$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/DAC9D5960C7E11EF9A189E18C4F9AE02.roa File: DAC9D5960C7E11EF9A189E18C4F9AE02.roa (raw, json) Hash identifier: cLX/WlgP7K24ucXGUUtpNzmDrPk9vKJrsn64OyHEFQQ= Subject key identifier: D5:1D:E7:BE:8E:47:26:D5:75:F2:0A:62:50:A8:24:FF:2A:13:0E:99 Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Certificate serial: DF Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/DAC9D5960C7E11EF9A189E18C4F9AE02.roa Signing time: Wed 07 May 2025 05:12:36 +0000 ROA not before: Wed 07 May 2025 05:12:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152711 IP address blocks: 103.51.62.0/24 maxlen: 24 103.51.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F80, serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Validity Not Before: May 7 05:12:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681aebc4-3445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0a:0c:45:cb:0f:ac:7e:32:9d:18:9a:5f:92: 33:f5:7d:d4:1b:cb:e0:0f:45:ea:e2:51:2d:f7:65: 3d:39:87:55:e9:f0:de:15:d2:7c:66:b8:5d:d3:0b: 01:e7:ef:90:5d:e8:01:54:26:bd:cf:1f:eb:31:6a: 01:ef:ef:36:d3:f7:9f:66:41:e9:43:df:35:31:87: 50:d4:5e:30:9b:f3:39:d3:ce:7f:2c:d9:e7:19:0a: f0:37:67:48:38:46:9f:79:3c:30:9f:16:47:f1:5e: 19:4f:b3:58:77:9d:18:40:ea:20:fb:9a:2b:22:3d: d4:83:91:ef:22:24:a7:00:94:37:8e:91:39:9e:54: b3:c3:f3:f1:b6:eb:2b:0d:2e:61:78:38:d0:cd:3b: a4:52:2d:5b:d0:05:e0:2d:e9:ad:c4:8b:fc:ee:d6: e8:88:13:11:77:14:34:34:d7:da:9b:1e:57:e4:52: bf:59:87:11:b8:1b:36:44:13:7a:16:df:4c:49:6b: 13:60:8b:92:b5:43:ad:86:dc:d1:b9:7b:05:28:31: c0:f5:c8:c2:54:d2:fc:48:17:e7:f3:3c:03:00:4e: 57:f7:9c:41:42:2a:7d:fe:c7:67:d3:31:5e:72:86: 08:68:9e:59:11:77:af:da:6e:f5:60:be:8d:b0:4b: 39:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:1D:E7:BE:8E:47:26:D5:75:F2:0A:62:50:A8:24:FF:2A:13:0E:99 X509v3 Authority Key Identifier: keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/DAC9D5960C7E11EF9A189E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.62.0/23 Signature Algorithm: sha256WithRSAEncryption 64:ab:32:8c:12:b1:1c:44:94:23:45:7d:70:74:d2:86:f4:eb: 04:22:87:e3:7b:cd:ee:6f:e2:77:92:c8:84:fd:a0:2b:de:11: 2c:43:9f:64:8d:6a:75:c9:62:78:ad:28:02:2b:f1:5e:d1:6a: 1b:24:eb:d8:75:e0:e5:66:0e:b3:2b:30:94:85:4e:da:88:a5: 1c:5b:e9:45:18:76:0c:f1:c1:43:34:90:4d:a5:97:68:28:7f: 7e:d9:08:cd:4f:8e:1b:80:76:77:c0:69:ab:a1:db:ea:ab:4c: d9:99:cb:2f:12:fc:fe:98:20:75:49:50:8a:a5:87:12:70:da: 62:5f:2a:33:94:eb:e1:9b:e1:1d:4c:13:93:37:7c:b1:e7:4f: 18:ac:df:7d:ca:6c:7f:cc:69:be:dd:2a:60:f0:93:85:14:52: 87:36:3d:c2:58:d9:ce:fd:62:df:d4:4b:5a:9d:c9:38:ab:a1: d4:f2:2d:09:28:19:32:e6:25:ae:25:4c:8b:da:fa:ed:1f:79: 9d:db:46:92:cb:1c:e3:db:3a:fd:11:eb:8d:a6:0a:0c:69:80: 39:25:62:bc:c9:b3:01:2f:dc:17:77:b8:72:f0:15:21:0f:ef: 56:01:f6:d3:39:49:b0:d8:bf:3d:85:8f:88:39:c9:c5:aa:83: c7:0c:62:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGODAxMTAvBgNVBAUTKEY0MTBDNDgzQTRDOEM5MTZGRkQ0Q0Y0MjBDNEMxMTA4 ODk3OTg4OTEwHhcNMjUwNTA3MDUxMjM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhZWJjNC0zNDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AoMRcsPrH4ynRiaX5Iz9X3UG8vgD0Xq4lEt92U9OYdV6fDeFdJ8Zrhd0wsB 5++QXegBVCa9zx/rMWoB7+820/efZkHpQ981MYdQ1F4wm/M5085/LNnnGQrwN2dI OEafeTwwnxZH8V4ZT7NYd50YQOog+5orIj3Ug5HvIiSnAJQ3jpE5nlSzw/Pxtusr DS5heDjQzTukUi1b0AXgLemtxIv87tboiBMRdxQ0NNfamx5X5FK/WYcRuBs2RBN6 Ft9MSWsTYIuStUOthtzRuXsFKDHA9cjCVNL8SBfn8zwDAE5X95xBQip9/sdn0zFe coYIaJ5ZEXev2m71YL6NsEs5KQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNUd576O RybVdfIKYlCoJP8qEw6ZMB8GA1UdIwQYMBaAFPQQxIOkyMkW/9TPQgxMEQiJeYiR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkY4MC85NEM1NEI4MDAz OTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlSYl8xTTlDREV3UkNJbDVp SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJGODAvOTRDNTRCODAwMzk1MTFFRjg1QjY5RjRFQzRGOUFFMDIvREFDOUQ1OTYw QzdFMTFFRjlBMTg5RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMz4wDQYJKoZIhvcNAQELBQADggEBAGSrMowSsRxElCNF fXB00ob06wQih+N7ze5v4neSyIT9oCveESxDn2SNanXJYnitKAIr8V7Rahsk69h1 4OVmDrMrMJSFTtqIpRxb6UUYdgzxwUM0kE2ll2gof37ZCM1PjhuAdnfAaauh2+qr TNmZyy8S/P6YIHVJUIqlhxJw2mJfKjOU6+Gb4R1ME5M3fLHnTxis333KbH/Mab7d KmDwk4UUUoc2PcJY2c79Yt/US1qdyTirodTyLQkoGTLmJa4lTIva+u0feZ3bRpLL HOPbOv0R642mCgxpgDklYrzJswEv3Bd3uHLwFSEP71YB9tM5SbDYvz2Fj4g5ycWq g8cMYvY= -----END CERTIFICATE-----Generated at Tue May 13 21:44:03 2025 by rpki-client