$ rpki-client -vvf rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa File: 7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa (raw, json) Hash identifier: FEnoRntS5ceHXsonYKwSghY2N6gue3AsK8rWW1Gq5vk= Subject key identifier: 10:6C:E8:D1:64:58:95:DB:ED:38:16:8A:A2:BD:CB:35:A3:72:46:7E Certificate issuer: /CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Certificate serial: 017F Authority key identifier: 2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa Signing time: Wed 21 May 2025 03:53:54 +0000 ROA not before: Wed 21 May 2025 03:53:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142036 IP address blocks: 103.114.160.0/24 maxlen: 24 103.114.161.0/24 maxlen: 24 103.114.162.0/24 maxlen: 24 103.114.163.0/24 maxlen: 24 2402:d0c0:10::/48 maxlen: 48 2402:d0c0:11::/48 maxlen: 48 2402:d0c0:12::/48 maxlen: 48 2402:d0c0:13::/48 maxlen: 48 2402:d0c0:14::/48 maxlen: 48 2402:d0c0:15::/48 maxlen: 48 2402:d0c0:16::/48 maxlen: 48 2402:d0c0:17::/48 maxlen: 48 2402:d0c0:18::/48 maxlen: 48 2402:d0c0:19::/48 maxlen: 48 2402:d0c0:20::/48 maxlen: 48 2402:d0c0:21::/48 maxlen: 48 2402:d0c0:22::/48 maxlen: 48 2402:d0c0:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91479A7, serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Validity Not Before: May 21 03:53:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d4e52-f471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:80:78:98:12:c0:5a:cc:59:07:bb:74:1a:31: 48:c0:6f:07:43:86:3e:86:8d:af:cf:df:53:cd:3b: d6:24:a0:69:52:38:60:9e:31:03:7c:1d:51:13:08: fe:a6:0b:51:ed:51:ec:b3:b3:80:45:ac:31:4c:3d: ea:ab:d3:3c:df:36:b3:9c:26:b4:4a:a2:15:7a:9f: 59:7e:e2:66:ea:af:53:c3:43:eb:7c:7b:ac:3c:6a: ac:b9:25:9e:0b:ea:1c:0c:d2:d5:a1:b4:93:6a:a4: 7f:a9:a5:c6:bd:a4:e4:c5:5c:b0:df:d2:f5:e2:10: 78:94:95:a8:92:88:b2:8b:c7:a7:41:5a:5d:3a:92: 4d:3a:ed:32:55:0c:b8:da:9a:cb:45:3b:76:4c:ef: e9:21:a5:d6:8f:ea:3c:37:6d:e6:c3:5e:51:18:be: 88:60:8e:dd:cf:d6:ff:5d:6f:96:30:98:02:01:e5: 4f:b6:5f:03:9a:c5:5a:72:3c:29:39:28:c3:ce:30: 9a:e9:0f:ac:54:59:9e:dc:5d:78:fc:0c:37:6d:ae: b3:b6:5a:e6:87:21:dc:df:b9:cb:23:6f:05:98:da: 1c:56:7b:cf:ab:92:48:1a:b5:a7:ad:f1:79:1a:79: 3f:85:c6:66:8a:36:5c:a0:f7:5c:ca:a3:07:5c:0b: a8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6C:E8:D1:64:58:95:DB:ED:38:16:8A:A2:BD:CB:35:A3:72:46:7E X509v3 Authority Key Identifier: keyid:2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.160.0/22 IPv6: 2402:d0c0:10::-2402:d0c0:19:ffff:ffff:ffff:ffff:ffff 2402:d0c0:20::/46 