$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/106F283CB74311EDB0C38030C4F9AE02.roa File: 106F283CB74311EDB0C38030C4F9AE02.roa (raw, json) Hash identifier: hw7fn2Uz56pW/An8KSiF7/ybzu4erny13VSakUkooRo= Subject key identifier: AE:DC:01:DA:8A:85:74:64:BB:AB:3B:D7:D3:C8:6E:A0:8E:31:31:E5 Certificate issuer: /CN=A91FA9BC/serialNumber=4ABBD7301CFF7FB4ACB6A04A14F0A36CCE85611C Certificate serial: 01C9 Authority key identifier: 4A:BB:D7:30:1C:FF:7F:B4:AC:B6:A0:4A:14:F0:A3:6C:CE:85:61:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/106F283CB74311EDB0C38030C4F9AE02.roa Signing time: Wed 07 May 2025 02:40:22 +0000 ROA not before: Wed 07 May 2025 02:40:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150787 IP address blocks: 103.163.225.0/24 maxlen: 24 103.243.179.0/24 maxlen: 24 2001:df6:3480::/47 maxlen: 47 2001:df6:3480::/48 maxlen: 48 2001:df6:3481::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.crl rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA9BC, serialNumber=4ABBD7301CFF7FB4ACB6A04A14F0A36CCE85611C Validity Not Before: May 7 02:40:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=681ac816-0b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c9:58:42:fc:3b:7e:de:7e:51:51:a9:06:3c: fb:c2:ee:53:fd:fd:b7:a4:93:ed:c9:5f:30:7a:36: 0f:ae:40:c8:10:f1:23:07:16:73:ad:96:32:18:86: 4b:25:21:24:b8:ec:4f:b2:57:1c:89:72:5e:42:a7: 6d:c7:f1:63:43:c8:56:67:f8:08:52:f8:d8:27:13: 53:b8:08:90:74:36:a7:21:61:a2:1c:b9:c8:45:b6: 12:28:3c:23:54:a6:02:e4:62:22:e3:22:18:21:0b: 59:12:6b:20:6e:2c:79:01:39:66:9f:b5:58:fe:47: 85:a8:5f:bc:cc:0e:fe:b3:86:5b:d6:37:0d:ef:0c: 16:f5:36:9f:8e:01:d2:49:89:69:57:94:df:92:c8: 4b:f3:c3:ee:f9:a5:b0:2b:22:25:5c:f8:a4:8b:cf: 0d:85:8a:9f:a5:b0:f2:19:35:bd:86:c7:a7:8a:7c: c6:9c:77:60:f6:17:b2:d1:a0:a6:67:a2:a8:aa:f6: 22:10:06:b7:fa:66:62:8e:80:6c:1a:38:43:16:79: 9c:10:66:2f:a3:a1:58:3c:a4:9f:84:7f:2d:f9:29: 9f:19:28:06:ee:11:0e:86:3b:98:9d:ee:86:1a:26: a0:a6:42:d1:9f:2f:84:45:0e:ef:2a:25:f1:0e:f2: d5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DC:01:DA:8A:85:74:64:BB:AB:3B:D7:D3:C8:6E:A0:8E:31:31:E5 X509v3 Authority Key Identifier: keyid:4A:BB:D7:30:1C:FF:7F:B4:AC:B6:A0:4A:14:F0:A3:6C:CE:85:61:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/106F283CB74311EDB0C38030C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.225.0/24 103.243.179.0/24 IPv6: 2001:df6:3480::/47 Signature Algorithm: sha256WithRSAEncryption 