BeuYONPeCvTpWo+MB05nmYCZDq5MoTyHEeovcta1XwNnidZzz1b lT0Qf7zicX704kaYnKy7FuGlzKtu5m5vYOu8tK1xeomC2fEDNLM6GG7n6G9W8lCW EUZ7m9fOWWgCR+QBTvmN8lqE0+39rJJcIdk6azLQ7HxwbMdenje29CDVlyd85yuq JgYZUWuYDk+KXn6m23lAgjnaA3uJbqf1etc7UCejNSNfYfKGZGSchferDiB53tIj a5ElHDkfXbIb4gap181nQob1owIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKAUIL0P AhZpD9u0xQNCIWmwberXMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjEzNEEvRjk3NkJGREE3MTYyMTFFRDg4OTMxMzMxQzRGOUFFMDIvOTAyNjlEM0E3 MTY2MTFFRDlEODBGNDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpzowDwQCAAIwCQMHACABDfGxwDANBgkqhkiG9w0BAQsF AAOCAQEAOnqkNbJUmwLcTicyZ/3rhUiEjsSxfBzzZ6/hNFp4n4TjhBi1IPzmWg2l TsmZE7lCkGC8RPjlpZt4XJCjbK6w/w5QcssBx9kAfNwAbLbRnvw1J4MWcHBRxtGt FX4xYaw8WrJhmSCQokQSmwT79z07UlXPN+6Z5eeQG1ZI2GNPMh+WCmFNVgdYwbfr IH0/karFkMyVzZK5JuFLHgyEZTYlN563Ewn8LD1GnGEVD4aq0dR78wsigUtTBdXX 9fDbaHqBj0xQtMgJCquPPphZNyhNlQEb7/At6aVEM5+M33WrOjjdVVZKSneKXbi1 oyrIn1QFGk8P6NuzLbOjIUFshHua/Q== -----END CERTIFICATE-----Generated at Wed Jun 4 00:12:52 2025 by rpki-client