$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/1C8BEF04E24511EF96354978C4F9AE02.roa File: 1C8BEF04E24511EF96354978C4F9AE02.roa (raw, json) Hash identifier: emdOoNHeNPd2I/1TXnCpTax46mU70PVq1qcXN4YL9To= Subject key identifier: EA:0B:BE:B9:CC:1E:20:FB:99:27:59:ED:94:F2:58:CE:E8:E9:91:96 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 0322 Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/1C8BEF04E24511EF96354978C4F9AE02.roa Signing time: Wed 25 Jun 2025 01:28:08 +0000 ROA not before: Wed 25 Jun 2025 01:28:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150675 IP address blocks: 103.243.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802 (0x322) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Jun 25 01:28:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685b50a8-91ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:84:7c:96:cf:1b:00:ea:ec:8b:d6:f9:9a:fe: 4b:95:e7:e1:84:28:91:3a:5c:3d:cd:73:41:bb:36: 04:ae:bd:69:aa:21:65:ba:cb:bb:92:03:04:17:c9: a8:24:03:0c:2e:cc:b5:62:5e:81:c0:29:f2:84:83: 4f:7c:e1:3c:35:0f:7b:81:7f:b9:dd:78:ef:fa:2b: fa:76:02:ec:2e:55:28:7f:d1:0b:09:e7:45:88:c1: 52:8d:be:32:13:32:bd:dd:5f:45:3a:a5:68:58:4f: 0a:85:c2:1e:09:78:ad:a6:58:46:0d:84:42:29:c1: 49:a6:23:1d:98:ed:45:2b:4b:f1:90:f4:c6:cb:1f: 71:7f:a9:dd:b4:b9:f4:13:62:ed:66:99:74:21:ac: e6:79:64:bf:ab:2a:3f:9b:16:08:7e:5e:8a:cc:67: bc:36:16:bd:ad:d3:c1:65:85:f2:1c:26:fb:c3:09: 8f:b0:f4:31:5f:b4:e6:9b:10:5f:1c:14:4b:e8:ce: cb:a3:c7:83:41:a6:76:a1:c2:0f:53:a2:26:99:da: a7:5e:de:ef:f6:b8:d9:2f:df:5b:e9:dd:c8:cb:67: c5:7a:df:d5:06:50:16:4a:3c:b3:90:5e:b4:b3:7d: ee:fd:d0:da:1c:56:19:d3:20:5e:8e:e0:ca:6d:25: 0e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0B:BE:B9:CC:1E:20:FB:99:27:59:ED:94:F2:58:CE:E8:E9:91:96 X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/1C8BEF04E24511EF96354978C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.116.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:06:32:30:75:f0:17:85:31:26:e9:10:d0:89:0f:a0:cf:4a: 9d:07:05:06:ae:49:ce:b7:29:4f:1e:a5:4c:38:22:95:b5:88: 2c:e8:c1:89:f3:bb:dd:dc:2f:ad:70:e6:5c:09:b8:2a:27:1c: 2d:dc:b0:bd:f2:c5:3c:87:d6:c1:a2:d0:ab:0b:cf:f8:40:9b: da:de:78:4c:f6:2c:e8:77:a3:2a:3e:1a:71:1e:fb:cc:63:c4: 38:72:46:f5:d9:4c:51:64:e4:5a:46:4f:33:de:50:05:a0:db: 41:89:ae:4e:db:75:4c:d0:3c:0c:74:8b:08:68:48:20:d0:39: 88:1e:19:bb:a5:6e:f6:78:48:5a:e3:8f:ba:92:a4:af:63:62: eb:4b:3d:a5:93:58:a8:33:bb:1a:e5:0e:6d:f3:c6:ee:f9:cf: d5:51:af:5b:12:a9:a3:1b:8a:5b:1e:aa:9a:02:fe:b6:58:c9: 72:64:82:e6:4e:53:16:ab:47:2d:2e:88:d3:a8:4e:83:11:19: 03:9c:fd:7f:e1:ec:bd:28:b1:89:0c:ae:c9:4f:7c:64:19:5d: 07:2b:1f:49:73:68:72:e2:af:40:26:06:91:00:2c:fd:f8:f1: bf:7e:d9:a5:c9:2f:65:32:ca:6c:78:8b:ee:9e:12:d6:d4:c7: ac:ee:7a:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUwNjI1MDEyODA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViNTBhOC05MWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IR8ls8bAOrsi9b5mv5LlefhhCiROlw9zXNBuzYErr1pqiFlusu7kgMEF8mo JAMMLsy1Yl6BwCnyhINPfOE8NQ97gX+53Xjv+iv6dgLsLlUof9ELCedFiMFSjb4y EzK93V9FOqVoWE8KhcIeCXitplhGDYRCKcFJpiMdmO1FK0vxkPTGyx9xf6ndtLn0 E2LtZpl0IazmeWS/qyo/mxYIfl6KzGe8Nha9rdPBZYXyHCb7wwmPsPQxX7TmmxBf HBRL6M7Lo8eDQaZ2ocIPU6ImmdqnXt7v9rjZL99b6d3Iy2fFet/VBlAWSjyzkF60 s33u/dDaHFYZ0yBejuDKbSUO8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOoLvrnM HiD7mSdZ7ZTyWM7o6ZGWMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFMzIvNzIwOTU5RkMwMUMwMTFFREJEN0M2RjU4QzRGOUFFMDIvMUM4QkVGMDRF MjQ1MTFFRjk2MzU0OTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn83QwDQYJKoZIhvcNAQELBQADggEBACsGMjB18BeFMSbp ENCJD6DPSp0HBQauSc63KU8epUw4IpW1iCzowYnzu93cL61w5lwJuConHC3csL3y xTyH1sGi0KsLz/hAm9reeEz2LOh3oyo+GnEe+8xjxDhyRvXZTFFk5FpGTzPeUAWg 20GJrk7bdUzQPAx0iwhoSCDQOYgeGbulbvZ4SFrjj7qSpK9jYutLPaWTWKgzuxrl Dm3zxu75z9VRr1sSqaMbilseqpoC/rZYyXJkguZOUxarRy0uiNOoToMRGQOc/X/h 7L0osYkMrslPfGQZXQcrH0lzaHLir0AmBpEALP348b9+2aXJL2Uyymx4i+6eEtbU x6zuegs= -----END CERTIFICATE-----Generated at Thu Jul 3 09:24:18 2025 by rpki-client