$ rpki-client -vvf rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/0366729A251511EEACA5881FC4F9AE02.roa File: 0366729A251511EEACA5881FC4F9AE02.roa (raw, json) Hash identifier: JUSU1VmCrt2YGTrN+Q0jV8oiBs7Aumf+6ve9iuHLrvQ= Subject key identifier: CE:63:9F:F5:F6:95:11:17:70:B2:28:78:1E:1B:FB:AD:67:3C:F2:B2 Certificate issuer: /CN=A91F48F3/serialNumber=F0C3AAE917E88E68141A96B226E046009A819483 Certificate serial: 0171 Authority key identifier: F0:C3:AA:E9:17:E8:8E:68:14:1A:96:B2:26:E0:46:00:9A:81:94:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/0366729A251511EEACA5881FC4F9AE02.roa Signing time: Tue 01 Jul 2025 04:40:01 +0000 ROA not before: Tue 01 Jul 2025 04:40:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138190 IP address blocks: 103.225.254.0/24 maxlen: 24 103.225.255.0/24 maxlen: 24 2401:c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.crl rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F48F3, serialNumber=F0C3AAE917E88E68141A96B226E046009A819483 Validity Not Before: Jul 1 04:40:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686366a1-255e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b6:00:34:7d:a4:c2:14:30:57:0a:5b:d4:6d: 63:b6:ed:50:01:a7:22:d9:0b:db:75:99:af:19:06: 40:49:05:bd:79:15:e8:40:7f:17:20:02:b6:4d:22: e6:88:7b:25:de:86:da:c5:83:c0:0e:e7:70:05:53: 9f:a7:66:6b:0b:73:db:97:57:38:61:54:39:6d:f0: 07:6f:f1:e0:98:04:16:ff:dc:51:94:73:d4:5b:3a: d0:d0:9a:a5:5b:33:5f:44:d2:7c:0a:4b:2c:a4:f3: 58:12:11:cd:7a:57:43:b4:91:5f:a4:53:3d:d8:16: e9:9d:30:44:d0:2f:33:96:1b:00:1d:67:1d:3e:3f: b8:02:64:80:8b:35:92:54:69:98:12:d8:b7:5b:6a: e0:2c:1e:b7:77:4e:6f:1c:df:4a:a3:6d:67:97:2a: 29:8c:89:a0:09:19:a2:fc:d3:29:c9:f2:ff:7e:c7: 00:a0:f4:3f:d8:0e:af:84:8a:57:03:65:7b:97:61: 0f:4c:83:9e:4c:e7:d7:9c:c1:14:11:cd:e8:21:f8: 31:4b:54:3d:cd:31:f9:96:4e:59:00:40:40:d4:0e: d0:20:f3:44:27:89:84:a8:4e:42:04:05:c0:5b:5e: 8f:a2:7f:f2:b9:85:6c:81:d8:ad:4d:ee:8a:45:07: ee:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:63:9F:F5:F6:95:11:17:70:B2:28:78:1E:1B:FB:AD:67:3C:F2:B2 X509v3 Authority Key Identifier: keyid:F0:C3:AA:E9:17:E8:8E:68:14:1A:96:B2:26:E0:46:00:9A:81:94:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/0366729A251511EEACA5881FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.254.0/23 IPv6: 2401:c60::/32 Signature Algorithm: sha256WithRSAEncryption a0:68:77:a4:34:32:a7:32:90:f0:a2:02:77:92:75:ca:fc:7e: 