$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/9F016EC44A7C11F0B80DD17EC4F9AE02.roa File: 9F016EC44A7C11F0B80DD17EC4F9AE02.roa (raw, json) Hash identifier: DQFyiV8fE+Hgcz17Voi0a180ihbAEaAJdFPvnjQ8eR4= Subject key identifier: 1E:69:9D:99:2B:E9:D0:9F:16:DF:28:FA:FF:A7:25:28:EC:CF:6F:96 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0B43 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/9F016EC44A7C11F0B80DD17EC4F9AE02.roa Signing time: Mon 16 Jun 2025 06:39:15 +0000 ROA not before: Mon 16 Jun 2025 06:39:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 17408 IP address blocks: 43.239.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2883 (0xb43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Jun 16 06:39:15 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=684fbc13-3090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b1:1b:8b:f5:a4:d8:99:de:5f:bb:e9:19:d3: ca:51:54:7a:e9:57:3d:e2:de:8b:e9:60:27:87:e7: 46:29:67:1d:86:a3:44:21:bb:96:89:ad:6a:5e:f7: 6d:15:49:38:ce:6b:65:41:4c:86:53:d7:88:90:66: 7f:cf:0c:7d:27:ce:46:48:8a:f5:d2:77:3b:1b:62: fd:65:46:26:7e:c8:f3:eb:bb:88:70:ac:e3:8e:72: f8:04:91:da:24:fd:f2:f7:65:ec:63:8d:3a:d8:10: 70:9e:15:16:f2:da:df:5c:3b:fc:e5:7c:ee:a4:e3: db:f2:2b:22:d7:6b:3f:df:cd:11:22:4a:9c:7e:94: c4:34:09:b1:6c:a7:97:1b:39:35:74:c4:87:ef:8d: 32:fa:3d:03:cc:1f:a3:41:75:c7:cd:be:1c:de:ca: f4:88:fc:52:84:fc:ed:1b:ae:8a:94:89:46:4c:7c: c7:a4:03:cd:68:58:a3:65:69:6d:37:e9:32:24:c4: d5:6d:44:7e:96:e4:b2:9a:39:32:73:08:aa:24:18: fa:5a:c8:46:49:66:ac:c6:d1:01:af:75:12:bd:57: b7:51:5a:44:12:18:fb:99:10:99:3d:1d:a6:9c:57: 8e:a9:73:8a:f1:5f:7f:1e:a3:b9:a3:09:8e:4e:b3: 0e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:69:9D:99:2B:E9:D0:9F:16:DF:28:FA:FF:A7:25:28:EC:CF:6F:96 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/9F016EC44A7C11F0B80DD17EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.105.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:40:f7:67:d6:73:85:4b:2b:4d:b4:d2:97:78:d2:04:00:ed: a6:51:d0:a5:85:44:26:1e:15:df:35:3f:6f:8d:9b:83:07:92: 31:a2:01:bc:c8:dd:fb:c7:64:00:df:68:f0:12:e2:64:da:3d: 18:93:03:fc:62:97:69:fb:61:a7:10:5f:7e:94:09:b6:cc:86: 20:5f:08:b1:8f:6b:0b:49:9f:41:5a:ca:31:e1:cb:bb:5e:1b: 5c:2d:56:ef:5d:97:d3:a6:6d:a0:66:ed:7f:67:6e:f0:14:72: 4f:f1:87:80:b1:78:08:99:33:55:d9:54:7f:78:7f:88:5f:76: 49:3b:70:57:88:cb:ea:c8:d7:47:fe:4d:2b:59:79:22:31:10: 62:5c:0d:ff:c3:fd:38:6e:f8:75:5f:4d:a8:1f:b6:90:65:73: 9e:d2:4f:68:94:e3:b8:c9:f5:b2:24:3d:fa:a9:0a:bf:15:be: ef:4d:39:a0:3c:a7:86:7e:19:7e:1b:ed:90:d1:14:78:ed:b9: 76:17:1b:f4:cf:c4:7e:6c:15:36:4e:45:df:f8:f4:f1:7e:be: a8:8b:26:fa:9b:8c:02:0f:39:bd:5d:86:59:14:6d:06:d9:82: c2:27:df:be:91:ed:55:36:32:2a:90:24:ea:25:54:4c:a8:ce: 2d:8e:a0:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUwNjE2MDYzOTE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmYmMxMy0zMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LEbi/Wk2JneX7vpGdPKUVR66Vc94t6L6WAnh+dGKWcdhqNEIbuWia1qXvdt FUk4zmtlQUyGU9eIkGZ/zwx9J85GSIr10nc7G2L9ZUYmfsjz67uIcKzjjnL4BJHa JP3y92XsY4062BBwnhUW8trfXDv85XzupOPb8isi12s/380RIkqcfpTENAmxbKeX Gzk1dMSH740y+j0DzB+jQXXHzb4c3sr0iPxShPztG66KlIlGTHzHpAPNaFijZWlt N+kyJMTVbUR+luSymjkycwiqJBj6WshGSWasxtEBr3USvVe3UVpEEhj7mRCZPR2m nFeOqXOK8V9/HqO5owmOTrMOnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB5pnZkr 6dCfFt8o+v+nJSjsz2+WMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvOUYwMTZFQzQ0 QTdDMTFGMEI4MEREMTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72kwDQYJKoZIhvcNAQELBQADggEBAG5A92fWc4VLK020 0pd40gQA7aZR0KWFRCYeFd81P2+Nm4MHkjGiAbzI3fvHZADfaPAS4mTaPRiTA/xi l2n7YacQX36UCbbMhiBfCLGPawtJn0FayjHhy7teG1wtVu9dl9OmbaBm7X9nbvAU ck/xh4CxeAiZM1XZVH94f4hfdkk7cFeIy+rI10f+TStZeSIxEGJcDf/D/Thu+HVf TagftpBlc57ST2iU47jJ9bIkPfqpCr8Vvu9NOaA8p4Z+GX4b7ZDRFHjtuXYXG/TP xH5sFTZORd/49PF+vqiLJvqbjAIPOb1dhlkUbQbZgsIn376R7VU2MiqQJOolVEyo zi2OoLg= -----END CERTIFICATE-----Generated at Thu Jul 3 05:55:46 2025 by rpki-client