$ rpki-client -vvf rpki.apnic.net/member_repository/A91E861E/45CEDF48541E11F0A0CEF478C4F9AE02/C67FDA48541E11F09E0E0C7DC4F9AE02.roa File: C67FDA48541E11F09E0E0C7DC4F9AE02.roa (raw, json) Hash identifier: wa4TR1fvKETfK3e7ugA2YaJ41gq/9kU5OrG3vVI95Fg= Subject key identifier: 6F:BD:94:7E:65:62:B7:32:A4:EC:B0:3E:0D:4E:F7:79:66:C6:90:97 Certificate issuer: /CN=A91E861E/serialNumber=1226EE122293831B651F15B8BC1F1055DB4289C4 Certificate serial: 04 Authority key identifier: 12:26:EE:12:22:93:83:1B:65:1F:15:B8:BC:1F:10:55:DB:42:89:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EibuEiKTgxtlHxW4vB8QVdtCicQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E861E/45CEDF48541E11F0A0CEF478C4F9AE02/C67FDA48541E11F09E0E0C7DC4F9AE02.roa Signing time: Sat 28 Jun 2025 12:56:14 +0000 ROA not before: Sat 28 Jun 2025 12:56:14 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141174 IP address blocks: 103.155.154.0/23 maxlen: 23 103.155.154.0/24 maxlen: 24 103.155.155.0/24 maxlen: 24 2001:df4:d280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E861E/45CEDF48541E11F0A0CEF478C4F9AE02/EibuEiKTgxtlHxW4vB8QVdtCicQ.crl rsync://rpki.apnic.net/member_repository/A91E861E/45CEDF48541E11F0A0CEF478C4F9AE02/EibuEiKTgxtlHxW4vB8QVdtCicQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EibuEiKTgxtlHxW4vB8QVdtCicQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E861E, serialNumber=1226EE122293831B651F15B8BC1F1055DB4289C4 Validity Not Before: Jun 28 12:56:14 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=685fe66e-80a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7f:58:a8:1f:13:aa:aa:c1:1d:b1:74:e1:35: 51:2b:74:8e:c9:27:a8:fc:aa:8f:ee:1a:c9:e5:dc: 26:f7:de:43:19:9d:41:c4:e7:a8:c1:30:97:ab:8b: 21:6a:bf:25:72:6f:64:4f:7e:3c:fb:6d:2c:3a:51: c7:a9:44:55:8f:29:fd:25:9b:07:1c:3c:97:bd:aa: 23:90:67:b9:03:28:83:a8:01:ce:aa:87:58:01:36: b3:2d:e0:e1:32:39:83:04:86:94:1b:d2:2e:35:27: 19:72:76:64:a8:24:69:35:09:d3:ff:31:b5:38:dd: af:71:82:9e:39:2b:e7:53:2e:52:b0:a4:2d:3f:b8: 8b:f6:d9:94:17:50:11:1a:6a:d3:f2:0f:02:fc:51: cb:79:69:a1:01:4c:a8:9c:16:fc:64:05:56:8c:e1: 5a:e4:ca:b0:1b:a0:16:92:c0:3e:ac:5d:06:66:d5: 6f:0f:4c:35:80:06:ee:c3:2e:23:98:0f:53:47:41: a6:8a:d3:f6:d7:92:21:fb:ac:f2:04:7d:b4:b8:b6: 0b:af:a7:88:a3:c1:13:1b:c2:99:83:0d:5a:ec:50: 98:42:b6:1c:e2:72:e5:9d:fe:52:70:04:01:84:95: e9:84:14:97:50:c7:fc:53:98:8b:ce:f3:b8:3e:f4: 3d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BD:94:7E:65:62:B7:32:A4:EC:B0:3E:0D:4E:F7:79:66:C6:90:97 X509v3 Authority Key Identifier: keyid:12:26:EE:12:22:93:83:1B:65:1F:15:B8:BC:1F:10:55:DB:42:89:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E861E/45CEDF48541E11F0A0CEF478C4F9AE02/EibuEiKTgxtlHxW4vB8QVdtCicQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EibuEiKTgxtlHxW4vB8QVdtCicQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E861E/45CEDF48541E11F0A0CEF478C4F9AE02/C67FDA48541E11F09E0E0C7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.154.0/23 IPv6: 2001:df4:d280::/48 Signature Algorithm: sha256WithRSAEncryption 32:59:f2:bd:73:cd:20:31:8c:95:25:9d:4e:57:09:79:68:d1: 24:99:12:0d:5f:d7:d7:dc:f0:a0:7a:05:15:e4:b9:37:1f:e3: 7d:29:f6:cb:b5:12:eb:e4:b7:92:bc:89:e4:1c:46:66:10:5e: 04:0b:68:de:4e:ab:24:6f:6b:ad:9f:c7:c2:ce:bc:b8:ff:d8: c9:79:21:09:de:63:fc:b7:24:4a:fc:8f:79:a6:b8:a2:dd:86: 46:29:67:20:13:41:62:da:6d:52:35:0d:ae:7c:98:11:54:cc: 36:d1:21:ca:ed:4d:9c:91:33:dd:cd:36:42:72:7e:26:d5:47: 82:48:31:92:23:33:fe:05:53:b9:df:81:e9:1a:81:f4:0e:d5: 84:55:8f:23:3e:6b:aa:38:b1:18:6b:8f:18:4d:46:66:e5:ff: ea:0b:7e:82:da:0f:37:bb:22:7d:ee:b8:df:c0:b6:af:56:01: 50:db:e8:18:b9:ea:99:76:6d:bd:14:be:06:d9:d7:72:89:71: 8e:39:2e:13:85:a1:fb:b7:e1:ff:91:6a:ca:99:5d:26:a1:f5: e8:5c:c6:cf:c6:4c:6c:cd:73:a4:90:80:4e:a1:83:b0:93:64: 7a:3e:6f:dd:03:f0:3d:07:3d:6e:4c:47:35:29:be:51:9b:dd: 03:9f:30:5d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODYxRTExMC8GA1UEBRMoMTIyNkVFMTIyMjkzODMxQjY1MUYxNUI4QkMxRjEwNTVE QjQyODlDNDAeFw0yNTA2MjgxMjU2MTRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWZlNjZlLTgwYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyf1ioHxOqqsEdsXThNVErdI7JJ6j8qo/uGsnl3Cb33kMZnUHE56jBMJeriyFq vyVyb2RPfjz7bSw6UcepRFWPKf0lmwccPJe9qiOQZ7kDKIOoAc6qh1gBNrMt4OEy OYMEhpQb0i41JxlydmSoJGk1CdP/MbU43a9xgp45K+dTLlKwpC0/uIv22ZQXUBEa atPyDwL8Uct5aaEBTKicFvxkBVaM4VrkyrAboBaSwD6sXQZm1W8PTDWABu7DLiOY D1NHQaaK0/bXkiH7rPIEfbS4tguvp4ijwRMbwpmDDVrsUJhCthzicuWd/lJwBAGE lemEFJdQx/xTmIvO87g+9D2NAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUb72UfmVi tzKk7LA+DU73eWbGkJcwHwYDVR0jBBgwFoAUEibuEiKTgxtlHxW4vB8QVdtCicQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NjFFLzQ1Q0VERjQ4NTQx RTExRjBBMENFRjQ3OEM0RjlBRTAyL0VpYnVFaUtUZ3h0bEh4VzR2QjhRVmR0Q2lj US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRWlidUVpS1RneHRsSHhXNHZCOFFWZHRDaWNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODYxRS80NUNFREY0ODU0MUUxMUYwQTBDRUY0NzhDNEY5QUUwMi9DNjdGREE0ODU0 MUUxMUYwOUUwRTBDN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWebmjAPBAIAAjAJAwcAIAEN9NKAMA0GCSqGSIb3DQEBCwUA A4IBAQAyWfK9c80gMYyVJZ1OVwl5aNEkmRINX9fX3PCgegUV5Lk3H+N9KfbLtRLr 5LeSvInkHEZmEF4EC2jeTqskb2utn8fCzry4/9jJeSEJ3mP8tyRK/I95prii3YZG KWcgE0Fi2m1SNQ2ufJgRVMw20SHK7U2ckTPdzTZCcn4m1UeCSDGSIzP+BVO534Hp GoH0DtWEVY8jPmuqOLEYa48YTUZm5f/qC36C2g83uyJ97rjfwLavVgFQ2+gYueqZ dm29FL4G2ddyiXGOOS4ThaH7t+H/kWrKmV0mofXoXMbPxkxszXOkkIBOoYOwk2R6 Pm/dA/A9Bz1uTEc1Kb5Rm90DnzBd -----END CERTIFICATE-----Generated at Fri Jul 4 07:45:18 2025 by rpki-client