$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/1B8DE01C641911EF83FFBF3CC4F9AE02.roa File: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (raw, json) Hash identifier: Tod+meVH3/YYDYyQo78I9vVyyLfaumC1ya5cnKT+hFM= Subject key identifier: 7F:A3:48:18:F2:70:6B:69:FC:73:51:B9:85:70:83:89:01:63:AE:0E Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 01E0 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/1B8DE01C641911EF83FFBF3CC4F9AE02.roa Signing time: Tue 03 Jun 2025 03:20:10 +0000 ROA not before: Tue 03 Jun 2025 03:20:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 398704 IP address blocks: 103.251.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 02:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: Jun 3 03:20:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e69ea-912f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cf:19:cb:1e:60:92:bf:88:c9:60:27:9d:87: b0:1f:ef:74:7d:56:ef:44:a3:09:60:42:bc:62:35: e4:db:c0:ee:55:58:c8:55:a1:12:60:4e:19:e9:01: 9f:ea:71:68:be:1a:56:d6:88:e5:53:a8:f0:99:4d: 18:7f:dd:8e:64:e4:64:89:3c:3b:f1:5b:cd:a1:41: 9d:95:04:a4:aa:40:67:06:b3:b9:78:ff:5a:f3:98: ff:c7:69:43:33:66:b9:f2:5d:9c:cb:0a:54:9a:65: 10:e0:13:87:c1:5c:da:da:02:56:40:69:28:80:31: bc:bb:95:4d:82:2c:c5:d8:b0:7d:de:39:65:66:2d: 39:04:db:b3:92:77:a2:8d:56:02:38:2c:42:da:7a: 7c:0b:4f:23:62:be:1a:4f:33:fb:59:1a:ff:3b:4a: 52:8f:96:8a:91:81:7a:79:c4:b2:6f:c0:20:d7:a4: f3:89:64:43:ad:45:d0:d8:bc:be:a9:3b:17:c2:3e: 42:8b:67:5b:20:fe:9c:98:31:f7:1f:40:06:05:b5: 8b:38:a3:7a:ab:46:ac:06:e5:03:94:f3:42:e1:2a: 00:58:2d:58:e6:95:4d:98:1f:e3:3d:68:1a:8a:80: e1:07:47:e8:e1:47:d4:59:9f:d8:b3:44:aa:5b:6d: a2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A3:48:18:F2:70:6B:69:FC:73:51:B9:85:70:83:89:01:63:AE:0E X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/1B8DE01C641911EF83FFBF3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.251.239.0/24 Signature Algorithm: sha256WithRSAEncryption 65:02:00:71:b4:56:42:9a:bf:bb:be:f5:5e:d3:a7:9f:66:ce: 4d:f9:93:a7:10:53:cb:3d:bc:45:0b:35:b7:04:cc:ff:3a:70: 86:23:68:0f:e1:1b:64:b8:12:78:e4:43:dc:c0:b4:65:6d:b1: 75:67:86:95:bd:7c:39:02:9e:17:1d:98:34:eb:03:35:79:93: 45:3a:74:e5:b3:18:bc:93:ba:4e:06:32:f8:3d:56:08:6b:50: cd:59:c6:d6:94:20:27:e4:eb:53:d4:00:3a:47:4e:f4:18:ea: 21:d4:2c:0c:f4:2d:6c:a9:18:83:c2:d2:69:2d:5c:25:b7:67: 62:51:0c:1a:96:c0:be:62:b4:fb:c2:b0:28:ec:9b:cc:33:66: 99:5d:82:ec:e5:02:ef:bd:e8:d1:23:bb:4c:d0:fc:d1:9f:ed: c6:ec:59:9e:34:51:b0:30:8b:72:62:52:88:d4:62:66:34:16: 70:92:33:e2:25:e2:b0:67:c5:f6:0d:21:50:1f:6c:a7:90:d9: 42:80:12:ba:4e:bb:4e:bf:02:6d:8d:b5:71:cb:b4:3d:6d:ae: 9b:3a:57:a2:60:24:c3:f2:4a:f5:ba:97:14:ca:67:47:5a:31: a2:0d:50:3f:c0:0e:62:a1:f5:9b:45:94:68:c5:90:ab:2f:4e: 87:61:01:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjUwNjAzMDMyMDEwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNjllYS05MTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAps8Zyx5gkr+IyWAnnYewH+90fVbvRKMJYEK8YjXk28DuVVjIVaESYE4Z6QGf 6nFovhpW1ojlU6jwmU0Yf92OZORkiTw78VvNoUGdlQSkqkBnBrO5eP9a85j/x2lD M2a58l2cywpUmmUQ4BOHwVza2gJWQGkogDG8u5VNgizF2LB93jllZi05BNuzknei jVYCOCxC2np8C08jYr4aTzP7WRr/O0pSj5aKkYF6ecSyb8Ag16TziWRDrUXQ2Ly+ qTsXwj5Ci2dbIP6cmDH3H0AGBbWLOKN6q0asBuUDlPNC4SoAWC1Y5pVNmB/jPWga ioDhB0fo4UfUWZ/Ys0SqW22iiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH+jSBjy cGtp/HNRuYVwg4kBY64OMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwMTcvMTA1QUM4RkM5MEMzMTFFREJBMURDQzIzQzRGOUFFMDIvMUI4REUwMUM2 NDE5MTFFRjgzRkZCRjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn++8wDQYJKoZIhvcNAQELBQADggEBAGUCAHG0VkKav7u+ 9V7Tp59mzk35k6cQU8s9vEULNbcEzP86cIYjaA/hG2S4EnjkQ9zAtGVtsXVnhpW9 fDkCnhcdmDTrAzV5k0U6dOWzGLyTuk4GMvg9VghrUM1ZxtaUICfk61PUADpHTvQY 6iHULAz0LWypGIPC0mktXCW3Z2JRDBqWwL5itPvCsCjsm8wzZpldguzlAu+96NEj u0zQ/NGf7cbsWZ40UbAwi3JiUojUYmY0FnCSM+Il4rBnxfYNIVAfbKeQ2UKAErpO u06/Am2NtXHLtD1trps6V6JgJMPySvW6lxTKZ0daMaINUD/ADmKh9ZtFlGjFkKsv TodhAQA= -----END CERTIFICATE-----Generated at Tue Jul 1 02:35:42 2025 by rpki-client