$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa File: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (raw, json) Hash identifier: UuY5qtUwk8Dlu801YZxvnO/xKQaWGop0bKAvOOHuar0= Subject key identifier: CA:DB:57:C5:55:C1:14:13:A3:E6:D4:C7:BD:81:56:DE:D0:F2:F4:6B Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0C9F Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa Signing time: Wed 30 Apr 2025 18:28:15 +0000 ROA not before: Wed 30 Apr 2025 18:28:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133895 IP address blocks: 103.6.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3231 (0xc9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Apr 30 18:28:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68126bbf-81dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:db:be:8c:56:b8:41:0a:e8:67:d3:1c:80:ce: df:5c:de:11:39:a7:36:fe:50:74:1c:15:8c:0e:29: 77:bf:d4:73:68:ba:5e:5a:e3:27:6c:81:24:23:05: 22:37:9e:e3:6b:a2:66:d8:fb:cb:f7:55:d6:0b:a6: 62:f3:cf:7a:07:4b:b2:84:ed:dd:be:b4:3a:d9:d2: a4:82:00:bc:eb:18:27:bf:92:69:f8:75:c5:e4:f7: 06:3a:82:d9:6d:b4:a5:f0:e6:41:f0:0f:a7:aa:1e: 5b:cb:f5:e3:77:32:d3:3c:5c:c4:66:d8:ce:42:8c: 63:5a:09:90:70:51:86:de:7b:ac:46:20:eb:a2:28: 72:c5:6e:29:8b:ac:84:90:d4:e7:db:42:dc:cc:64: 71:1c:e8:c4:1a:9a:3f:b5:37:9e:b7:94:4e:dd:81: be:c2:28:86:ea:f6:82:8a:24:3a:4a:8a:55:bb:17: 58:0a:44:8e:65:bc:4e:c4:99:66:e9:6a:ff:78:32: c1:e6:ec:d0:f1:80:b7:ec:85:bc:4a:34:31:90:80: 65:2e:88:0e:00:1e:01:fa:f3:84:c1:52:45:9c:c5: da:b2:13:e4:bf:22:76:23:da:24:55:d6:41:4b:bc: 58:cf:80:3f:b7:7e:d4:22:0e:66:11:34:43:0b:e7: c9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DB:57:C5:55:C1:14:13:A3:E6:D4:C7:BD:81:56:DE:D0:F2:F4:6B X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.209.0/24 Signature Algorithm: sha256WithRSAEncryption 69:2a:98:7f:9e:1c:fd:4c:1d:a7:6f:79:5c:08:6a:a8:c2:1e: 71:24:32:fe:f1:e8:83:fc:a8:ad:c9:92:8e:5b:6f:34:ac:f5: 67:37:96:9c:2b:72:75:ae:61:e9:07:f1:2b:82:11:2b:ba:dd: 5d:96:7f:4b:7f:88:38:40:0b:03:2e:ac:d2:b7:31:d1:9c:8c: 5a:50:75:47:24:6f:87:70:31:c2:7e:a2:36:10:57:85:64:99: 92:35:3a:39:6c:cf:1d:e9:a7:68:b2:42:fb:8f:bf:3a:8e:56: dc:90:e8:e4:8e:38:2d:8c:08:eb:6b:e3:96:b2:b0:40:ae:6e: 67:e7:61:ee:6a:3f:9a:91:1c:9e:fa:67:a2:bd:27:5c:f6:e9: d5:f3:b6:98:2c:47:a8:a2:59:7f:c5:95:8d:69:c7:b9:61:76: 7b:e8:53:e8:4a:89:53:bd:3e:29:35:ec:b4:83:ab:ae:ee:b7: e6:01:2e:c3:15:e5:9e:e8:63:88:53:ab:f2:95:58:4e:81:90: 0b:f4:dd:5e:9e:03:40:42:a1:84:0d:87:d6:f8:7d:e4:d4:36: 09:ed:c7:fa:27:2e:c0:a4:5b:a9:a1:eb:bf:ec:ca:29:e3:58: 88:d7:f9:47:d2:a7:5e:57:ba:67:a4:1e:5c:e4:91:4e:69:07: f3:be:58:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjUwNDMwMTgyODE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNmJiZi04MWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdu+jFa4QQroZ9McgM7fXN4ROac2/lB0HBWMDil3v9RzaLpeWuMnbIEkIwUi N57ja6Jm2PvL91XWC6Zi8896B0uyhO3dvrQ62dKkggC86xgnv5Jp+HXF5PcGOoLZ bbSl8OZB8A+nqh5by/XjdzLTPFzEZtjOQoxjWgmQcFGG3nusRiDroihyxW4pi6yE kNTn20LczGRxHOjEGpo/tTeet5RO3YG+wiiG6vaCiiQ6SopVuxdYCkSOZbxOxJlm 6Wr/eDLB5uzQ8YC37IW8SjQxkIBlLogOAB4B+vOEwVJFnMXashPkvyJ2I9okVdZB S7xYz4A/t37UIg5mETRDC+fJTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMrbV8VV wRQTo+bUx72BVt7Q8vRrMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJBODAvQjk4RTgxRDYwNUI5MTFFQTgyMDg5OTZFQzRGOUFFMDIvMjFBOUMyRDQy MjEyMTFFRjk2MjREQjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBtEwDQYJKoZIhvcNAQELBQADggEBAGkqmH+eHP1MHadv eVwIaqjCHnEkMv7x6IP8qK3Jko5bbzSs9Wc3lpwrcnWuYekH8SuCESu63V2Wf0t/ iDhACwMurNK3MdGcjFpQdUckb4dwMcJ+ojYQV4VkmZI1Ojlszx3pp2iyQvuPvzqO VtyQ6OSOOC2MCOtr45aysECubmfnYe5qP5qRHJ76Z6K9J1z26dXztpgsR6iiWX/F lY1px7lhdnvoU+hKiVO9Pik17LSDq67ut+YBLsMV5Z7oY4hTq/KVWE6BkAv03V6e A0BCoYQNh9b4feTUNgntx/onLsCkW6mh67/syinjWIjX+UfSp15XumekHlzkkU5p B/O+WMQ= -----END CERTIFICATE-----Generated at Mon May 12 16:07:01 2025 by rpki-client