$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/ED99CAA81DC411EF9E620C48C4F9AE02.roa File: ED99CAA81DC411EF9E620C48C4F9AE02.roa (raw, json) Hash identifier: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0= Subject key identifier: 65:5F:49:D2:75:EF:44:E4:B3:EC:85:C9:3B:42:45:FF:F2:E9:69:26 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 09ED Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/ED99CAA81DC411EF9E620C48C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:58:53 +0000 ROA not before: Wed 30 Apr 2025 19:58:53 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 131471 IP address blocks: 103.150.154.0/24 maxlen: 24 103.150.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2541 (0x9ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Apr 30 19:58:53 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681280fd-6f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ea:99:f8:00:a4:1e:a8:26:12:75:61:ca:de: 87:6d:ae:5f:35:f8:34:2a:9c:a1:dd:b1:ef:4d:6f: 37:8d:6f:a5:8b:1c:00:e6:5a:63:96:e1:b7:5e:11: eb:d9:d1:0a:7c:a3:48:e4:87:91:79:90:55:e3:83: 3c:cc:1b:4e:84:c3:ae:fc:7d:23:2f:57:0b:34:5a: ce:a4:90:c5:16:c8:50:03:f5:36:32:8f:fc:ef:10: 17:a1:12:19:03:d9:6c:07:b8:15:0d:0a:ff:86:17: 0f:13:8b:f5:39:03:e2:8f:03:36:5c:ca:5c:17:d6: 6d:0e:a2:1d:9f:41:24:f2:f7:b7:9f:1f:3f:d5:65: 58:90:02:89:62:bd:a3:ba:3d:dd:d8:48:3c:86:a4: 84:5d:0b:7c:60:88:38:a2:1b:f6:14:b4:5c:c2:e8: bf:69:37:50:57:01:18:b7:ea:43:8b:08:7a:34:d6: 79:74:ac:47:70:26:49:03:4c:77:f2:29:a8:f1:95: 53:0d:f4:55:71:e1:5d:ce:e3:82:00:9a:03:e7:a6: c0:aa:69:8c:08:a5:90:3b:16:e6:b4:dd:ea:fe:12: b1:fe:c0:62:4f:40:f8:a2:e5:fa:17:36:d2:b7:d2: 47:ac:a1:73:a5:1b:33:72:21:5e:71:e5:f2:c0:68: c2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:5F:49:D2:75:EF:44:E4:B3:EC:85:C9:3B:42:45:FF:F2:E9:69:26 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/ED99CAA81DC411EF9E620C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.154.0/23 Signature Algorithm: sha256WithRSAEncryption 86:40:f2:34:7b:eb:2e:eb:68:7a:d6:cc:65:1a:d8:f4:84:6e: f0:c3:34:78:2e:33:ba:b7:9b:18:53:ac:98:ca:e9:f6:15:c3: b4:63:28:1b:16:04:84:0c:db:1d:dd:24:e8:39:7d:58:ea:76: 7e:2c:30:0e:60:6c:34:f6:4b:2a:54:a8:fe:6b:8b:16:63:4f: cb:fa:9f:c2:0e:8e:22:f7:cd:9e:7e:77:45:7e:23:28:f8:60: 72:72:44:ad:99:61:3f:7a:8c:da:f9:13:f5:c5:81:b0:27:f9: 65:58:b2:eb:e1:1d:3a:21:f1:06:3d:25:52:dc:89:ce:e2:0c: ee:d6:6b:e1:2a:2e:e6:04:30:28:7d:98:57:d6:45:92:ed:14: f6:6e:01:3b:4b:d1:57:b9:44:f0:e3:09:7f:23:cf:02:3a:97: 5e:3e:65:59:d0:ca:33:fc:6a:92:35:62:54:65:04:dd:e9:40: b6:6a:cc:53:3b:0a:84:c1:a0:72:86:88:0e:b7:ef:7f:35:40: 20:52:5c:ee:5b:38:02:e5:65:e3:5e:3f:64:f0:61:3b:56:d2: 36:46:b7:93:81:da:2b:db:3e:cd:3e:13:41:80:72:a2:a1:53: a4:67:6d:95:b9:c3:10:fe:fe:03:fc:23:1f:f3:a2:8e:b3:be: 92:7d:09:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwNDMwMTk1ODUzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODBmZC02ZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOqZ+ACkHqgmEnVhyt6Hba5fNfg0Kpyh3bHvTW83jW+lixwA5lpjluG3XhHr 2dEKfKNI5IeReZBV44M8zBtOhMOu/H0jL1cLNFrOpJDFFshQA/U2Mo/87xAXoRIZ A9lsB7gVDQr/hhcPE4v1OQPijwM2XMpcF9ZtDqIdn0Ek8ve3nx8/1WVYkAKJYr2j uj3d2Eg8hqSEXQt8YIg4ohv2FLRcwui/aTdQVwEYt+pDiwh6NNZ5dKxHcCZJA0x3 8imo8ZVTDfRVceFdzuOCAJoD56bAqmmMCKWQOxbmtN3q/hKx/sBiT0D4ouX6FzbS t9JHrKFzpRszciFeceXywGjCRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGVfSdJ1 70Tks+yFyTtCRf/y6WkmMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJGMzMvRTZFQzJEOTI4MDkxMTFFQUFCQ0RGRjZDQzRGOUFFMDIvRUQ5OUNBQTgx REM0MTFFRjlFNjIwQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlpowDQYJKoZIhvcNAQELBQADggEBAIZA8jR76y7raHrW zGUa2PSEbvDDNHguM7q3mxhTrJjK6fYVw7RjKBsWBIQM2x3dJOg5fVjqdn4sMA5g bDT2SypUqP5rixZjT8v6n8IOjiL3zZ5+d0V+Iyj4YHJyRK2ZYT96jNr5E/XFgbAn +WVYsuvhHToh8QY9JVLcic7iDO7Wa+EqLuYEMCh9mFfWRZLtFPZuATtL0Ve5RPDj CX8jzwI6l14+ZVnQyjP8apI1YlRlBN3pQLZqzFM7CoTBoHKGiA637381QCBSXO5b OALlZeNeP2TwYTtW0jZGt5OB2ivbPs0+E0GAcqKhU6RnbZW5wxD+/gP8Ix/zoo6z vpJ9CZ0= -----END CERTIFICATE-----Generated at Mon May 12 20:26:55 2025 by rpki-client