$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/234D0D6C500611F08771CE55C4F9AE02.roa File: 234D0D6C500611F08771CE55C4F9AE02.roa (raw, json) Hash identifier: tT6wpY26Z4BuIfJge3UrKFFEij5wdhpGksDHGEKyueE= Subject key identifier: 1E:73:C7:C1:0E:DE:80:8C:7C:66:CF:CF:B2:50:A2:8C:FB:F9:FF:9F Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0BF4 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/234D0D6C500611F08771CE55C4F9AE02.roa Signing time: Mon 23 Jun 2025 07:46:14 +0000 ROA not before: Mon 23 Jun 2025 07:46:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9311 IP address blocks: 103.15.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3060 (0xbf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jun 23 07:46:14 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68590646-2caf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:68:f9:1c:4c:15:12:fe:73:3a:6f:20:6f:1c: 89:28:dc:55:3e:ad:7d:fe:c6:35:5b:a4:fd:17:1e: a5:6b:37:b6:cb:7a:f3:79:b0:25:5d:15:4d:8d:36: fa:a6:ff:3a:98:7a:44:de:2d:9d:d7:b3:0b:6d:4c: 21:b4:10:a8:d3:eb:42:28:3f:86:f7:0e:83:7e:0b: c3:21:82:c5:25:05:c7:ec:4f:ee:a8:19:18:97:51: ec:9d:16:56:00:4f:4a:ea:81:c4:6e:90:bc:bc:a0: 39:fe:d7:a1:fa:10:57:23:c6:ea:e8:89:15:de:ab: df:1b:7e:f4:c0:2a:c4:06:2c:3c:0a:fa:85:66:3e: f2:5f:c4:9b:71:a8:f3:b6:90:96:dc:26:8d:74:80: 38:16:fc:05:7c:79:a3:72:f9:19:d9:f6:23:be:6e: df:11:d0:f4:bc:05:98:b0:8e:52:91:87:26:68:ae: 71:34:46:72:ff:59:70:17:85:65:64:fc:9c:f4:21: 33:fd:64:a9:1a:b7:73:63:77:6e:91:76:36:d1:d8: c8:e4:82:b1:c7:f9:f5:ec:83:a1:b5:b9:c5:54:04: b2:c8:d0:1a:f0:63:73:4b:ce:6d:74:34:0d:a5:3a: d3:da:38:2c:b9:31:04:1a:6d:bf:81:28:3e:f0:73: 24:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:73:C7:C1:0E:DE:80:8C:7C:66:CF:CF:B2:50:A2:8C:FB:F9:FF:9F X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/234D0D6C500611F08771CE55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.79.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:59:56:25:66:80:41:6c:86:e1:79:83:25:ce:40:14:ac:5a: aa:dc:ef:71:db:d8:f2:18:64:a2:65:58:81:ae:9c:46:e0:b8: 1b:54:98:a3:6e:b3:39:ed:a9:3f:fb:4c:75:2c:55:88:1d:47: 7e:64:b8:ef:cb:00:8f:6d:51:2d:83:9b:44:84:bc:30:3c:e6: 12:c5:d7:88:88:2a:30:68:04:d6:92:1f:13:62:27:a6:4b:e1: 3c:b8:c2:bc:f6:df:37:0a:cc:33:da:38:3f:14:70:c4:b6:56: 9a:de:06:0d:42:29:a5:30:ce:c9:64:a9:11:31:cf:f7:62:9d: 19:54:d0:da:9f:85:f6:c5:82:ef:0c:78:d7:b0:c5:f2:a9:34: ce:f1:e3:1c:6a:42:6e:4a:ea:0c:bd:c0:b1:6f:a4:19:90:70: d7:85:dc:02:e3:c3:51:3f:12:29:24:42:ee:f1:78:0b:13:69: 79:a6:73:86:75:a1:c7:1d:c9:47:a9:8b:8c:3f:e6:72:50:cf: 80:a4:ae:de:02:f6:0b:ac:92:e0:af:69:f8:2d:2d:a5:87:55: b1:26:42:79:f5:eb:81:59:26:16:2b:b2:ce:59:81:7c:3b:f2: d3:1b:5b:f4:d5:36:3a:3a:e5:e3:93:3e:eb:81:42:dd:56:40: 85:89:0c:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNjIzMDc0NjE0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODU5MDY0Ni0yY2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7mj5HEwVEv5zOm8gbxyJKNxVPq19/sY1W6T9Fx6laze2y3rzebAlXRVNjTb6 pv86mHpE3i2d17MLbUwhtBCo0+tCKD+G9w6DfgvDIYLFJQXH7E/uqBkYl1HsnRZW AE9K6oHEbpC8vKA5/teh+hBXI8bq6IkV3qvfG370wCrEBiw8CvqFZj7yX8Sbcajz tpCW3CaNdIA4FvwFfHmjcvkZ2fYjvm7fEdD0vAWYsI5SkYcmaK5xNEZy/1lwF4Vl ZPyc9CEz/WSpGrdzY3dukXY20djI5IKxx/n17IOhtbnFVASyyNAa8GNzS85tdDQN pTrT2jgsuTEEGm2/gSg+8HMkoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB5zx8EO 3oCMfGbPz7JQooz7+f+fMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMjM0RDBENkM1 MDA2MTFGMDg3NzFDRTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnD08wDQYJKoZIhvcNAQELBQADggEBADpZViVmgEFshuF5 gyXOQBSsWqrc73Hb2PIYZKJlWIGunEbguBtUmKNuszntqT/7THUsVYgdR35kuO/L AI9tUS2Dm0SEvDA85hLF14iIKjBoBNaSHxNiJ6ZL4Ty4wrz23zcKzDPaOD8UcMS2 VpreBg1CKaUwzslkqRExz/dinRlU0NqfhfbFgu8MeNewxfKpNM7x4xxqQm5K6gy9 wLFvpBmQcNeF3ALjw1E/EikkQu7xeAsTaXmmc4Z1occdyUepi4w/5nJQz4Ckrt4C 9guskuCvafgtLaWHVbEmQnn164FZJhYrss5ZgXw78tMbW/TVNjo65eOTPuuBQt1W QIWJDOg= -----END CERTIFICATE-----Generated at Thu Jul 3 23:44:47 2025 by rpki-client