$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa File: 9FE80B2898F711EE87DF6E1FC4F9AE02.roa (raw, json) Hash identifier: D3GA9GI+1ZpOYK34vPRNum86peu3I5thgqu5liFntgU= Subject key identifier: 2E:5E:31:0D:1D:8A:0A:A8:3D:4F:F8:E5:17:E9:91:F5:05:3F:84:BB Certificate issuer: /CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Certificate serial: 0126 Authority key identifier: F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa Signing time: Sat 17 May 2025 05:04:46 +0000 ROA not before: Sat 17 May 2025 05:04:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140577 IP address blocks: 61.16.24.0/22 maxlen: 24 103.150.140.0/23 maxlen: 23 103.150.140.0/24 maxlen: 24 103.150.141.0/24 maxlen: 24 202.8.40.0/22 maxlen: 24 202.94.84.0/23 maxlen: 24 2001:df3:7c80::/48 maxlen: 48 2401:59a0::/32 maxlen: 32 2401:59a0::/48 maxlen: 48 2401:59a0:1::/48 maxlen: 48 2401:59a0:2::/48 maxlen: 48 2401:59a0:3::/48 maxlen: 48 2401:59a0:4::/48 maxlen: 48 2401:59a0:5::/48 maxlen: 48 2401:59a0:6::/48 maxlen: 48 2401:59a0:7::/48 maxlen: 48 2401:59a0:8::/46 maxlen: 46 2401:59a0:c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2, serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Validity Not Before: May 17 05:04:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682818ed-279f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7a:7a:2b:a1:c0:54:88:6f:05:50:fa:87:d9: 1f:f6:85:32:3b:aa:5a:31:eb:af:0e:38:a8:38:43: 28:27:e2:1e:2e:cb:83:a8:5d:2e:1a:34:5e:86:85: df:20:dc:71:66:56:c8:e8:1c:91:08:b8:ab:11:ab: a0:32:a9:69:ad:44:f3:bd:b9:38:40:b7:6b:e8:b2: c8:36:40:0b:12:87:0c:64:cf:05:d4:13:ff:6c:ce: 97:27:2e:d0:a3:53:9b:12:56:3b:1f:9c:6c:97:2c: 6c:cd:89:29:a7:cf:66:6f:a7:a2:fd:7d:2a:98:44: c7:1f:c0:2a:29:97:86:c4:0b:bf:ac:b2:35:23:f9: c7:05:71:8d:34:9e:09:31:b0:50:52:cd:01:a5:19: 80:4b:35:d8:bd:fb:ed:0b:3a:a7:98:fa:e1:62:6f: 14:0b:e2:89:f0:04:fb:b9:e3:ed:f5:c2:c2:a1:50: 6e:51:7b:5d:81:2a:af:73:88:7c:38:b8:4f:b3:c4: 70:61:19:de:9d:42:86:75:f8:be:8f:b9:0b:63:ab: 3e:10:3b:38:38:bf:b9:ce:08:75:24:a9:1d:49:06: eb:4a:60:73:f8:c2:a3:79:0e:5d:4f:71:76:d4:7f: 80:81:16:ee:e8:06:e0:f1:40:af:37:89:c8:1b:e6: 39:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:5E:31:0D:1D:8A:0A:A8:3D:4F:F8:E5:17:E9:91:F5:05:3F:84:BB X509v3 Authority Key Identifier: keyid:F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9FE80B2898F711EE87DF6E1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.16.24.0/22 103.150.140.0/23 202.8.40.0/22 202.94.84.0/23 IPv6: 2001:df3:7c80::/48 2401:59a0::/32 