$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/50D705A87FA911EBA8C11D63C4F9AE02.roa File: 50D705A87FA911EBA8C11D63C4F9AE02.roa (raw, json) Hash identifier: XPZflDMOHrz8WA93u6KTrDyNAlgfVwGC6hkcyOuXo4w= Subject key identifier: E0:09:0D:E3:B3:DA:67:E3:3F:81:BE:16:BF:D5:FE:C0:60:F1:0F:9B Certificate issuer: /CN=A91CE3C4/serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Certificate serial: 0693 Authority key identifier: FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/50D705A87FA911EBA8C11D63C4F9AE02.roa Signing time: Wed 30 Apr 2025 22:33:55 +0000 ROA not before: Wed 30 Apr 2025 22:33:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56183 IP address blocks: 103.7.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Validity Not Before: Apr 30 22:33:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812a553-60de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:1e:35:35:3d:63:4d:b9:e7:5c:f1:92:29: a1:29:1b:ec:7d:23:68:3f:d3:6d:b0:67:85:3a:27: fa:1f:55:7e:bb:fb:8a:18:23:d9:e4:25:e6:ec:fa: 6a:74:a5:8a:52:ef:42:74:02:d3:0d:b6:9b:8e:ab: 4f:cc:88:76:ab:bd:a4:f8:a9:36:bb:72:95:6e:a4: 78:11:74:cc:65:9b:ee:19:79:66:2b:a2:48:01:45: f3:96:cd:f5:f2:3e:ee:f9:c6:d5:c0:40:f0:93:06: 95:38:33:ad:22:df:81:d2:c1:a2:9e:f3:68:14:89: 98:80:1b:24:e2:cf:8a:e7:eb:33:e1:f9:4c:2f:a0: be:52:97:48:f9:86:f5:cd:10:f6:f6:d9:fe:af:cf: 79:43:22:c0:37:43:b8:3e:ac:c9:52:43:d8:3b:98: 11:b6:d8:ab:f5:16:08:f8:a2:fe:c0:16:71:d1:bb: af:81:54:01:b4:2b:95:a7:01:24:46:c8:c8:1f:b5: 90:8c:69:aa:84:0a:b9:42:37:c8:87:63:ed:71:8f: de:93:2f:ee:d3:c5:30:89:d8:6e:80:bb:f9:67:d8: e2:b1:8f:55:9d:f0:ca:6d:32:76:93:a4:44:64:7d: f3:5e:df:54:e9:6f:6b:cc:91:65:2b:56:2e:60:2c: d0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:09:0D:E3:B3:DA:67:E3:3F:81:BE:16:BF:D5:FE:C0:60:F1:0F:9B X509v3 Authority Key Identifier: keyid:FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/50D705A87FA911EBA8C11D63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.164.0/22 Signature Algorithm: sha256WithRSAEncryption 59:85:c1:e2:a3:0e:bd:4d:53:ad:7d:57:ac:9d:12:b2:c5:ea: a9:03:96:31:fd:3a:1c:25:cf:10:6f:f3:a0:4b:8d:4b:ec:dd: eb:68:a2:81:12:7b:a7:f9:91:56:da:d2:02:bb:87:f9:ed:9e: 01:ec:e3:77:b0:09:d1:e2:ca:66:e3:e7:35:15:8f:ae:7f:46: 98:b7:5f:86:98:5c:24:36:fb:38:c2:be:a1:a7:44:09:de:45: 2a:3d:31:26:0e:66:b0:f3:6d:d7:d3:48:81:8d:a9:d1:9f:85: 25:a0:2e:fb:f4:27:d0:f7:4f:f2:75:22:0b:99:b1:4a:85:c1: ed:06:d9:b9:1f:06:e6:55:1e:9b:2d:38:4c:e3:05:6b:61:5a: 2a:cd:b9:54:cf:55:b3:78:bf:89:b8:b3:8b:a4:a3:e5:27:c2: b6:dc:e5:75:23:ec:d6:85:fa:2d:6b:9b:35:9b:52:0a:93:2f: fc:0d:81:51:45:44:39:47:90:1e:5d:b3:7a:88:3f:36:d1:5e: 8f:b7:6c:7d:4b:81:4c:aa:1c:8a:e4:e4:0a:84:71:13:fc:ef: 75:9f:27:bb:f5:e7:f8:7b:d6:bc:1f:ff:6a:39:8e:e8:00:50: 21:fe:80:cb:de:e6:20:fe:f4:63:e5:ce:b4:a8:36:2e:0b:ee: 82:6e:f8:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEZDQUQ0NjExNTdERjY4MUMwNTBCRDNCRUVFQTJFQUNE RkI2RDUyNEIwHhcNMjUwNDMwMjIzMzU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYTU1My02MGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSIeNTU9Y02551zxkimhKRvsfSNoP9NtsGeFOif6H1V+u/uKGCPZ5CXm7Ppq dKWKUu9CdALTDbabjqtPzIh2q72k+Kk2u3KVbqR4EXTMZZvuGXlmK6JIAUXzls31 8j7u+cbVwEDwkwaVODOtIt+B0sGinvNoFImYgBsk4s+K5+sz4flML6C+UpdI+Yb1 zRD29tn+r895QyLAN0O4PqzJUkPYO5gRttir9RYI+KL+wBZx0buvgVQBtCuVpwEk RsjIH7WQjGmqhAq5QjfIh2PtcY/eky/u08UwidhugLv5Z9jisY9VnfDKbTJ2k6RE ZH3zXt9U6W9rzJFlK1YuYCzQwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOAJDeOz 2mfjP4G+Fr/V/sBg8Q+bMB8GA1UdIwQYMBaAFPytRhFX32gcBQvTvu6i6s37bVJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC83NjkyMjc4QTdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi9fSzFHRVZmZmFCd0ZDOU8tN3FMcXpmdHRV a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19LMUdFVmZmYUJ3RkM5Ty03cUxxemZ0dFVrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNzY5MjI3OEE3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvNTBENzA1QTg3 RkE5MTFFQkE4QzExRDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnB6QwDQYJKoZIhvcNAQELBQADggEBAFmFweKjDr1NU619 V6ydErLF6qkDljH9OhwlzxBv86BLjUvs3etoooESe6f5kVba0gK7h/ntngHs43ew CdHiymbj5zUVj65/Rpi3X4aYXCQ2+zjCvqGnRAneRSo9MSYOZrDzbdfTSIGNqdGf hSWgLvv0J9D3T/J1IguZsUqFwe0G2bkfBuZVHpstOEzjBWthWirNuVTPVbN4v4m4 s4uko+Unwrbc5XUj7NaF+i1rmzWbUgqTL/wNgVFFRDlHkB5ds3qIPzbRXo+3bH1L gUyqHIrk5AqEcRP873WfJ7v15/h71rwf/2o5jugAUCH+gMve5iD+9GPlzrSoNi4L 7oJu+CI= -----END CERTIFICATE-----Generated at Sun May 11 19:58:27 2025 by rpki-client