$ rpki-client -vvf rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/2B219CDC1FE811EF96F54D5AC4F9AE02.roa File: 2B219CDC1FE811EF96F54D5AC4F9AE02.roa (raw, json) Hash identifier: fDAAeuUsFkH2gLuCgx3HyrIav6vNpT1MtuuD0Bs5YUU= Subject key identifier: 2E:1B:46:1A:FC:1D:C9:20:61:46:EF:21:F8:90:E7:3B:D7:F6:74:DA Certificate issuer: /CN=A91A19C8/serialNumber=FEEA61439A3098B85CCB183B5A41AA12AF45CA1E Certificate serial: 07CC Authority key identifier: FE:EA:61:43:9A:30:98:B8:5C:CB:18:3B:5A:41:AA:12:AF:45:CA:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_uphQ5owmLhcyxg7WkGqEq9Fyh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/2B219CDC1FE811EF96F54D5AC4F9AE02.roa Signing time: Wed 18 Jun 2025 11:15:35 +0000 ROA not before: Wed 18 Jun 2025 11:15:35 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141217 IP address blocks: 103.156.176.0/23 maxlen: 23 103.156.176.0/24 maxlen: 24 103.156.177.0/24 maxlen: 24 2001:df4:f180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/_uphQ5owmLhcyxg7WkGqEq9Fyh4.crl rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/_uphQ5owmLhcyxg7WkGqEq9Fyh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_uphQ5owmLhcyxg7WkGqEq9Fyh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A19C8, serialNumber=FEEA61439A3098B85CCB183B5A41AA12AF45CA1E Validity Not Before: Jun 18 11:15:35 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68529fd6-73aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:98:f2:b0:f6:34:92:2d:cc:00:7a:f5:9a:a9: b4:38:ff:e8:6f:88:68:59:1b:50:69:61:83:f4:91: 7d:cd:e3:9a:43:42:3f:8c:74:90:c8:72:0c:97:1c: e7:0c:08:60:f7:96:45:ea:e6:d7:0b:42:28:ff:a5: 7b:28:8b:63:98:e4:13:5e:a7:88:39:ab:de:02:ec: 05:af:2f:29:36:b4:f7:3a:b8:dc:fe:93:f6:16:d3: 67:77:68:b4:7e:09:92:a2:42:39:03:72:99:b8:2b: d8:5b:51:ce:9a:c5:75:6f:11:a3:62:bd:2a:06:2c: 2a:64:3f:96:da:a8:4b:f3:f7:04:43:e7:ff:c5:f0: ba:cd:1f:93:2a:73:4e:8f:11:b3:1f:c0:11:2c:fc: c0:08:81:f3:32:01:6e:ac:19:a7:3d:98:59:d1:92: ba:9c:80:25:3d:2f:22:76:65:e9:07:5b:36:6c:7a: c1:c3:90:96:c3:ff:f5:38:35:65:4a:7b:a4:ab:95: fa:39:5c:e6:38:56:58:af:9d:d0:c3:6d:09:22:7c: ee:c5:c7:93:96:e8:6a:98:57:a7:03:e3:2b:5c:55: 1c:80:10:79:4b:49:2e:ab:3e:7a:6f:44:ef:f9:53: a6:a1:c7:29:eb:d9:59:31:32:9d:f8:b8:6b:5d:fe: a6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1B:46:1A:FC:1D:C9:20:61:46:EF:21:F8:90:E7:3B:D7:F6:74:DA X509v3 Authority Key Identifier: keyid:FE:EA:61:43:9A:30:98:B8:5C:CB:18:3B:5A:41:AA:12:AF:45:CA:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/_uphQ5owmLhcyxg7WkGqEq9Fyh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_uphQ5owmLhcyxg7WkGqEq9Fyh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A19C8/F5A5EEAA014111EBA33F8E11C4F9AE02/2B219CDC1FE811EF96F54D5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.176.0/23 