$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/531C6440CF9A11E9ABB7C168C4F9AE02.roa File: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (raw, json) Hash identifier: 0Ni5FHtxPqtRB1YXZ5zRXDqJAM/35OEWFhDuPTdXe6o= Subject key identifier: EA:BB:2A:21:6A:F4:90:97:34:27:4B:61:2C:CB:9A:79:15:62:4B:72 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 11A0 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/531C6440CF9A11E9ABB7C168C4F9AE02.roa Signing time: Fri 06 Jun 2025 17:30:03 +0000 ROA not before: Fri 06 Jun 2025 17:30:03 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24373 IP address blocks: 45.119.6.0/23 maxlen: 23 45.119.6.0/24 maxlen: 24 45.119.7.0/24 maxlen: 24 103.49.92.0/22 maxlen: 24 103.59.48.0/24 maxlen: 24 103.59.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4512 (0x11a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Jun 6 17:30:03 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6843259b-2cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:a7:d0:a4:e3:41:01:cc:b9:5b:88:3a:bd: eb:c3:14:68:a5:53:98:e4:0c:70:96:74:0e:eb:9b: 10:b0:0d:76:3e:d0:b3:29:a9:fd:c2:3f:49:c1:22: ff:9f:52:3f:c7:04:99:48:71:07:43:67:49:1e:a7: ac:7e:b8:c8:ac:2a:67:3a:98:09:9b:b0:64:23:3d: ca:db:fc:90:2c:7a:e2:ff:0d:d8:58:ff:3c:49:4a: 93:fd:75:18:f4:9d:ee:88:aa:72:94:a8:d6:25:41: 11:e2:3a:c0:aa:90:dd:5d:47:48:41:16:de:48:18: 4d:48:91:8f:cd:51:73:1e:ac:da:30:28:eb:73:a0: 70:18:08:b1:6e:ae:57:75:72:0c:b8:e3:ec:10:dd: 8f:f1:74:e1:2b:63:d0:2b:ef:86:4c:17:22:0e:e8: 34:3e:bb:cc:5e:53:cb:e9:0d:93:b8:76:6a:91:f1: 53:fb:ae:38:30:54:6b:1d:da:57:3b:ff:43:4b:c7: 4e:16:18:80:18:17:62:4f:8a:f6:e8:d8:83:36:ae: 2d:d6:ae:54:13:f9:f9:d8:cf:48:f8:88:3f:b9:c1: 45:e0:60:89:a6:d4:fa:44:c7:04:37:78:a3:28:1d: ff:19:6b:fd:06:e4:f8:03:ac:12:43:13:5c:48:f4: c6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:BB:2A:21:6A:F4:90:97:34:27:4B:61:2C:CB:9A:79:15:62:4B:72 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/531C6440CF9A11E9ABB7C168C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.6.0/23 103.49.92.0/22 103.59.48.0/24 103.59.50.0/24 Signature Algorithm: sha256WithRSAEncryption a6:61:d3:d3:94:dd:e3:5e:d3:19:dc:72:eb:c2:da:30:83:94: 3d:ac:f6:52:61:fd:f3:7f:7b:1c:96:3a:d1:4c:73:82:5a:cb: d9:4f:ff:51:e6:e1:b1:09:03:42:af:61:2d:94:a6:93:05:59: d1:40:c0:80:0a:46:0b:de:f1:2f:a2:32:90:46:3f:30:f7:cf: 45:80:8e:84:8c:92:e6:b8:e3:ed:29:0d:e4:2d:18:79:4d:78: 65:7a:a2:af:61:4b:3d:c1:73:f1:88:57:73:18:00:34:30:52: 22:33:0b:11:3a:b6:a3:9e:77:09:40:45:80:4e:98:11:32:b9: 6a:93:62:72:da:e3:66:79:da:f4:48:f0:f5:87:25:3b:3b:d0: 4b:3b:55:97:16:cf:22:59:69:80:e2:7e:d7:1a:70:8b:18:c5: c4:7a:65:46:32:1b:b6:ab:71:c1:cf:da:a2:f3:1c:dc:2a:c6: da:6b:a8:82:f4:0b:ad:fc:3e:40:97:f4:a4:ab:fd:58:cb:42: af:8c:32:1a:96:7b:be:d6:30:01:73:3e:c1:e6:01:cb:8a:65: 78:c9:26:13:63:66:e0:81:53:48:11:65:5b:0e:99:45:62:57: e8:62:88:4e:04:4c:b1:13:d9:f2:61:5a:c7:92:c5:24:81:6e: a8:23:58:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICEaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjUwNjA2MTczMDAzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzMjU5Yi0yY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH+n0KTjQQHMuVuIOr3rwxRopVOY5AxwlnQO65sQsA12PtCzKan9wj9JwSL/ n1I/xwSZSHEHQ2dJHqesfrjIrCpnOpgJm7BkIz3K2/yQLHri/w3YWP88SUqT/XUY 9J3uiKpylKjWJUER4jrAqpDdXUdIQRbeSBhNSJGPzVFzHqzaMCjrc6BwGAixbq5X dXIMuOPsEN2P8XThK2PQK++GTBciDug0PrvMXlPL6Q2TuHZqkfFT+644MFRrHdpX O/9DS8dOFhiAGBdiT4r26NiDNq4t1q5UE/n52M9I+Ig/ucFF4GCJptT6RMcEN3ij KB3/GWv9BuT4A6wSQxNcSPTGVQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFOq7KiFq 9JCXNCdLYSzLmnkVYktyMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEyQkMvRUJDRjE2ODIwNEY4MTFFOUJBNTAyNDMxQzRGOUFFMDIvNTMxQzY0NDBD RjlBMTFFOUFCQjdDMTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAEtdwYDBAJnMVwDBABnOzADBABnOzIwDQYJKoZIhvcNAQEL BQADggEBAKZh09OU3eNe0xnccuvC2jCDlD2s9lJh/fN/exyWOtFMc4Jay9lP/1Hm 4bEJA0KvYS2UppMFWdFAwIAKRgve8S+iMpBGPzD3z0WAjoSMkua44+0pDeQtGHlN eGV6oq9hSz3Bc/GIV3MYADQwUiIzCxE6tqOedwlARYBOmBEyuWqTYnLa42Z52vRI 8PWHJTs70Es7VZcWzyJZaYDiftcacIsYxcR6ZUYyG7arccHP2qLzHNwqxtprqIL0 C638PkCX9KSr/VjLQq+MMhqWe77WMAFzPsHmAcuKZXjJJhNjZuCBU0gRZVsOmUVi V+hiiE4ETLET2fJhWseSxSSBbqgjWB4= -----END CERTIFICATE-----Generated at Thu Jun 19 18:54:01 2025 by rpki-client