$ rpki-client -vvf rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa File: 4B0C31680FA511EFA3249B35C4F9AE02.roa (raw, json) Hash identifier: xyAm+OptmLWgEZqD9AH33MZxMqQhEFXVgaoDCMDjmoA= Subject key identifier: 06:15:0D:A8:86:A5:8E:CF:2A:1D:13:33:2E:19:C1:C8:C3:8E:7E:5F Certificate issuer: /CN=A91311BC/serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Certificate serial: B1 Authority key identifier: D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa Signing time: Sat 05 Apr 2025 05:40:54 +0000 ROA not before: Sat 05 Apr 2025 05:40:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 46015 IP address blocks: 103.18.244.0/22 maxlen: 22 103.18.244.0/24 maxlen: 24 137.59.108.0/22 maxlen: 22 137.59.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91311BC, serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Validity Not Before: Apr 5 05:40:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f0c265-5a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9a:51:e5:1a:59:6f:35:c2:ce:11:20:2c:67: e7:2f:f4:cd:fd:46:84:8c:69:71:16:12:fe:36:05: ee:c7:55:98:5c:fb:7b:9c:c1:f6:d5:a0:b5:1e:8c: f5:11:df:8d:c6:c0:74:76:e3:3a:a5:5d:87:72:29: 53:ef:b4:03:a3:42:d5:f9:cd:e0:cd:03:24:fc:bf: 8c:1a:ea:fe:20:55:5e:64:1e:22:3c:7f:0b:05:34: 1a:8a:e5:14:d3:b0:82:5b:04:c6:5b:5f:30:38:e6: 3f:d7:3e:ee:cd:35:d6:ff:10:1e:28:81:d5:2e:b4: 24:68:73:f1:65:9f:0c:44:1b:49:4a:39:18:f6:fc: 54:1b:f4:3d:af:97:ea:fa:cd:85:c0:fe:2a:14:38: 6b:48:4a:6d:18:f0:18:0a:cd:a5:a7:2d:7e:bd:dd: 5f:51:79:b1:88:a1:7a:4d:7e:46:c1:de:7a:66:4d: ea:ce:1d:ec:ec:18:c8:3e:5e:f6:f5:5a:56:c2:2b: f1:48:e4:7d:be:f2:e8:fa:4d:a1:4f:49:80:73:d3: 49:81:42:14:ef:36:ef:e5:e2:92:fa:80:b2:88:f6: 4f:ac:2a:a6:05:6f:47:6b:2d:6f:cf:a4:68:18:06: c8:d6:6f:fc:5f:19:c8:b1:4d:ac:9c:56:d6:99:df: 0a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:15:0D:A8:86:A5:8E:CF:2A:1D:13:33:2E:19:C1:C8:C3:8E:7E:5F X509v3 Authority Key Identifier: keyid:D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.244.0/22 137.59.108.0/22 Signature Algorithm: sha256WithRSAEncryption 75:0e:27:d2:8a:d2:98:a6:83:fa:de:92:23:ab:07:c2:24:a5: b1:1f:e2:1a:b0:6f:11:c8:88:f3:80:d9:8b:28:77:c3:97:1c: 4c:86:f0:d4:7e:63:ab:08:69:fe:0e:53:d9:d6:b9:1f:b5:82: 7d:5e:4c:c2:48:f8:45:67:78:b1:e0:dd:3c:9e:c9:e2:17:a5: 93:f4:65:2d:cb:5e:12:4c:71:f5:8a:a5:28:d4:fc:ad:fd:07: 2c:82:63:82:e2:a9:d9:94:6c:03:40:25:39:da:62:c1:5e:b7: 2d:47:5d:31:e8:52:6a:b0:78:3d:03:55:14:7b:00:8e:ec:93: 3d:1b:d5:f8:f4:48:4c:cc:93:5c:7c:07:35:dd:77:32:2d:ea: da:56:7a:79:82:fc:58:40:04:88:3c:66:60:57:1f:44:6e:07: 51:a1:42:90:47:81:4d:1a:15:4d:3d:d7:f9:c2:01:dc:bb:a7: 3c:54:4a:69:0e:6f:9a:5c:89:6f:35:32:17:f0:4e:cf:45:5f: db:c3:95:49:07:87:c0:cc:13:9a:84:2a:ed:4d:65:fd:13:22: 9b:2b:7a:15:fe:10:42:d8:27:a8:44:a6:d3:a5:79:53:82:e2: 73:a8:9d:2e:87:e2:ef:fc:5a:af:cb:54:11:26:6a:59:b9:27: 86:f7:c3:86 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzExQkMxMTAvBgNVBAUTKEQ0QjFERDNFQjFBMDZGQTI2MkFCNkM1RUJGNEFGNTM2 NzFBQ0QyRjQwHhcNMjUwNDA1MDU0MDU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwYzI2NS01YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwppR5RpZbzXCzhEgLGfnL/TN/UaEjGlxFhL+NgXux1WYXPt7nMH21aC1Hoz1 Ed+NxsB0duM6pV2HcilT77QDo0LV+c3gzQMk/L+MGur+IFVeZB4iPH8LBTQaiuUU 07CCWwTGW18wOOY/1z7uzTXW/xAeKIHVLrQkaHPxZZ8MRBtJSjkY9vxUG/Q9r5fq +s2FwP4qFDhrSEptGPAYCs2lpy1+vd1fUXmxiKF6TX5Gwd56Zk3qzh3s7BjIPl72 9VpWwivxSOR9vvLo+k2hT0mAc9NJgUIU7zbv5eKS+oCyiPZPrCqmBW9Hay1vz6Ro GAbI1m/8XxnIsU2snFbWmd8KqwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAYVDaiG pY7PKh0TMy4ZwcjDjn5fMB8GA1UdIwQYMBaAFNSx3T6xoG+iYqtsXr9K9TZxrNL0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTFCQy8wNUVFQUJGQzBG QTQxMUVGQTNBQThEMzNDNEY5QUUwMi8xTEhkUHJHZ2I2SmlxMnhldjByMU5uR3Mw dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFMSGRQckdnYjZKaXEyeGV2MHIxTm5HczB2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzExQkMvMDVFRUFCRkMwRkE0MTFFRkEzQUE4RDMzQzRGOUFFMDIvNEIwQzMxNjgw RkE1MTFFRkEzMjQ5QjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnEvQDBAKJO2wwDQYJKoZIhvcNAQELBQADggEBAHUOJ9KK 0pimg/rekiOrB8IkpbEf4hqwbxHIiPOA2Ysod8OXHEyG8NR+Y6sIaf4OU9nWuR+1 gn1eTMJI+EVneLHg3TyeyeIXpZP0ZS3LXhJMcfWKpSjU/K39ByyCY4LiqdmUbANA JTnaYsFety1HXTHoUmqweD0DVRR7AI7skz0b1fj0SEzMk1x8BzXddzIt6tpWenmC /FhABIg8ZmBXH0RuB1GhQpBHgU0aFU091/nCAdy7pzxUSmkOb5pciW81MhfwTs9F X9vDlUkHh8DME5qEKu1NZf0TIpsrehX+EELYJ6hEptOleVOC4nOonS6H4u/8Wq/L VBEmalm5J4b3w4Y= -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:42 2025 by rpki-client