$ rpki-client -vvf rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/B097C8B013B111EB8864681BC4F9AE02.roa File: B097C8B013B111EB8864681BC4F9AE02.roa (raw, json) Hash identifier: 9S4PdbQBnS1bjpFuDpIOJsT6W0eeeQu3f8/ulTYvG/g= Subject key identifier: 2A:FA:A3:A0:BE:3F:B0:1F:10:19:C1:D3:BE:47:DF:01:E8:2A:53:0B Certificate issuer: /CN=A91410B7/serialNumber=9368EA494F511E20C1D5F73DD539E3D8465BDA9C Certificate serial: 0787 Authority key identifier: 93:68:EA:49:4F:51:1E:20:C1:D5:F7:3D:D5:39:E3:D8:46:5B:DA:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/B097C8B013B111EB8864681BC4F9AE02.roa Signing time: Sun 08 Jun 2025 21:29:11 +0000 ROA not before: Sun 08 Jun 2025 21:29:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140593 IP address blocks: 103.150.202.0/23 maxlen: 23 2001:df3:8980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91410B7, serialNumber=9368EA494F511E20C1D5F73DD539E3D8465BDA9C Validity Not Before: Jun 8 21:29:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684600a6-1e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e9:62:d8:94:93:9e:d9:17:b0:7f:0f:81:c4: 3a:63:44:fb:eb:14:47:cf:47:b3:a6:e2:68:d0:c1: 51:dd:4d:84:08:4e:04:1d:5b:62:17:fa:48:f4:81: e5:a6:e1:24:df:2f:9f:e5:b6:c5:f2:1f:0f:56:97: 68:da:f9:58:35:f1:c7:70:57:83:df:69:23:a9:c0: 9d:00:f4:5f:ee:59:57:fd:81:57:d4:3f:33:4d:6a: 44:f1:11:f5:02:f2:e8:e3:72:b4:78:70:f7:1a:2c: 5a:8a:54:93:79:11:5a:5f:04:2d:e4:ef:e9:be:af: 75:da:69:02:c6:f5:70:5a:3f:05:42:69:18:1f:ab: 95:52:e0:67:df:c3:44:e3:20:f5:af:3d:bf:ca:4e: d8:b0:68:eb:a3:8f:76:4e:72:dc:14:07:5e:6d:ba: 2a:47:8b:9d:87:ca:1d:f6:41:82:78:4c:a3:a2:9f: 00:36:36:1f:54:c4:4b:5b:3a:c1:ca:40:85:e6:14: 5a:86:cb:cd:93:38:84:b2:cd:47:e8:4f:8c:91:bd: a7:d3:e1:8d:72:b0:d8:27:17:23:a6:73:0d:2b:d3: b1:53:30:3d:ae:cb:73:0c:c2:31:ea:bc:ad:17:b8: 43:ea:3e:60:ce:8d:7c:5f:6c:21:c5:e0:6f:de:24: 73:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:FA:A3:A0:BE:3F:B0:1F:10:19:C1:D3:BE:47:DF:01:E8:2A:53:0B X509v3 Authority Key Identifier: keyid:93:68:EA:49:4F:51:1E:20:C1:D5:F7:3D:D5:39:E3:D8:46:5B:DA:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/B097C8B013B111EB8864681BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.202.0/23 IPv6: 2001:df3:8980::/48 Signature Algorithm: sha256WithRSAEncryption 69:ca:d1:85:b0:d4:75:14:00:bb:23:1b:9e:b8:24:76:07:50: