$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/CD90ED68057211F0B6E2301BC4F9AE02.roa File: CD90ED68057211F0B6E2301BC4F9AE02.roa (raw, json) Hash identifier: DFlr8Tn/hG96eJuSS2hv0WiijRfajfy1iDPzEugU79I= Subject key identifier: 55:5B:98:10:0F:54:2F:3D:0D:D8:8B:03:CF:4F:50:82:B9:FA:4D:58 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 031F Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/CD90ED68057211F0B6E2301BC4F9AE02.roa Signing time: Wed 25 Jun 2025 01:28:05 +0000 ROA not before: Wed 25 Jun 2025 01:28:05 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142565 IP address blocks: 103.243.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 799 (0x31f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Jun 25 01:28:05 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685b50a5-1e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:75:9e:a4:9d:e6:92:3a:74:06:c1:c3:47:9b: 20:74:90:34:4d:68:8b:1f:fa:f5:06:1a:02:b7:fc: 9a:b8:57:02:2c:16:b7:b9:43:c8:86:d5:99:9d:cf: d4:0a:e6:aa:ee:a5:33:c0:0c:ae:dc:fd:a7:cc:a6: ca:24:d3:c5:c1:51:f6:f2:26:3a:c4:c2:47:6c:8d: 1a:d8:c8:96:14:c0:db:c6:dd:4a:ce:79:13:b4:ca: f8:e6:d6:19:9b:cf:cb:e3:47:2e:09:64:84:7a:fc: ca:15:75:24:0b:46:1d:6c:79:cf:b6:be:0f:a3:93: 11:71:c3:1d:b0:a2:c2:80:6c:ac:dc:25:4b:6e:fb: 9c:af:67:df:d9:19:36:f0:92:83:d3:ef:90:fb:e3: 45:b6:18:2c:aa:c9:91:68:60:7e:9a:d4:39:f8:db: 01:87:bf:a0:4c:6a:ab:a4:fe:c5:78:71:31:3c:cc: aa:34:e9:fc:e4:9a:e6:bb:e7:5a:03:2a:e4:91:90: 09:a4:6d:8f:cb:f5:92:45:17:34:72:27:c4:1a:4f: 01:40:1e:82:1f:8c:a9:14:9f:fd:0f:5b:48:8f:6c: f3:e7:ef:c8:62:f0:73:51:1d:66:65:6c:54:21:6e: a4:e2:28:08:22:c3:bb:11:dc:ee:b3:59:61:2f:9f: 64:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5B:98:10:0F:54:2F:3D:0D:D8:8B:03:CF:4F:50:82:B9:FA:4D:58 X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/CD90ED68057211F0B6E2301BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.116.0/24 Signature Algorithm: sha256WithRSAEncryption 38:31:1e:2c:df:78:3b:d7:cf:b9:43:0f:13:2a:bc:50:36:e9: e7:9b:30:7b:50:5e:b7:a9:08:7e:29:6d:d4:74:18:33:c8:ba: 2c:38:09:78:c3:62:6f:75:7b:b0:b3:07:2e:ef:27:df:dd:1c: 0e:c9:b8:d8:9a:15:09:9d:79:89:86:e2:f4:e3:85:44:2f:91: 5e:4a:38:e8:28:d3:f6:e1:27:e4:07:2e:45:e2:92:52:f7:7d: cf:2b:38:cc:d9:1d:44:52:40:4b:b0:6b:1b:ab:30:90:54:8a: 7f:b9:a2:5e:78:9b:75:58:02:64:21:bf:4c:17:3e:cd:db:51: 0c:3e:c0:1e:a5:3a:c1:d6:71:75:18:a5:c9:2f:31:67:b7:2c: 6b:33:ef:e5:63:b9:31:65:ad:8b:5c:c7:dc:bb:44:22:14:0d: b3:79:f5:87:e4:8d:e1:95:4c:aa:73:59:7a:ff:71:46:01:4a: fa:f9:f1:4e:85:44:e9:51:bb:9b:a4:76:34:32:29:d6:70:55: 42:35:54:0e:c3:ac:e2:04:4e:7f:22:f4:ec:3b:72:9a:eb:50: 19:84:ee:35:f9:f9:fb:ae:6b:9d:eb:bc:50:c0:ba:7b:5d:7c: f5:47:4c:a0:cc:38:22:05:b5:8d:35:1e:dd:78:53:9a:02:6a: 41:50:13:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUwNjI1MDEyODA1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViNTBhNS0xZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHWepJ3mkjp0BsHDR5sgdJA0TWiLH/r1BhoCt/yauFcCLBa3uUPIhtWZnc/U Cuaq7qUzwAyu3P2nzKbKJNPFwVH28iY6xMJHbI0a2MiWFMDbxt1KznkTtMr45tYZ m8/L40cuCWSEevzKFXUkC0YdbHnPtr4Po5MRccMdsKLCgGys3CVLbvucr2ff2Rk2 8JKD0++Q++NFthgsqsmRaGB+mtQ5+NsBh7+gTGqrpP7FeHExPMyqNOn85Jrmu+da AyrkkZAJpG2Py/WSRRc0cifEGk8BQB6CH4ypFJ/9D1tIj2zz5+/IYvBzUR1mZWxU IW6k4igIIsO7Edzus1lhL59k+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFVbmBAP VC89DdiLA89PUIK5+k1YMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFMzIvNzIwOTU5RkMwMUMwMTFFREJEN0M2RjU4QzRGOUFFMDIvQ0Q5MEVENjgw NTcyMTFGMEI2RTIzMDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn83QwDQYJKoZIhvcNAQELBQADggEBADgxHizfeDvXz7lD DxMqvFA26eebMHtQXrepCH4pbdR0GDPIuiw4CXjDYm91e7CzBy7vJ9/dHA7JuNia FQmdeYmG4vTjhUQvkV5KOOgo0/bhJ+QHLkXiklL3fc8rOMzZHURSQEuwaxurMJBU in+5ol54m3VYAmQhv0wXPs3bUQw+wB6lOsHWcXUYpckvMWe3LGsz7+VjuTFlrYtc x9y7RCIUDbN59YfkjeGVTKpzWXr/cUYBSvr58U6FROlRu5ukdjQyKdZwVUI1VA7D rOIETn8i9Ow7cprrUBmE7jX5+fuua53rvFDAuntdfPVHTKDMOCIFtY01Ht14U5oC akFQE3c= -----END CERTIFICATE-----Generated at Thu Jul 3 02:28:29 2025 by rpki-client