$ rpki-client -vvf rpki.apnic.net/member_repository/A91493CC/EA1703640AFB11EEA06A2367C4F9AE02/B50741120AFF11EEBADB6A67C4F9AE02.roa File: B50741120AFF11EEBADB6A67C4F9AE02.roa (raw, json) Hash identifier: 6xfHA0xOfSf1bsWXYgETgvu/Qg0LpdZ4QedkQYTwxII= Subject key identifier: E7:A9:64:98:C8:4D:C6:39:53:93:FA:54:C1:F9:CA:FF:26:8D:0B:95 Certificate issuer: /CN=A91493CC/serialNumber=F03F55CB271FC5B6F7D4A888780B8D8B6A90580D Certificate serial: 0184 Authority key identifier: F0:3F:55:CB:27:1F:C5:B6:F7:D4:A8:88:78:0B:8D:8B:6A:90:58:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D9Vyycfxbb31KiIeAuNi2qQWA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91493CC/EA1703640AFB11EEA06A2367C4F9AE02/B50741120AFF11EEBADB6A67C4F9AE02.roa Signing time: Thu 03 Jul 2025 04:07:54 +0000 ROA not before: Thu 03 Jul 2025 04:07:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151405 IP address blocks: 103.221.64.0/23 maxlen: 23 103.221.64.0/24 maxlen: 24 103.221.65.0/24 maxlen: 24 2001:df2:93c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91493CC/EA1703640AFB11EEA06A2367C4F9AE02/8D9Vyycfxbb31KiIeAuNi2qQWA0.crl rsync://rpki.apnic.net/member_repository/A91493CC/EA1703640AFB11EEA06A2367C4F9AE02/8D9Vyycfxbb31KiIeAuNi2qQWA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D9Vyycfxbb31KiIeAuNi2qQWA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91493CC, serialNumber=F03F55CB271FC5B6F7D4A888780B8D8B6A90580D Validity Not Before: Jul 3 04:07:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6866021a-fe0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:66:cb:a9:d6:53:7a:fa:74:56:71:ae:75: e9:78:0f:83:e2:58:48:7c:38:0e:0f:d7:0c:ea:4d: 7f:51:1f:b7:b1:7a:6f:92:ea:d2:44:4e:eb:8e:ba: 86:9e:27:55:72:9a:af:fa:10:74:aa:14:d5:c3:4a: 31:0a:7e:00:78:77:a8:d9:25:55:12:79:85:6b:9c: 98:8c:7f:85:55:a5:52:dd:5a:54:92:d9:5b:91:28: 82:80:8c:85:89:c2:11:68:37:d2:7d:4d:c1:13:06: 46:2f:92:59:f0:c5:69:69:cb:d3:02:68:8b:93:4f: 6c:99:e1:18:d6:41:a0:7f:2b:1d:0a:85:3e:a2:7b: f2:ba:bd:ee:82:ef:ac:db:c4:69:6e:11:70:87:09: 25:22:47:9b:0d:fc:fe:b0:f9:35:6b:3a:25:96:41: 9f:53:a0:8d:a5:92:0c:e6:00:d4:19:6f:ef:d7:50: 13:6b:59:6c:91:95:ba:9b:7d:60:9c:0c:59:e8:4c: 4e:37:68:d4:0e:1f:9e:4e:40:6d:e4:b8:79:0b:56: 78:22:b3:a0:f1:b9:60:dd:6a:22:ef:23:0f:65:dc: a8:69:6d:7b:ec:d3:ae:18:dd:f9:9a:93:12:3c:b5: 4f:cd:6d:50:9b:a7:b8:34:1a:a6:0b:4e:84:dd:58: 3c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A9:64:98:C8:4D:C6:39:53:93:FA:54:C1:F9:CA:FF:26:8D:0B:95 X509v3 Authority Key Identifier: keyid:F0:3F:55:CB:27:1F:C5:B6:F7:D4:A8:88:78:0B:8D:8B:6A:90:58:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91493CC/EA1703640AFB11EEA06A2367C4F9AE02/8D9Vyycfxbb31KiIeAuNi2qQWA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D9Vyycfxbb31KiIeAuNi2qQWA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91493CC/EA1703640AFB11EEA06A2367C4F9AE02/B50741120AFF11EEBADB6A67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.221.64.0/23 IPv6: 2001:df2:93c0::/48 Signature Algorithm: sha256WithRSAEncryption 38:8a:94:bd:44:98:8e:18:c9:0c:48:45:7f:06:c1:2f:7f:50: 54:49:73:6b:f3:41:74:5b:24:45:38:17:cf:38:2d:29:1b:80: b2:8b:4e:8a:5e:64:26:ef:f9:b5:40:8f:62:d7:4e:c6:48:a8: 8b:0d:41:6d:8b:8b:e4:aa:81:a0:c3:c3:f3:fe:64:08:13:af: 55:1e:3e:8e:74:bd:62:74:c8:3f:13:8b:f2:43:1e:b7:40:ac: 15:77:a7:b4:45:57:0b:96:50:83:ce:00:00:39:dc:56:56:a5: 17:1e:f7:b1:2f:28:29:ee:99:16:9e:80:71:48:38:c9:4d:a3: 8e:90:46:92:d0:be:8e:33:67:c1:a6:32:da:32:42:4b:ab:47: b5:62:18:7e:f2:da:38:cb:5d:88:a6:20:70:8b:40:38:a1:ed: ab:8d:4b:01:e7:04:6d:ed:33:b9:c0:bf:2a:b3:27:da:ce:b2: e9:ff:02:32:63:80:42:d3:05:f0:50:c0:6a:9b:8f:41:2b:66: c2:f9:ed:6a:6c:ff:90:2d:06:18:b5:4d:9b:a4:57:13:c9:12: f8:85:65:de:ef:d9:60:80:de:7f:ab:fb:bb:4d:8f:bf:9d:d1: f7:f9:c1:86:2b:e0:a6:99:e4:e4:ab:0e:57:41:da:b4:c7:7d: 90:08:33:83 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkzQ0MxMTAvBgNVBAUTKEYwM0Y1NUNCMjcxRkM1QjZGN0Q0QTg4ODc4MEI4RDhC NkE5MDU4MEQwHhcNMjUwNzAzMDQwNzU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MDIxYS1mZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtetmy6nWU3r6dFZxrnXpeA+D4lhIfDgOD9cM6k1/UR+3sXpvkurSRE7rjrqG nidVcpqv+hB0qhTVw0oxCn4AeHeo2SVVEnmFa5yYjH+FVaVS3VpUktlbkSiCgIyF icIRaDfSfU3BEwZGL5JZ8MVpacvTAmiLk09smeEY1kGgfysdCoU+onvyur3ugu+s 28RpbhFwhwklIkebDfz+sPk1azollkGfU6CNpZIM5gDUGW/v11ATa1lskZW6m31g nAxZ6ExON2jUDh+eTkBt5Lh5C1Z4IrOg8blg3Woi7yMPZdyoaW177NOuGN35mpMS PLVPzW1Qm6e4NBqmC06E3Vg86wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOepZJjI TcY5U5P6VMH5yv8mjQuVMB8GA1UdIwQYMBaAFPA/VcsnH8W299SoiHgLjYtqkFgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTNDQy9FQTE3MDM2NDBB RkIxMUVFQTA2QTIzNjdDNEY5QUUwMi84RDlWeXljZnhiYjMxS2lJZUF1TmkycVFX QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhEOVZ5eWNmeGJiMzFLaUllQXVOaTJxUVdBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDkzQ0MvRUExNzAzNjQwQUZCMTFFRUEwNkEyMzY3QzRGOUFFMDIvQjUwNzQxMTIw QUZGMTFFRUJBREI2QTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn3UAwDwQCAAIwCQMHACABDfKTwDANBgkqhkiG9w0BAQsF AAOCAQEAOIqUvUSYjhjJDEhFfwbBL39QVElza/NBdFskRTgXzzgtKRuAsotOil5k Ju/5tUCPYtdOxkioiw1BbYuL5KqBoMPD8/5kCBOvVR4+jnS9YnTIPxOL8kMet0Cs FXentEVXC5ZQg84AADncVlalFx73sS8oKe6ZFp6AcUg4yU2jjpBGktC+jjNnwaYy 2jJCS6tHtWIYfvLaOMtdiKYgcItAOKHtq41LAecEbe0zucC/KrMn2s6y6f8CMmOA QtMF8FDAapuPQStmwvntamz/kC0GGLVNm6RXE8kS+IVl3u/ZYIDef6v7u02Pv53R 9/nBhivgppnk5KsOV0HatMd9kAgzgw== -----END CERTIFICATE-----Generated at Thu Jul 3 14:18:29 2025 by rpki-client