89:5f:ad:26:d8:aa:24:e2:19:28:9f:3e:2f:a3:8e:ed:7d:d0: 72:34:a7:ee:64:b2:a6:95:eb:fc:e4:8f:b6:9a:c0:ea:09:4f: ad:2c:93:1a:97:1b:4b:fb:3a:7f:19:57:e1:b7:aa:1a:bc:a8: 3e:f9:2f:17:60:cf:49:ec:08:7d:63:2f:22:d8:cf:d4:59:86: fe:50:96:fc:c9:12:52:98:e6:84:4e:8d:88:d5:b3:59:eb:43: 36:4a:cf:c9:77:80:5a:bb:b4:2b:22:56:9b:25:ad:28:c3:de: 5a:73:6f:9b:a2:eb:2a:a0:53:ce:80:2c:81:e9:8c:27:f3:4a: 76:c1:3c:c5:ed:72:c8:2d:f6:4c:55:da:51:47:0d:6b:a9:c6: 54:80:db:fb:8b:67:2b:bd:3e:99:41:c5:0e:fd:de:37:30:bd: 51:86:c4:09:bd:16:7f:cb:9b:52:c2:ac:64:c7:11:4c:e9:8f: 7c:c8:77:54:e2:17:52:15:56:a7:0c:fa:7a:31:61:37:b7:83: 0c:37:da:50:96:2a:c4:33:85:0b:3b:e3:47:e9:93:d2:d3:01: 71:1f:51:31:df:9c:f7:72:e6:ce:3a:f3:64:3c:f6:80:09:51: 2f:fc:5d:74:7a:d7:48:52:ee:ed:40:d8:e5:8d:73:08:50:1e: d0:81:13:e3 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE5QkMxMTAvBgNVBAUTKDRBQkJENzMwMUNGRjdGQjRBQ0I2QTA0QTE0RjBBMzZD Q0U4NTYxMUMwHhcNMjUwNTA3MDI0MDIyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYzgxNi0wYjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMlYQvw7ft5+UVGpBjz7wu5T/f23pJPtyV8wejYPrkDIEPEjBxZzrZYyGIZL JSEkuOxPslcciXJeQqdtx/FjQ8hWZ/gIUvjYJxNTuAiQdDanIWGiHLnIRbYSKDwj VKYC5GIi4yIYIQtZEmsgbix5ATlmn7VY/keFqF+8zA7+s4Zb1jcN7wwW9TafjgHS SYlpV5TfkshL88Pu+aWwKyIlXPiki88NhYqfpbDyGTW9hseninzGnHdg9hey0aCm Z6KoqvYiEAa3+mZijoBsGjhDFnmcEGYvo6FYPKSfhH8t+SmfGSgG7hEOhjuYne6G GiagpkLRny+ERQ7vKiXxDvLVaQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFK7cAdqK hXRku6s719PIbqCOMTHlMB8GA1UdIwQYMBaAFEq71zAc/3+0rLagShTwo2zOhWEc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTlCQy9CRTJDRUZGMEIz QUExMUVEQUYzMTYyM0ZDNEY5QUUwMi9TcnZYTUJ6X2Y3U3N0cUJLRlBDamJNNkZZ UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NydlhNQnpfZjdTc3RxQktGUENqYk02RllSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE5QkMvQkUyQ0VGRjBCM0FBMTFFREFGMzE2MjNGQzRGOUFFMDIvMTA2RjI4M0NC NzQzMTFFREIwQzM4MDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABno+EDBABn87MwDwQCAAIwCQMHASABDfY0gDANBgkqhkiG 9w0BAQsFAAOCAQEAiV+tJtiqJOIZKJ8+L6OO7X3QcjSn7mSyppXr/OSPtprA6glP rSyTGpcbS/s6fxlX4beqGryoPvkvF2DPSewIfWMvItjP1FmG/lCW/MkSUpjmhE6N iNWzWetDNkrPyXeAWru0KyJWmyWtKMPeWnNvm6LrKqBTzoAsgemMJ/NKdsE8xe1y yC32TFXaUUcNa6nGVIDb+4tnK70+mUHFDv3eNzC9UYbECb0Wf8ubUsKsZMcRTOmP fMh3VOIXUhVWpwz6ejFhN7eDDDfaUJYqxDOFCzvjR+mT0tMBcR9RMd+c93Lmzjrz ZDz2gAlRL/xddHrXSFLu7UDY5Y1zCFAe0IET4w== -----END CERTIFICATE-----Generated at Mon Jun 2 07:10:27 2025 by rpki-client