$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa File: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (raw, json) Hash identifier: JSKm415YB8eOJLzvxbfdTcDB2ReV3b5+7ihxYSCGy2A= Subject key identifier: 08:EF:08:1D:C1:AB:95:BB:CE:F0:FA:8E:75:F8:00:3A:00:9B:F5:FF Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 012C Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa Signing time: Fri 27 Jun 2025 05:04:23 +0000 ROA not before: Fri 27 Jun 2025 05:04:23 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 167.103.90.0/24 maxlen: 24 167.103.91.0/24 maxlen: 24 167.103.92.0/24 maxlen: 24 167.103.93.0/24 maxlen: 24 167.103.94.0/24 maxlen: 24 167.103.95.0/24 maxlen: 24 167.103.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Jun 27 05:04:23 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e2657-c062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:77:b7:7d:5c:05:94:a0:90:87:c9:8f:22:4b: cd:20:55:40:4e:ab:c6:c0:a7:67:3d:a3:22:ae:0b: 1c:2f:fc:cb:21:10:85:98:41:e1:f0:a5:7b:35:13: 78:18:c6:59:a7:ec:9e:bf:ea:7d:c2:bd:c2:e6:3b: ee:53:c4:81:51:4b:6c:9b:7f:82:47:a9:26:55:ec: fc:ee:48:5b:08:7d:6d:3e:b4:2e:73:03:0e:a9:ed: df:1d:4e:64:05:4d:25:2e:c2:c2:3e:b8:42:94:b6: af:4b:8d:28:f0:4e:a7:81:f4:87:5c:b9:9c:7d:1a: f2:9e:10:45:1c:1a:5d:05:a4:8e:58:3d:ac:88:d0: 8b:b4:d1:5c:4e:f4:07:84:ab:ab:24:bb:d6:c7:e1: de:b2:c4:36:fa:49:e7:93:94:f3:36:9b:9e:c3:fc: 70:a8:8f:b5:8e:b8:69:bb:56:28:99:83:1b:24:58: 05:12:4d:cf:05:17:e5:25:5a:bb:7b:4e:68:8c:d0: da:77:65:d6:19:17:81:2f:f9:4c:af:0b:6f:d0:79: c2:7b:0f:c2:c9:ec:ac:98:5b:75:4f:ce:37:b8:f6: a0:67:7f:f2:27:4a:4e:f6:5f:cb:1e:b7:f9:67:0a: 8d:9c:7a:35:3c:4d:ef:b1:26:18:42:7a:99:4a:56: 49:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:EF:08:1D:C1:AB:95:BB:CE:F0:FA:8E:75:F8:00:3A:00:9B:F5:FF X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.90.0-167.103.95.255 167.103.170.0/24 Signature Algorithm: sha256WithRSAEncryption 13:a9:2c:73:1a:d9:ca:ad:1a:dc:d9:d3:1c:d5:26:89:0f:a9: 5c:25:77:87:85:5c:73:d4:56:06:da:cb:4a:c6:00:1c:0f:db: 94:e6:14:e8:46:ce:67:47:af:79:34:c0:89:b7:1e:fc:d1:f5: a8:1e:63:1f:66:c6:77:a7:ff:1b:49:9f:b7:fd:43:db:2c:39: c6:3b:ce:84:ba:af:59:80:c5:b3:78:71:01:21:72:fd:5a:ec: 7a:16:c5:23:20:17:b7:b1:0a:6b:b2:9a:de:a5:e9:3e:76:79: 0d:79:36:8c:28:01:19:ef:aa:bd:2a:20:7c:d5:ae:82:8b:3e: b6:64:30:fd:bb:e5:e1:d6:7c:15:e8:4c:a9:09:0d:2c:43:6d: 40:62:b0:06:62:0e:76:bd:0b:ff:46:9b:ab:3c:e4:e2:b9:99: 36:60:e9:64:e1:15:36:44:87:b8:e7:39:c7:be:00:8f:ed:e6: f2:d3:b3:9a:dc:e0:99:da:1e:1b:a4:d3:7d:47:06:27:89:90: cc:75:cc:09:b1:96:97:b4:67:fd:34:fd:1d:cf:75:e5:c7:80: b1:87:42:0c:00:65:e2:c2:ce:d3:30:77:24:21:a3:5c:65:cf: 04:3e:c6:ae:04:50:1e:a8:cd:f9:83:a9:9d:bb:ec:c3:30:e2: 4b:fb:92:da -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNjI3MDUwNDIzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMjY1Ny1jMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3e3fVwFlKCQh8mPIkvNIFVATqvGwKdnPaMirgscL/zLIRCFmEHh8KV7NRN4 GMZZp+yev+p9wr3C5jvuU8SBUUtsm3+CR6kmVez87khbCH1tPrQucwMOqe3fHU5k BU0lLsLCPrhClLavS40o8E6ngfSHXLmcfRrynhBFHBpdBaSOWD2siNCLtNFcTvQH hKurJLvWx+HessQ2+knnk5TzNpuew/xwqI+1jrhpu1YomYMbJFgFEk3PBRflJVq7 e05ojNDad2XWGReBL/lMrwtv0HnCew/CyeysmFt1T843uPagZ3/yJ0pO9l/LHrf5 ZwqNnHo1PE3vsSYYQnqZSlZJqwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFAjvCB3B q5W7zvD6jnX4ADoAm/X/MB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvM0Q5MzdBMzBF QkIyMTFFRUE5M0Q5QjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAadnWgMEBadnQAMEAKdnqjANBgkqhkiG9w0BAQsFAAOC AQEAE6kscxrZyq0a3NnTHNUmiQ+pXCV3h4Vcc9RWBtrLSsYAHA/blOYU6EbOZ0ev eTTAibce/NH1qB5jH2bGd6f/G0mft/1D2yw5xjvOhLqvWYDFs3hxASFy/VrsehbF IyAXt7EKa7Ka3qXpPnZ5DXk2jCgBGe+qvSogfNWugos+tmQw/bvl4dZ8FehMqQkN LENtQGKwBmIOdr0L/0abqzzk4rmZNmDpZOEVNkSHuOc5x74Aj+3m8tOzmtzgmdoe G6TTfUcGJ4mQzHXMCbGWl7Rn/TT9Hc915ceAsYdCDABl4sLO0zB3JCGjXGXPBD7G rgRQHqjN+YOpnbvswzDiS/uS2g== -----END CERTIFICATE-----Generated at Wed Jul 2 23:54:22 2025 by rpki-client