$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/4E8695C04F6111F0AEF2037CC4F9AE02.roa File: 4E8695C04F6111F0AEF2037CC4F9AE02.roa (raw, json) Hash identifier: dTUyCBlbO/pz+tuVT/tO+XLwXxn5j9PKDxmqVQaSeKk= Subject key identifier: 39:3F:F4:AD:9E:C4:BC:C9:41:42:99:91:86:C5:34:24:C2:E4:CD:AD Certificate issuer: /CN=A91DB6F8/serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F Certificate serial: 01F9 Authority key identifier: 23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/4E8695C04F6111F0AEF2037CC4F9AE02.roa Signing time: Sun 22 Jun 2025 12:06:20 +0000 ROA not before: Sun 22 Jun 2025 12:06:20 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153346 IP address blocks: 103.48.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.crl rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB6F8, serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F Validity Not Before: Jun 22 12:06:20 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6857f1bb-9e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f8:1f:69:e1:5b:8d:30:42:49:6b:51:a5:83: 6d:2a:e5:c7:4b:26:dc:48:57:25:ec:0f:5f:23:cc: 83:b2:c1:57:29:55:90:b8:d3:58:d3:c1:7b:79:2c: 19:2a:06:c4:cb:e3:d1:8d:5e:24:51:13:6d:7a:c3: f3:df:75:92:06:2f:67:47:3d:d8:7f:a2:b4:a5:b8: 1d:54:d3:ad:96:91:2b:cc:a4:12:53:c3:40:0a:0e: e2:19:40:40:b8:57:f6:75:7f:d9:9d:0f:c8:9a:c5: 55:05:06:03:c9:c0:b9:1b:e9:68:78:dd:60:c5:d7: 2b:3a:13:f8:76:0e:83:02:80:3d:01:1e:9e:3b:70: a8:b3:11:bc:b5:c9:64:fc:4e:ef:93:b6:25:0c:cd: 03:c2:84:ab:59:8b:81:6f:55:1f:ef:05:21:cd:d4: ec:13:da:8f:39:76:cb:9e:d7:3e:2f:d7:2d:4e:b7: 1b:53:39:32:66:9e:2a:6e:7b:52:e9:60:60:be:e9: c0:a4:a8:af:74:95:69:ea:cc:66:c3:c6:e5:9d:24: 87:43:42:4b:f3:23:f2:1a:68:c9:00:a2:1c:61:96: 80:ee:6a:2a:a4:0d:ce:ed:2c:b3:97:b8:a3:53:96: 71:3d:e0:8a:89:a1:f3:93:81:55:d3:2a:62:52:2c: ed:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3F:F4:AD:9E:C4:BC:C9:41:42:99:91:86:C5:34:24:C2:E4:CD:AD X509v3 Authority Key Identifier: keyid:23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/4E8695C04F6111F0AEF2037CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.20.0/23 Signature Algorithm: sha256WithRSAEncryption b3:b4:b7:d0:fd:d3:1e:55:c1:a6:25:91:41:b3:c4:74:c0:f5: 02:1b:e3:54:bc:58:49:9c:6b:7a:59:d4:a2:85:4c:d7:25:56: 4d:ac:5f:77:76:df:0f:be:ed:ca:86:1e:81:71:65:82:2b:42: 36:6a:fc:2c:ea:1a:cc:e8:bc:ee:37:c0:54:6b:c6:40:b8:30: 03:8c:50:dd:9e:fd:e6:69:56:73:c6:ee:3e:09:2c:80:31:2d: 54:6a:50:97:ef:53:1a:e9:17:47:1a:a2:25:ab:84:70:78:b5: 77:df:65:b9:60:ac:58:03:97:5f:b4:3d:62:67:0d:31:09:b8: 8d:c5:cb:71:43:0f:f9:ab:c2:59:db:d6:9c:3b:f9:b7:b0:7a: ef:e4:91:5e:a1:31:48:ee:30:b3:17:f6:e6:10:8f:0d:10:be: 3a:15:99:4c:2f:fb:73:11:fb:64:4b:d9:07:33:a7:06:6a:1c: 85:c8:c9:6d:7e:99:65:51:8d:ee:65:03:75:bd:97:fc:07:0b: 82:ea:12:86:13:3e:7f:39:02:52:cb:fb:8c:b9:4d:96:71:9d: b0:c8:ea:81:7d:91:08:a3:f3:75:22:9c:65:36:f0:10:3c:9e: 11:5a:f4:2f:c7:87:8f:09:ab:aa:24:92:d5:57:31:86:35:2b: 3a:ba:04:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI2RjgxMTAvBgNVBAUTKDIzN0I3RDRDQTg0QTI2RDVGQzQ5NThENDgxOTFGMzZB MTRCQzdBMkYwHhcNMjUwNjIyMTIwNjIwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU3ZjFiYi05ZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fgfaeFbjTBCSWtRpYNtKuXHSybcSFcl7A9fI8yDssFXKVWQuNNY08F7eSwZ KgbEy+PRjV4kURNtesPz33WSBi9nRz3Yf6K0pbgdVNOtlpErzKQSU8NACg7iGUBA uFf2dX/ZnQ/ImsVVBQYDycC5G+loeN1gxdcrOhP4dg6DAoA9AR6eO3CosxG8tclk /E7vk7YlDM0DwoSrWYuBb1Uf7wUhzdTsE9qPOXbLntc+L9ctTrcbUzkyZp4qbntS 6WBgvunApKivdJVp6sxmw8blnSSHQ0JL8yPyGmjJAKIcYZaA7moqpA3O7Syzl7ij U5ZxPeCKiaHzk4FV0ypiUiztDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDk/9K2e xLzJQUKZkYbFNCTC5M2tMB8GA1UdIwQYMBaAFCN7fUyoSibV/ElY1IGR82oUvHov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjZGOC81NjJDM0NCNDcy NEUxMUVEOEUyMDY3M0VDNEY5QUUwMi9JM3Q5VEtoS0p0WDhTVmpVZ1pIemFoUzhl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzdDlUS2hLSnRYOFNWalVnWkh6YWhTOGVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI2RjgvNTYyQzNDQjQ3MjRFMTFFRDhFMjA2NzNFQzRGOUFFMDIvNEU4Njk1QzA0 RjYxMTFGMEFFRjIwMzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMBQwDQYJKoZIhvcNAQELBQADggEBALO0t9D90x5VwaYl kUGzxHTA9QIb41S8WEmca3pZ1KKFTNclVk2sX3d23w++7cqGHoFxZYIrQjZq/Czq GszovO43wFRrxkC4MAOMUN2e/eZpVnPG7j4JLIAxLVRqUJfvUxrpF0caoiWrhHB4 tXffZblgrFgDl1+0PWJnDTEJuI3Fy3FDD/mrwlnb1pw7+beweu/kkV6hMUjuMLMX 9uYQjw0QvjoVmUwv+3MR+2RL2QczpwZqHIXIyW1+mWVRje5lA3W9l/wHC4LqEoYT Pn85AlLL+4y5TZZxnbDI6oF9kQij83UinGU28BA8nhFa9C/Hh48Jq6okktVXMYY1 Kzq6BEI= -----END CERTIFICATE-----Generated at Thu Jul 3 17:38:41 2025 by rpki-client