$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5CB1666C177711EEAB396D1CC4F9AE02.roa File: 5CB1666C177711EEAB396D1CC4F9AE02.roa (raw, json) Hash identifier: i/4qbq1olZ1yrHtpcck4H45nkVfaKLB8DIL2yG7lkLw= Subject key identifier: 86:1C:EA:B6:D6:FE:E6:9B:11:8E:D6:39:4E:CA:B8:7C:A5:AC:A5:D7 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 017C Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5CB1666C177711EEAB396D1CC4F9AE02.roa Signing time: Thu 03 Jul 2025 04:08:06 +0000 ROA not before: Thu 03 Jul 2025 04:08:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.229.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Jul 3 04:08:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68660226-ca68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:80:04:78:ea:0e:b7:3f:53:0c:e9:3d:b9:6e: 97:91:70:02:bb:55:6a:74:44:d4:a7:0a:a3:89:44: 2f:fa:72:5e:9b:a4:2e:33:f6:c7:25:cb:37:de:dd: 7a:a8:de:f5:68:97:32:5e:e2:36:d2:71:4c:92:e8: 57:70:16:66:40:74:8e:82:67:32:09:f3:91:39:e6: 3d:1e:e2:36:98:97:76:ac:c1:85:d7:6d:94:9b:b3: 97:52:52:5f:0c:08:a6:2c:d8:77:b1:29:b6:1f:4a: 94:c6:99:3e:7e:eb:2c:cf:9d:58:0b:bb:80:a5:4c: 6e:b0:8f:8e:85:5d:73:69:fe:bb:f0:b6:7d:4d:93: d8:46:ba:12:52:05:ee:50:8d:a8:40:fc:fd:81:a4: 0f:c6:83:ba:10:49:41:54:0a:3d:0c:b0:cb:cc:92: 6f:4e:25:12:6c:fc:6b:91:a0:b6:62:c6:1e:b0:41: 6d:97:e7:e3:5d:ed:e2:11:4c:3f:a4:ea:a8:71:96: 8a:b4:f0:32:68:d9:09:af:f9:98:d7:32:5e:01:95: 99:a1:6c:c0:bd:0c:5a:39:94:68:3e:01:d8:db:d7: 46:99:51:4f:95:68:6e:63:41:09:2c:8b:a8:e9:ee: 97:17:fa:32:da:bb:a9:66:bf:d4:73:c8:a3:44:fe: f1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:1C:EA:B6:D6:FE:E6:9B:11:8E:D6:39:4E:CA:B8:7C:A5:AC:A5:D7 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5CB1666C177711EEAB396D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.233.0/24 Signature Algorithm: sha256WithRSAEncryption 06:4c:3c:33:ae:6b:90:0e:ce:d9:73:ec:fc:a1:d5:18:b5:4b: a7:3a:d7:e7:13:b0:d6:cf:7f:38:29:35:4e:80:2e:47:8c:27: 60:08:e7:e2:d8:dd:0a:ed:f3:be:6c:8c:4b:52:99:cf:76:25: 2e:a7:9b:ce:0d:c1:a8:76:df:9d:f5:1e:f1:b2:3f:cc:86:56: 10:2c:fd:d6:65:ca:c5:b1:f3:82:f4:d5:f7:f6:61:43:fd:c6: 6a:e2:2d:aa:02:27:cf:c3:54:7b:9d:42:44:01:ce:df:07:47: aa:44:2e:06:60:ac:51:d8:6b:e0:5b:de:b0:0a:ff:d3:fa:fe: 68:84:d1:d3:89:04:46:43:75:03:d8:2f:f2:d7:0f:0d:62:e1: f7:74:6b:93:46:17:ff:c7:f7:77:2a:38:d5:17:af:a0:8a:0a: 35:db:d5:85:68:95:a1:3f:cc:40:9a:90:9a:e4:aa:fb:ce:b1: 5b:43:8f:ed:91:fe:99:4d:78:58:d9:49:d1:eb:b5:95:20:db: cd:59:9a:e7:37:4a:dc:f9:5a:63:dc:c9:c9:82:30:16:e6:c5: e1:29:68:ad:41:5e:f5:45:7e:96:29:b2:dc:f1:56:34:4c:f2: 18:49:04:60:6a:a8:2c:81:7c:90:21:89:68:9c:ca:62:eb:48: a1:06:9c:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjUwNzAzMDQwODA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MDIyNi1jYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oAEeOoOtz9TDOk9uW6XkXACu1VqdETUpwqjiUQv+nJem6QuM/bHJcs33t16 qN71aJcyXuI20nFMkuhXcBZmQHSOgmcyCfOROeY9HuI2mJd2rMGF122Um7OXUlJf DAimLNh3sSm2H0qUxpk+fussz51YC7uApUxusI+OhV1zaf678LZ9TZPYRroSUgXu UI2oQPz9gaQPxoO6EElBVAo9DLDLzJJvTiUSbPxrkaC2YsYesEFtl+fjXe3iEUw/ pOqocZaKtPAyaNkJr/mY1zJeAZWZoWzAvQxaOZRoPgHY29dGmVFPlWhuY0EJLIuo 6e6XF/oy2rupZr/Uc8ijRP7xMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIYc6rbW /uabEY7WOU7KuHylrKXXMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk2NDEvN0QwMjg3RUExNzcwMTFFRTk0NUNEODU5QzRGOUFFMDIvNUNCMTY2NkMx Nzc3MTFFRUFCMzk2RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5ekwDQYJKoZIhvcNAQELBQADggEBAAZMPDOua5AOztlz 7Pyh1Ri1S6c61+cTsNbPfzgpNU6ALkeMJ2AI5+LY3Qrt875sjEtSmc92JS6nm84N wah23531HvGyP8yGVhAs/dZlysWx84L01ff2YUP9xmriLaoCJ8/DVHudQkQBzt8H R6pELgZgrFHYa+Bb3rAK/9P6/miE0dOJBEZDdQPYL/LXDw1i4fd0a5NGF//H93cq ONUXr6CKCjXb1YVolaE/zECakJrkqvvOsVtDj+2R/plNeFjZSdHrtZUg281Zmuc3 Stz5WmPcycmCMBbmxeEpaK1BXvVFfpYpstzxVjRM8hhJBGBqqCyBfJAhiWicymLr SKEGnPE= -----END CERTIFICATE-----Generated at Fri Jul 4 00:07:23 2025 by rpki-client