$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/EBF3EF123A2911F09F97AA47C4F9AE02.roa File: EBF3EF123A2911F09F97AA47C4F9AE02.roa (raw, json) Hash identifier: NHQgyn9MrNq1g/omGCRMq2I0Uiy6dz0ptIaB3+XylPM= Subject key identifier: E4:26:E3:76:22:C6:D6:5F:E4:2C:72:13:16:23:1A:CD:37:8B:9E:40 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 02BA Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/EBF3EF123A2911F09F97AA47C4F9AE02.roa Signing time: Mon 26 May 2025 12:06:57 +0000 ROA not before: Mon 26 May 2025 12:06:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 834 IP address blocks: 103.67.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: May 26 12:06:57 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68345961-b1b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ef:e0:1c:4d:3b:5b:b2:1a:08:7a:4d:69:09: 80:db:b3:31:7d:3f:7c:50:11:ab:b7:db:3d:ce:55: 2b:b7:e3:a7:ff:29:a8:06:83:f4:cc:d4:49:f7:c0: da:85:1d:56:d4:d7:f3:4a:d3:17:43:7a:ce:46:11: b8:b1:ba:19:52:94:98:62:10:1b:75:57:65:20:d3: 0d:66:50:0c:ef:87:d0:df:16:57:60:cb:0d:f7:90: 9f:5e:9e:9e:4a:97:eb:57:89:db:6c:d0:0a:52:71: 79:9c:b9:5d:ae:30:9a:7e:e2:72:5d:10:ae:b7:32: 9b:63:e3:9f:62:ff:49:8f:77:1f:5f:fd:0f:e5:f7: 2f:dd:4d:40:77:63:16:a5:a9:21:7e:38:77:36:72: b9:c2:37:7d:ce:0d:d9:dc:91:89:c2:0c:21:19:37: 5e:c9:f7:b3:48:b4:fe:9d:95:8a:03:33:8e:92:d4: 02:9e:6d:a7:0b:96:31:fb:10:b5:6b:d6:61:83:1f: c5:05:4a:01:5f:e0:bf:02:9d:1e:24:ee:b8:63:ae: 2e:6f:68:a9:4d:b3:98:74:17:c4:02:6e:28:de:41: fd:7d:73:a8:ba:34:94:df:67:93:36:33:98:2a:cd: d3:54:f2:12:2c:b3:82:fd:51:be:48:5f:0e:9f:25: 39:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:26:E3:76:22:C6:D6:5F:E4:2C:72:13:16:23:1A:CD:37:8B:9E:40 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/EBF3EF123A2911F09F97AA47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.244.0/24 Signature Algorithm: sha256WithRSAEncryption a4:69:c0:d2:63:20:6a:3d:17:2f:08:2c:84:02:35:76:5a:c9: 86:85:59:1d:c4:da:0a:69:c4:8c:db:0d:72:71:34:5e:bf:c4: 05:2f:bb:21:25:d5:a5:c0:cd:81:fa:f3:e5:8d:09:30:f8:29: f8:16:57:ac:12:d2:95:6e:4c:2f:19:f1:d1:4e:c8:c7:7d:0f: b4:a0:61:ed:4c:5a:b0:e7:24:47:b9:ab:cc:fc:16:c9:f6:4b: 88:a4:5f:8c:b3:2e:eb:51:ef:b4:10:5a:e6:0c:07:c4:b7:ce: a4:cb:0b:93:98:c7:54:dd:1d:94:78:dd:05:4b:95:5a:0e:b1: 02:7f:ad:6e:e1:44:de:57:6e:e9:29:72:ff:fb:ee:48:2e:fc: de:d9:ff:6d:e5:b1:39:b8:69:b3:80:da:a9:6c:b8:87:a1:f4: d9:41:fd:59:8e:00:fd:8d:35:23:d5:5a:4c:2f:97:96:3e:3b: d1:50:c3:6f:bd:8d:89:c1:6c:fb:bc:a1:2d:f5:5f:b0:76:23: 85:a4:88:69:9b:4b:91:74:f5:ee:12:f8:90:31:e9:a2:ba:5f: c2:8b:50:a4:85:11:20:7c:39:86:f4:b9:aa:09:73:85:2c:e9: be:8c:06:43:14:3f:10:52:7f:f6:67:48:61:3e:d6:8c:8d:d0: c3:6b:7f:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUwNTI2MTIwNjU3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0NTk2MS1iMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou/gHE07W7IaCHpNaQmA27MxfT98UBGrt9s9zlUrt+On/ymoBoP0zNRJ98Da hR1W1NfzStMXQ3rORhG4sboZUpSYYhAbdVdlINMNZlAM74fQ3xZXYMsN95CfXp6e SpfrV4nbbNAKUnF5nLldrjCafuJyXRCutzKbY+OfYv9Jj3cfX/0P5fcv3U1Ad2MW pakhfjh3NnK5wjd9zg3Z3JGJwgwhGTdeyfezSLT+nZWKAzOOktQCnm2nC5Yx+xC1 a9Zhgx/FBUoBX+C/Ap0eJO64Y64ub2ipTbOYdBfEAm4o3kH9fXOoujSU32eTNjOY Ks3TVPISLLOC/VG+SF8OnyU5vwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOQm43Yi xtZf5CxyExYjGs03i55AMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0N0MvN0UwRjU4NzIwMUU5MTFFREFGOEJERTMwQzRGOUFFMDIvRUJGM0VGMTIz QTI5MTFGMDlGOTdBQTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQ/QwDQYJKoZIhvcNAQELBQADggEBAKRpwNJjIGo9Fy8I LIQCNXZayYaFWR3E2gppxIzbDXJxNF6/xAUvuyEl1aXAzYH68+WNCTD4KfgWV6wS 0pVuTC8Z8dFOyMd9D7SgYe1MWrDnJEe5q8z8Fsn2S4ikX4yzLutR77QQWuYMB8S3 zqTLC5OYx1TdHZR43QVLlVoOsQJ/rW7hRN5Xbukpcv/77kgu/N7Z/23lsTm4abOA 2qlsuIeh9NlB/VmOAP2NNSPVWkwvl5Y+O9FQw2+9jYnBbPu8oS31X7B2I4WkiGmb S5F09e4S+JAx6aK6X8KLUKSFESB8OYb0uaoJc4Us6b6MBkMUPxBSf/ZnSGE+1oyN 0MNrf14= -----END CERTIFICATE-----Generated at Wed Jun 4 00:07:45 2025 by rpki-client