$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/65C6DD42E15211EC8EEE9668C4F9AE02.roa File: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (raw, json) Hash identifier: BLYldDR5zxqTMcX8NQEJYFIKVTzk5VrQGbTFGjfROjo= Subject key identifier: CC:C8:3F:EA:A8:10:F2:F7:06:32:D9:D7:D1:11:40:C6:07:49:72:90 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 061F Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/65C6DD42E15211EC8EEE9668C4F9AE02.roa Signing time: Sat 14 Jun 2025 22:42:02 +0000 ROA not before: Sat 14 Jun 2025 22:42:02 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142124 IP address blocks: 103.166.170.0/24 maxlen: 24 103.166.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8, serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Jun 14 22:42:02 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=684dfaba-0705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:f9:24:83:01:85:93:e0:d9:04:8e:11:e7:51: 4a:8d:d2:b6:de:8d:84:44:db:13:50:3a:41:8c:09: 7e:0e:4a:d9:a7:9c:0a:48:18:47:1e:f6:5f:c4:fb: 57:cd:eb:fe:2e:be:ba:d1:b4:bf:1d:84:ec:c4:7c: 56:d0:6f:02:09:47:46:bf:72:c8:fa:ed:a5:b7:4d: 46:73:db:be:11:6a:70:7e:1c:cd:b8:9c:1f:29:54: b6:27:5c:24:66:22:c3:87:2c:5a:f5:61:db:08:e3: 2a:51:e1:d8:14:ad:82:97:2e:48:93:e3:ed:9b:5e: 63:7e:cf:94:95:74:a1:2d:14:12:31:24:63:c6:48: df:f9:47:8c:96:67:be:30:f6:3f:f2:51:b8:f0:08: dd:b6:f4:23:95:10:28:87:91:4c:fd:d7:09:ef:64: 77:bc:97:28:5e:8d:39:79:ea:c0:d5:fe:dc:42:16: ce:5b:5f:f5:8c:9d:e0:03:c5:1e:8e:1a:7e:37:3e: 06:b9:26:23:40:1f:90:8b:f5:aa:c8:20:b7:b1:61: a6:31:f2:1d:a3:55:2d:01:f8:64:9b:f8:15:06:f1: 3c:53:40:34:5d:4b:45:d7:b5:ba:da:a9:a1:43:3a: 62:3d:34:07:d1:fb:6d:08:36:9e:09:77:bb:af:d1: 2c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C8:3F:EA:A8:10:F2:F7:06:32:D9:D7:D1:11:40:C6:07:49:72:90 X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/65C6DD42E15211EC8EEE9668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.170.0/23 Signature Algorithm: sha256WithRSAEncryption a4:69:d7:52:d0:6c:8b:30:75:28:4f:ec:bd:c4:78:73:d1:3b: db:5e:4d:94:69:68:11:d3:80:fe:14:5c:3d:e0:7d:62:b0:a1: ad:5c:df:ba:de:c8:52:5a:c1:56:d1:bf:e6:e0:69:17:c4:3b: e8:40:75:fe:23:54:53:f5:02:eb:d5:38:7b:8e:3b:67:f5:c9: ce:e4:16:b8:e3:0a:4b:95:1e:5d:8c:67:c4:0c:be:3d:27:cb: 92:7e:e1:ee:13:ae:f2:6f:4a:2d:06:8f:9d:76:4b:86:ee:44: 33:7a:6e:92:4d:f5:2f:db:7d:6d:ea:db:04:36:d9:0d:5a:f4: bd:f1:76:c5:2d:84:3c:d1:45:bf:f3:42:9a:cf:54:7c:96:91: e1:c7:9a:41:fe:63:95:c5:4c:b3:f3:22:73:75:ca:f6:e2:9a: 2a:33:31:14:4a:0a:bc:b8:fd:b4:13:6a:50:05:8e:7f:87:25: 58:21:1f:ea:ef:f6:27:06:cf:7a:70:16:2a:fd:e8:d3:27:02: ae:94:1a:ef:c6:8e:6d:77:27:4f:2b:44:8a:15:68:60:67:f2: 33:6f:0c:1c:cd:40:11:dd:29:93:cf:5d:8c:5e:6e:b2:68:7a: 71:fa:0f:ad:ed:db:e2:cd:f3:55:7e:02:13:fb:4d:44:33:7c: c2:92:45:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjUwNjE0MjI0MjAyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRkZmFiYS0wNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+vkkgwGFk+DZBI4R51FKjdK23o2ERNsTUDpBjAl+DkrZp5wKSBhHHvZfxPtX zev+Lr660bS/HYTsxHxW0G8CCUdGv3LI+u2lt01Gc9u+EWpwfhzNuJwfKVS2J1wk ZiLDhyxa9WHbCOMqUeHYFK2Cly5Ik+Ptm15jfs+UlXShLRQSMSRjxkjf+UeMlme+ MPY/8lG48AjdtvQjlRAoh5FM/dcJ72R3vJcoXo05eerA1f7cQhbOW1/1jJ3gA8Ue jhp+Nz4GuSYjQB+Qi/WqyCC3sWGmMfIdo1UtAfhkm/gVBvE8U0A0XUtF17W62qmh QzpiPTQH0fttCDaeCXe7r9Es8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMzIP+qo EPL3BjLZ19ERQMYHSXKQMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg2RTgvNDg4OTU5NEVBODAwMTFFQjkwNjUwQTE1QzRGOUFFMDIvNjVDNkRENDJF MTUyMTFFQzhFRUU5NjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpqowDQYJKoZIhvcNAQELBQADggEBAKRp11LQbIswdShP 7L3EeHPRO9teTZRpaBHTgP4UXD3gfWKwoa1c37reyFJawVbRv+bgaRfEO+hAdf4j VFP1AuvVOHuOO2f1yc7kFrjjCkuVHl2MZ8QMvj0ny5J+4e4TrvJvSi0Gj512S4bu RDN6bpJN9S/bfW3q2wQ22Q1a9L3xdsUthDzRRb/zQprPVHyWkeHHmkH+Y5XFTLPz InN1yvbimiozMRRKCry4/bQTalAFjn+HJVghH+rv9icGz3pwFir96NMnAq6UGu/G jm13J08rRIoVaGBn8jNvDBzNQBHdKZPPXYxebrJoenH6D63t2+LN81V+AhP7TUQz fMKSRck= -----END CERTIFICATE-----Generated at Fri Jul 4 08:06:18 2025 by rpki-client