$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa File: F0326FAE4D0011E8A24EE324C4F9AE02.roa (raw, json) Hash identifier: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk= Subject key identifier: CB:7B:F2:0C:12:AA:2F:6D:92:FD:E0:A8:70:75:D2:75:85:59:55:06 Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1506 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa Signing time: Fri 02 May 2025 17:25:23 +0000 ROA not before: Fri 02 May 2025 17:25:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137813 IP address blocks: 103.114.176.0/22 maxlen: 24 2402:d140::/32 maxlen: 32 2402:d140::/40 maxlen: 48 2402:d140:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5382 (0x1506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: May 2 17:25:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68150003-e2d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:18:4c:3e:5e:1a:92:a4:5d:78:11:53:c6:79: 04:d9:0f:59:af:2a:7b:43:a2:e3:df:53:3d:97:74: 0f:cb:e0:b0:e9:1f:89:e8:cc:05:c3:b6:63:98:21: 23:44:78:ac:b3:e0:37:93:9e:40:f3:d3:e0:35:35: d4:ed:67:24:33:5a:52:f0:22:81:8e:fb:a0:f9:64: 83:b8:e0:c5:af:1d:0d:8f:ef:c5:af:d5:c3:d9:54: 9c:1b:54:9b:69:23:e1:45:35:53:fa:97:fa:76:f2: 43:00:f8:0f:c5:23:11:67:21:82:cd:ec:26:d1:c5: bf:97:ad:14:ca:57:f1:90:5a:fc:da:91:95:a1:ba: 61:70:9f:57:2d:a6:1d:b2:42:4d:ce:8d:19:d8:5b: 8c:8e:c0:92:df:dd:60:5f:e7:67:7d:11:d5:52:02: 7d:ce:5e:92:d1:2d:4c:be:39:c3:55:55:a6:04:12: 31:78:f0:e0:a4:d7:b4:5b:83:d9:9b:f7:39:53:37: 89:78:4b:ba:9a:0d:bb:44:53:70:d7:d7:ae:8a:e0: 8a:dc:3e:3c:1b:8f:25:ea:b5:b9:c7:2c:5c:a5:2b: 6b:d8:98:5f:17:61:c0:bf:ea:ea:c1:22:5e:d3:98: 2e:1c:e6:57:a7:cc:ce:cb:3d:4b:62:18:de:7d:42: 5d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:7B:F2:0C:12:AA:2F:6D:92:FD:E0:A8:70:75:D2:75:85:59:55:06 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.176.0/22 IPv6: 2402:d140::/32 Signature Algorithm: sha256WithRSAEncryption 1f:1c:de:39:38:9f:bd:01:46:0f:03:e0:93:41:99:4e:82:ce: 5f:f6:06:69:13:20:86:b4:8f:ab:a6:02:4c:75:e3:b7:8d:9d: e2:21:46:00:7a:fc:6d:09:09:75:69:d7:af:3b:5d:7c:e4:50: 7a:e4:16:db:87:17:a3:7f:2a:43:3f:50:41:9c:d0:31:3b:79: 13:ec:47:7e:fd:e3:2c:45:11:18:29:c4:17:27:d8:c2:56:96: ab:28:ca:45:5d:91:77:77:a6:36:a9:bb:eb:3e:c0:bc:ec:df: a4:04:62:64:f1:f7:28:ea:6c:1e:76:ff:4d:0f:4d:e6:fa:41: dd:5a:16:e3:33:b7:58:1c:f8:13:84:a3:c5:d2:e3:05:dd:e7: 0d:bf:5a:18:57:59:a7:d9:2c:dd:30:bc:a9:0d:c3:23:69:17: 1a:a6:3a:a8:c8:f7:5b:fa:d4:90:d6:ae:ae:09:70:6e:a5:74: 4c:44:2a:fe:96:55:f6:fc:b3:f4:30:20:8b:eb:58:63:61:34: 22:20:a6:f4:69:e1:ec:03:1d:6b:30:b3:bd:2b:28:66:93:ba: 7b:c5:12:38:85:fa:4e:89:ff:c4:93:07:32:55:92:4e:72:1a: ff:97:8f:04:87:09:ce:f7:d1:77:7d:88:1a:48:73:ad:4d:61: 96:26:90:4c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwNTAyMTcyNTIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDAwMy1lMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBhMPl4akqRdeBFTxnkE2Q9Zryp7Q6Lj31M9l3QPy+Cw6R+J6MwFw7ZjmCEj RHiss+A3k55A89PgNTXU7WckM1pS8CKBjvug+WSDuODFrx0Nj+/Fr9XD2VScG1Sb aSPhRTVT+pf6dvJDAPgPxSMRZyGCzewm0cW/l60UylfxkFr82pGVobphcJ9XLaYd skJNzo0Z2FuMjsCS391gX+dnfRHVUgJ9zl6S0S1MvjnDVVWmBBIxePDgpNe0W4PZ m/c5UzeJeEu6mg27RFNw19euiuCK3D48G48l6rW5xyxcpStr2JhfF2HAv+rqwSJe 05guHOZXp8zOyz1LYhjefUJdBwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMt78gwS qi9tkv3gqHB10nWFWVUGMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY1RTQvNzkzOTczMjA0RDAwMTFFOEEwMjZFMTRBQzRGOUFFMDIvRjAzMjZGQUU0 RDAwMTFFOEEyNEVFMzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncrAwDQQCAAIwBwMFACQC0UAwDQYJKoZIhvcNAQELBQAD ggEBAB8c3jk4n70BRg8D4JNBmU6Czl/2BmkTIIa0j6umAkx147eNneIhRgB6/G0J CXVp1687XXzkUHrkFtuHF6N/KkM/UEGc0DE7eRPsR3794yxFERgpxBcn2MJWlqso ykVdkXd3pjapu+s+wLzs36QEYmTx9yjqbB52/00PTeb6Qd1aFuMzt1gc+BOEo8XS 4wXd5w2/WhhXWafZLN0wvKkNwyNpFxqmOqjI91v61JDWrq4JcG6ldExEKv6WVfb8 s/QwIIvrWGNhNCIgpvRp4ewDHWsws70rKGaTunvFEjiF+k6J/8STBzJVkk5yGv+X jwSHCc730Xd9iBpIc61NYZYmkEw= -----END CERTIFICATE-----Generated at Wed May 14 20:50:46 2025 by rpki-client