$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/0BEE202087BA11EBBBA56067C4F9AE02.roa File: 0BEE202087BA11EBBBA56067C4F9AE02.roa (raw, json) Hash identifier: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg= Subject key identifier: 20:94:A3:AC:B7:AF:60:B0:33:FC:DB:6F:D1:5A:FB:4B:05:FB:E5:92 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 066D Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/0BEE202087BA11EBBBA56067C4F9AE02.roa Signing time: Tue 06 May 2025 22:33:51 +0000 ROA not before: Tue 06 May 2025 22:33:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141995 IP address blocks: 103.164.54.0/23 maxlen: 23 2400:d320::/32 maxlen: 32 2400:d321::/32 maxlen: 32 2407:3640::/32 maxlen: 32 2407:3641::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 22:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: May 6 22:33:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a8e4e-fd89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9d:92:2c:8b:05:58:83:55:b6:63:ed:ae:3b: b2:8c:df:30:62:44:b1:e0:c2:8a:30:84:88:1e:34: 9d:bc:e3:1a:70:85:18:f0:82:ec:c0:76:5e:ff:1d: 69:f0:18:27:c1:f8:29:d8:3c:51:0b:99:78:3c:8c: ce:d5:f0:ff:52:60:31:28:81:ae:9a:dc:3f:79:36: b8:bd:e7:cb:99:73:50:0b:47:3c:06:b0:0f:7f:67: d0:e8:de:65:bf:d2:38:dc:fa:9e:89:ac:df:84:c8: e2:42:63:f5:85:f7:a1:5c:e3:2a:ec:d3:6e:aa:fb: db:24:2a:07:36:44:74:dd:eb:05:f8:97:4a:18:24: b0:18:6c:7f:9f:dd:67:a3:aa:f9:a1:a2:d4:98:7a: 34:b0:59:ee:ed:cb:48:2d:ad:fe:3d:02:27:cf:cd: ba:d3:f1:2d:23:ea:fe:d2:ea:a3:b2:45:ab:20:27: d8:61:e9:ff:78:37:e9:b6:93:92:7d:3b:f9:b6:00: 0a:72:a3:72:c8:bd:01:ab:0a:bb:a2:41:d7:f0:f9: 83:14:a6:90:6c:52:fb:2d:79:6c:7c:aa:21:74:d1: 81:d9:d0:30:ed:c5:48:ef:a1:53:5a:e2:95:39:5f: 4e:7a:0f:d9:42:3f:3a:fb:25:07:6f:67:38:78:9f: 23:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:94:A3:AC:B7:AF:60:B0:33:FC:DB:6F:D1:5A:FB:4B:05:FB:E5:92 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/0BEE202087BA11EBBBA56067C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.54.0/23 IPv6: 2400:d320::/31 2407:3640::/31 Signature Algorithm: sha256WithRSAEncryption 13:6f:17:93:d0:42:c7:f9:de:9d:59:6f:70:6b:78:87:b7:cf: 7e:e1:5c:94:80:e8:55:e7:ad:49:1b:d2:ff:4b:fe:e5:59:d9: 44:e7:0b:94:f9:e9:8d:36:c7:2a:70:02:b9:ca:66:6a:0c:f9: 44:fa:00:51:41:0e:f5:2f:b8:05:09:db:af:d5:4f:01:40:3e: 54:43:ce:53:11:aa:b5:9e:ae:45:77:c7:20:c3:44:a5:4c:e1: cc:a5:e7:d9:f4:99:b9:40:db:da:f2:ca:60:39:62:7a:eb:f8: 95:bc:77:e1:ef:35:54:78:8d:4a:7e:15:8f:fa:0f:42:cf:5a: da:23:94:f7:8d:1e:f6:4a:29:89:b9:97:d4:ba:36:5d:47:48: b1:af:3b:44:59:7f:f3:b4:6b:cf:d3:b0:94:5b:4a:ac:96:0c: d4:70:e1:ce:ce:38:a7:dd:18:2f:c4:24:05:32:ec:e7:f7:ba: ba:3e:b8:cc:ac:0c:ab:40:b4:42:85:17:5d:12:95:1b:b2:a2: 9e:df:7d:78:f9:90:90:e5:f0:bc:73:63:ef:e2:e8:b2:51:af: 1f:d4:8e:0e:cf:75:47:71:48:e4:ce:67:4c:21:21:6d:14:52: b2:b2:92:ab:6b:ca:28:12:7b:63:af:85:32:d0:d2:f3:be:d9: a3:45:f8:23 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwNTA2MjIzMzUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhOGU0ZS1mZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZ2SLIsFWINVtmPtrjuyjN8wYkSx4MKKMISIHjSdvOMacIUY8ILswHZe/x1p 8Bgnwfgp2DxRC5l4PIzO1fD/UmAxKIGumtw/eTa4vefLmXNQC0c8BrAPf2fQ6N5l v9I43PqeiazfhMjiQmP1hfehXOMq7NNuqvvbJCoHNkR03esF+JdKGCSwGGx/n91n o6r5oaLUmHo0sFnu7ctILa3+PQInz8260/EtI+r+0uqjskWrICfYYen/eDfptpOS fTv5tgAKcqNyyL0Bqwq7okHX8PmDFKaQbFL7LXlsfKohdNGB2dAw7cVI76FTWuKV OV9Oeg/ZQj86+yUHb2c4eJ8jkwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFCCUo6y3 r2CwM/zbb9Fa+0sF++WSMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk1Q0EvRjM2NDNCMTA4MzA1MTFFQjk3MTg5QjM5QzRGOUFFMDIvMEJFRTIwMjA4 N0JBMTFFQkJCQTU2MDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMAwEAgABMAYDBAFnpDYwFAQCAAIwDgMFASQA0yADBQEkBzZAMA0GCSqGSIb3 DQEBCwUAA4IBAQATbxeT0ELH+d6dWW9wa3iHt89+4VyUgOhV561JG9L/S/7lWdlE 5wuU+emNNscqcAK5ymZqDPlE+gBRQQ71L7gFCduv1U8BQD5UQ85TEaq1nq5Fd8cg w0SlTOHMpefZ9Jm5QNva8spgOWJ66/iVvHfh7zVUeI1KfhWP+g9Cz1raI5T3jR72 SimJuZfUujZdR0ixrztEWX/ztGvP07CUW0qslgzUcOHOzjin3RgvxCQFMuzn97q6 PrjMrAyrQLRChRddEpUbsqKe3314+ZCQ5fC8c2Pv4uiyUa8f1I4Oz3VHcUjkzmdM ISFtFFKyspKra8ooEntjr4Uy0NLzvtmjRfgj -----END CERTIFICATE-----Generated at Sun May 18 03:18:52 2025 by rpki-client