$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa File: B856D46C3B9611F0B2363C74C4F9AE02.roa (raw, json) Hash identifier: h/qcaSqjY8kiFIGM/MMPsHobkpAe/EdAmdDLkkpjgjM= Subject key identifier: 85:36:1A:71:8A:62:19:34:76:F4:64:EE:BA:8A:A0:6C:4F:90:23:BA Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 01DD Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa Signing time: Fri 13 Jun 2025 03:39:21 +0000 ROA not before: Fri 13 Jun 2025 03:39:21 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 395793 IP address blocks: 103.101.222.0/24 maxlen: 24 103.101.223.0/24 maxlen: 24 113.212.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Jun 13 03:39:21 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684b9d69-6847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:d8:f2:97:b9:49:e6:10:71:3c:dd:68:2d: 80:5c:de:c1:09:46:56:d7:b2:85:5e:2b:94:ab:ff: 5b:24:f2:4b:93:9a:48:39:c8:94:d6:b5:63:11:b2: fa:a0:c9:93:56:4e:d6:3c:6f:8c:32:41:ff:46:4f: 2c:c3:e8:e2:09:fb:b1:ee:3e:8f:05:ab:0b:64:9b: 52:08:2f:45:98:c4:31:0c:d9:e3:d3:3a:94:2e:ff: 73:a3:f7:81:5d:33:16:7d:b8:c6:e5:f7:27:ab:93: 9b:b7:82:39:5f:94:6c:08:39:6f:17:4a:09:bf:d0: 8e:cd:3e:f2:ef:fa:42:91:ac:57:24:ca:9d:b4:6f: 3d:08:54:53:57:6e:7c:7c:2e:a5:ab:e2:57:01:b5: d3:53:05:ef:48:ac:a3:3a:10:ca:fe:07:60:d2:b7: 4b:f4:5f:df:c7:f0:30:df:38:f8:61:6e:86:69:06: 4e:12:19:d2:6b:2a:03:a6:bb:b7:3f:3f:b2:ad:7e: f3:12:84:a5:81:e8:d6:ba:d2:35:c4:6b:4f:5c:f0: 0f:ef:e3:67:6c:2f:89:22:8d:8b:74:d8:af:51:f6: 4f:92:0c:7c:39:57:45:e9:42:c9:d6:b8:b3:21:35: d1:32:ac:90:eb:88:10:c7:b8:c5:08:c2:61:81:40: e4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:36:1A:71:8A:62:19:34:76:F4:64:EE:BA:8A:A0:6C:4F:90:23:BA X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.222.0/23 113.212.89.0/24 Signature Algorithm: sha256WithRSAEncryption 93:0f:ba:15:ec:dc:e9:d2:0c:bf:4b:76:44:d2:f3:1a:a7:0f: c8:b3:39:52:b7:bd:ff:15:d7:9f:8b:7b:96:e8:13:64:6c:8e: 8b:0e:94:c1:37:d1:aa:cf:d1:4b:df:af:6a:c1:fb:3b:45:66: 1c:09:c1:d7:38:00:e2:48:88:00:98:ce:f6:4d:5e:16:f9:c7: 61:75:60:75:26:ab:60:66:9c:27:95:e1:2f:48:0b:4a:d0:18: cb:2b:a1:ee:3d:74:e0:ba:e4:e6:c9:b8:ed:9a:71:42:1f:e4: d0:1e:fc:20:a2:46:89:4c:4a:7a:89:03:a9:ed:06:b5:f4:77: 84:1b:78:f7:ee:e4:8f:12:ba:31:c0:27:60:39:7a:89:c9:4e: c5:b5:c1:c9:67:bc:10:24:5b:37:e5:56:ab:2e:df:03:02:17: c1:e6:d4:a6:d6:e6:76:43:4c:17:67:b0:5d:3d:54:e9:28:0a: ab:31:03:0e:ca:c0:b4:ff:63:0e:65:c9:d9:45:1b:c4:07:bb: 96:d1:2c:bb:c1:cd:54:3f:cd:fa:03:7d:e8:2d:18:54:7a:52: d3:2e:6c:3c:14:af:72:a3:0e:c2:3b:f8:a8:ad:43:6b:89:fd: 6a:45:6b:98:d5:d6:f6:40:d1:55:82:11:b9:12:e1:2b:04:33: 73:67:df:cc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUwNjEzMDMzOTIxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiOWQ2OS02ODQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvLY8pe5SeYQcTzdaC2AXN7BCUZW17KFXiuUq/9bJPJLk5pIOciU1rVjEbL6 oMmTVk7WPG+MMkH/Rk8sw+jiCfux7j6PBasLZJtSCC9FmMQxDNnj0zqULv9zo/eB XTMWfbjG5fcnq5Obt4I5X5RsCDlvF0oJv9COzT7y7/pCkaxXJMqdtG89CFRTV258 fC6lq+JXAbXTUwXvSKyjOhDK/gdg0rdL9F/fx/Aw3zj4YW6GaQZOEhnSayoDpru3 Pz+yrX7zEoSlgejWutI1xGtPXPAP7+NnbC+JIo2LdNivUfZPkgx8OVdF6ULJ1riz ITXRMqyQ64gQx7jFCMJhgUDkQwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIU2GnGK Yhk0dvRk7rqKoGxPkCO6MB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvQjg1NkQ0NkMz Qjk2MTFGMEIyMzYzQzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnZd4DBABx1FkwDQYJKoZIhvcNAQELBQADggEBAJMPuhXs 3OnSDL9LdkTS8xqnD8izOVK3vf8V15+Le5boE2RsjosOlME30arP0Uvfr2rB+ztF ZhwJwdc4AOJIiACYzvZNXhb5x2F1YHUmq2BmnCeV4S9IC0rQGMsroe49dOC65ObJ uO2acUIf5NAe/CCiRolMSnqJA6ntBrX0d4QbePfu5I8SujHAJ2A5eonJTsW1wcln vBAkWzflVqsu3wMCF8Hm1KbW5nZDTBdnsF09VOkoCqsxAw7KwLT/Yw5lydlFG8QH u5bRLLvBzVQ/zfoDfegtGFR6UtMubDwUr3KjDsI7+KitQ2uJ/WpFa5jV1vZA0VWC EbkS4SsEM3Nn38w= -----END CERTIFICATE-----Generated at Sat Jun 21 16:25:15 2025 by rpki-client