$ rpki-client -vvf rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/914E7A440FE611EC8DD2020EC4F9AE02.roa File: 914E7A440FE611EC8DD2020EC4F9AE02.roa (raw, json) Hash identifier: +BX7RaNNlsglW/BB60o8n67yb/21GqaNOP3+xpToWWc= Subject key identifier: 75:3C:28:9E:92:78:E9:70:5B:BD:DA:3A:AC:B3:43:19:1C:73:59:A2 Certificate issuer: /CN=A91471DA/serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Certificate serial: 04FF Authority key identifier: E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/914E7A440FE611EC8DD2020EC4F9AE02.roa Signing time: Sat 07 Jun 2025 00:15:46 +0000 ROA not before: Sat 07 Jun 2025 00:15:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147011 IP address blocks: 103.172.250.0/23 maxlen: 24 2001:df7:7f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471DA, serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Validity Not Before: Jun 7 00:15:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=684384b2-ebd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:10:37:05:91:77:d9:cd:46:06:f9:00:be:61: 92:3c:ce:03:de:4c:9b:b6:8a:b1:3a:be:85:a0:45: ae:6a:22:24:43:38:9c:93:35:de:e0:4f:11:fb:e7: 36:53:79:5f:c9:71:1b:69:f9:07:d7:cf:02:8e:73: 28:ec:87:e9:15:1a:e5:94:f3:cd:1e:c2:20:bb:92: 9b:74:13:90:24:a2:f9:7c:bd:29:63:a6:11:70:de: c1:24:e9:85:79:2a:5b:78:dc:47:f7:da:42:87:e7: d8:e0:58:6f:0a:bb:a1:59:0e:f8:86:85:72:3b:f8: ac:79:a5:2c:fa:46:e5:76:3f:6f:48:6f:dc:09:b3: f1:aa:43:04:ec:d3:57:99:61:6a:ed:04:7b:e4:a9: f2:b9:26:3d:f0:93:a9:9a:41:ab:56:a3:5b:fc:1f: 18:d9:22:54:a4:25:10:15:e8:a9:0c:f5:d1:cd:fe: a4:e7:96:5c:9a:7b:1e:08:b8:ae:30:57:91:6b:f4: 86:9a:d3:df:0c:5c:17:5a:e3:df:07:6d:52:ca:2d: ea:b9:58:ff:c1:93:c3:5c:1f:9e:44:08:d0:d0:7e: c2:15:5a:7f:01:46:63:d0:9f:42:d7:63:80:52:e0: 5e:89:f0:6b:e8:2e:51:b1:96:df:d0:01:40:e2:16: d7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3C:28:9E:92:78:E9:70:5B:BD:DA:3A:AC:B3:43:19:1C:73:59:A2 X509v3 Authority Key Identifier: keyid:E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/914E7A440FE611EC8DD2020EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.250.0/23 IPv6: 2001:df7:7f80::/48 Signature Algorithm: sha256WithRSAEncryption 4a:42:6a:e4:6d:94:93:63:d0:bb:33:51:68:48:50:ef:d6:eb: 8c:89:52:19:cc:1b:e6:2d:05:76:ed:37:56:64:02:1f:e3:19: 17:1c:a6:dc:53:35:84:b8:19:28:17:49:05:a2:9f:3b:0a:4e: 5e:e4:ae:ab:ec:53:39:52:a3:26:4b:2e:d3:e8:bb:1f:f3:b0: 68:b3:43:a8:34:86:f4:a5:38:84:23:62:b1:c7:0f:51:73:7b: 10:da:fd:a1:e5:1c:1d:fd:37:60:11:b4:22:e3:f8:aa:5c:b4: c6:97:02:07:c7:3f:be:c0:c3:3d:38:9a:fa:88:83:ba:7a:c6: 2f:5b:cd:04:04:f9:e0:0d:97:0e:de:55:35:df:f0:6f:90:e5: 2c:4e:fa:07:4f:cc:76:25:8d:a3:e1:32:c8:9d:41:f5:fb:42: 55:00:ff:fe:52:db:be:fd:66:31:5d:22:8a:65:7a:51:1c:89: 34:f6:b4:bd:5e:9b:e8:b1:b7:f4:3f:9f:3d:56:43:40:56:c6: 7a:b3:48:8c:91:67:35:79:99:b4:ce:f2:dc:20:8a:9c:05:c3: a0:ea:41:f9:8f:ec:d9:ce:a9:c7:1e:72:f2:97:8e:04:1e:93: cf:40:17:44:a4:ae:a6:bd:89:7a:95:bb:83:b4:3c:76:53:6b: 07:59:90:ee -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxREExMTAvBgNVBAUTKEUyNEQwOTU0MTA2MkM2MDhCRTM2M0ZGNjE5Q0NCODQ0 NEREQzNDMkYwHhcNMjUwNjA3MDAxNTQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzODRiMi1lYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBA3BZF32c1GBvkAvmGSPM4D3kybtoqxOr6FoEWuaiIkQzickzXe4E8R++c2 U3lfyXEbafkH188CjnMo7IfpFRrllPPNHsIgu5KbdBOQJKL5fL0pY6YRcN7BJOmF eSpbeNxH99pCh+fY4FhvCruhWQ74hoVyO/iseaUs+kbldj9vSG/cCbPxqkME7NNX mWFq7QR75KnyuSY98JOpmkGrVqNb/B8Y2SJUpCUQFeipDPXRzf6k55ZcmnseCLiu MFeRa/SGmtPfDFwXWuPfB21Syi3quVj/wZPDXB+eRAjQ0H7CFVp/AUZj0J9C12OA UuBeifBr6C5RsZbf0AFA4hbXGwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHU8KJ6S eOlwW73aOqyzQxkcc1miMB8GA1UdIwQYMBaAFOJNCVQQYsYIvjY/9hnMuERN3Dwv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzFEQS81MUQ1Nzk0ODBG RTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhnaS1Oal8yR2N5NFJFM2NQ QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrMEpWQkJpeGdpLU5qXzJHY3k0UkUzY1BDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDcxREEvNTFENTc5NDgwRkUyMTFFQ0E0RERDOTA5QzRGOUFFMDIvOTE0RTdBNDQw RkU2MTFFQzhERDIwMjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrPowDwQCAAIwCQMHACABDfd/gDANBgkqhkiG9w0BAQsF AAOCAQEASkJq5G2Uk2PQuzNRaEhQ79brjIlSGcwb5i0Fdu03VmQCH+MZFxym3FM1 hLgZKBdJBaKfOwpOXuSuq+xTOVKjJksu0+i7H/OwaLNDqDSG9KU4hCNisccPUXN7 ENr9oeUcHf03YBG0IuP4qly0xpcCB8c/vsDDPTia+oiDunrGL1vNBAT54A2XDt5V Nd/wb5DlLE76B0/MdiWNo+EyyJ1B9ftCVQD//lLbvv1mMV0iimV6URyJNPa0vV6b 6LG39D+fPVZDQFbGerNIjJFnNXmZtM7y3CCKnAXDoOpB+Y/s2c6pxx5y8peOBB6T z0AXRKSupr2JepW7g7Q8dlNrB1mQ7g== -----END CERTIFICATE-----Generated at Thu Jun 19 11:03:21 2025 by rpki-client