$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D9BBFBDA4D3111F099A48033C4F9AE02.roa File: D9BBFBDA4D3111F099A48033C4F9AE02.roa (raw, json) Hash identifier: A1A/LnUqdsNFUNCbA9pj78Zy7mXZZnhX+0nyseCL3vE= Subject key identifier: D4:A4:B4:0F:61:27:79:64:D6:DD:26:4F:BA:15:90:EE:D2:59:4A:16 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1144 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D9BBFBDA4D3111F099A48033C4F9AE02.roa Signing time: Thu 19 Jun 2025 17:27:36 +0000 ROA not before: Thu 19 Jun 2025 17:27:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149765 IP address blocks: 103.86.195.0/24 maxlen: 24 220.152.114.0/24 maxlen: 24 2400:c640:80::/48 maxlen: 48 2400:c640:81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4420 (0x1144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Jun 19 17:27:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68544887-05a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:92:ba:5c:4c:96:6a:77:b0:97:d1:95:6f:1a: 3c:58:9f:4e:f6:d5:ce:15:2c:5e:a6:87:ce:25:ae: b2:ad:db:55:56:c2:af:9d:b5:35:49:9f:43:d7:7c: 9f:d1:fa:f0:c3:b8:80:d4:3b:8d:21:17:27:7b:31: 8d:33:03:9b:77:8e:47:ea:48:3d:78:1e:b1:52:07: 24:c0:4f:8e:a4:3e:ee:66:6d:20:92:ce:d3:e0:67: 48:00:af:db:1d:a2:a8:f0:3a:8a:b5:6e:ca:67:a0: 69:09:7f:9e:ba:f0:dc:ef:3a:f4:04:2e:2f:9e:10: 5d:0d:88:e0:b4:7c:c8:8c:d5:77:e5:6a:e0:44:09: b1:53:0e:75:e4:27:47:3e:a2:d5:4f:e1:be:54:d3: 33:47:93:6b:4d:7a:99:b2:6b:68:40:ec:4c:d4:9e: 22:d5:b3:64:fe:96:2c:31:d4:29:d9:49:04:6d:de: 41:12:93:63:a7:c8:8d:c3:f6:36:3e:80:d3:13:74: 2d:d6:d2:d9:d2:b9:12:8e:48:ec:b8:92:73:8d:b3: a2:8c:af:7b:6f:47:f6:13:5c:e0:26:ee:d0:b9:e5: ae:3f:cd:70:da:96:f4:bd:ca:6d:09:16:7f:c6:0a: 1e:cd:85:cc:56:eb:3e:e3:5f:66:ee:ac:b4:76:b9: d8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A4:B4:0F:61:27:79:64:D6:DD:26:4F:BA:15:90:EE:D2:59:4A:16 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D9BBFBDA4D3111F099A48033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.195.0/24 220.152.114.0/24 IPv6: 2400:c640:80::/47 Signature Algorithm: sha256WithRSAEncryption 73:a6:e7:4c:0f:36:82:e7:28:ab:77:bd:3a:3c:90:0e:bf:5d: 1d:ca:f0:e7:30:28:05:e7:14:6b:40:3b:29:d1:43:b6:44:10: 77:c4:fb:15:aa:82:de:e4:90:66:62:97:27:3c:48:b6:f2:39: 7c:60:26:e6:56:d6:8a:0c:39:69:3f:d9:e2:57:1a:22:32:8d: 21:3f:71:4f:26:1a:1c:3c:05:fb:b5:0a:76:f6:3c:bd:46:05: 75:d7:95:91:88:9a:66:5f:52:9b:46:f5:df:53:8b:c5:ef:51: ef:7a:36:a2:0d:9c:39:95:bd:ef:39:46:34:a5:1f:f7:d2:71: a8:37:01:80:7e:f3:e4:cb:5d:18:7b:a0:b4:cf:00:cc:03:69: 89:51:d5:fb:77:fb:a4:4a:a0:f6:5a:26:85:e2:5b:88:43:67: 4c:ec:26:57:49:6b:ec:f7:5c:15:0e:ec:03:ee:78:e3:a1:2e: 48:69:dc:c0:25:1c:5f:bf:7b:aa:43:51:e0:da:be:ea:7e:5f: fe:a0:3d:9c:84:47:96:04:ef:cc:8f:1f:95:1c:01:66:d3:16: 74:bf:46:a6:dc:a6:d2:92:9f:66:12:8b:14:80:3e:25:ad:a0: b0:59:76:2f:25:91:4e:fc:df:aa:5a:6c:33:12:bb:78:e3:a0: 4f:75:0b:45 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNjE5MTcyNzM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODU0NDg4Ny0wNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZK6XEyWanewl9GVbxo8WJ9O9tXOFSxepofOJa6yrdtVVsKvnbU1SZ9D13yf 0frww7iA1DuNIRcnezGNMwObd45H6kg9eB6xUgckwE+OpD7uZm0gks7T4GdIAK/b HaKo8DqKtW7KZ6BpCX+euvDc7zr0BC4vnhBdDYjgtHzIjNV35WrgRAmxUw515CdH PqLVT+G+VNMzR5NrTXqZsmtoQOxM1J4i1bNk/pYsMdQp2UkEbd5BEpNjp8iNw/Y2 PoDTE3Qt1tLZ0rkSjkjsuJJzjbOijK97b0f2E1zgJu7QueWuP81w2pb0vcptCRZ/ xgoezYXMVus+419m7qy0drnYlwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNSktA9h J3lk1t0mT7oVkO7SWUoWMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvRDlCQkZCREE0 RDMxMTFGMDk5QTQ4MDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnVsMDBADcmHIwDwQCAAIwCQMHASQAxkAAgDANBgkqhkiG 9w0BAQsFAAOCAQEAc6bnTA82gucoq3e9OjyQDr9dHcrw5zAoBecUa0A7KdFDtkQQ d8T7FaqC3uSQZmKXJzxItvI5fGAm5lbWigw5aT/Z4lcaIjKNIT9xTyYaHDwF+7UK dvY8vUYFddeVkYiaZl9Sm0b131OLxe9R73o2og2cOZW97zlGNKUf99JxqDcBgH7z 5MtdGHugtM8AzANpiVHV+3f7pEqg9lomheJbiENnTOwmV0lr7PdcFQ7sA+5446Eu SGncwCUcX797qkNR4Nq+6n5f/qA9nIRHlgTvzI8flRwBZtMWdL9Gptym0pKfZhKL FIA+Ja2gsFl2LyWRTvzfqlpsMxK7eOOgT3ULRQ== -----END CERTIFICATE-----Generated at Fri Jul 4 07:35:47 2025 by rpki-client