IPv6: 2001:df4:f180::/48 Signature Algorithm: sha256WithRSAEncryption 15:31:9c:b4:dd:ad:1e:72:ab:9b:ca:c3:5a:9e:9c:76:9d:f5: 38:c8:02:b3:81:e9:bc:4a:8d:dc:a0:65:1c:4d:3c:98:37:93: b4:c1:13:d2:2a:c7:1e:a7:96:f0:d2:a3:82:c5:1c:f4:20:98: 6a:0a:72:7c:5c:b1:b9:0d:e8:30:30:f1:e7:bb:82:19:13:a5: f4:72:27:ec:94:84:e2:c5:1e:57:18:a9:55:14:c7:4b:7f:a7: 4e:38:f5:37:39:32:7b:f2:27:5b:12:65:f5:52:a9:08:13:bf: 26:05:94:18:83:ec:63:3d:4d:97:20:2b:02:0e:c2:6e:68:5e: 0c:ff:d7:d2:26:f8:09:ca:d4:f1:b4:0c:c4:f0:9d:8d:50:25: d9:ee:bb:2b:5f:d9:33:ac:ba:ae:b2:ab:64:72:2f:ba:d5:b4: 81:f7:0c:24:df:34:9a:a2:28:af:b9:e8:74:06:90:3f:9b:21: f5:17:07:ca:3e:42:28:7a:3a:bc:b4:df:46:0c:b3:02:d9:0e: a5:91:f3:31:0d:cb:6f:74:8d:ad:92:d4:6f:9b:89:ec:d9:81: 8e:8b:26:30:41:2c:ea:cb:d7:e7:be:26:bc:1b:09:12:92:fb: 21:af:6a:82:f6:df:37:0c:d2:42:46:28:65:35:72:3d:58:dd: 15:7b:8a:3e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE5QzgxMTAvBgNVBAUTKEZFRUE2MTQzOUEzMDk4Qjg1Q0NCMTgzQjVBNDFBQTEy QUY0NUNBMUUwHhcNMjUwNjE4MTExNTM1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUyOWZkNi03M2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JjysPY0ki3MAHr1mqm0OP/ob4hoWRtQaWGD9JF9zeOaQ0I/jHSQyHIMlxzn DAhg95ZF6ubXC0Io/6V7KItjmOQTXqeIOaveAuwFry8pNrT3Orjc/pP2FtNnd2i0 fgmSokI5A3KZuCvYW1HOmsV1bxGjYr0qBiwqZD+W2qhL8/cEQ+f/xfC6zR+TKnNO jxGzH8ARLPzACIHzMgFurBmnPZhZ0ZK6nIAlPS8idmXpB1s2bHrBw5CWw//1ODVl Snukq5X6OVzmOFZYr53Qw20JInzuxceTluhqmFenA+MrXFUcgBB5S0kuqz56b0Tv +VOmoccp69lZMTKd+LhrXf6m7QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFC4bRhr8 HckgYUbvIfiQ5zvX9nTaMB8GA1UdIwQYMBaAFP7qYUOaMJi4XMsYO1pBqhKvRcoe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTlDOC9GNUE1RUVBQTAx NDExMUVCQTMzRjhFMTFDNEY5QUUwMi9fdXBoUTVvd21MaGN5eGc3V2tHcUVxOUZ5 aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL191cGhRNW93bUxoY3l4ZzdXa0dxRXE5RnloNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE5QzgvRjVBNUVFQUEwMTQxMTFFQkEzM0Y4RTExQzRGOUFFMDIvMkIyMTlDREMx RkU4MTFFRjk2RjU0RDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnLAwDwQCAAIwCQMHACABDfTxgDANBgkqhkiG9w0BAQsF AAOCAQEAFTGctN2tHnKrm8rDWp6cdp31OMgCs4HpvEqN3KBlHE08mDeTtMET0irH HqeW8NKjgsUc9CCYagpyfFyxuQ3oMDDx57uCGROl9HIn7JSE4sUeVxipVRTHS3+n Tjj1Nzkye/InWxJl9VKpCBO/JgWUGIPsYz1NlyArAg7CbmheDP/X0ib4CcrU8bQM xPCdjVAl2e67K1/ZM6y6rrKrZHIvutW0gfcMJN80mqIor7nodAaQP5sh9RcHyj5C KHo6vLTfRgyzAtkOpZHzMQ3Lb3SNrZLUb5uJ7NmBjosmMEEs6svX574mvBsJEpL7 Ia9qgvbfNwzSQkYoZTVyPVjdFXuKPg== -----END CERTIFICATE-----Generated at Sat Jul 5 22:24:19 2025 by rpki-client