Signature Algorithm: sha256WithRSAEncryption 55:8c:fe:28:df:c8:2d:35:6b:fe:2c:3b:5d:91:af:7e:d9:dc: 15:ac:80:7e:6a:05:41:0a:35:59:e7:05:bd:43:65:9d:d8:a0: 22:45:ad:a4:20:42:c9:f3:5c:8a:4f:a2:6b:4b:b1:48:3c:5f: 33:b0:e4:b8:66:a3:36:11:78:c2:f5:a2:b1:9a:d7:ed:d6:73: 51:72:01:d9:34:6e:a0:be:2c:1a:ac:83:7c:d9:93:6a:d2:c2: dc:4a:af:b8:d9:7f:d3:18:f0:21:81:14:b2:45:fc:a8:03:63: 2f:e0:29:ef:7c:2f:9b:db:c0:ba:68:38:6b:85:4e:dd:5a:3a: 87:22:f6:4c:48:a8:a4:df:6e:96:31:96:bb:94:8f:5f:0b:58: 9a:0f:87:fd:06:a9:0b:8a:7d:9f:14:b8:85:11:c0:41:60:cf: f8:97:ca:01:db:eb:fc:b6:46:d2:89:20:fe:99:72:66:8d:ab: fe:67:f0:69:0c:2e:68:54:99:0d:c6:42:b2:1d:77:97:cc:45: 3a:2c:7a:4a:c0:f8:94:f4:c8:00:90:8c:31:78:e1:05:1d:02: 41:fb:8e:af:eb:4a:cc:0c:e1:71:8a:1c:1a:b6:ef:fe:74:4f: 54:94:e4:cd:d1:c3:e5:f7:0e:9a:ed:2b:7a:b8:2f:b9:73:c4: ea:4b:81:b3 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc5QTcxMTAvBgNVBAUTKDJGMjQ3N0VCQkU1NkIwRDdBMEFENDRDMjcxN0RCNUZF MDgwRENBRTgwHhcNMjUwNTIxMDM1MzU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNGU1Mi1mNDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoB4mBLAWsxZB7t0GjFIwG8HQ4Y+ho2vz99TzTvWJKBpUjhgnjEDfB1REwj+ pgtR7VHss7OARawxTD3qq9M83zaznCa0SqIVep9ZfuJm6q9Tw0PrfHusPGqsuSWe C+ocDNLVobSTaqR/qaXGvaTkxVyw39L14hB4lJWokoiyi8enQVpdOpJNOu0yVQy4 2prLRTt2TO/pIaXWj+o8N23mw15RGL6IYI7dz9b/XW+WMJgCAeVPtl8DmsVacjwp OSjDzjCa6Q+sVFme3F14/Aw3ba6ztlrmhyHc37nLI28FmNocVnvPq5JIGrWnrfF5 Gnk/hcZmijZcoPdcyqMHXAuoJwIDAQABo4ICujCCArYwHQYDVR0OBBYEFBBs6NFk WJXb7TgWiqK9yzWjckZ+MB8GA1UdIwQYMBaAFC8kd+u+VrDXoK1EwnF9tf4IDcro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzlBNy84QkE5NjNENDQz RjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NOZWdyVVRDY1gyMV9nZ055 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5UjM2NzVXc05lZ3JVVENjWDIxX2dnTnl1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc5QTcvOEJBOTYzRDQ0M0Y1MTFFRTlBOEU0RTE2QzRGOUFFMDIvN0VGMEIwQUM0 RDlCMTFFRUIwMTlBMzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMAwEAgABMAYDBAJncqAwIwQCAAIwHTASAwcEJALQwAAQAwcBJALQwAAYAwcC JALQwAAgMA0GCSqGSIb3DQEBCwUAA4IBAQBVjP4o38gtNWv+LDtdka9+2dwVrIB+ agVBCjVZ5wW9Q2Wd2KAiRa2kIELJ81yKT6JrS7FIPF8zsOS4ZqM2EXjC9aKxmtft 1nNRcgHZNG6gviwarIN82ZNq0sLcSq+42X/TGPAhgRSyRfyoA2Mv4CnvfC+b28C6 aDhrhU7dWjqHIvZMSKik326WMZa7lI9fC1iaD4f9BqkLin2fFLiFEcBBYM/4l8oB 2+v8tkbSiSD+mXJmjav+Z/BpDC5oVJkNxkKyHXeXzEU6LHpKwPiU9MgAkIwxeOEF HQJB+46v60rMDOFxihwatu/+dE9UlOTN0cPl9w6a7St6uC+5c8TqS4Gz -----END CERTIFICATE-----Generated at Thu Jun 19 03:48:03 2025 by rpki-client