$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/06F011A2134B11F0AA41F90AC4F9AE02.roa File: 06F011A2134B11F0AA41F90AC4F9AE02.roa (raw, json) Hash identifier: kI+JZUIi+oZUN6mABAAqK5EpoqRmpcP+XjoaGqbVys8= Subject key identifier: 31:2C:8C:57:C0:AC:36:3C:CB:1D:E5:B0:91:8A:D7:AC:55:73:35:12 Certificate issuer: /CN=A91FDBE8/serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Certificate serial: 07A2 Authority key identifier: F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/06F011A2134B11F0AA41F90AC4F9AE02.roa Signing time: Sun 15 Jun 2025 11:18:43 +0000 ROA not before: Sun 15 Jun 2025 11:18:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38880 IP address blocks: 45.65.60.0/22 maxlen: 22 45.114.204.0/22 maxlen: 22 45.114.205.0/24 maxlen: 24 45.114.206.0/24 maxlen: 24 45.114.207.0/24 maxlen: 24 103.37.8.0/23 maxlen: 23 103.52.168.0/24 maxlen: 24 103.52.169.0/24 maxlen: 24 103.80.136.0/22 maxlen: 22 103.80.137.0/24 maxlen: 24 103.80.138.0/24 maxlen: 24 103.80.139.0/24 maxlen: 24 2402:3680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1954 (0x7a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDBE8, serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Validity Not Before: Jun 15 11:18:43 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=684eac13-1d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7e:e4:3a:9a:42:c6:1a:75:34:db:bb:f4:54: cb:c7:d4:84:8f:dd:cc:86:be:b9:e0:63:43:03:23: 29:7a:23:03:99:f0:2b:c6:98:49:e0:19:25:c2:17: a1:82:fa:47:ae:6e:a9:36:6c:66:d3:48:eb:f4:da: b3:ca:d7:9f:d6:5c:77:98:17:62:c8:f9:ae:47:3d: 24:85:8c:e5:f2:dd:eb:6d:d4:37:31:ef:52:3f:c5: 84:3e:d5:f0:95:30:11:13:65:37:e3:d5:4a:0a:ba: 01:14:5f:fd:84:d4:ae:0b:21:ef:a3:e0:f9:ec:50: 95:52:6f:a0:5f:f1:29:c1:7a:ca:de:3a:ab:f5:99: 61:49:f7:07:5f:c5:33:56:f4:cd:c7:74:78:0b:f1: c8:31:be:31:bd:69:14:06:f3:32:12:cb:0f:62:da: 77:84:9f:1b:62:ef:f9:08:73:dd:5d:d1:48:51:a6: 6d:75:cb:3b:09:a6:e4:6e:e4:a6:ad:b0:c5:48:93: 3a:2c:53:05:4e:d5:eb:32:12:20:1b:3f:30:b2:37: 1a:30:20:b8:28:1e:48:81:ee:04:98:ce:0c:b6:de: 62:0e:67:61:19:3a:e1:11:18:f9:e9:88:15:41:93: ba:36:27:56:c3:3b:a7:1d:90:4e:e5:9f:74:13:65: 79:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2C:8C:57:C0:AC:36:3C:CB:1D:E5:B0:91:8A:D7:AC:55:73:35:12 X509v3 Authority Key Identifier: keyid:F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/06F011A2134B11F0AA41F90AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.65.60.0/22 45.114.204.0/22 103.37.8.0/23 103.52.168.0/23 103.80.136.0/22 IPv6: 2402:3680::/32 Signature Algorithm: sha256WithRSAEncryption 7e:04:4d:93:30:07:eb:ed:38:f6:ce:ed:29:8e:9f:4b:b1:5d: 94:ba:21:72:ec:9f:67:92:f8:ab:b3:51:57:c4:5b:82:28:99: 87:dc:03:7d:f0:67:96:eb:59:75:4b:0a:6f:8c:da:c8:21:9b: 79:dc:33:ba:50:a1:fe:d1:11:ca:f1:04:0f:c8:91:6f:fa:a7: 96:44:d5:7e:66:74:3f:e6:1b:f6:6c:c6:b7:c4:22:3d:35:4d: 7e:ea:35:5f:e7:c5:48:9b:42:a4:9e:78:6e:08:82:57:73:e8: 45:04:1b:11:38:46:8f:4c:c7:f7:5b:fd:70:7d:d1:f7:05:86: ee:61:f9:38:81:b0:9e:0b:96:dd:93:01:e0:e7:ec:23:df:31: 36:a0:79:9f:37:61:c3:ea:fc:a5:c0:70:a7:80:81:84:0b:b8: 12:61:e6:7c:86:7d:9b:3a:52:33:b1:10:54:fb:55:ae:53:30: 3a:b0:aa:f3:4a:6e:57:f3:f9:92:8b:e2:c2:25:cf:ba:16:1f: e4:cb:4f:fc:fb:ae:13:fa:56:cc:b9:94:5b:03:0f:35:f4:8c: cd:75:e1:e2:24:a4:b3:36:51:63:c0:d6:c0:69:91:68:f3:d5: 43:a0:18:3a:b5:4c:1f:25:c6:91:5f:9a:b7:6e:b4:89:59:0c: 0e:08:ba:4c -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICB6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRCRTgxMTAvBgNVBAUTKEYzNTQwOTM5NDg2NkZCNDA4QTBEMTg4RTBCN0QwMEND NUE3Mzk0OEUwHhcNMjUwNjE1MTExODQzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRlYWMxMy0xZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApH7kOppCxhp1NNu79FTLx9SEj93Mhr654GNDAyMpeiMDmfArxphJ4Bklwheh gvpHrm6pNmxm00jr9Nqzytef1lx3mBdiyPmuRz0khYzl8t3rbdQ3Me9SP8WEPtXw lTARE2U349VKCroBFF/9hNSuCyHvo+D57FCVUm+gX/EpwXrK3jqr9ZlhSfcHX8Uz VvTNx3R4C/HIMb4xvWkUBvMyEssPYtp3hJ8bYu/5CHPdXdFIUaZtdcs7CabkbuSm rbDFSJM6LFMFTtXrMhIgGz8wsjcaMCC4KB5Ige4EmM4Mtt5iDmdhGTrhERj56YgV QZO6NidWwzunHZBO5Z90E2V59wIDAQABo4ICvDCCArgwHQYDVR0OBBYEFDEsjFfA rDY8yx3lsJGK16xVczUSMB8GA1UdIwQYMBaAFPNUCTlIZvtAig0Yjgt9AMxac5SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREJFOC85RDM2MzE3ODE1 MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0wQ0tEUmlPQzMwQXpGcHps STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgxUUpPVWhtLTBDS0RSaU9DMzBBekZwemxJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRCRTgvOUQzNjMxNzgxNTJCMTFFQjlCRDRFQjQ2QzRGOUFFMDIvMDZGMDExQTIx MzRCMTFGMEFBNDFGOTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAItQTwDBAItcswDBAFnJQgDBAFnNKgDBAJnUIgwDQQCAAIw BwMFACQCNoAwDQYJKoZIhvcNAQELBQADggEBAH4ETZMwB+vtOPbO7SmOn0uxXZS6 IXLsn2eS+KuzUVfEW4IomYfcA33wZ5brWXVLCm+M2sghm3ncM7pQof7REcrxBA/I kW/6p5ZE1X5mdD/mG/ZsxrfEIj01TX7qNV/nxUibQqSeeG4Igldz6EUEGxE4Ro9M x/db/XB90fcFhu5h+TiBsJ4Llt2TAeDn7CPfMTageZ83YcPq/KXAcKeAgYQLuBJh 5nyGfZs6UjOxEFT7Va5TMDqwqvNKblfz+ZKL4sIlz7oWH+TLT/z7rhP6Vsy5lFsD DzX0jM114eIkpLM2UWPA1sBpkWjz1UOgGDq1TB8lxpFfmrdutIlZDA4Iukw= -----END CERTIFICATE-----Generated at Thu Jul 3 06:50:39 2025 by rpki-client