$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/A0879902F15711EC846A5F29C4F9AE02.roa File: A0879902F15711EC846A5F29C4F9AE02.roa (raw, json) Hash identifier: 7/5fZwleDVzsoLoxdmlvx46DZvj38NfAJm5JPzwN8K4= Subject key identifier: CE:E0:93:96:AD:7B:C5:4B:F2:15:CE:80:9A:36:87:9E:2E:1B:8F:02 Certificate issuer: /CN=A91CBE2E/serialNumber=858A27CB5C04CADFAEFDB893BF06E1A7B7D9F1C1 Certificate serial: 0329 Authority key identifier: 85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/A0879902F15711EC846A5F29C4F9AE02.roa Signing time: Fri 13 Jun 2025 01:07:04 +0000 ROA not before: Fri 13 Jun 2025 01:07:04 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139325 IP address blocks: 103.186.218.0/23 maxlen: 24 2001:df0:b0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.crl rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 809 (0x329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE2E, serialNumber=858A27CB5C04CADFAEFDB893BF06E1A7B7D9F1C1 Validity Not Before: Jun 13 01:07:04 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684b79b8-d9fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:fd:8d:84:30:ce:b2:88:11:0a:33:c2:d2:d7: 6d:bf:da:d9:30:87:ae:2f:f7:38:85:97:98:f6:4c: 84:4a:cb:d3:7d:0d:d1:87:3b:30:fe:ca:53:21:67: bb:09:87:0f:fc:17:97:e2:67:81:fb:2a:bd:a7:2a: 13:a2:5a:9e:28:bd:e3:71:71:a9:93:c4:87:6a:69: 5e:c3:ef:c9:36:87:7e:d7:22:02:9c:df:64:53:de: d0:8d:7a:1f:17:3b:ff:e4:92:0a:55:09:89:e1:e8: dc:fc:14:b8:56:5f:7c:76:18:a5:f5:e5:d1:6a:db: 25:d1:31:15:a6:79:3c:26:d8:0c:c8:86:69:7f:94: 4b:12:7f:56:79:d7:87:48:fc:92:21:54:bf:af:89: 56:07:d0:55:4a:63:7d:07:ac:d7:53:2f:a8:05:09: 0b:41:67:92:a6:fb:c2:ef:8b:1c:e3:38:16:6d:21: 9f:d0:a4:34:3c:2d:c8:27:5e:33:4a:fa:20:80:b4: 0c:d5:ac:c4:6d:f0:49:54:99:90:8f:94:e4:de:bd: 96:38:e5:55:86:42:b2:78:05:33:46:b2:c9:21:ea: 29:1b:7a:50:15:d0:73:9f:3a:d9:24:f6:42:73:ae: 31:a6:e0:db:41:f7:88:d2:60:9d:54:8e:05:0f:94: f2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E0:93:96:AD:7B:C5:4B:F2:15:CE:80:9A:36:87:9E:2E:1B:8F:02 X509v3 Authority Key Identifier: keyid:85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/A0879902F15711EC846A5F29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.218.0/23 IPv6: 2001:df0:b0c0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:92:cd:d9:ec:37:79:01:53:b4:dd:0f:80:0a:31:be:01:2f: dd:a3:12:da:0c:69:fe:70:0a:9f:23:5a:a3:2d:b5:d3:79:5f: be:f6:d5:6a:4f:81:37:bb:ff:46:ba:ad:4e:63:94:29:56:3e: f3:88:13:39:fd:e7:80:10:54:64:4b:32:5a:ac:db:8b:30:17: b8:78:27:b5:0a:7e:00:27:df:a0:8a:8e:cc:11:f4:b2:a7:49: ae:15:39:f3:e1:0f:07:c6:98:cd:55:fe:36:af:d4:8f:e9:57: ae:d0:20:ea:0c:06:74:0d:71:86:52:6c:40:28:c5:46:ff:40: 71:9a:12:aa:1d:4b:04:6f:8d:ca:21:87:dc:ef:a1:90:97:a6: ba:1e:c4:55:da:1b:41:19:8b:c8:6b:96:36:cb:e2:7f:e1:87: 02:6d:0c:bc:c9:f8:04:2f:63:30:94:97:e8:4f:38:27:37:ca: 6f:30:36:33:ee:0e:7d:34:63:04:ac:40:38:8c:c1:68:06:30: 9c:bb:f9:67:8b:07:bb:2f:6d:48:86:60:e6:28:cc:e4:3a:f4: f5:a8:13:07:26:54:ab:91:b4:5b:d7:54:09:ac:23:6f:c1:ef: 68:62:46:e9:5f:93:f9:84:26:a5:83:b2:d1:3d:77:48:20:57: c6:91:21:25 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFMkUxMTAvBgNVBAUTKDg1OEEyN0NCNUMwNENBREZBRUZEQjg5M0JGMDZFMUE3 QjdEOUYxQzEwHhcNMjUwNjEzMDEwNzA0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiNzliOC1kOWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7v2NhDDOsogRCjPC0tdtv9rZMIeuL/c4hZeY9kyESsvTfQ3Rhzsw/spTIWe7 CYcP/BeX4meB+yq9pyoTolqeKL3jcXGpk8SHamlew+/JNod+1yICnN9kU97QjXof Fzv/5JIKVQmJ4ejc/BS4Vl98dhil9eXRatsl0TEVpnk8JtgMyIZpf5RLEn9WedeH SPySIVS/r4lWB9BVSmN9B6zXUy+oBQkLQWeSpvvC74sc4zgWbSGf0KQ0PC3IJ14z SvoggLQM1azEbfBJVJmQj5Tk3r2WOOVVhkKyeAUzRrLJIeopG3pQFdBznzrZJPZC c64xpuDbQfeI0mCdVI4FD5TyNQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM7gk5at e8VL8hXOgJo2h54uG48CMB8GA1UdIwQYMBaAFIWKJ8tcBMrfrv24k78G4ae32fHB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkUyRS9EOEFCQUZFOEQw RkIxMUVDQTI3QUYyMkZDNEY5QUUwMi9oWW9ueTF3RXl0LXVfYmlUdndiaHA3Zlo4 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZb255MXdFeXQtdV9iaVR2d2JocDdmWjhjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JFMkUvRDhBQkFGRThEMEZCMTFFQ0EyN0FGMjJGQzRGOUFFMDIvQTA4Nzk5MDJG MTU3MTFFQzg0NkE1RjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnutowDwQCAAIwCQMHACABDfCwwDANBgkqhkiG9w0BAQsF AAOCAQEAW5LN2ew3eQFTtN0PgAoxvgEv3aMS2gxp/nAKnyNaoy2103lfvvbVak+B N7v/RrqtTmOUKVY+84gTOf3ngBBUZEsyWqzbizAXuHgntQp+ACffoIqOzBH0sqdJ rhU58+EPB8aYzVX+Nq/Uj+lXrtAg6gwGdA1xhlJsQCjFRv9AcZoSqh1LBG+NyiGH 3O+hkJemuh7EVdobQRmLyGuWNsvif+GHAm0MvMn4BC9jMJSX6E84JzfKbzA2M+4O fTRjBKxAOIzBaAYwnLv5Z4sHuy9tSIZg5ijM5Dr09agTByZUq5G0W9dUCawjb8Hv aGJG6V+T+YQmpYOy0T13SCBXxpEhJQ== -----END CERTIFICATE-----Generated at Thu Jul 3 23:30:08 2025 by rpki-client