$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa File: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (raw, json) Hash identifier: M9FXaqMN3xRXkYSG9XQqHpw6Lro8+iU9Ajk3i3+nJw4= Subject key identifier: 4E:9C:81:6B:80:43:6E:8D:44:A3:E6:9F:36:DE:E6:EB:99:D5:D6:C1 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13BC Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa Signing time: Mon 16 Jun 2025 17:18:17 +0000 ROA not before: Mon 16 Jun 2025 17:18:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135375 IP address blocks: 103.63.190.0/24 maxlen: 24 103.216.48.0/22 maxlen: 22 103.216.48.0/24 maxlen: 24 103.216.49.0/24 maxlen: 24 103.216.50.0/24 maxlen: 24 103.216.51.0/24 maxlen: 24 203.95.196.0/22 maxlen: 22 203.95.196.0/24 maxlen: 24 203.95.197.0/24 maxlen: 24 203.95.198.0/24 maxlen: 24 203.95.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5052 (0x13bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Jun 16 17:18:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685051d9-fb34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e3:39:0d:d2:2d:de:29:27:40:b8:11:48:a0: c7:e8:6e:03:d8:76:b4:3c:f5:38:3a:de:7e:19:89: 69:55:f8:5f:76:9e:1b:d8:97:3e:b2:e1:f3:87:38: fe:df:73:9e:15:69:fd:17:6a:d2:60:9a:67:c8:12: 08:6f:ca:ea:fc:26:ec:5e:8f:9d:7f:05:7a:bb:c7: b5:7f:fb:04:ca:ff:e7:d5:6b:a2:42:16:7e:87:db: 61:0c:70:9c:ec:81:8a:6c:fd:5f:81:53:1a:96:13: 8f:64:94:d1:7f:2f:95:bb:fa:27:81:30:56:80:e8: 39:a4:1c:ac:40:66:05:0a:1c:4b:bb:97:58:06:38: 5c:db:72:4e:5e:5f:c7:7f:0d:f7:76:9b:60:4f:09: 17:f3:b1:f6:ef:70:ec:b9:a0:45:a2:6c:20:83:2c: 70:5e:1e:88:e9:d8:56:1c:70:5f:2b:50:30:6a:8d: 56:21:b9:a3:bc:3c:6d:20:eb:f4:95:ed:0b:d4:30: 46:ec:0a:a1:5e:eb:0a:a6:2f:6d:26:bc:82:99:29: 0d:2a:4d:0e:83:4d:23:3c:78:ee:07:86:52:5e:49: a9:c5:16:14:d6:94:a1:b7:bd:9d:89:13:99:27:1e: c4:8b:2e:26:cd:8b:84:6a:20:aa:8e:e0:71:6f:85: 9f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9C:81:6B:80:43:6E:8D:44:A3:E6:9F:36:DE:E6:EB:99:D5:D6:C1 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.63.190.0/24 103.216.48.0/22 203.95.196.0/22 Signature Algorithm: sha256WithRSAEncryption 95:0f:3a:3f:a8:18:b0:eb:43:b1:11:73:94:92:de:93:3b:ae: 5e:91:0f:6c:c4:64:0f:68:58:92:d3:e9:6b:5d:af:b8:59:be: b6:50:90:6c:88:5d:88:9a:ee:0c:0c:11:f4:34:c1:ec:07:44: da:fb:a9:29:fb:b8:ff:f0:18:76:3f:1e:bc:c2:52:85:b0:a0: d1:79:82:e9:4f:f9:7c:6c:ee:85:b0:81:7e:0d:b8:26:7a:2c: 67:bd:28:23:2c:54:31:b3:8b:c3:23:6b:65:b0:e9:c5:10:31: aa:f9:ae:32:a0:8a:83:d0:87:c5:85:39:d0:18:11:f8:d4:cd: 9c:09:99:94:d8:5e:36:6b:c3:dc:28:1c:8d:15:b7:cc:e8:34: 51:63:61:77:a2:20:73:f3:cf:e2:4a:6d:95:fb:c4:ee:7d:a6: 93:02:90:a0:29:dc:26:37:6b:de:60:4d:47:9d:77:f8:63:98: ae:f0:b3:0a:92:45:2c:b5:a5:ea:9a:a4:11:9e:cb:78:07:02: a3:1d:76:9d:ac:4e:dd:13:81:d4:fa:6f:eb:d7:d0:8f:d7:73: 0e:cd:e8:63:c3:17:ef:d1:0c:36:3b:d9:0d:71:75:22:4d:36: 8b:87:37:9d:4a:cf:1c:97:da:9f:e6:1b:b2:69:8b:7e:ff:c5: 25:c4:f0:7d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICE7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUwNjE2MTcxODE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwNTFkOS1mYjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOM5DdIt3iknQLgRSKDH6G4D2Ha0PPU4Ot5+GYlpVfhfdp4b2Jc+suHzhzj+ 33OeFWn9F2rSYJpnyBIIb8rq/CbsXo+dfwV6u8e1f/sEyv/n1WuiQhZ+h9thDHCc 7IGKbP1fgVMalhOPZJTRfy+Vu/ongTBWgOg5pBysQGYFChxLu5dYBjhc23JOXl/H fw33dptgTwkX87H273DsuaBFomwggyxwXh6I6dhWHHBfK1Awao1WIbmjvDxtIOv0 le0L1DBG7AqhXusKpi9tJryCmSkNKk0Og00jPHjuB4ZSXkmpxRYU1pSht72diROZ Jx7Eiy4mzYuEaiCqjuBxb4WfBQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE6cgWuA Q26NRKPmnzbe5uuZ1dbBMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY2MzkvQUVGMDY4Qjg5MEVDMTFFODgzQzNENDdCQzRGOUFFMDIvOUQxQ0YxNUU5 MEVFMTFFODk2MEU4NDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnP74DBAJn2DADBALLX8QwDQYJKoZIhvcNAQELBQADggEB AJUPOj+oGLDrQ7ERc5SS3pM7rl6RD2zEZA9oWJLT6Wtdr7hZvrZQkGyIXYia7gwM EfQ0wewHRNr7qSn7uP/wGHY/HrzCUoWwoNF5gulP+Xxs7oWwgX4NuCZ6LGe9KCMs VDGzi8Mja2Ww6cUQMar5rjKgioPQh8WFOdAYEfjUzZwJmZTYXjZrw9woHI0Vt8zo NFFjYXeiIHPzz+JKbZX7xO59ppMCkKAp3CY3a95gTUedd/hjmK7wswqSRSy1peqa pBGey3gHAqMddp2sTt0TgdT6b+vX0I/Xcw7N6GPDF+/RDDY72Q1xdSJNNouHN51K zxyX2p/mG7Jpi37/xSXE8H0= -----END CERTIFICATE-----Generated at Thu Jul 3 17:21:06 2025 by rpki-client