$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa File: CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa (raw, json) Hash identifier: 4fDeSPD5cEp99R2nDZ+LoAEar5uyKAG2X3DiDKhD9co= Subject key identifier: 5F:DA:79:29:D6:60:F7:8A:11:8F:FA:7A:17:D8:B9:C0:10:50:0D:8B Certificate issuer: /CN=A91BC3FD/serialNumber=27DD8BBB8FB5FACDC19F29D3EC2745D5110D8A9F Certificate serial: 0941 Authority key identifier: 27:DD:8B:BB:8F:B5:FA:CD:C1:9F:29:D3:EC:27:45:D5:11:0D:8A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J92Lu4-1-s3BnynT7CdF1RENip8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa Signing time: Mon 30 Jun 2025 20:36:30 +0000 ROA not before: Mon 30 Jun 2025 20:36:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140678 IP address blocks: 103.151.174.0/24 maxlen: 24 2001:df3:ce80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/J92Lu4-1-s3BnynT7CdF1RENip8.crl rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/J92Lu4-1-s3BnynT7CdF1RENip8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J92Lu4-1-s3BnynT7CdF1RENip8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2369 (0x941) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC3FD, serialNumber=27DD8BBB8FB5FACDC19F29D3EC2745D5110D8A9F Validity Not Before: Jun 30 20:36:30 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6862f54e-bdda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f2:70:ab:40:26:24:d6:82:5a:a4:e1:f2:7a: b2:9b:57:8e:80:4a:27:c3:0c:cc:63:da:cf:74:db: 6b:6b:6e:3c:a7:4f:20:5c:17:c5:06:e8:0b:07:41: 3e:07:f2:22:4e:9e:ef:a4:dc:ad:a4:5c:4a:53:2f: 2a:57:c2:31:b9:0d:5c:f8:36:b3:f6:fc:63:91:ec: 8e:62:60:c1:ba:43:7a:62:72:67:06:7b:26:97:dc: 64:09:70:b6:7f:2d:17:3d:10:58:ee:33:ae:b8:59: b4:5a:f8:8f:63:6c:a7:10:86:2f:7d:e7:e4:a7:d6: ed:b7:c0:c6:c4:f8:6c:8a:ac:60:9f:65:7d:61:94: 81:6e:97:db:2d:e6:d2:51:90:f1:75:5a:61:6a:17: ea:2d:c0:c1:af:85:16:c9:0a:0f:82:4f:04:b5:71: f7:9c:07:69:2a:e5:db:67:ba:b1:58:bb:fb:bc:84: 07:3c:a5:fe:71:41:93:d3:c3:08:cc:1f:0a:04:eb: 96:b2:02:a1:0d:4c:dd:56:b0:aa:ec:84:3e:f6:56: 24:c4:0e:05:1b:d7:dd:c3:fe:9d:5f:6e:72:e0:96: 45:06:50:c1:90:0b:4d:2e:ce:43:e6:24:cf:7d:62: b3:a1:11:30:a1:d8:81:37:85:76:d5:b2:9c:d1:fd: 6c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DA:79:29:D6:60:F7:8A:11:8F:FA:7A:17:D8:B9:C0:10:50:0D:8B X509v3 Authority Key Identifier: keyid:27:DD:8B:BB:8F:B5:FA:CD:C1:9F:29:D3:EC:27:45:D5:11:0D:8A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/J92Lu4-1-s3BnynT7CdF1RENip8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J92Lu4-1-s3BnynT7CdF1RENip8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.174.0/24 