$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa File: F23EB988E9A811E9864E3674C4F9AE02.roa (raw, json) Hash identifier: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8= Subject key identifier: 1B:88:2C:24:90:07:64:9B:B1:5A:39:C6:12:30:09:4F:9B:B1:00:F6 Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D36 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa Signing time: Fri 30 May 2025 18:31:23 +0000 ROA not before: Fri 30 May 2025 18:31:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135033 IP address blocks: 103.206.192.0/24 maxlen: 24 103.206.193.0/24 maxlen: 24 103.206.194.0/24 maxlen: 24 103.206.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:56:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3382 (0xd36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: May 30 18:31:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6839f97b-83e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:50:e6:57:fa:75:16:2a:b5:02:e0:f5:7c:50: e5:44:44:d6:36:c5:52:76:74:71:5f:fa:89:1b:46: 12:b7:95:42:d8:7f:61:0d:7a:5e:9d:ac:b7:c5:65: d0:13:2c:4c:c1:89:07:14:5f:87:66:d9:31:a8:8c: ef:27:37:8e:5c:af:06:d9:6f:9a:f2:3c:63:52:59: 93:c4:49:5c:4b:36:fd:fe:81:33:cb:11:ef:b6:73: 5a:77:09:63:3c:b2:b4:43:00:24:d6:43:45:6d:16: a7:22:3c:99:34:0c:34:2d:aa:59:13:9a:7f:b3:38: 0b:c9:4a:94:99:2a:bb:66:df:3c:8c:d9:99:64:e4: d5:36:b8:2d:e5:16:a1:20:2d:d8:5f:ab:18:ab:e7: 5b:6b:70:70:73:d6:20:94:14:fb:ff:98:89:88:15: 0c:82:4b:20:bd:30:20:8a:77:71:91:64:a3:d3:5d: 50:4e:dd:cf:30:31:63:38:33:05:3f:2c:2c:01:63: 71:20:7c:25:33:03:8f:04:82:fc:78:f0:bb:45:2e: 8e:eb:43:0f:3f:05:82:54:51:56:2e:6e:e7:68:89: eb:1c:1a:ec:ab:06:ac:f3:80:f6:5f:e8:66:d4:0e: f1:fe:18:b7:33:e1:7b:47:cf:db:c9:0f:32:fb:a3: a9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:88:2C:24:90:07:64:9B:B1:5A:39:C6:12:30:09:4F:9B:B1:00:F6 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.192.0/22 Signature Algorithm: sha256WithRSAEncryption 51:ce:af:19:ac:71:47:ad:b4:cd:f3:1d:9e:a2:f1:eb:75:4f: a7:dd:d1:17:88:b5:bb:78:7d:ac:b0:af:ed:c1:3e:ac:3d:ff: 48:0a:69:fb:12:0c:9d:b7:05:20:30:e5:d7:97:19:b7:5e:76: 0b:d6:08:44:e3:b9:b7:de:53:b9:cd:4d:8a:5d:4d:10:be:dd: 66:b1:51:60:bf:1f:27:9c:ea:e9:0a:47:0d:6a:ec:bd:af:e4: 6b:f1:31:81:15:d8:af:9e:33:4c:89:32:a7:66:32:a7:b2:23: 9d:da:c7:e9:34:af:3a:82:1f:18:76:7a:60:87:9a:ac:d5:46: 0d:87:28:84:e6:38:02:c2:76:35:1b:d7:f2:31:40:3a:4e:85: 19:53:b8:b0:64:6b:94:dd:0c:7e:9d:0d:9c:93:1c:65:9a:c4: 63:97:21:de:01:1b:45:93:46:24:ae:ab:28:dc:ba:90:56:bd: 29:6b:b0:b9:80:53:1c:31:0a:79:dc:81:e9:08:df:22:d3:61: 9b:d6:be:ec:9d:0f:c4:21:18:31:97:9e:88:3c:16:f9:7a:ac: 1e:9f:fb:59:5d:a1:4f:fd:b9:f9:bd:fc:91:f9:32:fe:e4:1a: 98:c7:db:a4:e4:76:8c:2b:84:e3:fd:4f:52:04:6f:a1:de:d5: 2d:e7:06:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwNTMwMTgzMTIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM5Zjk3Yi04M2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVDmV/p1Fiq1AuD1fFDlRETWNsVSdnRxX/qJG0YSt5VC2H9hDXpenay3xWXQ EyxMwYkHFF+HZtkxqIzvJzeOXK8G2W+a8jxjUlmTxElcSzb9/oEzyxHvtnNadwlj PLK0QwAk1kNFbRanIjyZNAw0LapZE5p/szgLyUqUmSq7Zt88jNmZZOTVNrgt5Rah IC3YX6sYq+dba3Bwc9YglBT7/5iJiBUMgksgvTAgindxkWSj011QTt3PMDFjODMF PywsAWNxIHwlMwOPBIL8ePC7RS6O60MPPwWCVFFWLm7naInrHBrsqwas84D2X+hm 1A7x/hi3M+F7R8/byQ8y+6Op1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBuILCSQ B2SbsVo5xhIwCU+bsQD2MB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE4NTcvRjEzMDdCNzREQUQ3MTFFOTlGOENBQzc4QzRGOUFFMDIvRjIzRUI5ODhF OUE4MTFFOTg2NEUzNjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzsAwDQYJKoZIhvcNAQELBQADggEBAFHOrxmscUettM3z HZ6i8et1T6fd0ReItbt4faywr+3BPqw9/0gKafsSDJ23BSAw5deXGbdedgvWCETj ubfeU7nNTYpdTRC+3WaxUWC/Hyec6ukKRw1q7L2v5GvxMYEV2K+eM0yJMqdmMqey I53ax+k0rzqCHxh2emCHmqzVRg2HKITmOALCdjUb1/IxQDpOhRlTuLBka5TdDH6d DZyTHGWaxGOXId4BG0WTRiSuqyjcupBWvSlrsLmAUxwxCnncgekI3yLTYZvWvuyd D8QhGDGXnog8Fvl6rB6f+1ldoU/9ufm9/JH5Mv7kGpjH26TkdowrhOP9T1IEb6He 1S3nBoU= -----END CERTIFICATE-----Generated at Mon Jun 16 16:36:24 2025 by rpki-client