$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B2B2930C21C911EB991D562EC4F9AE02.roa File: B2B2930C21C911EB991D562EC4F9AE02.roa (raw, json) Hash identifier: XWm8GaGIPPLP9AKtaT6KRszth65jZeSEF8vfSa7oAA0= Subject key identifier: CB:E7:9C:A2:10:DD:B9:89:CD:1B:37:19:93:C9:78:25:F5:AC:89:FA Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0FAA Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B2B2930C21C911EB991D562EC4F9AE02.roa Signing time: Fri 16 May 2025 17:52:15 +0000 ROA not before: Fri 16 May 2025 17:52:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.113.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4010 (0xfaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 16 17:52:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68277b4f-1fdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b2:d1:32:cb:09:fe:be:6e:7b:e2:bf:32:4d: 67:60:ee:da:94:7b:f6:5c:04:a4:99:bb:44:54:c4: 39:c2:de:a0:8e:b4:9e:8a:a7:21:ba:d4:c2:9a:03: d8:21:c8:99:3e:8c:a7:a5:2a:3d:54:66:98:9c:88: dd:c6:fb:f9:b3:36:fe:1c:a1:09:35:bb:bc:70:11: 36:53:1f:65:65:ca:b6:00:bc:b5:e4:75:3d:01:67: 8a:bc:82:cc:10:ec:44:9e:fd:f0:d3:e6:98:68:09: 8d:c3:a5:d1:27:20:bd:25:fc:59:b0:cf:cc:1e:28: 21:f7:06:64:7c:c4:8e:5f:24:95:4f:7b:b9:24:1e: ef:11:c3:84:f2:40:01:34:95:d6:ad:44:7f:04:04: 46:92:2d:cd:5b:dd:a6:9b:c9:0a:c9:78:e5:22:cb: 04:bc:28:43:62:96:0c:bb:03:d7:65:75:41:1d:dd: b9:aa:d8:47:25:2a:7b:d8:af:0c:ce:23:89:62:4c: df:d0:ca:48:52:05:46:a7:70:71:a9:7f:f2:01:dd: 63:f0:71:91:fe:1b:ed:56:51:2f:a8:76:60:3a:40: 69:43:99:e5:fa:42:bb:23:5f:ae:ab:f8:74:1c:f2: 55:28:d8:3a:3d:2b:38:5d:0e:88:3f:35:11:98:96: 0a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E7:9C:A2:10:DD:B9:89:CD:1B:37:19:93:C9:78:25:F5:AC:89:FA X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B2B2930C21C911EB991D562EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.92.0/22 Signature Algorithm: sha256WithRSAEncryption c6:fc:af:af:16:b1:6f:32:7a:02:88:32:ef:f5:7b:ee:1a:8d: d8:dd:8a:90:64:5a:34:e0:e2:e9:0c:42:6e:16:9b:08:56:d8: 63:61:a3:46:5a:eb:b8:36:19:a7:62:60:a6:c1:17:89:76:f2: 83:67:a2:69:81:5c:a8:6e:7c:e1:17:9f:7e:12:de:ac:69:c5: 32:fb:41:4c:ef:ca:c6:20:ea:1e:f2:59:62:df:6e:e0:92:2b: 0a:02:fb:12:5b:a4:bf:93:a6:c5:5a:e5:aa:81:4f:e2:b2:bd: b8:f2:9f:aa:6d:46:e5:30:8b:33:bc:e7:cf:11:59:72:ce:d1: a8:2e:10:9b:2d:cb:4d:ea:ee:7c:6f:96:88:df:83:45:4d:43: 5a:25:88:2a:5a:19:3c:08:d8:14:42:b7:31:52:c1:36:74:55: 7c:95:bf:1a:31:a9:a7:26:11:92:c6:62:ce:36:c6:0a:55:6b: 8e:b0:c3:bb:71:38:bb:e5:42:97:9c:5c:6c:4b:29:70:08:23: a9:5c:f0:45:ce:28:f0:78:14:8b:cd:e5:f7:06:9c:9b:9d:57: af:e8:24:d4:2a:b9:e6:7e:47:38:68:5a:88:63:e5:0c:4c:ba: e7:74:21:79:75:e0:22:bb:f3:37:e3:84:99:c9:76:0c:4f:26: ce:b3:c8:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUwNTE2MTc1MjE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3N2I0Zi0xZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLLRMssJ/r5ue+K/Mk1nYO7alHv2XASkmbtEVMQ5wt6gjrSeiqchutTCmgPY IciZPoynpSo9VGaYnIjdxvv5szb+HKEJNbu8cBE2Ux9lZcq2ALy15HU9AWeKvILM EOxEnv3w0+aYaAmNw6XRJyC9JfxZsM/MHigh9wZkfMSOXySVT3u5JB7vEcOE8kAB NJXWrUR/BARGki3NW92mm8kKyXjlIssEvChDYpYMuwPXZXVBHd25qthHJSp72K8M ziOJYkzf0MpIUgVGp3BxqX/yAd1j8HGR/hvtVlEvqHZgOkBpQ5nl+kK7I1+uq/h0 HPJVKNg6PSs4XQ6IPzURmJYKHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMvnnKIQ 3bmJzRs3GZPJeCX1rIn6MB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvQjJCMjkzMEMy MUM5MTFFQjk5MUQ1NjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncVwwDQYJKoZIhvcNAQELBQADggEBAMb8r68WsW8yegKI Mu/1e+4ajdjdipBkWjTg4ukMQm4WmwhW2GNho0Za67g2GadiYKbBF4l28oNnommB XKhufOEXn34S3qxpxTL7QUzvysYg6h7yWWLfbuCSKwoC+xJbpL+TpsVa5aqBT+Ky vbjyn6ptRuUwizO8588RWXLO0aguEJsty03q7nxvlojfg0VNQ1oliCpaGTwI2BRC tzFSwTZ0VXyVvxoxqacmEZLGYs42xgpVa46ww7txOLvlQpecXGxLKXAII6lc8EXO KPB4FIvN5fcGnJudV6/oJNQqueZ+RzhoWohj5QxMuud0IXl14CK78zfjhJnJdgxP Js6zyNY= -----END CERTIFICATE-----Generated at Thu Jun 5 07:22:10 2025 by rpki-client