$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/6D6C7AC8F02511EE80ACAA37C4F9AE02.roa File: 6D6C7AC8F02511EE80ACAA37C4F9AE02.roa (raw, json) Hash identifier: kOsZib8Nc5bHVvef+ZYfV2LwOOkHjRtiFIQC+/5WkmQ= Subject key identifier: 96:D8:C9:85:2A:EC:3E:E2:44:7A:0A:99:AA:67:17:FD:7D:91:FB:02 Certificate issuer: /CN=A91FF3B6/serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Certificate serial: 05EC Authority key identifier: 66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/6D6C7AC8F02511EE80ACAA37C4F9AE02.roa Signing time: Mon 26 May 2025 23:53:49 +0000 ROA not before: Mon 26 May 2025 23:53:49 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149535 IP address blocks: 103.216.164.0/24 maxlen: 24 103.216.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1516 (0x5ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF3B6, serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Validity Not Before: May 26 23:53:49 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6834ff0d-96c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:18:cc:15:c7:e7:63:98:43:83:03:e5:a4:1c: 3c:39:7d:d1:9c:2b:c8:e8:d7:80:87:40:21:e0:62: 85:93:d2:15:9b:86:10:9d:c6:d1:de:a8:b4:b2:af: 1a:76:9d:9b:90:a0:d4:36:25:4e:2b:32:0a:2e:2b: 82:b9:2b:7a:99:7e:9c:7a:2f:57:bd:f0:ab:81:2d: 7c:0b:de:9e:c2:d8:79:7a:b7:8b:ad:b8:db:7e:1a: 92:35:a2:b8:a7:fc:52:68:59:bb:7c:b9:41:8f:84: 36:54:a7:6d:0f:6b:d8:93:3a:c6:f5:4f:d1:89:f7: ff:11:34:41:87:b8:55:db:f1:54:38:91:3f:d1:94: b8:5d:25:9d:5e:a5:67:48:04:47:c5:de:2d:26:56: 34:30:2d:92:33:9b:4a:f7:5f:32:47:3f:e2:48:3a: 20:64:d9:5f:8c:25:3f:ad:ba:db:27:f5:b8:eb:df: cc:44:ae:2f:dc:3c:1b:e6:5d:ac:76:f2:07:f1:bf: d4:51:81:50:e9:1a:38:c9:ac:51:be:06:95:ec:2d: be:a3:fb:7f:28:de:ea:98:f4:e4:6f:f0:40:bf:40: 61:f5:14:a9:4a:ee:55:e3:d1:08:de:f3:79:63:d8: 5f:15:0f:2c:af:18:70:61:82:18:40:0d:fc:91:f1: 5d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D8:C9:85:2A:EC:3E:E2:44:7A:0A:99:AA:67:17:FD:7D:91:FB:02 X509v3 Authority Key Identifier: keyid:66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/6D6C7AC8F02511EE80ACAA37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.216.164.0/24 103.216.166.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:93:48:35:5d:cd:60:bc:d7:c9:2d:e3:5a:b0:66:e6:6e:47: 02:93:83:a3:49:f4:77:ca:77:cc:c4:d4:65:57:61:0c:df:c8: 19:82:18:f5:62:fe:fd:d8:9f:d7:3c:51:fa:9c:78:b4:ef:9b: 49:37:b9:3a:69:b2:2c:1f:13:aa:31:bd:ae:48:39:4a:a6:ae: b9:0e:d4:6e:94:4f:3d:0a:e1:c3:d2:97:42:a3:ec:76:03:42: 56:6c:ce:58:50:f5:a5:bc:e9:af:32:31:f2:ac:26:b0:bb:5a: 12:c9:af:05:7a:e0:f5:3b:60:3d:a6:b0:60:de:5d:1d:b0:0c: 15:f1:35:77:fe:57:75:73:3b:cb:28:32:f0:6a:46:c1:9e:2c: 29:ac:31:85:f2:95:10:0d:87:a4:fe:4b:8e:bd:d7:28:5b:9f: 97:a5:dd:6d:c3:f9:cc:c4:ad:49:48:cd:9e:78:c4:d5:56:e6: 88:bc:8e:fb:52:37:71:03:7b:05:30:35:a0:5f:1f:80:ae:23: 5e:c8:ea:d9:b9:b4:3e:da:21:5d:86:49:99:93:4a:89:a4:98: db:35:cf:c5:af:26:6f:a3:f4:4f:93:1b:bf:fa:5e:b9:24:f5: 92:66:ad:59:89:5f:c0:29:8a:41:82:88:22:e6:2a:5b:08:26: 82:35:18:f0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYzQjYxMTAvBgNVBAUTKDY2MEVEREJCMzVENTM3NTZDMzA2QkQ4Q0Q5MTdEQUNG Rjc4OTZDQkQwHhcNMjUwNTI2MjM1MzQ5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ZmYwZC05NmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshjMFcfnY5hDgwPlpBw8OX3RnCvI6NeAh0Ah4GKFk9IVm4YQncbR3qi0sq8a dp2bkKDUNiVOKzIKLiuCuSt6mX6cei9XvfCrgS18C96ewth5ereLrbjbfhqSNaK4 p/xSaFm7fLlBj4Q2VKdtD2vYkzrG9U/Riff/ETRBh7hV2/FUOJE/0ZS4XSWdXqVn SARHxd4tJlY0MC2SM5tK918yRz/iSDogZNlfjCU/rbrbJ/W469/MRK4v3Dwb5l2s dvIH8b/UUYFQ6Ro4yaxRvgaV7C2+o/t/KN7qmPTkb/BAv0Bh9RSpSu5V49EI3vN5 Y9hfFQ8srxhwYYIYQA38kfFdswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJbYyYUq 7D7iRHoKmapnF/19kfsCMB8GA1UdIwQYMBaAFGYO3bs11TdWwwa9jNkX2s/3iWy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjNCNi81MDhBQ0QyOEJD OTkxMUVCQTFBQjU2NEJDNEY5QUUwMi9aZzdkdXpYVk4xYkRCcjJNMlJmYXpfZUpi TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnN2R1elhWTjFiREJyMk0yUmZhel9lSmJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkYzQjYvNTA4QUNEMjhCQzk5MTFFQkExQUI1NjRCQzRGOUFFMDIvNkQ2QzdBQzhG MDI1MTFFRTgwQUNBQTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn2KQDBABn2KYwDQYJKoZIhvcNAQELBQADggEBAEyTSDVd zWC818kt41qwZuZuRwKTg6NJ9HfKd8zE1GVXYQzfyBmCGPVi/v3Yn9c8UfqceLTv m0k3uTppsiwfE6oxva5IOUqmrrkO1G6UTz0K4cPSl0Kj7HYDQlZszlhQ9aW86a8y MfKsJrC7WhLJrwV64PU7YD2msGDeXR2wDBXxNXf+V3VzO8soMvBqRsGeLCmsMYXy lRANh6T+S4691yhbn5el3W3D+czErUlIzZ54xNVW5oi8jvtSN3EDewUwNaBfH4Cu I17I6tm5tD7aIV2GSZmTSomkmNs1z8WvJm+j9E+TG7/6Xrkk9ZJmrVmJX8ApikGC iCLmKlsIJoI1GPA= -----END CERTIFICATE-----Generated at Tue Jun 3 23:46:11 2025 by rpki-client