$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa File: C4CB04C4E2A911EBB4631960C4F9AE02.roa (raw, json) Hash identifier: w5XSagCBbj7wYrqd/6P5FJGCYb7FRwj35SS+I3gJcAU= Subject key identifier: F7:4D:3B:B4:90:5D:1B:A2:AD:40:97:9E:B2:B6:25:39:B6:41:A1:D5 Certificate issuer: /CN=A91F3B6C/serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Certificate serial: 056E Authority key identifier: 9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa Signing time: Mon 12 May 2025 23:53:48 +0000 ROA not before: Mon 12 May 2025 23:53:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55581 IP address blocks: 27.116.36.0/22 maxlen: 24 45.125.120.0/22 maxlen: 24 103.166.56.0/23 maxlen: 24 103.194.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B6C, serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Validity Not Before: May 12 23:53:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68228a0b-5e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5f:f6:31:a1:47:9d:57:e2:ee:74:e5:da:60: 11:f6:43:66:b5:88:33:07:57:b6:63:cd:cb:1f:cf: 7b:8a:d9:29:45:e7:92:39:94:3c:e3:a1:cb:2a:b1: 49:2d:f5:ae:25:c2:43:09:6e:f2:fb:f5:bd:ff:ee: 4a:31:c8:91:8d:09:69:3e:3f:6e:ed:96:f3:6b:2f: 1b:2f:2d:c3:2c:89:39:1f:a0:c8:56:1d:9e:e4:6b: 82:5e:e6:40:48:52:38:ca:ac:59:a0:dc:b7:cf:cc: a4:6b:b7:5b:ac:59:39:11:e0:e2:21:0b:09:53:d7: 59:41:cd:f1:6f:0b:17:11:6a:f8:01:11:fd:29:7c: 14:ce:99:8c:5f:32:6c:b0:69:75:48:2b:c9:9a:c8: 9f:88:a8:ed:fa:af:4a:6e:66:58:92:be:6c:38:b1: ff:5a:39:73:a1:c5:fb:63:f6:5f:90:f8:e5:3c:99: df:95:1f:e4:56:f4:fc:5d:04:1b:e5:43:32:67:99: 54:27:fa:27:6d:4f:bb:6d:4d:b9:2e:3a:52:7c:8d: 19:2d:26:c7:8f:f3:b8:b2:08:d1:c0:f8:a3:16:f8: 42:41:9c:a5:a8:95:83:53:7f:40:75:5f:ea:71:fa: 76:24:f1:e8:9a:92:f8:04:32:c4:4d:6d:95:a0:98: e1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4D:3B:B4:90:5D:1B:A2:AD:40:97:9E:B2:B6:25:39:B6:41:A1:D5 X509v3 Authority Key Identifier: keyid:9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.116.36.0/22 45.125.120.0/22 103.166.56.0/23 103.194.0.0/22 Signature Algorithm: sha256WithRSAEncryption 46:36:71:43:e2:56:8a:14:ff:ff:53:51:7a:aa:38:d9:fc:3a: 84:9b:d1:46:7e:74:30:03:65:1f:b9:e8:10:ee:9a:87:e0:69: 0b:b3:68:13:b1:a5:b5:c9:96:12:0b:1b:15:a8:4a:59:6a:d5: a3:17:db:1c:db:81:d2:d7:27:b0:6d:59:d2:ba:e0:e5:a0:95: 13:9f:76:7c:9a:11:dd:90:d6:c2:d2:90:64:a8:ba:56:32:50: 21:78:3f:7c:fb:9f:e9:05:f6:38:78:55:11:1a:ce:3f:17:c6: 6c:7e:3b:5c:8b:64:82:22:9f:b6:47:e8:c0:d4:a7:0f:29:e4: bd:a6:b7:32:45:63:88:53:81:8a:8d:6d:75:48:56:4b:08:79: a4:5f:82:83:36:70:fe:21:c1:0a:9d:dd:85:be:62:88:96:0b: eb:b5:55:3c:0b:aa:3e:78:b8:2c:44:e6:12:8a:0f:23:7f:6a: d4:15:05:58:95:09:90:8c:b1:e4:82:2b:5b:f2:62:72:e9:2b: 4f:45:2f:66:7a:85:97:fe:9d:e7:5b:1a:05:ef:ad:ff:e4:16: 7e:21:db:02:40:89:7e:06:10:1f:e9:24:97:b5:4c:94:99:f3: ab:40:b0:0a:21:d8:7c:51:80:76:30:3d:1d:34:ef:fe:58:bc: 48:27:8a:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNkMxMTAvBgNVBAUTKDlCMDlFOTVGRTQ2QUJEQkM5RjkwMjA1ODVGOUE1ODMy Njc3NzNGQzkwHhcNMjUwNTEyMjM1MzQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyOGEwYi01ZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF/2MaFHnVfi7nTl2mAR9kNmtYgzB1e2Y83LH897itkpReeSOZQ846HLKrFJ LfWuJcJDCW7y+/W9/+5KMciRjQlpPj9u7Zbzay8bLy3DLIk5H6DIVh2e5GuCXuZA SFI4yqxZoNy3z8yka7dbrFk5EeDiIQsJU9dZQc3xbwsXEWr4ARH9KXwUzpmMXzJs sGl1SCvJmsifiKjt+q9KbmZYkr5sOLH/WjlzocX7Y/ZfkPjlPJnflR/kVvT8XQQb 5UMyZ5lUJ/onbU+7bU25LjpSfI0ZLSbHj/O4sgjRwPijFvhCQZylqJWDU39AdV/q cfp2JPHompL4BDLETW2VoJjhnQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFPdNO7SQ XRuirUCXnrK2JTm2QaHVMB8GA1UdIwQYMBaAFJsJ6V/kar28n5AgWF+aWDJndz/J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I2Qy84QjA4OTIwQUUy QTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZieWZrQ0JZWDVwWU1tZDNQ OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL213bnBYLVJxdmJ5ZmtDQllYNXBZTW1kM1A4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNCNkMvOEIwODkyMEFFMkE1MTFFQkFEMTNDQzM1QzRGOUFFMDIvQzRDQjA0QzRF MkE5MTFFQkI0NjMxOTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIbdCQDBAItfXgDBAFnpjgDBAJnwgAwDQYJKoZIhvcNAQEL BQADggEBAEY2cUPiVooU//9TUXqqONn8OoSb0UZ+dDADZR+56BDumofgaQuzaBOx pbXJlhILGxWoSllq1aMX2xzbgdLXJ7BtWdK64OWglROfdnyaEd2Q1sLSkGSoulYy UCF4P3z7n+kF9jh4VREazj8Xxmx+O1yLZIIin7ZH6MDUpw8p5L2mtzJFY4hTgYqN bXVIVksIeaRfgoM2cP4hwQqd3YW+YoiWC+u1VTwLqj54uCxE5hKKDyN/atQVBViV CZCMseSCK1vyYnLpK09FL2Z6hZf+nedbGgXvrf/kFn4h2wJAiX4GEB/pJJe1TJSZ 86tAsAoh2HxRgHYwPR007/5YvEgnigk= -----END CERTIFICATE-----Generated at Wed May 14 23:55:23 2025 by rpki-client