$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B490CD0621C911EB991D562EC4F9AE02.roa File: B490CD0621C911EB991D562EC4F9AE02.roa (raw, json) Hash identifier: WNk4We2Ht/Om3rf3IbH7SVRsK901hQ7kL7sR1ONDJ8A= Subject key identifier: 3B:88:00:75:76:2B:6A:10:31:47:00:6E:17:31:5F:A2:56:2A:18:F5 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0FAD Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B490CD0621C911EB991D562EC4F9AE02.roa Signing time: Fri 16 May 2025 17:52:18 +0000 ROA not before: Fri 16 May 2025 17:52:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138538 IP address blocks: 103.113.92.0/22 maxlen: 24 2402:b940::/40 maxlen: 40 2402:b940:200::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4013 (0xfad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 16 17:52:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68277b52-77a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e1:1b:e4:e7:85:b1:0c:1d:4d:ee:89:ef:a8: fa:cc:fe:e6:4e:08:ae:69:71:b9:67:34:67:a4:69: 67:81:8c:b7:01:6b:43:7a:f6:a8:01:54:13:c9:b2: 85:ea:53:f7:59:4f:85:fb:66:32:48:f0:e0:3c:c2: 2d:5a:cb:3d:2b:5c:56:40:26:63:ae:27:76:3b:61: 31:89:fd:db:a8:2f:86:2f:6f:03:59:a8:f4:ff:97: 26:0a:00:c8:fb:3c:38:a8:b7:34:b9:1a:5d:8c:da: c9:aa:e8:f8:55:0a:22:68:77:a0:ec:42:4f:64:85: 60:5d:75:ee:28:07:4a:ad:d3:5a:af:0a:ca:18:bd: dc:e3:c7:fa:24:83:ec:bf:4d:32:85:06:e1:66:25: b7:10:84:f4:b8:72:13:11:bb:78:74:18:cc:9d:5d: e5:88:81:31:00:ea:c6:ce:e8:07:1b:a9:89:8d:f5: 5d:ad:92:46:f9:b6:b9:f7:4e:d8:4e:15:64:c5:cf: b7:ba:e3:09:21:ca:14:6f:5c:0c:7f:a3:be:20:e7: d2:b0:14:93:e4:5d:b4:69:c1:a7:8b:8d:a4:10:e3: 4d:48:86:88:d4:55:9a:f1:b7:4c:73:a4:3a:77:9a: a0:9d:b6:d5:da:0e:44:8b:cd:2d:00:f6:be:d9:62: d5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:88:00:75:76:2B:6A:10:31:47:00:6E:17:31:5F:A2:56:2A:18:F5 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B490CD0621C911EB991D562EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.92.0/22 IPv6: 2402:b940::/40 2402:b940:200::/39 Signature Algorithm: sha256WithRSAEncryption 29:e0:bb:1e:42:cd:3d:63:9d:24:a3:e2:48:fa:6c:38:3b:da: 2a:21:7f:ae:b7:84:a6:3f:da:f9:50:c8:e3:61:5c:94:64:6a: 6c:22:f1:7e:7b:cf:b2:34:43:23:11:cd:40:ce:48:48:5f:76: dc:5e:bb:9a:f0:8c:a6:6a:80:47:2a:06:4b:66:c2:3e:82:48: 33:a1:9b:84:6d:ee:93:41:9f:a5:56:ec:32:ec:e6:66:d9:c3: 29:bb:a2:c3:2c:f0:82:5c:50:a6:d5:40:f3:6a:fb:39:a5:f3: 2e:f2:e7:57:5e:ee:f1:af:82:75:20:e2:9a:4e:8a:db:69:08: cf:d9:48:00:89:8a:d5:d7:dd:3b:ea:9d:d5:02:50:f9:d8:ce: 8c:00:ae:60:67:15:bd:6c:77:63:8c:40:21:d7:af:1c:bd:a6: 15:5d:c5:3a:de:d2:a4:f8:0f:d3:38:43:12:61:8c:d7:91:97: 12:c1:b2:13:ca:0e:1c:1a:64:47:83:e3:77:da:76:0d:47:c7: 00:ce:1d:08:be:54:6d:e3:a6:dc:36:1c:05:8c:7c:c9:d0:b3: c2:bf:d3:24:ef:92:2b:f0:33:2d:9b:07:ed:6b:17:35:e8:7b: 0c:2c:8e:72:1f:f3:5c:39:5a:78:80:68:66:e6:6b:73:fd:30: e0:c1:89:37 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICD60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUwNTE2MTc1MjE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3N2I1Mi03N2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOEb5OeFsQwdTe6J76j6zP7mTgiuaXG5ZzRnpGlngYy3AWtDevaoAVQTybKF 6lP3WU+F+2YySPDgPMItWss9K1xWQCZjrid2O2Exif3bqC+GL28DWaj0/5cmCgDI +zw4qLc0uRpdjNrJquj4VQoiaHeg7EJPZIVgXXXuKAdKrdNarwrKGL3c48f6JIPs v00yhQbhZiW3EIT0uHITEbt4dBjMnV3liIExAOrGzugHG6mJjfVdrZJG+ba5907Y ThVkxc+3uuMJIcoUb1wMf6O+IOfSsBST5F20acGni42kEONNSIaI1FWa8bdMc6Q6 d5qgnbbV2g5Ei80tAPa+2WLVyQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFDuIAHV2 K2oQMUcAbhcxX6JWKhj1MB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvQjQ5MENEMDYy MUM5MTFFQjk5MUQ1NjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAJncVwwFgQCAAIwEAMGACQCuUAAAwYBJAK5QAIwDQYJKoZI hvcNAQELBQADggEBACngux5CzT1jnSSj4kj6bDg72iohf663hKY/2vlQyONhXJRk amwi8X57z7I0QyMRzUDOSEhfdtxeu5rwjKZqgEcqBktmwj6CSDOhm4Rt7pNBn6VW 7DLs5mbZwym7osMs8IJcUKbVQPNq+zml8y7y51de7vGvgnUg4ppOittpCM/ZSACJ itXX3TvqndUCUPnYzowArmBnFb1sd2OMQCHXrxy9phVdxTre0qT4D9M4QxJhjNeR lxLBshPKDhwaZEeD43fadg1HxwDOHQi+VG3jptw2HAWMfMnQs8K/0yTvkivwMy2b B+1rFzXoewwsjnIf81w5WniAaGbma3P9MODBiTc= -----END CERTIFICATE-----Generated at Thu Jun 5 05:43:18 2025 by rpki-client