$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/1E732B3A50E411F0ABDE271FC4F9AE02.roa File: 1E732B3A50E411F0ABDE271FC4F9AE02.roa (raw, json) Hash identifier: 0rHzN504abmW8+5p4rthLyu5jui2Rhd2WfHqWrsiokA= Subject key identifier: 41:6F:B2:59:32:D4:01:04:33:D5:AF:D0:78:66:70:0C:65:DA:71:CF Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: A5 Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/1E732B3A50E411F0ABDE271FC4F9AE02.roa Signing time: Tue 24 Jun 2025 10:15:14 +0000 ROA not before: Tue 24 Jun 2025 10:15:14 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.207.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Jun 24 10:15:14 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=685a7ab2-ced0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:52:78:ab:b9:f3:5f:96:f0:10:93:81:14:03: a1:bd:35:38:9d:e1:da:06:b5:59:fd:9b:45:5c:d8: 9c:73:04:40:af:74:e4:24:60:27:24:54:82:e4:c3: 39:8b:aa:d8:16:2c:1e:b0:84:02:1e:cb:bc:d9:1f: 51:99:79:3b:d8:f7:eb:56:f3:9e:3e:14:fd:6f:6d: 16:94:0a:b3:b6:d0:fa:1b:0b:9d:19:41:73:a5:c0: bb:25:10:cd:69:bf:b5:b3:d5:04:c6:fc:c5:bb:ca: d0:7b:d4:45:a5:49:1e:c5:a5:00:a3:37:82:2a:b5: dd:02:9a:5b:ae:24:cb:37:70:ed:e0:14:7b:71:79: 38:91:49:20:eb:bd:85:fc:df:55:37:cf:d2:64:1f: 75:07:d6:68:1f:f3:a0:3f:bb:13:3e:1c:dc:37:c8: 7e:9a:48:00:34:36:c2:b7:55:e2:65:c3:ea:79:a7: dc:7a:2d:6d:55:d0:b3:5a:96:0a:75:87:87:64:a0: cb:86:6a:e0:55:89:c9:7a:af:5b:05:55:e3:00:18: d2:6f:b9:32:aa:01:32:dd:21:f5:7d:c2:78:a2:78: 75:c3:ba:78:1a:db:08:b1:88:49:74:6d:f9:58:18: 4e:d0:39:cf:4d:d2:e1:f0:dc:ad:63:22:7b:70:44: 3d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:6F:B2:59:32:D4:01:04:33:D5:AF:D0:78:66:70:0C:65:DA:71:CF X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/1E732B3A50E411F0ABDE271FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.116.0/22 Signature Algorithm: sha256WithRSAEncryption b1:b1:a8:72:40:d9:7e:ff:32:14:a0:3b:5f:92:ce:23:fd:bf: 83:24:26:49:90:0b:e0:ed:d2:53:74:95:3b:6a:a4:8c:ba:de: b5:3d:18:54:81:ea:b3:80:2e:b8:3a:d0:e4:a2:76:2f:b0:3d: ea:e6:cf:7b:0e:30:ef:07:07:3f:68:0f:b9:f7:ae:b2:58:93: e4:0d:a5:9d:ed:74:73:5c:f0:f9:a0:4c:22:2a:b4:fa:5c:90: 2d:f8:c2:72:3a:93:fb:79:97:78:41:c2:4f:74:ec:43:43:ec: a9:5f:10:e0:a9:8b:94:f8:26:fd:14:cb:0d:d4:07:08:9b:7a: 29:72:72:d6:ea:05:37:c0:4b:33:d6:7f:a1:ff:c9:af:07:80: b9:29:eb:5e:3d:b0:44:81:34:33:41:23:02:b9:c7:94:be:bc: 42:ef:6b:bc:bb:a2:cc:37:03:39:04:f9:a0:1f:b8:db:3b:97: f5:62:97:e9:90:8b:f7:57:e6:1d:57:67:7e:cd:e9:30:38:7e: e7:8e:51:24:c3:0b:b3:81:84:9c:2f:f6:6e:01:bc:03:0f:9a: 2d:07:07:33:90:39:e3:07:11:40:a9:0f:77:b6:b7:b1:4d:1d: 8a:7f:e9:36:ce:0f:5b:3c:28:d9:f8:d3:16:16:42:ce:56:e8: 8e:51:23:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjUwNjI0MTAxNTE0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhN2FiMi1jZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVJ4q7nzX5bwEJOBFAOhvTU4neHaBrVZ/ZtFXNiccwRAr3TkJGAnJFSC5MM5 i6rYFiwesIQCHsu82R9RmXk72PfrVvOePhT9b20WlAqzttD6GwudGUFzpcC7JRDN ab+1s9UExvzFu8rQe9RFpUkexaUAozeCKrXdAppbriTLN3Dt4BR7cXk4kUkg672F /N9VN8/SZB91B9ZoH/OgP7sTPhzcN8h+mkgANDbCt1XiZcPqeafcei1tVdCzWpYK dYeHZKDLhmrgVYnJeq9bBVXjABjSb7kyqgEy3SH1fcJ4onh1w7p4GtsIsYhJdG35 WBhO0DnPTdLh8NytYyJ7cEQ93wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEFvslky 1AEEM9Wv0HhmcAxl2nHPMB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y5RjUvOEI5MjZEMkE1QjlFMTFFRjhCRjkxNzVCQzRGOUFFMDIvMUU3MzJCM0E1 MEU0MTFGMEFCREUyNzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnz3QwDQYJKoZIhvcNAQELBQADggEBALGxqHJA2X7/MhSg O1+SziP9v4MkJkmQC+Dt0lN0lTtqpIy63rU9GFSB6rOALrg60OSidi+wPermz3sO MO8HBz9oD7n3rrJYk+QNpZ3tdHNc8PmgTCIqtPpckC34wnI6k/t5l3hBwk907END 7KlfEOCpi5T4Jv0Uyw3UBwibeilyctbqBTfASzPWf6H/ya8HgLkp6149sESBNDNB IwK5x5S+vELva7y7osw3AzkE+aAfuNs7l/Vil+mQi/dX5h1XZ37N6TA4fueOUSTD C7OBhJwv9m4BvAMPmi0HBzOQOeMHEUCpD3e2t7FNHYp/6TbOD1s8KNn40xYWQs5W 6I5RI68= -----END CERTIFICATE-----Generated at Thu Jul 3 09:28:00 2025 by rpki-client