IPv6: 2001:df3:ce80::/48 Signature Algorithm: sha256WithRSAEncryption ab:a4:19:51:1f:50:a1:5a:96:4f:82:05:cf:ee:b5:b8:2a:47: a4:87:51:3f:a6:cd:fa:88:62:d2:fd:e4:90:77:11:d1:05:60: 0f:3a:ea:54:cc:74:52:1d:97:d7:aa:90:fd:62:e1:b0:d1:cd: 82:8a:95:bb:07:cc:c7:81:51:b2:2a:53:2c:6e:ca:e1:b0:80: 9b:8c:0f:da:36:ca:0e:88:27:94:12:a0:d6:cb:e4:3c:df:cd: 04:c5:c7:01:45:44:fb:4d:4c:93:32:c7:c8:56:c2:2a:4c:6e: 46:ca:1b:1b:76:15:eb:d9:ac:d5:56:8b:4d:2d:fc:a6:ad:97: 90:04:a5:0e:3d:8e:3c:11:ae:8c:60:ce:b7:28:0c:6f:4b:42: c7:26:ac:7a:95:ab:da:80:66:3f:77:8c:44:73:59:96:87:74: ae:db:85:a7:e5:ad:c1:6f:58:1e:4c:ae:3b:40:ba:bb:cf:1d: 4b:a3:35:e7:ef:cc:7c:58:8f:ae:2b:d9:d4:25:aa:af:c8:97: c2:8a:da:59:bb:47:ff:1b:62:87:b7:1c:6d:c5:77:cd:a4:a8: a4:8c:c1:55:e4:94:dc:bf:16:89:dd:63:05:10:d1:ae:fa:4b: dd:bd:1f:26:9a:7f:43:24:04:db:de:69:82:b2:e2:df:ec:a9: 7c:fa:94:67 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMzRkQxMTAvBgNVBAUTKDI3REQ4QkJCOEZCNUZBQ0RDMTlGMjlEM0VDMjc0NUQ1 MTEwRDhBOUYwHhcNMjUwNjMwMjAzNjMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyZjU0ZS1iZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/Jwq0AmJNaCWqTh8nqym1eOgEonwwzMY9rPdNtra248p08gXBfFBugLB0E+ B/IiTp7vpNytpFxKUy8qV8IxuQ1c+Daz9vxjkeyOYmDBukN6YnJnBnsml9xkCXC2 fy0XPRBY7jOuuFm0WviPY2ynEIYvfefkp9btt8DGxPhsiqxgn2V9YZSBbpfbLebS UZDxdVphahfqLcDBr4UWyQoPgk8EtXH3nAdpKuXbZ7qxWLv7vIQHPKX+cUGT08MI zB8KBOuWsgKhDUzdVrCq7IQ+9lYkxA4FG9fdw/6dX25y4JZFBlDBkAtNLs5D5iTP fWKzoREwodiBN4V21bKc0f1sCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF/aeSnW YPeKEY/6ehfYucAQUA2LMB8GA1UdIwQYMBaAFCfdi7uPtfrNwZ8p0+wnRdURDYqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzNGRC9BNkIzRDQ3ODlG MEUxMUVBODBCNzVCMkNDNEY5QUUwMi9KOTJMdTQtMS1zM0JueW5UN0NkRjFSRU5p cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o5Mkx1NC0xLXMzQm55blQ3Q2RGMVJFTmlwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMzRkQvQTZCM0Q0Nzg5RjBFMTFFQTgwQjc1QjJDQzRGOUFFMDIvQ0MxREZCQUM5 RjBGMTFFQUE0NDE5RDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnl64wDwQCAAIwCQMHACABDfPOgDANBgkqhkiG9w0BAQsF AAOCAQEAq6QZUR9QoVqWT4IFz+61uCpHpIdRP6bN+ohi0v3kkHcR0QVgDzrqVMx0 Uh2X16qQ/WLhsNHNgoqVuwfMx4FRsipTLG7K4bCAm4wP2jbKDognlBKg1svkPN/N BMXHAUVE+01MkzLHyFbCKkxuRsobG3YV69ms1VaLTS38pq2XkASlDj2OPBGujGDO tygMb0tCxyasepWr2oBmP3eMRHNZlod0rtuFp+WtwW9YHkyuO0C6u88dS6M15+/M fFiPrivZ1CWqr8iXworaWbtH/xtih7ccbcV3zaSopIzBVeSU3L8Wid1jBRDRrvpL 3b0fJpp/QyQE295pgrLi3+ypfPqUZw== -----END CERTIFICATE-----Generated at Thu Jul 3 06:54:56 2025 by rpki-client