$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B5D4A156598B11EC82C8685CC4F9AE02.roa File: B5D4A156598B11EC82C8685CC4F9AE02.roa (raw, json) Hash identifier: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0= Subject key identifier: E3:C0:20:36:34:80:14:C0:56:14:4D:39:3F:01:1E:F6:72:B4:AC:98 Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E06 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B5D4A156598B11EC82C8685CC4F9AE02.roa Signing time: Thu 22 May 2025 18:21:10 +0000 ROA not before: Thu 22 May 2025 18:21:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23860 IP address blocks: 103.215.224.0/22 maxlen: 24 157.119.104.0/22 maxlen: 24 2400:3840::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3590 (0xe06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: May 22 18:21:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f6b15-e4f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ec:06:03:8f:b7:20:06:3a:c2:8d:40:26:7d: 78:39:83:2a:78:d2:98:19:1d:38:ed:2d:32:f7:0f: 10:fd:df:a6:aa:42:dd:fb:6e:6b:76:1b:ba:80:a0: b9:36:9a:5e:c2:f0:95:45:11:d7:56:fb:da:0a:b3: 4b:ea:4b:08:f2:ca:6e:36:24:a8:d3:b9:39:4b:8e: f0:9d:73:9c:a2:f3:db:9f:b9:3f:90:24:57:86:d0: e8:4e:c2:9f:ec:9c:e5:69:ca:04:9e:98:fb:88:d9: b0:37:15:d7:32:bd:75:cd:69:3e:1b:b5:3f:23:a2: 61:6c:25:a2:56:44:41:36:54:f7:2a:41:6d:fc:33: 67:9e:18:ee:1d:d6:96:f0:dc:f3:56:a7:cb:14:b6: 6d:84:fb:09:ac:10:13:02:ac:c0:96:63:18:c4:a0: e1:89:6b:7d:28:60:aa:8e:ae:d5:fa:b2:b3:54:b2: e9:11:1a:ba:7d:f0:b4:b4:4f:71:1f:53:9b:91:81: 5f:5d:d8:0a:11:d2:62:86:f7:ad:6c:8b:03:82:f2: f8:bc:85:ec:4b:e7:4e:a3:00:1a:64:11:8b:c0:c4: fb:77:5d:e0:01:3f:2d:40:48:69:99:7f:3d:71:fb: 01:03:fc:54:bd:d6:a4:5f:08:7c:4d:e9:46:c5:5d: ec:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C0:20:36:34:80:14:C0:56:14:4D:39:3F:01:1E:F6:72:B4:AC:98 X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B5D4A156598B11EC82C8685CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.224.0/22 157.119.104.0/22 IPv6: 2400:3840::/32 Signature Algorithm: sha256WithRSAEncryption 82:6b:05:b6:83:ce:f5:73:2c:93:2f:6c:58:42:ec:50:ba:1b: 0c:d8:9a:84:0b:d2:20:3e:99:b6:09:b4:fa:28:c1:fa:9b:6f: c8:16:b9:d3:c4:fb:5a:01:b6:67:99:e4:f4:a5:ab:52:8d:d8: c0:44:89:45:24:66:ee:ac:6f:d9:1c:48:6c:ec:ce:94:2c:92: e5:06:17:bf:85:e7:e5:20:f4:d2:ab:93:f4:14:ed:ba:9d:49: cd:9f:0e:f0:2f:73:93:7d:3f:dc:d5:23:8e:7c:24:2f:b4:e7: b5:61:9f:fb:ce:ce:51:c2:57:93:f9:03:ef:1a:3e:fc:ce:4e: cb:4a:6b:9b:1c:ae:b7:24:e8:40:27:f6:64:17:8c:b5:89:5b: c6:f5:8d:56:e5:a4:e7:07:6d:43:b9:74:48:a0:da:e1:63:01: ac:05:5c:cf:70:94:49:db:7a:20:93:89:35:d8:16:4a:ed:bf: 6f:4b:4c:11:37:80:3b:da:a6:f6:3b:c0:b5:00:b8:34:57:50: 17:1d:30:fb:75:78:45:84:ee:61:8b:ee:43:76:f0:e7:f7:6b: 0d:5a:1f:82:4d:e1:d6:d0:f8:04:cc:05:2c:0b:b7:46:06:95: 61:c6:d5:d0:c5:9e:7f:00:df:35:8c:81:68:3d:59:f8:f1:d3: 29:cf:ee:47 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUwNTIyMTgyMTEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmNmIxNS1lNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuwGA4+3IAY6wo1AJn14OYMqeNKYGR047S0y9w8Q/d+mqkLd+25rdhu6gKC5 NppewvCVRRHXVvvaCrNL6ksI8spuNiSo07k5S47wnXOcovPbn7k/kCRXhtDoTsKf 7JzlacoEnpj7iNmwNxXXMr11zWk+G7U/I6JhbCWiVkRBNlT3KkFt/DNnnhjuHdaW 8NzzVqfLFLZthPsJrBATAqzAlmMYxKDhiWt9KGCqjq7V+rKzVLLpERq6ffC0tE9x H1ObkYFfXdgKEdJihvetbIsDgvL4vIXsS+dOowAaZBGLwMT7d13gAT8tQEhpmX89 cfsBA/xUvdakXwh8TelGxV3sxQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOPAIDY0 gBTAVhRNOT8BHvZytKyYMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFERjQvRjQxRDFDMThCMzhFMTFFOTg2MjgyQjczQzRGOUFFMDIvQjVENEExNTY1 OThCMTFFQzgyQzg2ODVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1+ADBAKdd2gwDQQCAAIwBwMFACQAOEAwDQYJKoZIhvcN AQELBQADggEBAIJrBbaDzvVzLJMvbFhC7FC6GwzYmoQL0iA+mbYJtPoowfqbb8gW udPE+1oBtmeZ5PSlq1KN2MBEiUUkZu6sb9kcSGzszpQskuUGF7+F5+Ug9NKrk/QU 7bqdSc2fDvAvc5N9P9zVI458JC+057Vhn/vOzlHCV5P5A+8aPvzOTstKa5scrrck 6EAn9mQXjLWJW8b1jVblpOcHbUO5dEig2uFjAawFXM9wlEnbeiCTiTXYFkrtv29L TBE3gDvapvY7wLUAuDRXUBcdMPt1eEWE7mGL7kN28Of3aw1aH4JN4dbQ+ATMBSwL t0YGlWHG1dDFnn8A3zWMgWg9Wfjx0ynP7kc= -----END CERTIFICATE-----Generated at Thu Nov 6 00:50:50 2025 by rpki-client