$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa File: B55EC19EAC2B11E996F6E511C4F9AE02.roa (raw, json) Hash identifier: Kmbnqjt+FsbQjmxP1orKor9zYnpCPWPxfhoKQqbWYu0= Subject key identifier: 43:26:28:36:4F:C3:76:99:30:CF:6C:91:47:6E:DC:98:AE:B0:8B:91 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0E1F Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa Signing time: Wed 18 Jun 2025 18:21:06 +0000 ROA not before: Wed 18 Jun 2025 18:21:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45668 IP address blocks: 103.232.48.0/22 maxlen: 24 110.74.128.0/19 maxlen: 24 110.74.160.0/19 maxlen: 24 2403:bc00::/32 maxlen: 32 2403:bc00:1::/48 maxlen: 48 2403:bc00:adc::/48 maxlen: 48 2403:bc00:7fff::/48 maxlen: 48 2403:bc00:8000::/48 maxlen: 48 2403:bc00:8001::/48 maxlen: 48 2403:bc00:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3615 (0xe1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9, serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Jun 18 18:21:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68530392-1ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ee:fb:2a:b7:7c:02:4a:88:08:3b:68:75:fb: 2e:1e:43:2a:fa:35:96:8b:0c:ad:d3:cc:56:a9:3c: da:63:ca:db:be:89:95:47:f8:a6:35:48:6a:c9:c4: 81:bc:80:27:b5:d6:ac:73:f7:51:e9:85:9a:a7:5b: e8:47:e2:b5:73:66:95:1e:ba:6f:6f:44:c8:8b:c2: 53:12:ad:82:fd:df:a3:b5:32:3a:4c:56:47:f8:0c: 4c:59:65:e2:35:ec:33:e9:fd:50:9f:93:91:9a:8f: a9:89:98:81:9e:1e:04:1e:81:a5:03:95:31:09:92: 9c:90:d6:85:58:08:27:74:44:26:ad:fe:b2:27:0d: bd:3a:73:23:73:cd:ff:f8:35:f5:62:72:5f:7e:af: bb:96:7d:0b:8f:5f:34:89:00:67:28:05:52:55:4d: cd:cb:f4:e4:8b:ea:10:10:5a:8d:bf:2d:57:e0:55: 93:79:43:f3:85:b4:60:35:1d:e2:13:98:17:ee:54: 27:f6:0f:87:dc:81:3c:82:2f:20:11:f0:f1:3d:f6: d1:0f:9e:91:d6:e5:f2:ef:be:8f:b3:ef:89:b9:cd: cc:69:a1:64:57:10:0e:ee:da:d0:c0:01:1e:89:51: c5:08:8b:53:2a:f9:30:de:7d:18:70:f9:af:81:55: 4f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:26:28:36:4F:C3:76:99:30:CF:6C:91:47:6E:DC:98:AE:B0:8B:91 X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.48.0/22 110.74.128.0/18 IPv6: 2403:bc00::/32 Signature Algorithm: sha256WithRSAEncryption b9:fc:ca:76:8a:54:38:5b:60:29:a7:a8:90:8a:c4:0d:48:d5: 1e:14:61:fb:68:1d:f6:a7:82:50:0a:6f:78:7c:fc:d3:1f:70: bd:ed:5b:9f:30:8a:0a:3f:b0:bb:d8:6d:b5:2a:96:d2:f7:56: 14:06:c1:24:40:43:31:d4:5f:c4:dc:0c:a7:dd:15:c4:d6:1e: ae:e9:1d:e1:62:0e:a1:12:cd:31:3b:1d:c3:d6:43:52:1d:59: 63:1a:ab:6a:19:0b:88:bf:fc:4f:1e:d9:82:2b:b1:94:f5:95: 60:2c:a4:b4:14:44:da:27:c8:7c:68:1f:ee:50:2d:45:2d:0e: 2d:84:f0:88:d1:43:13:74:02:23:1f:81:06:1f:52:0b:10:15: 15:58:64:9e:ba:36:3a:b5:43:ab:41:4e:a0:59:a0:23:2b:25: 77:67:7c:4d:bf:78:0b:1c:0b:8b:83:e3:d6:54:d8:ee:4e:07: 42:da:7d:f4:d3:42:9b:b7:e9:b3:64:19:45:55:3b:28:d2:2b: 7f:a4:a5:90:2b:76:a9:2a:f8:cf:62:72:de:68:a1:fb:67:e4: 74:2c:39:aa:24:c2:59:df:32:a4:49:e0:0f:ef:c0:76:e7:6e: 1d:7e:61:d3:9d:58:cb:ba:81:2d:b1:78:34:d6:a9:a0:1d:30: 82:e9:ba:09 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjUwNjE4MTgyMTA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMDM5Mi0xY2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO77Krd8AkqICDtodfsuHkMq+jWWiwyt08xWqTzaY8rbvomVR/imNUhqycSB vIAntdasc/dR6YWap1voR+K1c2aVHrpvb0TIi8JTEq2C/d+jtTI6TFZH+AxMWWXi Newz6f1Qn5ORmo+piZiBnh4EHoGlA5UxCZKckNaFWAgndEQmrf6yJw29OnMjc83/ +DX1YnJffq+7ln0Lj180iQBnKAVSVU3Ny/Tki+oQEFqNvy1X4FWTeUPzhbRgNR3i E5gX7lQn9g+H3IE8gi8gEfDxPfbRD56R1uXy776Ps++Juc3MaaFkVxAO7trQwAEe iVHFCItTKvkw3n0YcPmvgVVP5wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEMmKDZP w3aZMM9skUdu3JiusIuRMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU3QzkvQzM1OUU3NUVBQzE5MTFFOTgzRjJGQzYyQzRGOUFFMDIvQjU1RUMxOUVB QzJCMTFFOTk2RjZFNTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn6DADBAZuSoAwDQQCAAIwBwMFACQDvAAwDQYJKoZIhvcN AQELBQADggEBALn8ynaKVDhbYCmnqJCKxA1I1R4UYftoHfanglAKb3h8/NMfcL3t W58wigo/sLvYbbUqltL3VhQGwSRAQzHUX8TcDKfdFcTWHq7pHeFiDqESzTE7HcPW Q1IdWWMaq2oZC4i//E8e2YIrsZT1lWAspLQURNonyHxoH+5QLUUtDi2E8IjRQxN0 AiMfgQYfUgsQFRVYZJ66Njq1Q6tBTqBZoCMrJXdnfE2/eAscC4uD49ZU2O5OB0La ffTTQpu36bNkGUVVOyjSK3+kpZArdqkq+M9ict5ooftn5HQsOaokwlnfMqRJ4A/v wHbnbh1+YdOdWMu6gS2xeDTWqaAdMILpugk= -----END CERTIFICATE-----Generated at Thu Jun 19 01:14:06 2025 by rpki-client