$ rpki-client -vvf rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/01B2AC1E064111E8A62EF586C4F9AE02.roa File: 01B2AC1E064111E8A62EF586C4F9AE02.roa (raw, json) Hash identifier: gDuc8ZWgCrliQXLxnNcUvIObZ9Jrt4XfymfNcicc4pc= Subject key identifier: E5:73:03:C6:30:FB:15:51:AC:05:45:D7:CF:84:13:0C:F5:2C:1A:CF Certificate issuer: /CN=A91935EA/serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Certificate serial: 16A9 Authority key identifier: FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/01B2AC1E064111E8A62EF586C4F9AE02.roa Signing time: Sat 28 Jun 2025 17:07:38 +0000 ROA not before: Sat 28 Jun 2025 17:07:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9834 IP address blocks: 103.88.104.0/22 maxlen: 24 122.252.184.0/21 maxlen: 24 202.21.128.0/24 maxlen: 24 202.162.72.0/23 maxlen: 24 203.57.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5801 (0x16a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91935EA, serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Validity Not Before: Jun 28 17:07:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6860215a-3966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c1:90:81:e6:26:84:c6:ed:8c:d4:3d:c3:0d: 02:6d:00:b0:e0:11:a4:71:82:23:a6:50:37:64:44: 76:f2:28:2d:d3:0e:06:0c:d0:40:2b:23:41:36:ba: ec:98:3b:95:00:e3:d6:b9:68:67:ba:af:09:cf:ab: 7e:22:f3:e0:bd:1f:90:24:94:4b:7f:12:40:87:44: a8:55:69:9c:8f:80:52:f2:89:de:cf:4b:98:08:96: 1a:7e:5c:aa:db:05:0b:24:a5:84:fe:fa:17:54:5a: a1:03:84:6c:77:b9:0a:81:d0:84:f3:b2:1b:81:f0: 33:85:41:0a:d9:19:98:d1:b5:ec:d8:39:8f:02:20: 41:c1:a3:fb:13:d4:dc:a5:81:ff:24:d1:74:39:88: 7b:19:f1:72:a6:01:36:a1:7c:3e:18:15:2b:77:ce: b5:bf:0e:6d:31:3e:74:94:a8:f8:2e:0f:4b:b7:ea: 54:bf:2c:bb:96:e8:9e:cf:2f:06:7d:93:07:e1:a0: 9f:16:d2:7b:3b:36:83:a1:05:67:fc:d0:2e:2d:39: 7c:ac:8d:1d:d7:33:05:7b:a5:4d:90:0b:5b:b7:62: fd:78:61:5c:74:72:b3:ab:13:f6:91:68:8d:d6:0c: 3f:34:82:b4:cb:ff:b5:5f:a7:b3:2d:2e:4c:28:91: 7a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:73:03:C6:30:FB:15:51:AC:05:45:D7:CF:84:13:0C:F5:2C:1A:CF X509v3 Authority Key Identifier: keyid:FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/01B2AC1E064111E8A62EF586C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.104.0/22 122.252.184.0/21 202.21.128.0/24 202.162.72.0/23 203.57.145.0/24 Signature Algorithm: sha256WithRSAEncryption 35:39:41:dc:58:61:ae:89:4a:33:d7:1f:4d:a8:c4:5d:06:70: 96:1e:b6:0b:00:13:08:10:26:c3:2f:9e:c6:fd:61:25:2a:53: 4e:4d:58:1e:00:73:b2:a8:c9:13:3f:eb:19:11:0c:87:c2:63: cb:96:b4:c2:c0:d5:a3:c9:c9:c3:54:ee:4b:db:27:99:d8:fa: d6:2f:07:04:8d:64:ca:6d:51:a1:23:2c:fe:01:bd:52:c5:bc: 7e:2c:b7:64:7b:e3:32:a5:09:9c:78:f9:27:ea:6d:c2:ee:a4: 69:b3:25:64:d8:e0:e9:0e:05:0e:ac:e8:88:07:c6:bc:30:de: 3a:5e:f0:70:2f:ad:43:91:2c:f3:ad:30:b3:9f:02:68:31:d8: 9d:4e:83:88:9f:ca:ca:f2:9e:47:50:5b:7b:5d:56:30:80:56: b5:e8:04:9a:2b:1b:44:bb:db:c9:5e:8d:24:c2:15:dd:53:d3: c6:ad:c3:29:75:c5:af:eb:95:ef:e0:52:b7:d7:0c:4d:54:71: 34:12:dc:0a:d4:f4:f4:f4:1e:bd:f8:2c:a2:5e:34:d9:77:e5: a7:ff:f0:81:ab:08:93:a0:49:a1:3c:99:d7:b8:2f:c8:6a:de: e0:92:8c:62:3f:e0:e8:0b:ab:41:6a:d2:ab:8b:74:85:a8:d9: 88:d8:97:4e -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICFqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM1RUExMTAvBgNVBAUTKEZEN0M0ODExQzg3QzU2NkVGNTVFREFCMEU3NDNGRjA2 NkI5RkE4NjYwHhcNMjUwNjI4MTcwNzM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYwMjE1YS0zOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8GQgeYmhMbtjNQ9ww0CbQCw4BGkcYIjplA3ZER28igt0w4GDNBAKyNBNrrs mDuVAOPWuWhnuq8Jz6t+IvPgvR+QJJRLfxJAh0SoVWmcj4BS8onez0uYCJYaflyq 2wULJKWE/voXVFqhA4Rsd7kKgdCE87IbgfAzhUEK2RmY0bXs2DmPAiBBwaP7E9Tc pYH/JNF0OYh7GfFypgE2oXw+GBUrd861vw5tMT50lKj4Lg9Lt+pUvyy7luiezy8G fZMH4aCfFtJ7OzaDoQVn/NAuLTl8rI0d1zMFe6VNkAtbt2L9eGFcdHKzqxP2kWiN 1gw/NIK0y/+1X6ezLS5MKJF6XwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFOVzA8Yw +xVRrAVF18+EEwz1LBrPMB8GA1UdIwQYMBaAFP18SBHIfFZu9V7asOdD/wZrn6hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzVFQS8xOURENDY3MDAw QUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZtNzFYdHF3NTBQX0JtdWZx R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YeElFY2g4Vm03MVh0cXc1MFBfQm11ZnFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTM1RUEvMTlERDQ2NzAwMEFFMTFFOEJDM0ExRjJGQzRGOUFFMDIvMDFCMkFDMUUw NjQxMTFFOEE2MkVGNTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAJnWGgDBAN6/LgDBADKFYADBAHKokgDBADLOZEwDQYJKoZI hvcNAQELBQADggEBADU5QdxYYa6JSjPXH02oxF0GcJYetgsAEwgQJsMvnsb9YSUq U05NWB4Ac7KoyRM/6xkRDIfCY8uWtMLA1aPJycNU7kvbJ5nY+tYvBwSNZMptUaEj LP4BvVLFvH4st2R74zKlCZx4+SfqbcLupGmzJWTY4OkOBQ6s6IgHxrww3jpe8HAv rUORLPOtMLOfAmgx2J1Og4ifysrynkdQW3tdVjCAVrXoBJorG0S728lejSTCFd1T 08atwyl1xa/rle/gUrfXDE1UcTQS3ArU9PT0Hr34LKJeNNl35af/8IGrCJOgSaE8 mde4L8hq3uCSjGI/4OgLq0Fq0quLdIWo2YjYl04= -----END CERTIFICATE-----Generated at Sat Jul 5 22:36:26 2025 by rpki-client