$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa File: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (raw, json) Hash identifier: oClBIXKP+EDIKR3fw5dWC7oe0B/VfV56q8PacjPvcqA= Subject key identifier: A8:A2:A0:9A:C9:A6:68:B5:16:05:99:34:A1:86:43:67:0A:0D:D0:92 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0370 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa Signing time: Tue 03 Jun 2025 01:55:06 +0000 ROA not before: Tue 03 Jun 2025 01:55:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136520 IP address blocks: 103.91.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 880 (0x370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Jun 3 01:55:06 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=683e55fa-aef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:08:49:23:41:9c:85:86:77:f7:06:17:01:55: 60:31:1d:a3:bd:9f:37:65:f1:03:8a:cc:3c:8a:40: 15:84:ba:9d:48:29:66:3c:73:ed:4b:e4:37:a0:5a: 8d:30:50:a0:14:2d:76:70:e6:7d:b4:8b:29:89:ec: 87:d0:c4:65:8b:c3:51:51:5e:d0:87:f7:c0:f7:f0: ad:79:18:5b:9d:2b:9b:a1:7d:64:67:50:82:02:38: 02:cd:0d:b5:4e:5f:36:ed:46:4a:66:41:24:c3:36: 11:00:f7:f4:ec:1c:31:0e:1a:60:75:ab:fe:9a:6e: cd:5d:8d:d8:43:8f:78:74:c8:e7:e4:e1:cc:3f:2f: 45:7e:af:bc:05:e1:be:41:14:e7:0f:17:f5:66:34: 67:37:1f:05:2c:d0:be:09:ee:92:9d:11:3e:17:e9: 68:53:9f:05:02:55:c2:6a:ad:54:59:21:f8:c0:40: 52:31:5a:70:d0:37:fc:90:d0:a9:70:82:3c:8e:a0: a3:b9:e5:1d:b4:0e:fe:7f:2a:18:24:d7:0e:07:20: b4:a2:4c:9e:94:53:54:d1:82:54:fb:f6:63:30:4f: 69:44:09:80:ad:98:35:40:f1:94:e8:56:67:0a:57: 3e:aa:cd:84:a4:41:af:b3:f4:ef:6f:a6:05:b4:32: 97:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A2:A0:9A:C9:A6:68:B5:16:05:99:34:A1:86:43:67:0A:0D:D0:92 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.194.0/24 Signature Algorithm: sha256WithRSAEncryption 44:65:91:c8:c7:3a:31:9e:8a:d8:a4:91:a9:3c:bb:b3:f6:eb: 90:10:88:64:14:b8:20:d2:4b:29:26:d9:5a:3d:e3:25:1c:47: e5:f9:f3:f1:1f:98:23:28:b9:1c:28:5a:87:10:39:ef:71:ab: 59:10:9b:d3:c8:cb:ca:dd:d7:41:63:6f:7c:cc:bc:bc:07:3e: 8c:e1:74:ae:75:08:3e:06:a3:69:c2:73:14:d1:f7:89:a2:fa: e0:b8:2b:c7:b3:35:c5:d1:fc:27:d7:97:4e:b5:94:26:ce:dd: 94:a7:78:59:5f:7e:a4:a2:cb:09:1b:84:1b:26:a6:fd:64:a1: 27:8d:e1:e9:ae:88:dd:36:e7:f1:84:82:33:d8:ea:e4:ea:7c: 40:cf:6b:03:96:0d:63:08:0b:cb:19:15:73:53:76:29:0f:f2: 48:ce:cc:aa:c2:65:00:12:af:a1:55:80:20:04:3d:16:95:db: c5:2a:88:e0:4b:7f:d1:69:1a:bb:22:a3:f7:ff:b6:50:80:b5: a2:ed:2e:49:b4:28:6d:d4:02:e6:54:fb:d2:82:fe:d6:10:24: a0:b1:76:43:20:43:7a:47:47:d5:4d:8f:39:fe:9c:f3:54:63: fb:62:37:9c:ca:d4:31:84:60:fb:ce:7e:12:c4:ab:94:6a:4c: 36:e1:65:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUwNjAzMDE1NTA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNTVmYS1hZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAhJI0GchYZ39wYXAVVgMR2jvZ83ZfEDisw8ikAVhLqdSClmPHPtS+Q3oFqN MFCgFC12cOZ9tIspieyH0MRli8NRUV7Qh/fA9/CteRhbnSuboX1kZ1CCAjgCzQ21 Tl827UZKZkEkwzYRAPf07BwxDhpgdav+mm7NXY3YQ494dMjn5OHMPy9Ffq+8BeG+ QRTnDxf1ZjRnNx8FLNC+Ce6SnRE+F+loU58FAlXCaq1UWSH4wEBSMVpw0Df8kNCp cII8jqCjueUdtA7+fyoYJNcOByC0okyelFNU0YJU+/ZjME9pRAmArZg1QPGU6FZn Clc+qs2EpEGvs/Tvb6YFtDKX1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKiioJrJ pmi1FgWZNKGGQ2cKDdCSMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5NkEvMjg3ODVGNjBCRkJGMTFFQ0FFRDQ4QzcxQzRGOUFFMDIvMkRFNEM4QUE5 QjYxMTFFRjk5QTk3QjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnW8IwDQYJKoZIhvcNAQELBQADggEBAERlkcjHOjGeitik kak8u7P265AQiGQUuCDSSykm2Vo94yUcR+X58/EfmCMouRwoWocQOe9xq1kQm9PI y8rd10Fjb3zMvLwHPozhdK51CD4Go2nCcxTR94mi+uC4K8ezNcXR/CfXl061lCbO 3ZSneFlffqSiywkbhBsmpv1koSeN4emuiN025/GEgjPY6uTqfEDPawOWDWMIC8sZ FXNTdikP8kjOzKrCZQASr6FVgCAEPRaV28UqiOBLf9FpGrsio/f/tlCAtaLtLkm0 KG3UAuZU+9KC/tYQJKCxdkMgQ3pHR9VNjzn+nPNUY/tiN5zK1DGEYPvOfhLEq5Rq TDbhZcs= -----END CERTIFICATE-----Generated at Fri Jun 20 20:29:47 2025 by rpki-client