a6:71:5f:9b:2b:3d:98:a0:72:1e:a7:4e:62:2a:74:5c:98:f2: 02:19:36:ba:79:96:98:13:34:2c:aa:20:32:b0:4b:1d:ed:36: c8:f0:da:03:2d:16:86:3c:94:50:da:5b:3a:44:21:92:92:33: 03:92:fa:00:ab:5f:c2:de:66:96:d6:14:35:b8:e0:ca:d7:aa: 38:f9:50:a6:27:a7:40:66:d8:7c:24:8f:db:9b:91:44:ef:4f: 19:dd:a4:9e:d0:45:90:b6:b2:8e:5d:af:de:dd:47:4d:3c:44: c8:8b:56:9c:5a:4a:b2:9b:8a:b9:17:69:b9:4c:1a:2b:99:87: 54:67:8c:77:9d:2d:65:7c:d6:62:00:5e:f1:bf:ad:ed:76:03: 0e:33:0f:d9:ba:88:de:09:7e:31:dc:e3:2c:08:8c:3c:01:45: 52:2d:9d:e3:fe:59:21:78:c6:d7:e6:59:62:22:0c:b5:57:cc: b8:91:71:cf:8b:1b:2c:62:31:c0:fc:f9:53:1a:02:c4:e5:7e: ab:9f:22:38:a0:40:b0:1f:1d:a6:ba:7f:e7:39:97:d1:33:04: 5f:de:45:ad:5d:e8:51:7b:7d:97:8e:f6:d9:a8:84:c6:b0:4f: e2:8c:3e:6f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDEwQjcxMTAvBgNVBAUTKDkzNjhFQTQ5NEY1MTFFMjBDMUQ1RjczREQ1MzlFM0Q4 NDY1QkRBOUMwHhcNMjUwNjA4MjEyOTExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2MDBhNi0xZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+li2JSTntkXsH8PgcQ6Y0T76xRHz0ezpuJo0MFR3U2ECE4EHVtiF/pI9IHl puEk3y+f5bbF8h8PVpdo2vlYNfHHcFeD32kjqcCdAPRf7llX/YFX1D8zTWpE8RH1 AvLo43K0eHD3GixailSTeRFaXwQt5O/pvq912mkCxvVwWj8FQmkYH6uVUuBn38NE 4yD1rz2/yk7YsGjro492TnLcFAdebboqR4udh8od9kGCeEyjop8ANjYfVMRLWzrB ykCF5hRahsvNkziEss1H6E+Mkb2n0+GNcrDYJxcjpnMNK9OxUzA9rstzDMIx6ryt F7hD6j5gzo18X2whxeBv3iRzKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCr6o6C+ P7AfEBnB075H3wHoKlMLMB8GA1UdIwQYMBaAFJNo6klPUR4gwdX3PdU549hGW9qc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTBCNy83NUFCQzlGQzEz QUUxMUVCQkM3QzY4MTVDNEY5QUUwMi9rMmpxU1U5UkhpREIxZmM5MVRuajJFWmIy cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2syanFTVTlSSGlEQjFmYzkxVG5qMkVaYjJwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDEwQjcvNzVBQkM5RkMxM0FFMTFFQkJDN0M2ODE1QzRGOUFFMDIvQjA5N0M4QjAx M0IxMTFFQjg4NjQ2ODFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlsowDwQCAAIwCQMHACABDfOJgDANBgkqhkiG9w0BAQsF AAOCAQEAacrRhbDUdRQAuyMbnrgkdgdQpnFfmys9mKByHqdOYip0XJjyAhk2unmW mBM0LKogMrBLHe02yPDaAy0WhjyUUNpbOkQhkpIzA5L6AKtfwt5mltYUNbjgyteq OPlQpienQGbYfCSP25uRRO9PGd2kntBFkLayjl2v3t1HTTxEyItWnFpKspuKuRdp uUwaK5mHVGeMd50tZXzWYgBe8b+t7XYDDjMP2bqI3gl+MdzjLAiMPAFFUi2d4/5Z IXjG1+ZZYiIMtVfMuJFxz4sbLGIxwPz5UxoCxOV+q58iOKBAsB8dprp/5zmX0TME X95FrV3oUXt9l4722aiExrBP4ow+bw== -----END CERTIFICATE-----Generated at Thu Jun 19 23:57:33 2025 by rpki-client