$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa File: 47C07DB84F9C11ED8B9E4333C4F9AE02.roa (raw, json) Hash identifier: eeihbPUCNIm6wOFP5OHLweAd8KKgDQdtMhUILkD0GVg= Subject key identifier: 73:59:21:CD:78:73:05:1E:16:F4:C7:49:7F:E9:A7:25:E6:00:3E:F9 Certificate issuer: /CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Certificate serial: 0294 Authority key identifier: 25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa Signing time: Sat 07 Jun 2025 02:00:25 +0000 ROA not before: Sat 07 Jun 2025 02:00:25 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 23966 IP address blocks: 103.189.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77, serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Validity Not Before: Jun 7 02:00:25 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68439d39-ca4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:99:a4:4a:63:29:d2:b1:38:43:98:42:09: bd:a7:79:e0:60:44:dd:87:c5:22:60:b4:41:41:f3: 4f:bb:0e:74:82:9e:a4:45:f5:b1:0b:5a:de:92:a9: c0:6c:81:bd:c8:ac:a2:53:8e:6f:81:bb:c5:f7:34: 7d:71:fd:0e:b1:5b:eb:40:3b:c3:fe:a2:fe:7c:10: d7:9a:f7:46:bb:56:96:cc:b2:f2:b3:48:4e:11:60: 4d:ce:6c:aa:88:4a:26:bd:80:0d:d7:f7:02:9a:a4: 3e:3b:c6:8d:a8:3b:0d:80:22:79:bc:cb:ff:05:a7: 22:e1:f6:93:05:7f:44:65:f2:ca:79:de:8e:a0:2c: ab:ec:d3:8b:3a:54:62:f4:6f:65:30:03:82:41:f0: e3:34:79:91:fd:47:df:2c:4e:c1:72:4f:ac:db:83: 40:53:92:a0:ac:6a:cc:b6:13:bc:ee:8f:fb:55:f1: 81:71:ea:00:6c:df:66:9b:db:62:d0:0c:64:26:72: e4:43:96:7c:f4:29:49:3a:19:92:ad:10:7d:d7:1a: dd:ed:ea:91:ad:84:79:1d:e5:a8:ad:59:f4:bf:35: b5:97:ce:5f:a3:44:46:cb:d5:1e:8e:89:31:19:96: b1:b9:bd:9f:ca:ef:ed:9b:fc:b3:f5:71:6c:9f:13: c7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:59:21:CD:78:73:05:1E:16:F4:C7:49:7F:E9:A7:25:E6:00:3E:F9 X509v3 Authority Key Identifier: keyid:25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.2.0/24 Signature Algorithm: sha256WithRSAEncryption 42:a8:ba:cf:31:c7:8b:3e:ec:e4:1f:c7:68:d1:07:1a:12:60: e2:53:21:7f:a9:c5:c5:08:01:b7:ff:f8:03:49:85:ce:9d:06: 20:6c:b6:24:84:c6:52:6e:13:f0:dd:90:02:ed:ee:60:e0:0b: e6:96:ae:9b:61:31:06:c3:4f:c3:37:0a:fd:6f:c8:0a:0e:6a: 26:57:df:ae:f2:ea:70:0c:47:08:be:36:c9:cf:a4:44:2b:ef: 55:e4:ad:92:d6:46:a6:c5:51:eb:a8:0b:38:1b:cb:a7:03:b2: b0:25:0a:a4:e0:a3:8e:c0:a5:26:f6:e7:16:26:a6:5b:08:7d: 85:34:41:51:5a:fc:22:94:34:c8:02:3e:d4:16:92:ad:4c:8b: be:18:d4:91:2b:07:21:8f:b0:b2:7a:ae:26:d2:f3:01:3f:5f: d2:19:49:12:64:c0:76:26:d8:f9:eb:6d:6f:3f:e7:02:4c:33: cb:17:35:e0:d5:89:3a:f7:c8:2b:f7:21:2c:2a:56:b6:6b:98: b8:d2:4c:10:64:62:27:52:4a:ce:68:83:78:28:d0:db:5f:89: 49:34:61:18:0a:ad:75:8c:de:f7:d0:32:04:9f:dd:bd:d9:dc: d5:4a:d6:31:89:f4:73:0d:25:f9:42:60:08:c2:03:a8:7b:c4: 74:2c:35:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKDI1MjkzQjBBNzAzNkM4MTNBOUNEMDIwMDZERkMyOTBB QUYyNTMyNzQwHhcNMjUwNjA3MDIwMDI1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzOWQzOS1jYTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvliZpEpjKdKxOEOYQgm9p3ngYETdh8UiYLRBQfNPuw50gp6kRfWxC1rekqnA bIG9yKyiU45vgbvF9zR9cf0OsVvrQDvD/qL+fBDXmvdGu1aWzLLys0hOEWBNzmyq iEomvYAN1/cCmqQ+O8aNqDsNgCJ5vMv/Baci4faTBX9EZfLKed6OoCyr7NOLOlRi 9G9lMAOCQfDjNHmR/UffLE7Bck+s24NAU5KgrGrMthO87o/7VfGBceoAbN9mm9ti 0AxkJnLkQ5Z89ClJOhmSrRB91xrd7eqRrYR5HeWorVn0vzW1l85fo0RGy9Uejokx GZaxub2fyu/tm/yz9XFsnxPHAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHNZIc14 cwUeFvTHSX/ppyXmAD75MB8GA1UdIwQYMBaAFCUpOwpwNsgTqc0CAG38KQqvJTJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9EM0FEMDdFMjA4 RDkxMUVEQkU5MkM5NTRDNEY5QUUwMi9KU2s3Q25BMnlCT3B6UUlBYmZ3cENxOGxN blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTazdDbkEyeUJPcHpRSUFiZndwQ3E4bE1uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlBNzcvRDNBRDA3RTIwOEQ5MTFFREJFOTJDOTU0QzRGOUFFMDIvNDdDMDdEQjg0 RjlDMTFFRDhCOUU0MzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvQIwDQYJKoZIhvcNAQELBQADggEBAEKous8xx4s+7OQf x2jRBxoSYOJTIX+pxcUIAbf/+ANJhc6dBiBstiSExlJuE/DdkALt7mDgC+aWrpth MQbDT8M3Cv1vyAoOaiZX367y6nAMRwi+NsnPpEQr71XkrZLWRqbFUeuoCzgby6cD srAlCqTgo47ApSb25xYmplsIfYU0QVFa/CKUNMgCPtQWkq1Mi74Y1JErByGPsLJ6 ribS8wE/X9IZSRJkwHYm2PnrbW8/5wJMM8sXNeDViTr3yCv3ISwqVrZrmLjSTBBk YidSSs5og3go0NtfiUk0YRgKrXWM3vfQMgSf3b3Z3NVK1jGJ9HMNJflCYAjCA6h7 xHQsNXA= -----END CERTIFICATE-----Generated at Fri Jul 4 02:21:22 2025 by rpki-client