64:eb:e8:e2:ce:b8:a0:9a:e7:2c:a1:d1:dc:01:0a:4c:59:6a: 8e:5b:ed:af:0e:2d:9a:f0:2c:f9:be:f1:9f:21:0c:2c:c7:24: 0f:82:0e:ab:5a:cb:b7:54:e7:00:3d:b4:2f:e7:68:71:ee:ef: b9:8c:22:46:2d:07:7b:44:0d:d1:59:79:3d:f0:11:6b:96:5f: b3:7a:a0:d3:14:0c:08:f1:27:04:4e:9e:8d:81:96:45:a6:22: ee:e9:42:c2:61:b2:8b:44:95:25:36:56:7c:94:e0:2e:72:ad: 03:d4:4f:76:2b:0e:1a:0c:40:4e:29:c9:cd:d0:70:1a:9f:17: 05:46:18:d1:28:38:e3:8d:d3:15:8c:a5:66:97:44:86:bb:3f: 0c:95:01:82:c9:7f:73:df:74:ba:0a:fb:4b:b9:25:21:2b:8e: d6:d0:1d:22:b0:d9:0c:8f:b8:a2:72:03:eb:e3:d1:2b:b6:80: 19:72:06:f8:1e:29:d3:de:ac:8a:1d:c9:21:f6:0f:0a:e6:9f: f8:44:09:ef:1d:24:9c:dd:c2:7c:74:70:62:d1:46:47:8b:b0: 04:ea:9c:ee:b0:27:9d:89:85:7a:f1:a2:18:9e:72:9d:b6:ac: dc:53:ec:42 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ4RjMxMTAvBgNVBAUTKEYwQzNBQUU5MTdFODhFNjgxNDFBOTZCMjI2RTA0NjAw OUE4MTk0ODMwHhcNMjUwNzAxMDQ0MDAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNjZhMS0yNTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07YANH2kwhQwVwpb1G1jtu1QAaci2QvbdZmvGQZASQW9eRXoQH8XIAK2TSLm iHsl3obaxYPADudwBVOfp2ZrC3Pbl1c4YVQ5bfAHb/HgmAQW/9xRlHPUWzrQ0Jql WzNfRNJ8CksspPNYEhHNeldDtJFfpFM92BbpnTBE0C8zlhsAHWcdPj+4AmSAizWS VGmYEti3W2rgLB63d05vHN9Ko21nlyopjImgCRmi/NMpyfL/fscAoPQ/2A6vhIpX A2V7l2EPTIOeTOfXnMEUEc3oIfgxS1Q9zTH5lk5ZAEBA1A7QIPNEJ4mEqE5CBAXA W16Pon/yuYVsgditTe6KRQfuNQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM5jn/X2 lREXcLIoeB4b+61nPPKyMB8GA1UdIwQYMBaAFPDDqukX6I5oFBqWsibgRgCagZSD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDhGMy9CNzIzNUUyQTI1 MTQxMUVFQThERUNDMUVDNEY5QUUwMi84TU9xNlJmb2ptZ1VHcGF5SnVCR0FKcUJs SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhNT3E2UmZvam1nVUdwYXlKdUJHQUpxQmxJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ4RjMvQjcyMzVFMkEyNTE0MTFFRUE4REVDQzFFQzRGOUFFMDIvMDM2NjcyOUEy NTE1MTFFRUFDQTU4ODFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn4f4wDQQCAAIwBwMFACQBDGAwDQYJKoZIhvcNAQELBQAD ggEBAKBod6Q0MqcykPCiAneSdcr8fmTr6OLOuKCa5yyh0dwBCkxZao5b7a8OLZrw LPm+8Z8hDCzHJA+CDqtay7dU5wA9tC/naHHu77mMIkYtB3tEDdFZeT3wEWuWX7N6 oNMUDAjxJwROno2BlkWmIu7pQsJhsotElSU2VnyU4C5yrQPUT3YrDhoMQE4pyc3Q cBqfFwVGGNEoOOON0xWMpWaXRIa7PwyVAYLJf3PfdLoK+0u5JSErjtbQHSKw2QyP uKJyA+vj0Su2gBlyBvgeKdPerIodySH2Dwrmn/hECe8dJJzdwnx0cGLRRkeLsATq nO6wJ52JhXrxohiecp22rNxT7EI= -----END CERTIFICATE-----Generated at Wed Jul 2 13:42:40 2025 by rpki-client