$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa File: 4E17ACCEF02511EE94BE6C37C4F9AE02.roa (raw, json) Hash identifier: K6HGyYpDyX+WEMm19ozywOEbiMxJPunHlaTz934NBcY= Subject key identifier: BB:6F:BA:5B:76:57:CE:3B:18:22:2A:B8:08:AB:95:E6:B5:AE:A9:88 Certificate issuer: /CN=A91FF3B6/serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Certificate serial: 05EB Authority key identifier: 66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa Signing time: Mon 26 May 2025 23:53:48 +0000 ROA not before: Mon 26 May 2025 23:53:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132220 IP address blocks: 103.216.164.0/22 maxlen: 22 103.216.165.0/24 maxlen: 24 103.216.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1515 (0x5eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF3B6, serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Validity Not Before: May 26 23:53:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6834ff0c-e965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:29:ed:43:a0:52:3a:3c:40:63:f8:25:0d: 4b:49:60:2f:60:89:38:52:24:d9:d0:98:05:d5:2c: ee:84:68:55:07:b9:de:8a:bf:19:fa:88:ef:0f:40: b2:23:01:68:0d:d7:c0:b2:dc:93:2d:55:08:e5:9a: 77:d0:1b:62:68:9d:ed:4e:10:3f:82:47:18:d3:7e: 10:ad:f2:1f:83:77:17:89:7b:bf:33:1e:00:65:63: 72:37:8f:80:e8:ce:b9:c9:2f:d3:69:9b:21:2d:32: be:55:4f:af:24:c1:2b:69:72:86:7c:9d:91:5b:de: 5d:5d:28:34:e5:af:e3:83:2c:2c:ba:d6:d8:28:27: 7b:e7:08:83:17:c2:10:15:27:ab:6e:ed:40:9f:53: 02:0c:eb:a5:d9:15:76:37:d8:5f:b8:8c:49:c7:e4: ad:a4:79:43:89:79:b6:f8:ef:03:45:f6:a0:45:aa: a1:9e:3c:37:8d:be:3d:93:35:ad:bf:81:7e:18:a5: 9f:6b:62:b5:4e:3e:89:c5:82:ab:34:03:41:0d:81: 7e:ff:4c:24:4f:04:56:a1:ea:18:d4:3a:d4:06:fd: ff:78:24:a7:f4:9e:a5:ab:36:a3:c1:b4:17:48:e5: 21:9c:f0:6c:59:c1:d4:5e:57:41:50:e3:bc:89:57: 42:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6F:BA:5B:76:57:CE:3B:18:22:2A:B8:08:AB:95:E6:B5:AE:A9:88 X509v3 Authority Key Identifier: keyid:66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.216.164.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:fe:71:13:3a:b0:24:64:5b:46:19:a7:fc:84:72:22:21:52: 28:8f:e4:e3:41:8f:1c:08:6f:c8:dd:24:54:12:e4:12:fb:78: ee:f4:46:f8:5f:e6:8d:c2:8f:74:74:58:e0:60:f9:b6:76:ef: c5:4a:4f:50:db:84:b8:60:2c:a7:7a:f0:0f:cd:4f:db:99:3d: d7:b7:45:32:8e:c2:61:9f:53:df:88:84:fb:87:b2:4e:ac:f4: 59:39:4d:03:1e:b3:f7:ef:5b:a4:b5:52:22:94:c0:6e:91:1c: 23:5b:5c:64:8f:c9:40:d7:a6:da:be:df:00:3a:2c:60:38:7c: de:55:03:26:01:08:b1:84:5f:9a:4e:a1:0f:ee:b3:70:4b:30: df:c8:b7:e6:34:39:99:d8:65:72:50:3f:2d:76:30:16:3b:2c: 2f:e3:43:8c:f2:b9:d6:a0:3c:35:9d:38:a0:93:97:3d:91:62: 11:92:e5:8f:56:6e:21:cb:2d:83:78:fe:dd:eb:20:2f:64:2a: a9:0a:7f:f7:fe:49:61:b9:7e:86:7b:92:23:76:d0:5c:bc:0e: 7f:ee:e3:c3:e5:2a:f1:71:1f:4d:b2:f0:56:a3:d4:60:4d:42: b3:0c:06:f9:13:40:12:f2:74:80:b0:9b:26:8a:52:16:49:0c: 57:74:df:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYzQjYxMTAvBgNVBAUTKDY2MEVEREJCMzVENTM3NTZDMzA2QkQ4Q0Q5MTdEQUNG Rjc4OTZDQkQwHhcNMjUwNTI2MjM1MzQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ZmYwYy1lOTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fUp7UOgUjo8QGP4JQ1LSWAvYIk4UiTZ0JgF1SzuhGhVB7neir8Z+ojvD0Cy IwFoDdfAstyTLVUI5Zp30BtiaJ3tThA/gkcY034QrfIfg3cXiXu/Mx4AZWNyN4+A 6M65yS/TaZshLTK+VU+vJMEraXKGfJ2RW95dXSg05a/jgywsutbYKCd75wiDF8IQ FSerbu1An1MCDOul2RV2N9hfuIxJx+StpHlDiXm2+O8DRfagRaqhnjw3jb49kzWt v4F+GKWfa2K1Tj6JxYKrNANBDYF+/0wkTwRWoeoY1DrUBv3/eCSn9J6lqzajwbQX SOUhnPBsWcHUXldBUOO8iVdCFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLtvult2 V847GCIquAirlea1rqmIMB8GA1UdIwQYMBaAFGYO3bs11TdWwwa9jNkX2s/3iWy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjNCNi81MDhBQ0QyOEJD OTkxMUVCQTFBQjU2NEJDNEY5QUUwMi9aZzdkdXpYVk4xYkRCcjJNMlJmYXpfZUpi TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnN2R1elhWTjFiREJyMk0yUmZhel9lSmJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkYzQjYvNTA4QUNEMjhCQzk5MTFFQkExQUI1NjRCQzRGOUFFMDIvNEUxN0FDQ0VG MDI1MTFFRTk0QkU2QzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn2KQwDQYJKoZIhvcNAQELBQADggEBAA3+cRM6sCRkW0YZ p/yEciIhUiiP5ONBjxwIb8jdJFQS5BL7eO70Rvhf5o3Cj3R0WOBg+bZ278VKT1Db hLhgLKd68A/NT9uZPde3RTKOwmGfU9+IhPuHsk6s9Fk5TQMes/fvW6S1UiKUwG6R HCNbXGSPyUDXptq+3wA6LGA4fN5VAyYBCLGEX5pOoQ/us3BLMN/It+Y0OZnYZXJQ Py12MBY7LC/jQ4zyudagPDWdOKCTlz2RYhGS5Y9WbiHLLYN4/t3rIC9kKqkKf/f+ SWG5foZ7kiN20Fy8Dn/u48PlKvFxH02y8Faj1GBNQrMMBvkTQBLydICwmyaKUhZJ DFd030w= -----END CERTIFICATE-----Generated at Mon Jun 2 06:50:40 2025 by rpki-client