$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/E0FCE614425811EAADEA3B45C4F9AE02.roa File: E0FCE614425811EAADEA3B45C4F9AE02.roa (raw, json) Hash identifier: 4i/qRxDxm1IhOaEBUeWCrIN1RXkz58rViMQa88EFEXM= Subject key identifier: E4:E3:75:D8:16:96:55:F8:3B:5E:23:64:85:D1:56:8E:8D:E3:C8:49 Certificate issuer: /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Certificate serial: 0B1A Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/E0FCE614425811EAADEA3B45C4F9AE02.roa Signing time: Tue 24 Jun 2025 19:14:38 +0000 ROA not before: Tue 24 Jun 2025 19:14:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58935 IP address blocks: 103.249.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2842 (0xb1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Validity Not Before: Jun 24 19:14:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685af91d-40c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:29:05:66:e7:c3:55:90:bc:37:ae:c8:4b:70: 5a:c8:a8:ce:ab:86:17:fb:40:e4:e0:15:42:3a:e3: dc:47:1d:f7:95:30:c6:f4:cb:66:e3:d4:46:bc:d8: f8:a4:58:dd:a9:2c:20:74:69:7e:a9:02:2b:02:63: d4:83:ef:41:ad:cc:7d:76:a8:d4:a2:df:4a:52:ba: 06:04:55:85:b3:93:59:a5:ca:50:8f:99:fa:ff:fd: 71:77:c7:43:4d:b1:50:a8:dd:34:08:e2:e6:dd:70: 48:fb:a6:80:fa:6d:da:24:f7:f0:16:4c:e3:a2:24: 5b:1a:ec:94:34:3d:96:d2:da:64:af:ff:b7:0e:4d: 0f:44:34:db:c3:86:1d:48:f1:92:be:4d:26:d3:82: 79:3f:db:36:8d:35:9b:c4:03:7a:53:4f:32:86:8c: 84:ab:9e:a9:01:47:f7:1f:6d:60:cc:78:e0:67:ab: 33:b4:48:25:de:a5:91:a2:d4:67:83:c5:67:46:2a: 02:89:95:68:36:67:9e:5d:c2:34:d4:60:37:9a:d9: 94:fd:60:d6:8e:fb:11:ab:9a:99:55:0a:18:39:3a: 3a:2f:a0:6b:41:3c:cd:1f:d2:65:1c:1c:e8:fd:9b: b9:9a:1e:08:e6:a7:77:65:fd:48:01:ce:26:08:c6: 71:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E3:75:D8:16:96:55:F8:3B:5E:23:64:85:D1:56:8E:8D:E3:C8:49 X509v3 Authority Key Identifier: keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/E0FCE614425811EAADEA3B45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.56.0/24 Signature Algorithm: sha256WithRSAEncryption 57:51:2b:44:63:76:f5:5b:67:34:bb:af:7d:92:34:84:8c:fd: 1c:b4:fd:5f:01:93:66:51:cf:4b:ad:35:4f:9f:41:87:8f:70: 67:82:c6:fa:a3:55:03:4b:a3:d1:4f:01:40:66:4d:9b:97:93: 30:67:c3:f5:f1:45:f2:3e:d7:98:cb:fa:be:23:df:fa:b2:0a: a0:e8:30:0f:9e:23:65:13:8a:65:d8:61:c4:6e:59:cc:8e:69: a8:04:af:95:e4:04:fb:49:9f:20:72:55:1a:3e:5f:59:ba:54: c6:38:69:c9:26:a5:3f:20:6f:f4:db:ba:59:48:e7:92:20:94: 28:b3:2c:18:57:91:68:5b:bd:e3:60:ef:e8:ab:b9:cd:6d:19: b2:ec:17:3b:2d:a7:07:6d:67:df:4f:cb:9a:3b:f9:c5:3f:4a: f9:2b:6f:00:32:7f:c1:b9:76:c0:f1:ce:61:56:d0:7f:e1:89: 9f:51:61:1f:c0:0d:1e:3b:62:ed:ef:0e:a3:40:ac:66:37:f6: 30:d4:63:01:02:e2:97:af:fa:37:27:e6:93:c8:71:60:03:80: 48:ba:9a:63:1f:10:a0:19:aa:d5:3d:b9:c4:8f:c5:6e:6d:86: 0b:00:20:64:36:cc:29:a3:a8:a0:89:50:e3:bc:8b:80:04:57: 3b:91:6e:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKDU0MUUwQTY2RkU2MEYzQUFDMDI1MDJDRUYxRTQ4RTYy N0E2MkY3NDEwHhcNMjUwNjI0MTkxNDM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhZjkxZC00MGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9SkFZufDVZC8N67IS3BayKjOq4YX+0Dk4BVCOuPcRx33lTDG9Mtm49RGvNj4 pFjdqSwgdGl+qQIrAmPUg+9Brcx9dqjUot9KUroGBFWFs5NZpcpQj5n6//1xd8dD TbFQqN00COLm3XBI+6aA+m3aJPfwFkzjoiRbGuyUND2W0tpkr/+3Dk0PRDTbw4Yd SPGSvk0m04J5P9s2jTWbxAN6U08yhoyEq56pAUf3H21gzHjgZ6sztEgl3qWRotRn g8VnRioCiZVoNmeeXcI01GA3mtmU/WDWjvsRq5qZVQoYOTo6L6BrQTzNH9JlHBzo /Zu5mh4I5qd3Zf1IAc4mCMZx7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOTjddgW llX4O14jZIXRVo6N48hJMB8GA1UdIwQYMBaAFFQeCmb+YPOqwCUCzvHkjmJ6YvdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9CQTU5NTM1RTQy NTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2ckFKUUxPOGVTT1lucGk5 MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZCNEtadjVnODZyQUpRTE84ZVNPWW5waTkwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg4RDkvQkE1OTUzNUU0MjU3MTFFQThGODM4QTQzQzRGOUFFMDIvRTBGQ0U2MTQ0 MjU4MTFFQUFERUEzQjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn+TgwDQYJKoZIhvcNAQELBQADggEBAFdRK0RjdvVbZzS7 r32SNISM/Ry0/V8Bk2ZRz0utNU+fQYePcGeCxvqjVQNLo9FPAUBmTZuXkzBnw/Xx RfI+15jL+r4j3/qyCqDoMA+eI2UTimXYYcRuWcyOaagEr5XkBPtJnyByVRo+X1m6 VMY4ackmpT8gb/TbullI55IglCizLBhXkWhbveNg7+iruc1tGbLsFzstpwdtZ99P y5o7+cU/SvkrbwAyf8G5dsDxzmFW0H/hiZ9RYR/ADR47Yu3vDqNArGY39jDUYwEC 4pev+jcn5pPIcWADgEi6mmMfEKAZqtU9ucSPxW5thgsAIGQ2zCmjqKCJUOO8i4AE VzuRbj4= -----END CERTIFICATE-----Generated at Fri Jul 4 21:54:24 2025 by rpki-client