$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/E049FDF87A4511EBBB2D0A52C4F9AE02.roa File: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (raw, json) Hash identifier: Jk6V50ct0NhfCUNeq2rSB6SPY6PZ86y8Zd5FDESJ7kI= Subject key identifier: 2A:D1:93:42:DC:D1:B0:DE:42:28:1D:5C:36:1E:E5:E2:69:6D:7E:D4 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0FA9 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/E049FDF87A4511EBBB2D0A52C4F9AE02.roa Signing time: Fri 16 May 2025 17:52:14 +0000 ROA not before: Fri 16 May 2025 17:52:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132825 IP address blocks: 103.113.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4009 (0xfa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 16 17:52:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68277b4e-329a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:09:54:75:97:9e:00:8e:55:bd:e2:ef:eb:5c: 99:ad:8e:2e:9d:90:14:88:a3:19:47:3e:c4:83:19: 36:a8:68:f9:59:5a:09:ec:c6:4a:ee:84:2f:26:06: 19:26:16:40:54:53:42:ac:3d:a9:d7:6b:5b:50:bc: d7:4a:37:ae:c4:e6:ab:c7:02:8b:d1:c7:1b:b1:f6: 6f:02:04:95:eb:ea:65:8b:3f:80:e4:d7:84:79:c1: 4f:68:37:80:75:de:a6:1e:95:2f:1c:73:97:2f:8d: a8:b7:04:76:82:71:fa:d8:16:92:1d:10:9f:48:67: e9:2c:3b:c9:1e:7a:7d:b7:88:3a:84:37:da:4f:35: 14:b9:63:8c:59:a9:7d:72:0a:e2:a7:69:10:eb:75: 94:6b:9d:9b:5f:64:06:1e:36:11:9d:e8:ca:4b:6a: fc:79:40:0a:10:59:d6:b4:b4:38:d0:cb:0f:76:37: 77:23:bd:7c:e7:70:e3:b7:c6:a4:f2:69:f4:bd:77: 45:8b:06:de:a5:aa:e8:f9:1e:1a:94:73:a6:0e:3d: eb:17:90:68:a7:de:fd:20:c0:2b:ad:40:e4:c9:bd: 60:dd:a9:62:e5:9b:8e:6f:60:b5:9f:d1:89:99:41: 70:6a:64:b0:33:d1:b8:7d:a3:79:0b:68:95:09:7f: c6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D1:93:42:DC:D1:B0:DE:42:28:1D:5C:36:1E:E5:E2:69:6D:7E:D4 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/E049FDF87A4511EBBB2D0A52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.92.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:0f:db:6d:51:7f:fc:dd:47:78:86:41:3a:27:9c:00:48:65: 4f:58:09:52:8b:6a:56:12:c9:0b:7d:e9:83:d9:c6:93:51:de: 09:cd:3f:95:2c:fa:11:3b:5a:57:b2:f1:ef:14:f1:04:3d:fc: 55:e8:ba:80:af:42:81:99:7c:15:d6:6d:b9:6c:e3:f0:a2:b2: 2d:f6:b6:e5:47:c6:75:24:27:76:36:d5:b0:52:1d:08:57:0c: 18:b9:b0:64:2f:ad:45:c9:c7:68:bc:ba:fa:8d:7d:14:03:ad: bc:33:d6:b5:d5:2b:97:5d:2c:4b:fc:0e:09:4a:61:12:62:11: 4e:5b:86:8d:3e:66:32:2a:16:a5:1f:6c:c3:bc:14:2b:3c:b0: a1:d4:ea:c5:a9:75:3c:f9:fe:d9:f0:39:0d:bb:96:47:66:b6: d2:06:f6:2d:ef:82:b7:2c:f7:26:9e:86:0b:22:5c:28:98:f1: 7b:e9:7b:f2:93:51:ad:7a:dc:94:f6:69:2f:97:46:4c:a2:f8: 4e:41:34:ab:d1:84:b1:5f:c3:bc:fd:7c:49:9c:d8:b7:37:dd: 64:5c:a1:8d:ee:ee:07:fd:78:26:fb:b1:da:6c:00:2a:7b:da: 44:03:e5:62:77:b9:a7:3e:67:1d:d3:ea:a2:dc:67:0d:1c:f3: 90:a7:ee:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUwNTE2MTc1MjE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3N2I0ZS0zMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwlUdZeeAI5VveLv61yZrY4unZAUiKMZRz7Egxk2qGj5WVoJ7MZK7oQvJgYZ JhZAVFNCrD2p12tbULzXSjeuxOarxwKL0ccbsfZvAgSV6+pliz+A5NeEecFPaDeA dd6mHpUvHHOXL42otwR2gnH62BaSHRCfSGfpLDvJHnp9t4g6hDfaTzUUuWOMWal9 cgrip2kQ63WUa52bX2QGHjYRnejKS2r8eUAKEFnWtLQ40MsPdjd3I71853Djt8ak 8mn0vXdFiwbeparo+R4alHOmDj3rF5Bop979IMArrUDkyb1g3ali5ZuOb2C1n9GJ mUFwamSwM9G4faN5C2iVCX/GywIDAQABo4IClTCCApEwHQYDVR0OBBYEFCrRk0Lc 0bDeQigdXDYe5eJpbX7UMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvRTA0OUZERjg3 QTQ1MTFFQkJCMkQwQTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncVwwDQYJKoZIhvcNAQELBQADggEBABoP221Rf/zdR3iG QTonnABIZU9YCVKLalYSyQt96YPZxpNR3gnNP5Us+hE7Wley8e8U8QQ9/FXouoCv QoGZfBXWbbls4/Cisi32tuVHxnUkJ3Y21bBSHQhXDBi5sGQvrUXJx2i8uvqNfRQD rbwz1rXVK5ddLEv8DglKYRJiEU5bho0+ZjIqFqUfbMO8FCs8sKHU6sWpdTz5/tnw OQ27lkdmttIG9i3vgrcs9yaehgsiXCiY8Xvpe/KTUa163JT2aS+XRkyi+E5BNKvR hLFfw7z9fEmc2Lc33WRcoY3u7gf9eCb7sdpsACp72kQD5WJ3uac+Zx3T6qLcZw0c 85Cn7gg= -----END CERTIFICATE-----Generated at Thu Jun 5 05:48:42 2025 by rpki-client