$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/7588035C913E11EFB46E9A72C4F9AE02.roa File: 7588035C913E11EFB46E9A72C4F9AE02.roa (raw, json) Hash identifier: mBxiRWgEarnzYFat9Qg22lu2bbXA9CIcAcjVQbJnnic= Subject key identifier: D2:83:CD:AC:08:68:6E:ED:62:D5:DD:CF:EB:02:25:7C:07:F0:C7:0C Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 0178 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/7588035C913E11EFB46E9A72C4F9AE02.roa Signing time: Tue 03 Jun 2025 04:01:51 +0000 ROA not before: Tue 03 Jun 2025 04:01:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58914 IP address blocks: 103.24.64.0/22 maxlen: 24 2406:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Jun 3 04:01:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e73af-a6ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2e:9e:73:23:e4:4a:50:e2:26:44:d0:98:12: 0d:c5:e8:f5:9d:fa:42:d1:bd:fb:6a:90:a9:46:f7: 0a:aa:98:4e:a6:9a:d1:fe:77:47:a5:c9:89:f8:db: 2e:c6:a3:92:0f:f5:40:53:70:6e:11:d9:34:e2:1b: 7a:ef:b6:93:4a:f3:94:ab:ec:d4:5b:aa:e6:87:c4: da:e6:a2:4f:a8:67:f3:46:23:c2:b7:ee:db:6a:e9: 7f:3d:75:93:90:72:e5:48:63:2a:3e:85:87:65:0e: a1:f8:2d:7a:d0:15:5f:bf:a0:f9:b3:85:0b:5a:5e: c3:ab:a4:64:84:9d:ce:7e:c8:95:38:b9:9d:52:c7: 9e:a4:f4:37:7e:dd:fd:22:0b:85:d2:79:19:5a:81: 3b:de:42:e2:5d:ac:be:57:c0:7e:65:e9:53:6e:fb: 47:06:cf:82:9c:9e:b6:3c:7f:e8:8f:4b:37:27:7b: 94:9d:71:7d:49:bf:92:e6:1f:17:07:fa:bf:c4:55: 9a:b1:8c:9e:d5:76:d8:f6:38:5d:b8:d2:46:a9:46: 4f:47:29:09:f1:35:5a:10:75:75:12:bc:5f:9c:ee: d6:aa:de:2c:67:ac:31:1d:5e:7c:c8:8b:b3:ba:2e: 5f:cf:ab:54:40:83:9d:8d:22:25:c7:f0:a9:ee:91: 83:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:83:CD:AC:08:68:6E:ED:62:D5:DD:CF:EB:02:25:7C:07:F0:C7:0C X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/7588035C913E11EFB46E9A72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.64.0/22 IPv6: 2406:b300::/32 Signature Algorithm: sha256WithRSAEncryption 99:07:77:5e:ca:44:22:b2:63:c9:29:61:60:64:17:83:7b:96: b0:3e:59:6c:65:c6:84:9e:b0:28:ad:fb:9d:ff:a2:10:06:4a: a7:9a:16:2f:2e:e4:63:e7:78:94:f0:49:d9:92:92:82:9c:95: 45:6f:e3:f3:5c:e2:a6:ec:55:45:4d:d5:92:09:d3:83:df:03: 5a:cf:ec:dc:f4:c5:26:98:4c:dc:7f:63:d4:ba:76:1d:22:5b: ba:95:8a:ce:2b:4d:b9:5e:49:81:55:c2:34:6c:80:f2:97:47: e8:e6:e9:59:64:f7:60:b4:34:73:73:77:85:a2:4e:fb:7a:99: dc:5d:fa:9f:11:9a:36:67:46:70:49:50:68:d2:f9:88:4b:68: 30:6a:89:fe:d1:f5:36:a1:53:ca:ef:17:64:24:54:47:cf:7c: d4:3f:a3:79:89:15:d1:bb:c6:63:d3:25:f1:4f:0c:11:cf:7a: 00:59:7a:63:81:cf:b3:d5:86:d7:2c:99:e9:1b:0a:42:d7:ce: e7:d9:5d:ae:21:55:49:b6:f4:0b:f3:3b:af:87:2f:6a:31:d3: 6e:aa:9f:bb:cb:65:7c:92:75:01:18:3d:5b:67:3a:b7:cd:01: 06:e8:a8:f8:70:53:40:d8:54:82:6f:d6:f6:18:d7:eb:7c:e0: e3:57:6c:b8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjUwNjAzMDQwMTUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNzNhZi1hNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1S6ecyPkSlDiJkTQmBINxej1nfpC0b37apCpRvcKqphOpprR/ndHpcmJ+Nsu xqOSD/VAU3BuEdk04ht677aTSvOUq+zUW6rmh8Ta5qJPqGfzRiPCt+7baul/PXWT kHLlSGMqPoWHZQ6h+C160BVfv6D5s4ULWl7Dq6RkhJ3OfsiVOLmdUseepPQ3ft39 IguF0nkZWoE73kLiXay+V8B+ZelTbvtHBs+CnJ62PH/oj0s3J3uUnXF9Sb+S5h8X B/q/xFWasYye1XbY9jhduNJGqUZPRykJ8TVaEHV1ErxfnO7Wqt4sZ6wxHV58yIuz ui5fz6tUQIOdjSIlx/Cp7pGDOQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNKDzawI aG7tYtXdz+sCJXwH8McMMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE1NjIvMjY1N0Y3M0UwQkM5MTFFRThGNzlCQjVEQzRGOUFFMDIvNzU4ODAzNUM5 MTNFMTFFRkI0NkU5QTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnGEAwDQQCAAIwBwMFACQGswAwDQYJKoZIhvcNAQELBQAD ggEBAJkHd17KRCKyY8kpYWBkF4N7lrA+WWxlxoSesCit+53/ohAGSqeaFi8u5GPn eJTwSdmSkoKclUVv4/Nc4qbsVUVN1ZIJ04PfA1rP7Nz0xSaYTNx/Y9S6dh0iW7qV is4rTbleSYFVwjRsgPKXR+jm6Vlk92C0NHNzd4WiTvt6mdxd+p8RmjZnRnBJUGjS +YhLaDBqif7R9TahU8rvF2QkVEfPfNQ/o3mJFdG7xmPTJfFPDBHPegBZemOBz7PV htcsmekbCkLXzufZXa4hVUm29AvzO6+HL2ox026qn7vLZXySdQEYPVtnOrfNAQbo qPhwU0DYVIJv1vYY1+t84ONXbLg= -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:15 2025 by rpki-client