Signature Algorithm: sha256WithRSAEncryption 37:c5:05:8f:81:00:fd:2d:2a:a3:20:d1:70:7f:b8:4b:fe:ce: da:76:14:97:73:36:18:b9:92:ae:68:4a:aa:8a:f3:7c:87:04: 1a:b6:03:e1:af:dd:0e:d7:d9:55:55:86:7b:eb:54:8a:a0:84: fb:ae:a0:fa:89:ba:61:9c:76:63:3f:f2:1f:86:1b:01:af:d7: b6:b0:11:f1:c0:2c:98:b9:31:01:0b:18:1c:bb:d6:3e:5c:d0: ad:28:26:18:a0:c3:02:62:dc:81:cb:08:67:11:bc:dd:ed:33: fb:19:da:39:35:53:8f:f1:5a:86:5e:ed:64:84:ce:28:82:86: 5c:98:4a:dc:9b:43:ea:e0:d9:91:00:98:6b:5a:97:8a:a2:01: b0:f5:a3:c8:42:77:58:5f:89:fd:20:29:b0:d1:7c:3f:f4:d1: a2:85:86:d4:34:70:76:79:55:d4:df:4a:4a:46:d6:8e:eb:8d: ca:62:20:40:b3:41:4f:d5:a0:8d:e6:9e:98:22:25:25:53:15: 6f:d4:e4:3b:7b:20:5d:e1:a4:40:81:a3:37:43:44:06:1e:e9: 5d:5d:63:3e:28:ac:e6:77:63:b5:b0:db:97:be:87:11:a2:95: 19:bc:ce:49:36:0a:f9:ac:d0:49:9b:15:62:0b:57:5a:f3:1d: 80:37:b4:f8 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1QTIxMTAvBgNVBAUTKEY1QjExNzA1NEFGNTA5QzJDMzMzNjlEQTk2MUY0NDZE RENBQjgzNDIwHhcNMjUwNTE3MDUwNDQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI4MThlZC0yNzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnp6K6HAVIhvBVD6h9kf9oUyO6paMeuvDjioOEMoJ+IeLsuDqF0uGjRehoXf INxxZlbI6ByRCLirEaugMqlprUTzvbk4QLdr6LLINkALEocMZM8F1BP/bM6XJy7Q o1ObElY7H5xslyxszYkpp89mb6ei/X0qmETHH8AqKZeGxAu/rLI1I/nHBXGNNJ4J MbBQUs0BpRmASzXYvfvtCzqnmPrhYm8UC+KJ8AT7uePt9cLCoVBuUXtdgSqvc4h8 OLhPs8RwYRnenUKGdfi+j7kLY6s+EDs4OL+5zgh1JKkdSQbrSmBz+MKjeQ5dT3F2 1H+AgRbu6Abg8UCvN4nIG+Y5SQIDAQABo4ICvzCCArswHQYDVR0OBBYEFC5eMQ0d igqoPU/45RfpkfUFP4S7MB8GA1UdIwQYMBaAFPWxFwVK9QnCwzNp2pYfRG3cq4NC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTVBMi80NjcwRUFBQzk4 RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi85YkVYQlVyMUNjTERNMm5hbGg5RWJkeXJn MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzliRVhCVXIxQ2NMRE0ybmFsaDlFYmR5cmcwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE1QTIvNDY3MEVBQUM5OEY2MTFFRUJCRjFGNDE3QzRGOUFFMDIvOUZFODBCMjg5 OEY3MTFFRTg3REY2RTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MB4EAgABMBgDBAI9EBgDBAFnlowDBALKCCgDBAHKXlQwFgQCAAIwEAMHACAB DfN8gAMFACQBWaAwDQYJKoZIhvcNAQELBQADggEBADfFBY+BAP0tKqMg0XB/uEv+ ztp2FJdzNhi5kq5oSqqK83yHBBq2A+Gv3Q7X2VVVhnvrVIqghPuuoPqJumGcdmM/ 8h+GGwGv17awEfHALJi5MQELGBy71j5c0K0oJhigwwJi3IHLCGcRvN3tM/sZ2jk1 U4/xWoZe7WSEziiChlyYStybQ+rg2ZEAmGtal4qiAbD1o8hCd1hfif0gKbDRfD/0 0aKFhtQ0cHZ5VdTfSkpG1o7rjcpiIECzQU/VoI3mnpgiJSVTFW/U5Dt7IF3hpECB ozdDRAYe6V1dYz4orOZ3Y7Ww25e+hxGilRm8zkk2Cvms0EmbFWILV1rzHYA3tPg= -----END CERTIFICATE-----Generated at Mon Jun 2 06:58:12 2025 by rpki-client