$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/E64F585A060111F0BCBC7237C4F9AE02.roa File: E64F585A060111F0BCBC7237C4F9AE02.roa (raw, json) Hash identifier: vpWpUnXP3M0kRZXRJe9IPBkx6ZqY5gGfHE6hnKUPIZE= Subject key identifier: 30:B0:0C:ED:42:93:AC:6D:F5:1D:C4:8A:FE:B0:0A:54:3F:AA:3F:A6 Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0B3F Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/E64F585A060111F0BCBC7237C4F9AE02.roa Signing time: Thu 26 Jun 2025 01:50:49 +0000 ROA not before: Thu 26 Jun 2025 01:50:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 5065 IP address blocks: 45.126.84.0/24 maxlen: 24 45.126.85.0/24 maxlen: 24 103.18.228.0/24 maxlen: 24 103.18.229.0/24 maxlen: 24 103.18.230.0/24 maxlen: 24 103.18.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Jun 26 01:50:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685ca779-7cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:90:49:d1:64:de:4f:09:f0:fb:94:c2:68: fa:2f:2a:ca:b3:03:46:a3:90:7a:3a:20:91:f1:8d: 44:ea:dd:8a:3f:bc:33:a2:7e:f7:85:d9:61:15:11: c2:a3:6f:72:01:11:3d:b4:f3:ab:6d:31:c8:92:fa: e8:2a:73:f9:ca:e5:53:c5:65:ed:43:3d:c3:90:76: 10:4d:9b:eb:0b:f8:30:42:6a:50:a9:f3:0e:b7:ba: da:74:6c:32:34:a4:ea:89:04:7b:21:9a:64:c4:c3: 61:0d:de:fe:c4:b7:49:43:f0:6c:f2:f7:b2:00:10: 26:fd:8f:05:9a:80:8f:e8:4f:ae:66:c4:1d:94:c1: 90:37:09:6c:79:dd:53:81:88:54:b1:7d:3e:1f:8c: d7:13:fb:1b:ca:fb:f9:59:63:28:23:7e:20:d9:19: 52:1b:66:d8:3d:97:b3:2a:48:68:b2:81:b3:bc:92: 91:5e:c4:45:e2:86:7c:b1:1b:07:7f:06:d2:4c:62: 0d:3b:8f:8d:f2:92:56:9e:a7:a3:38:aa:1e:ca:ee: 1e:29:6e:15:cb:1e:72:02:8f:2e:4d:71:50:22:2b: 06:10:37:ac:e1:e5:a1:0e:20:79:5a:85:e7:ee:73: 9e:16:9c:b2:bd:f0:85:4f:af:60:77:fd:19:4b:b0: ad:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B0:0C:ED:42:93:AC:6D:F5:1D:C4:8A:FE:B0:0A:54:3F:AA:3F:A6 X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/E64F585A060111F0BCBC7237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.84.0/23 103.18.228.0/22 Signature Algorithm: sha256WithRSAEncryption e2:49:4b:69:96:42:8f:94:a8:43:9d:9a:02:c9:76:cc:43:ff: c7:43:1d:2f:ed:d0:be:53:79:eb:b2:5f:c2:f1:48:c0:2d:77: c7:76:f4:05:3b:e4:ed:79:68:ff:1b:c7:4d:d9:8a:34:23:7c: eb:dc:de:72:68:2e:34:0e:d3:73:0b:e7:1e:31:35:78:e5:83: 92:c0:fb:33:16:c6:e7:3f:85:01:a2:1e:59:f9:1e:74:a8:c4: 5d:a5:fd:a6:ea:6f:10:ad:80:73:5c:49:7a:7e:0a:0e:e7:f8: 8b:0f:ae:24:19:dd:c2:32:0a:af:0b:13:56:29:bc:19:a5:dd: 3b:41:60:9d:7d:ef:56:ca:ea:b5:8d:79:60:ab:8c:e6:c9:47: 1b:1a:a2:30:d2:aa:76:3f:8f:43:dc:11:9f:9e:24:2b:59:f2: e6:b1:30:9f:ab:85:bb:c4:6e:59:87:b2:14:c7:1d:de:7d:57: 8f:b0:31:3c:66:67:94:78:d4:9e:a0:50:41:f4:33:18:c5:ab: 3f:d8:64:7f:b4:27:99:c7:bd:03:e6:b8:7b:38:6f:df:02:f9: b0:e1:a4:72:11:86:f0:c1:6b:38:51:53:ba:96:b7:b2:e2:8a: 69:e6:32:e1:31:a3:d9:a7:df:cb:1d:ea:4a:bb:08:c6:15:b5: b1:98:23:b7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwNjI2MDE1MDQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVjYTc3OS03Y2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui+QSdFk3k8J8PuUwmj6LyrKswNGo5B6OiCR8Y1E6t2KP7wzon73hdlhFRHC o29yARE9tPOrbTHIkvroKnP5yuVTxWXtQz3DkHYQTZvrC/gwQmpQqfMOt7radGwy NKTqiQR7IZpkxMNhDd7+xLdJQ/Bs8veyABAm/Y8FmoCP6E+uZsQdlMGQNwlsed1T gYhUsX0+H4zXE/sbyvv5WWMoI34g2RlSG2bYPZezKkhosoGzvJKRXsRF4oZ8sRsH fwbSTGINO4+N8pJWnqejOKoeyu4eKW4Vyx5yAo8uTXFQIisGEDes4eWhDiB5WoXn 7nOeFpyyvfCFT69gd/0ZS7Ct0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDCwDO1C k6xt9R3Eiv6wClQ/qj+mMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvRTY0RjU4NUEw NjAxMTFGMEJDQkM3MjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEtflQDBAJnEuQwDQYJKoZIhvcNAQELBQADggEBAOJJS2mW Qo+UqEOdmgLJdsxD/8dDHS/t0L5TeeuyX8LxSMAtd8d29AU75O15aP8bx03ZijQj fOvc3nJoLjQO03ML5x4xNXjlg5LA+zMWxuc/hQGiHln5HnSoxF2l/abqbxCtgHNc SXp+Cg7n+IsPriQZ3cIyCq8LE1YpvBml3TtBYJ1971bK6rWNeWCrjObJRxsaojDS qnY/j0PcEZ+eJCtZ8uaxMJ+rhbvEblmHshTHHd59V4+wMTxmZ5R41J6gUEH0MxjF qz/YZH+0J5nHvQPmuHs4b98C+bDhpHIRhvDBazhRU7qWt7LiimnmMuExo9mn38sd 6kq7CMYVtbGYI7c= -----END CERTIFICATE-----Generated at Fri Jul 4 08:17:32 2025 by rpki-client