$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa File: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (raw, json) Hash identifier: XtdmJSxuSqJLeY4yGf6y31fYXsFvKu/1qBD/nGzqK1E= Subject key identifier: 98:59:75:55:31:00:7B:B7:49:01:00:2E:24:70:3C:4A:49:D9:30:C5 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0381 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa Signing time: Tue 01 Jul 2025 01:37:13 +0000 ROA not before: Tue 01 Jul 2025 01:37:13 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 136520 IP address blocks: 103.91.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Jul 1 01:37:13 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68633bc9-c65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:77:d2:4a:2c:4e:f4:f5:da:cf:1d:7b:9f:55: 7f:ba:a1:87:0e:af:2c:82:7d:80:16:4c:88:e6:64: d3:6c:ca:1f:94:c3:df:6f:d5:b4:c8:b5:26:39:d2: ca:65:73:05:00:93:27:6c:c6:4e:ff:7c:29:de:f3: 2b:09:ef:38:d7:01:95:bb:09:2b:2a:60:11:ab:c6: 06:f1:a4:25:cf:70:56:42:f3:ab:28:53:de:b2:3a: c6:b1:38:31:e9:60:68:e2:bb:9a:19:2c:62:0d:50: 9f:78:d6:d1:64:ef:83:41:07:10:b7:e4:a1:88:e5: fb:d1:c5:39:b8:6d:72:ac:c5:01:5c:aa:44:4b:68: 45:85:98:87:e7:08:c1:f1:5d:83:15:b5:60:c9:b1: b4:4a:c5:e8:9a:b2:4a:68:82:54:d6:ce:f4:ff:0c: a8:05:e1:04:1a:3b:77:0a:85:b9:3a:68:64:f5:6c: 38:d1:19:53:01:07:06:bd:08:3d:52:46:e9:c1:fb: 36:44:32:ce:1d:a8:79:73:eb:03:fb:70:4d:a9:b5: 0e:99:2f:0f:9b:ab:c2:29:6b:21:aa:64:a2:2f:bf: 39:7f:6c:a0:5e:a0:d1:79:c0:80:77:48:39:39:b5: 6c:38:d5:2e:78:f1:09:34:72:13:ea:d4:72:da:79: d9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:59:75:55:31:00:7B:B7:49:01:00:2E:24:70:3C:4A:49:D9:30:C5 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.194.0/24 Signature Algorithm: sha256WithRSAEncryption 34:54:c4:50:6a:ff:cc:3d:bd:7f:89:38:1a:94:c6:b8:99:c2: 5d:a1:fe:41:58:f1:eb:66:1f:43:85:c6:90:e1:fc:a6:bf:ea: 14:39:f0:35:bb:a5:b3:d3:2e:88:35:b3:d8:ac:ac:2b:20:3b: a9:0f:07:f0:b3:16:c2:c9:13:07:9b:00:13:02:91:56:10:0b: 0e:47:0d:fd:83:de:db:6d:6d:db:2e:55:85:f1:f5:d8:df:2c: f0:3f:e6:71:d0:89:34:4f:eb:f4:51:e6:03:f6:cd:72:23:7d: 09:1b:a3:66:06:f2:e4:34:c1:8d:87:83:91:9f:93:63:61:38: 94:22:7f:10:ed:8b:b9:60:c2:16:34:3a:1b:c1:98:bd:48:5c: ee:10:bc:35:ae:79:ab:96:4d:3c:2e:0c:d8:b5:9a:9a:b4:65: 49:eb:1d:8d:ac:78:8b:4b:ba:4f:fa:9e:05:e6:af:5d:23:2d: 1f:ae:a5:0b:64:1f:cf:10:be:07:0e:b0:f5:2e:ba:21:17:32: 1c:bd:d1:b1:ef:c1:42:04:2c:c1:1c:45:7b:21:59:54:37:13: c8:e9:ce:81:7d:cf:fb:66:56:f5:31:b4:e4:c6:8f:21:0f:db: fc:43:2f:d5:fb:ff:ef:2c:36:6b:70:13:52:0d:28:65:76:5e: 86:a9:75:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUwNzAxMDEzNzEzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzM2JjOS1jNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXfSSixO9PXazx17n1V/uqGHDq8sgn2AFkyI5mTTbMoflMPfb9W0yLUmOdLK ZXMFAJMnbMZO/3wp3vMrCe841wGVuwkrKmARq8YG8aQlz3BWQvOrKFPesjrGsTgx 6WBo4ruaGSxiDVCfeNbRZO+DQQcQt+ShiOX70cU5uG1yrMUBXKpES2hFhZiH5wjB 8V2DFbVgybG0SsXomrJKaIJU1s70/wyoBeEEGjt3CoW5Omhk9Ww40RlTAQcGvQg9 Ukbpwfs2RDLOHah5c+sD+3BNqbUOmS8Pm6vCKWshqmSiL785f2ygXqDRecCAd0g5 ObVsONUuePEJNHIT6tRy2nnZpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJhZdVUx AHu3SQEALiRwPEpJ2TDFMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5NkEvMjg3ODVGNjBCRkJGMTFFQ0FFRDQ4QzcxQzRGOUFFMDIvMkRFNEM4QUE5 QjYxMTFFRjk5QTk3QjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnW8IwDQYJKoZIhvcNAQELBQADggEBADRUxFBq/8w9vX+J OBqUxriZwl2h/kFY8etmH0OFxpDh/Ka/6hQ58DW7pbPTLog1s9isrCsgO6kPB/Cz FsLJEwebABMCkVYQCw5HDf2D3tttbdsuVYXx9djfLPA/5nHQiTRP6/RR5gP2zXIj fQkbo2YG8uQ0wY2Hg5Gfk2NhOJQifxDti7lgwhY0OhvBmL1IXO4QvDWueauWTTwu DNi1mpq0ZUnrHY2seItLuk/6ngXmr10jLR+upQtkH88QvgcOsPUuuiEXMhy90bHv wUIELMEcRXshWVQ3E8jpzoF9z/tmVvUxtOTGjyEP2/xDL9X7/+8sNmtwE1INKGV2 XoapdQE= -----END CERTIFICATE-----Generated at Sat Jul 5 22:14:54 2025 by rpki-client