$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/EE28B64661D611EE9C66300EC4F9AE02.roa File: EE28B64661D611EE9C66300EC4F9AE02.roa (raw, json) Hash identifier: aEwpt3FN/b3agcSqsy028NBcRbgaV2C2DNdzwhDgaUQ= Subject key identifier: F6:BF:A2:67:F9:2F:FE:DA:F3:14:0D:BA:05:C8:F2:99:00:9D:96:67 Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: 014A Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/EE28B64661D611EE9C66300EC4F9AE02.roa Signing time: Thu 03 Jul 2025 04:39:08 +0000 ROA not before: Thu 03 Jul 2025 04:39:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140866 IP address blocks: 103.152.166.0/23 maxlen: 23 103.152.166.0/24 maxlen: 24 103.152.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B, serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Jul 3 04:39:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6866096c-f4a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:7d:01:95:10:00:10:25:ab:c3:69:2b:d0: 36:9e:70:39:79:3b:34:95:a7:2c:fe:10:b4:28:3b: 79:b1:41:f2:d0:d0:a8:da:03:62:ce:3c:08:c3:26: 37:63:de:21:70:99:32:49:d3:e1:e3:61:59:b9:d6: 25:a9:04:f9:e8:12:6e:48:42:04:cb:73:b2:a5:0e: 43:69:4d:6d:1e:69:bc:35:b2:69:1f:fd:6a:2e:02: 0f:33:44:0c:ad:7e:68:af:73:62:f2:db:5d:a7:cb: ad:ae:75:98:ad:0a:e6:71:b3:f9:ae:c9:d7:71:32: ea:a2:33:a8:b8:e9:11:99:5e:be:80:ff:c6:83:c6: 9d:8b:af:cb:43:61:aa:86:14:bf:8f:5b:fb:01:2a: 4d:4d:43:19:79:f5:c2:78:1b:26:98:6c:d8:a7:da: 25:4e:d4:85:2d:5f:ad:f0:af:d8:c7:5b:8b:4c:43: a9:cb:b7:18:be:73:e1:91:25:b8:0b:14:ba:d0:19: 2c:47:24:10:73:bd:2e:22:dd:e9:97:9c:0f:d3:ab: 47:e2:1f:5f:b1:16:4c:f1:84:4a:96:ea:6e:14:5c: 7d:36:e0:73:24:62:42:2b:1e:98:e6:d0:85:dd:af: a5:0a:7c:20:6c:91:7c:48:f4:c9:b6:93:9e:5f:60: 48:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BF:A2:67:F9:2F:FE:DA:F3:14:0D:BA:05:C8:F2:99:00:9D:96:67 X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/EE28B64661D611EE9C66300EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.166.0/23 Signature Algorithm: sha256WithRSAEncryption 47:90:64:db:8b:fd:7d:e2:f4:e4:66:80:7c:6b:11:4b:52:02: cc:0f:f3:04:71:ba:68:4a:7e:fa:58:40:8e:a0:f3:b7:91:9d: 60:c6:da:90:e2:60:0b:02:86:e3:f9:6c:16:ae:cd:8c:d1:84: 3e:37:d7:f3:31:f7:e7:ba:c9:e3:e4:f0:63:df:8b:05:a5:e4: 35:3b:42:5d:6e:8d:79:ae:95:48:7f:b8:b0:23:b3:6f:0e:62: 2b:96:3d:c2:fd:45:3a:9f:c0:bf:ac:b6:db:50:3e:5f:73:60: 45:65:d9:2d:15:86:de:af:81:66:94:b6:da:df:67:b3:8c:f1: bc:42:ff:0c:36:96:4f:fc:51:36:69:c7:ca:72:17:b4:3f:b5: 8e:cc:bf:fa:a4:76:c4:6d:42:eb:8d:a0:87:13:2f:8a:bc:29: a6:31:7d:c4:31:4f:ae:ad:23:cf:7e:d9:ae:da:ba:9a:2f:f2: 79:a6:d6:6b:18:38:69:a8:13:84:b2:60:31:ae:c1:7d:dd:cc: 10:55:66:b9:d3:cc:80:2c:2f:f7:26:59:51:d7:5e:4e:00:92: fe:bc:14:23:00:02:bf:b4:12:d9:14:b7:8e:f9:89:94:eb:85: 7c:b7:c1:60:8e:b2:38:f7:02:f4:05:16:88:07:75:33:e4:54: 81:16:32:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjUwNzAzMDQzOTA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MDk2Yy1mNGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBx9AZUQABAlq8NpK9A2nnA5eTs0lacs/hC0KDt5sUHy0NCo2gNizjwIwyY3 Y94hcJkySdPh42FZudYlqQT56BJuSEIEy3OypQ5DaU1tHmm8NbJpH/1qLgIPM0QM rX5or3Ni8ttdp8utrnWYrQrmcbP5rsnXcTLqojOouOkRmV6+gP/Gg8adi6/LQ2Gq hhS/j1v7ASpNTUMZefXCeBsmmGzYp9olTtSFLV+t8K/Yx1uLTEOpy7cYvnPhkSW4 CxS60BksRyQQc70uIt3pl5wP06tH4h9fsRZM8YRKlupuFFx9NuBzJGJCKx6Y5tCF 3a+lCnwgbJF8SPTJtpOeX2BI1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPa/omf5 L/7a8xQNugXI8pkAnZZnMB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NUIvQzcxM0MyRkU2MUQ1MTFFRUJBQTA0QTVFQzRGOUFFMDIvRUUyOEI2NDY2 MUQ2MTFFRTlDNjYzMDBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKYwDQYJKoZIhvcNAQELBQADggEBAEeQZNuL/X3i9ORm gHxrEUtSAswP8wRxumhKfvpYQI6g87eRnWDG2pDiYAsChuP5bBauzYzRhD431/Mx 9+e6yePk8GPfiwWl5DU7Ql1ujXmulUh/uLAjs28OYiuWPcL9RTqfwL+stttQPl9z YEVl2S0Vht6vgWaUttrfZ7OM8bxC/ww2lk/8UTZpx8pyF7Q/tY7Mv/qkdsRtQuuN oIcTL4q8KaYxfcQxT66tI89+2a7aupov8nmm1msYOGmoE4SyYDGuwX3dzBBVZrnT zIAsL/cmWVHXXk4Akv68FCMAAr+0EtkUt475iZTrhXy3wWCOsjj3AvQFFogHdTPk VIEWMng= -----END CERTIFICATE-----Generated at Fri Jul 4 10:17:31 2025 by rpki-client