$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/9995A38CFADC11EF87E86958C4F9AE02.roa File: 9995A38CFADC11EF87E86958C4F9AE02.roa (raw, json) Hash identifier: K7HgxObw49ZENnGpFVCXkeOTW3f6OFaznJ55myfPQSQ= Subject key identifier: EE:46:2A:D3:FF:97:53:5C:34:76:B3:0E:E6:24:48:E7:8C:94:60:CF Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 11E2 Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/9995A38CFADC11EF87E86958C4F9AE02.roa Signing time: Mon 05 May 2025 04:59:44 +0000 ROA not before: Mon 05 May 2025 04:59:44 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58750 IP address blocks: 103.21.48.0/22 maxlen: 22 202.74.61.0/24 maxlen: 24 2403:ecc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4578 (0x11e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: May 5 04:59:44 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=681845c0-8d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ee:80:69:a1:ba:dd:87:23:1f:77:f1:89:f1: 7b:eb:02:85:d8:d4:87:7a:9b:0b:fd:36:01:4f:ed: bd:8d:ba:31:76:3a:7f:b6:da:05:e8:41:a0:2e:42: b2:3d:58:42:b8:74:d2:85:36:be:8e:46:2d:53:64: 7c:c7:0f:7b:73:a8:51:8d:0a:c8:31:53:d2:aa:ad: 1e:0d:0e:df:da:7b:8b:70:4a:d3:12:27:90:01:76: 72:bd:43:34:4a:cb:be:22:29:cf:09:0c:12:6a:db: 5e:65:dc:ba:48:26:4b:c2:aa:95:ad:5b:d7:30:7a: f0:47:db:47:0a:96:dd:c3:30:cf:73:f9:44:6e:e9: e8:45:ac:f6:15:6b:f0:02:66:ae:d9:24:d3:94:5a: f2:00:a7:2c:29:3a:55:e0:1c:53:a0:5a:56:41:d3: 2f:43:55:2c:d8:f2:cd:d7:b6:32:58:5d:63:2f:48: 85:82:f2:ee:bf:ae:43:4f:04:4b:1e:11:4f:20:ed: 7d:c8:c6:9a:42:2b:9c:4d:76:d2:a8:6b:b9:47:b6: 04:f9:de:ef:c4:61:ca:8e:4a:64:84:62:9c:e6:40: 23:8c:f3:82:ca:38:4f:e0:78:6b:1d:6e:1b:95:a6: 98:49:1e:1b:86:c1:90:ca:88:af:d2:0f:53:61:d4: 3e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:46:2A:D3:FF:97:53:5C:34:76:B3:0E:E6:24:48:E7:8C:94:60:CF X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/9995A38CFADC11EF87E86958C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.48.0/22 202.74.61.0/24 IPv6: 2403:ecc0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:bb:68:94:03:69:70:f9:b3:ee:b9:20:bc:9c:3f:50:e7:ed: 2e:c6:67:c8:9e:a1:b8:06:77:86:ed:8e:dd:59:85:2d:8a:9c: 1c:59:cb:0a:35:65:11:54:9a:5f:96:2e:75:c7:4a:25:4d:e9: f3:e2:94:ef:46:7e:09:02:2a:15:66:73:85:1e:4d:8d:c5:7c: 34:cf:1b:73:34:b5:8b:1c:c8:df:15:94:5b:ef:0b:1e:c1:fc: d4:d4:cd:d0:f6:db:e5:f7:da:7c:51:9a:f9:81:d9:27:ee:62: c8:82:94:f2:a9:b4:be:98:80:79:44:2e:34:50:8c:39:55:9c: fe:fb:b1:bd:bd:4a:72:45:2a:bc:04:05:1a:78:7e:f7:8f:c5: ad:7a:9d:be:c0:98:10:50:94:bb:d8:ec:24:1d:e2:a7:d0:c5: 2a:0a:fd:d9:cb:22:ca:9a:da:36:5b:2a:11:cb:69:ff:98:d1: 94:02:b9:ba:b4:e3:c9:6e:89:fe:02:8a:68:be:70:b4:46:c9: 31:1e:a3:4f:3c:1a:bf:e5:08:9a:d8:53:e7:40:0b:33:42:56: 4f:c9:c2:89:6e:05:6c:d8:2e:e7:37:d3:6f:cc:d4:43:32:3b: 1a:7a:01:77:6a:7a:20:dc:75:32:b9:66:d0:21:5c:80:f7:a2: e9:98:55:b6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUwNTA1MDQ1OTQ0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4NDVjMC04ZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+6AaaG63YcjH3fxifF76wKF2NSHepsL/TYBT+29jboxdjp/ttoF6EGgLkKy PVhCuHTShTa+jkYtU2R8xw97c6hRjQrIMVPSqq0eDQ7f2nuLcErTEieQAXZyvUM0 Ssu+IinPCQwSatteZdy6SCZLwqqVrVvXMHrwR9tHCpbdwzDPc/lEbunoRaz2FWvw Amau2STTlFryAKcsKTpV4BxToFpWQdMvQ1Us2PLN17YyWF1jL0iFgvLuv65DTwRL HhFPIO19yMaaQiucTXbSqGu5R7YE+d7vxGHKjkpkhGKc5kAjjPOCyjhP4HhrHW4b laaYSR4bhsGQyoiv0g9TYdQ+IQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO5GKtP/ l1NcNHazDuYkSOeMlGDPMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQ1QzAvQkRFRTcyOUFFNkQ5MTFFODhCOEJGNzdDQzRGOUFFMDIvOTk5NUEzOENG QURDMTFFRjg3RTg2OTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnFTADBADKSj0wDQQCAAIwBwMFACQD7MAwDQYJKoZIhvcN AQELBQADggEBAF27aJQDaXD5s+65ILycP1Dn7S7GZ8ieobgGd4btjt1ZhS2KnBxZ ywo1ZRFUml+WLnXHSiVN6fPilO9GfgkCKhVmc4UeTY3FfDTPG3M0tYscyN8VlFvv Cx7B/NTUzdD22+X32nxRmvmB2SfuYsiClPKptL6YgHlELjRQjDlVnP77sb29SnJF KrwEBRp4fvePxa16nb7AmBBQlLvY7CQd4qfQxSoK/dnLIsqa2jZbKhHLaf+Y0ZQC ubq048luif4Cimi+cLRGyTEeo088Gr/lCJrYU+dACzNCVk/JwoluBWzYLuc302/M 1EMyOxp6AXdqeiDcdTK5ZtAhXID3oumYVbY= -----END CERTIFICATE-----Generated at Tue May 13 01:54:34 2025 by rpki-client