$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/EA438F3050E311F08CF2971BC4F9AE02.roa File: EA438F3050E311F08CF2971BC4F9AE02.roa (raw, json) Hash identifier: IjL6cu6bZiACksELIxEiXf/UtBVghk3xr9SoGwHtz+o= Subject key identifier: 99:F3:60:08:7D:40:B5:F7:9C:F1:F0:59:08:56:FF:F8:93:1A:CA:A8 Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: A9 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/EA438F3050E311F08CF2971BC4F9AE02.roa Signing time: Tue 24 Jun 2025 10:13:47 +0000 ROA not before: Tue 24 Jun 2025 10:13:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 36352 IP address blocks: 103.202.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Jun 24 10:13:47 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=685a7a5a-121a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bc:43:1f:e7:7a:ad:b0:ef:43:23:ff:a0:11: 24:ce:86:89:cb:29:d1:51:45:d0:4b:bd:75:56:95: 15:41:49:fc:77:f6:7d:51:fd:66:f8:8e:f6:22:fb: d4:a9:fd:0a:6c:84:d5:5d:58:55:1c:23:78:d2:e0: 50:cb:98:f3:e9:21:94:04:07:ad:ee:13:8e:ed:64: 0d:a7:35:5f:96:f0:6f:c0:9a:07:e2:26:22:96:16: c7:bd:c1:78:a2:86:0a:b1:af:38:35:11:9f:1e:87: df:15:55:6a:5d:17:c0:12:10:4f:27:3a:72:7c:72: 46:a1:5b:6a:02:4a:62:b8:d7:9a:a5:cc:6a:16:97: 89:07:42:ec:ea:bb:e4:83:22:29:0f:18:d9:a6:0b: 56:65:bc:f3:83:f2:c3:36:60:ab:da:db:11:ae:64: 86:25:0f:42:8f:09:7e:bb:cc:cb:fc:ed:af:6e:79: ec:62:c8:8e:82:f8:d6:f5:bf:83:1a:c3:9c:6a:e5: f4:43:cb:e1:5d:5f:63:a7:cb:1d:89:15:58:73:eb: 83:79:31:43:24:84:23:49:ac:ef:79:2f:f8:b3:7a: e4:b0:a5:1b:6e:0e:18:b1:04:53:27:a7:1c:9a:52: 47:ee:7b:d6:7f:99:3f:4e:b5:04:a7:d7:89:56:80: e9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F3:60:08:7D:40:B5:F7:9C:F1:F0:59:08:56:FF:F8:93:1A:CA:A8 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/EA438F3050E311F08CF2971BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.202.48.0/22 Signature Algorithm: sha256WithRSAEncryption 07:33:77:fb:f9:a8:4f:99:05:f3:4c:14:12:87:ee:97:1f:76: 18:28:8b:4c:8b:4c:16:b0:8a:bf:f6:c7:ae:2e:33:2f:ba:33: 3d:9b:b8:53:4b:99:a6:e6:5d:6f:6a:9d:bb:2d:25:ad:55:63: 1a:ce:a8:a0:67:6c:81:15:de:f4:6a:35:68:97:b7:26:04:0b: 35:e1:57:f5:1a:04:af:dd:ff:bb:16:6f:c0:88:ab:f8:f8:6f: 66:12:24:8c:b1:25:5b:59:1f:f0:9f:bb:41:45:ca:34:0f:3a: bc:10:28:ac:31:d3:ad:85:c4:41:87:4d:52:a1:e7:93:75:e7: fe:84:c0:1a:48:66:d2:2d:c4:59:78:09:63:5a:99:e1:46:f6: c9:81:3b:98:00:7e:ff:9a:7c:bc:f8:e5:d0:f7:33:2e:74:3b: 91:1a:9f:7b:e3:67:15:5b:af:fd:cd:29:ba:67:7c:d5:95:44: d4:9a:e1:eb:20:f7:ff:3c:01:34:2e:7b:9b:f2:b1:4f:f3:b2: d5:7e:28:1a:26:01:f4:f3:49:f5:0b:4d:4d:67:f0:03:ca:22: cf:11:59:a9:53:0b:df:0d:bc:9c:f9:0d:96:74:e6:6a:77:85: 82:f5:42:77:01:ff:b1:4a:6a:19:57:6e:91:8c:92:c5:01:ac: c0:a7:f9:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwNjI0MTAxMzQ3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhN2E1YS0xMjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbxDH+d6rbDvQyP/oBEkzoaJyynRUUXQS711VpUVQUn8d/Z9Uf1m+I72IvvU qf0KbITVXVhVHCN40uBQy5jz6SGUBAet7hOO7WQNpzVflvBvwJoH4iYilhbHvcF4 ooYKsa84NRGfHoffFVVqXRfAEhBPJzpyfHJGoVtqAkpiuNeapcxqFpeJB0Ls6rvk gyIpDxjZpgtWZbzzg/LDNmCr2tsRrmSGJQ9Cjwl+u8zL/O2vbnnsYsiOgvjW9b+D GsOcauX0Q8vhXV9jp8sdiRVYc+uDeTFDJIQjSazveS/4s3rksKUbbg4YsQRTJ6cc mlJH7nvWf5k/TrUEp9eJVoDprwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJnzYAh9 QLX3nPHwWQhW//iTGsqoMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgyNEEvNEFERjMzRkM1QjlBMTFFRjgzMDdGNTQwQzRGOUFFMDIvRUE0MzhGMzA1 MEUzMTFGMDhDRjI5NzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnyjAwDQYJKoZIhvcNAQELBQADggEBAAczd/v5qE+ZBfNM FBKH7pcfdhgoi0yLTBawir/2x64uMy+6Mz2buFNLmabmXW9qnbstJa1VYxrOqKBn bIEV3vRqNWiXtyYECzXhV/UaBK/d/7sWb8CIq/j4b2YSJIyxJVtZH/Cfu0FFyjQP OrwQKKwx062FxEGHTVKh55N15/6EwBpIZtItxFl4CWNameFG9smBO5gAfv+afLz4 5dD3My50O5Ean3vjZxVbr/3NKbpnfNWVRNSa4esg9/88ATQue5vysU/zstV+KBom AfTzSfULTU1n8APKIs8RWalTC98NvJz5DZZ05mp3hYL1QncB/7FKahlXbpGMksUB rMCn+eo= -----END CERTIFICATE-----Generated at Wed Jul 2 16:32:45 2025 by rpki-client