$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa File: 0716B2646C7111EC8C5E6967C4F9AE02.roa (raw, json) Hash identifier: FC5KH7zmbNiXwzzDmtV6gG59796J2EuM05tZKkGKGqk= Subject key identifier: D3:0A:13:79:0F:3B:A5:A1:51:4F:C9:A6:42:F7:85:3F:66:EC:11:DA Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 0413 Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa Signing time: Sun 11 May 2025 00:26:16 +0000 ROA not before: Sun 11 May 2025 00:26:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58617 IP address blocks: 103.9.23.0/24 maxlen: 24 163.61.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC, serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: May 11 00:26:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681feea8-dcaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ab:ed:ed:b8:02:6f:61:e6:18:a7:46:16:76: 81:39:02:24:b3:53:cc:78:ec:fa:de:8e:aa:4f:7c: 3a:f2:24:a1:4c:1a:b0:38:8b:75:a8:3e:01:e8:36: d3:e4:2f:74:cf:ac:0c:72:00:39:f2:fd:90:fa:46: a8:c3:36:05:1a:53:49:2e:61:64:a4:bb:5c:f1:09: ed:3d:16:c2:02:ff:c1:1f:c5:4c:83:5b:cd:80:b4: 14:21:b4:a2:61:11:25:54:0b:7c:5f:2c:8a:d5:b2: d5:e6:3c:8f:0d:b3:cf:db:47:57:54:0c:4c:ce:62: 15:b9:79:84:8c:fb:41:ee:35:ff:66:e6:9a:4b:bc: dc:b2:f6:31:c1:a8:28:ad:91:d7:f7:69:c1:e8:ea: 4a:6a:2f:c9:8f:1b:9b:f2:ed:d4:34:16:7a:6e:27: 83:43:92:f1:fc:df:be:fa:57:28:08:b2:14:e3:71: 75:b9:d2:6b:ee:0f:5b:91:22:9f:c9:56:fd:1d:c6: 02:cb:c4:93:20:2b:72:00:33:70:b8:30:d0:52:fd: 7a:75:a2:42:39:0b:7d:65:9b:34:0c:4b:c6:ee:b1: 17:1e:fc:8a:e3:85:59:94:cc:54:5d:f8:b7:cf:c3: 97:76:9b:12:34:25:15:49:be:5f:6c:35:bd:96:c4: b2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0A:13:79:0F:3B:A5:A1:51:4F:C9:A6:42:F7:85:3F:66:EC:11:DA X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.23.0/24 163.61.154.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:7d:09:58:03:07:03:77:b8:e9:29:ae:ca:bd:fd:42:e9:12: ad:10:8e:f9:c4:68:0d:04:af:a5:fc:14:87:8d:d8:d1:36:5c: b1:45:2c:c1:8a:00:42:9b:f6:49:da:97:f3:c7:93:f8:7f:18: 94:a6:20:e4:4f:7b:cf:c7:a0:e6:bf:a6:9e:72:9a:5f:1e:d5: 33:13:40:15:75:21:7f:84:03:f0:a5:5e:c7:ec:fd:d1:b4:25: f8:aa:fc:9b:7a:7f:96:ed:2c:da:22:bd:17:14:49:92:18:59: 99:b5:bf:70:1d:0e:cc:d4:08:a4:4e:52:69:a0:a0:4b:fb:51: 21:4b:9e:ba:b6:65:2b:49:9f:e1:eb:fb:a8:f4:c6:a3:c3:67: 5b:70:3e:9c:49:db:9a:5f:e2:43:77:9a:14:fe:a8:74:31:91: 65:a8:46:fe:94:40:6c:07:c9:56:27:54:a4:d8:a5:c8:3b:7a: 69:0e:8f:0b:1d:8a:6f:60:03:c7:1d:6f:62:ee:41:42:1c:69: 13:37:c5:38:b8:5f:47:44:df:01:6e:b6:af:f7:4f:46:7e:77: e4:e9:21:15:aa:82:e1:f1:c7:b2:3c:cc:8f:a7:44:a1:b7:c5: fb:d1:69:b0:b4:9d:b3:cc:aa:d9:61:d0:09:f3:84:da:74:9d: 8d:b4:13:c9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjUwNTExMDAyNjE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmZWVhOC1kY2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06vt7bgCb2HmGKdGFnaBOQIks1PMeOz63o6qT3w68iShTBqwOIt1qD4B6DbT 5C90z6wMcgA58v2Q+kaowzYFGlNJLmFkpLtc8QntPRbCAv/BH8VMg1vNgLQUIbSi YRElVAt8XyyK1bLV5jyPDbPP20dXVAxMzmIVuXmEjPtB7jX/ZuaaS7zcsvYxwago rZHX92nB6OpKai/Jjxub8u3UNBZ6bieDQ5Lx/N+++lcoCLIU43F1udJr7g9bkSKf yVb9HcYCy8STICtyADNwuDDQUv16daJCOQt9ZZs0DEvG7rEXHvyK44VZlMxUXfi3 z8OXdpsSNCUVSb5fbDW9lsSy6QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNMKE3kP O6WhUU/JpkL3hT9m7BHaMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU0QUMvMzQ0MUQyRDA2QzZFMTFFQ0IyMzNGQjYxQzRGOUFFMDIvMDcxNkIyNjQ2 QzcxMTFFQzhDNUU2OTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnCRcDBACjPZowDQYJKoZIhvcNAQELBQADggEBAH99CVgD BwN3uOkprsq9/ULpEq0QjvnEaA0Er6X8FIeN2NE2XLFFLMGKAEKb9knal/PHk/h/ GJSmIORPe8/HoOa/pp5yml8e1TMTQBV1IX+EA/ClXsfs/dG0Jfiq/Jt6f5btLNoi vRcUSZIYWZm1v3AdDszUCKROUmmgoEv7USFLnrq2ZStJn+Hr+6j0xqPDZ1twPpxJ 25pf4kN3mhT+qHQxkWWoRv6UQGwHyVYnVKTYpcg7emkOjwsdim9gA8cdb2LuQUIc aRM3xTi4X0dE3wFutq/3T0Z+d+TpIRWqguHxx7I8zI+nRKG3xfvRabC0nbPMqtlh 0AnzhNp0nY20E8k= -----END CERTIFICATE-----Generated at Tue May 13 09:43:48 2025 by rpki-client