$ rpki-client -vvf rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/9244682C7BD711EAA889485EC4F9AE02.roa File: 9244682C7BD711EAA889485EC4F9AE02.roa (raw, json) Hash identifier: ZCM+V6Y56yepaeegUajjp4xOF8Q6SeyZY2EvL4X5a+Y= Subject key identifier: 3B:3D:F9:56:EA:C2:7E:F9:F3:FF:58:ED:9E:42:AB:92:74:DA:2F:8A Certificate issuer: /CN=A91A267C/serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Certificate serial: 09F4 Authority key identifier: 8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/9244682C7BD711EAA889485EC4F9AE02.roa Signing time: Thu 12 Jun 2025 20:15:23 +0000 ROA not before: Thu 12 Jun 2025 20:15:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9554 IP address blocks: 103.219.172.0/22 maxlen: 22 103.219.172.0/24 maxlen: 24 103.219.173.0/24 maxlen: 24 103.219.174.0/24 maxlen: 24 103.219.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2548 (0x9f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A267C, serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Validity Not Before: Jun 12 20:15:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684b355b-8188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1d:4e:31:5e:5e:27:33:7f:a6:52:99:8c:55: c8:f6:d1:59:95:c6:8f:ba:0e:d1:15:5d:73:14:33: 73:5b:5a:bd:a9:71:c1:b5:29:ec:b1:30:13:e9:f0: ce:52:f3:b7:d3:98:7f:6e:a9:ed:8d:54:32:d6:8a: f9:fe:0d:77:b7:84:3c:5b:94:df:3d:1d:59:e8:7a: 44:00:94:4a:b8:74:e6:72:0c:65:66:77:4d:b9:02: 74:c1:95:55:82:6f:40:3f:b9:36:32:97:a9:9d:0a: 8c:3b:1e:4a:14:ac:26:39:a4:76:0d:72:62:18:ef: 90:d5:b6:68:76:56:42:27:40:1c:1d:1e:80:f4:c8: 67:d4:f6:17:3b:70:93:23:7c:2a:94:2d:b4:09:75: 2c:57:39:2e:49:50:0c:fe:b1:f9:83:a2:0b:f1:3f: 85:7a:7f:18:e7:e4:12:a9:30:a4:ce:11:9e:69:cd: 96:32:27:40:63:80:ed:26:49:f0:87:88:2e:34:10: 1a:47:3a:ae:87:e8:96:d8:67:f2:e2:e3:a2:48:9c: 54:01:6b:e6:1f:df:fb:76:1a:28:69:2a:a1:7a:60: 7b:21:ec:dd:4c:b9:00:95:5e:3d:0b:d4:f9:e5:98: 0e:9c:2a:2f:93:be:b7:34:af:6d:25:67:15:2d:65: 8a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3D:F9:56:EA:C2:7E:F9:F3:FF:58:ED:9E:42:AB:92:74:DA:2F:8A X509v3 Authority Key Identifier: keyid:8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/9244682C7BD711EAA889485EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.172.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:c5:a9:ca:ff:48:73:ed:c4:a9:94:62:0d:5a:36:45:27:95: cc:31:26:00:ab:e1:21:e7:ed:3b:96:df:dc:0f:94:cc:78:46: 26:7c:3b:eb:d7:8a:23:bb:59:a1:7e:1f:4c:85:98:e7:34:07: 37:59:d2:48:7e:dc:54:c5:97:ce:6e:fd:95:4e:49:85:45:5c: 2c:c3:a2:11:e4:42:07:5d:2e:34:cb:48:73:84:d1:6c:e5:49: 84:ca:7a:9a:cb:ee:37:1d:f6:a2:de:42:7f:57:87:94:bc:8b: 27:6f:f8:5d:91:ae:02:92:d2:40:da:49:9a:e7:9b:9e:26:49: 32:e7:c3:fb:6b:8c:67:fa:e2:7a:e7:bb:a5:0b:ef:59:4e:7b: e4:d5:98:52:3f:ea:06:3c:f8:1c:47:70:3d:06:62:dc:4a:30: 8b:d5:b5:5d:e1:67:99:c9:2d:b9:4c:c1:fd:7b:58:0d:9d:44: a6:01:f3:de:5f:d1:0a:69:b0:9e:51:f7:23:5a:70:d5:43:70: 1f:a0:3d:61:82:85:53:16:e3:3e:67:0c:b5:28:d5:68:e6:79: fe:f6:f3:e2:6c:65:36:f9:42:52:bc:d1:18:69:72:30:1b:ee: 4b:1b:94:9a:68:f7:4e:d2:ed:82:e2:04:05:e1:89:fa:b1:7b: 51:c9:cf:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI2N0MxMTAvBgNVBAUTKDhBMjY1NkRCQkQ5MDAzMzY4NDFGRjUwMzUzNkZGOTkx OEZFQjI1QzYwHhcNMjUwNjEyMjAxNTIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiMzU1Yi04MTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyR1OMV5eJzN/plKZjFXI9tFZlcaPug7RFV1zFDNzW1q9qXHBtSnssTAT6fDO UvO305h/bqntjVQy1or5/g13t4Q8W5TfPR1Z6HpEAJRKuHTmcgxlZndNuQJ0wZVV gm9AP7k2MpepnQqMOx5KFKwmOaR2DXJiGO+Q1bZodlZCJ0AcHR6A9Mhn1PYXO3CT I3wqlC20CXUsVzkuSVAM/rH5g6IL8T+Fen8Y5+QSqTCkzhGeac2WMidAY4DtJknw h4guNBAaRzquh+iW2Gfy4uOiSJxUAWvmH9/7dhooaSqhemB7IezdTLkAlV49C9T5 5ZgOnCovk763NK9tJWcVLWWKbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDs9+Vbq wn758/9Y7Z5Cq5J02i+KMB8GA1UdIwQYMBaAFIomVtu9kAM2hB/1A1Nv+ZGP6yXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjY3Qy81QjUzODk2NjdC RDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6YUVIX1VEVTJfNWtZX3JK Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpWlcyNzJRQXphRUhfVURVMl81a1lfckpjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI2N0MvNUI1Mzg5NjY3QkQ2MTFFQTgwM0Y5QjVDQzRGOUFFMDIvOTI0NDY4MkM3 QkQ3MTFFQUE4ODk0ODVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn26wwDQYJKoZIhvcNAQELBQADggEBAJzFqcr/SHPtxKmU Yg1aNkUnlcwxJgCr4SHn7TuW39wPlMx4RiZ8O+vXiiO7WaF+H0yFmOc0BzdZ0kh+ 3FTFl85u/ZVOSYVFXCzDohHkQgddLjTLSHOE0WzlSYTKeprL7jcd9qLeQn9Xh5S8 iydv+F2RrgKS0kDaSZrnm54mSTLnw/trjGf64nrnu6UL71lOe+TVmFI/6gY8+BxH cD0GYtxKMIvVtV3hZ5nJLblMwf17WA2dRKYB895f0QppsJ5R9yNacNVDcB+gPWGC hVMW4z5nDLUo1Wjmef728+JsZTb5QlK80RhpcjAb7ksblJpo907S7YLiBAXhifqx e1HJzyI= -----END CERTIFICATE-----Generated at Fri Jun 20 01:09:52 2025 by rpki-client