$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/FF9C9380E84D11EFBDF0C033C4F9AE02.roa File: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (raw, json) Hash identifier: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU= Subject key identifier: 0C:87:BA:AC:AF:94:87:8D:0F:9F:DD:B6:5E:B5:2F:71:B6:6F:B9:17 Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 4D Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/FF9C9380E84D11EFBDF0C033C4F9AE02.roa Signing time: Fri 13 Jun 2025 06:47:35 +0000 ROA not before: Fri 13 Jun 2025 06:47:35 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132835 IP address blocks: 103.250.60.0/23 maxlen: 23 103.250.60.0/24 maxlen: 24 103.250.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Jun 13 06:47:35 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684bc986-b083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:15:8c:c3:8d:e8:44:4a:6f:7b:27:5f:19:f6: f1:dc:41:33:34:96:32:a3:7e:7f:b2:6c:a8:4d:fa: c5:49:52:fe:4e:13:f5:6f:55:00:29:50:1f:fa:2c: 0a:6e:cc:7e:8d:db:f3:9f:25:98:43:2f:c2:36:15: 4d:5f:8c:15:83:2f:f9:74:4e:09:ea:c6:a2:14:15: e0:d0:b8:bd:be:15:40:2b:95:d3:09:53:13:a2:93: 01:b7:c0:09:c2:ba:9b:15:a4:e1:f6:7e:b0:df:2b: fd:9c:47:ff:bc:23:04:85:5d:0b:2a:2d:4e:c2:0b: c3:9f:14:52:92:16:2a:36:4d:04:c1:70:4e:1d:f6: 83:fa:43:05:c9:73:c4:4a:51:c3:c0:ac:1b:1c:f8: 84:70:2e:08:47:9f:38:a1:41:2b:0b:43:ae:ab:ab: 0c:f4:77:46:57:bd:31:81:27:ce:3b:c5:4c:2c:bc: 41:59:5d:d2:c5:df:c1:2e:65:1c:0a:30:9d:e1:58: d5:b4:e7:45:39:f5:9e:13:e5:e2:10:22:d4:4b:1c: a3:37:b3:3b:9e:df:3b:c4:8b:55:e4:e4:cb:a5:1b: c0:e0:57:ca:2f:d0:48:85:14:76:99:5e:4d:f0:50: 11:6b:53:1e:8e:2a:8c:46:17:2b:8c:a7:a7:77:b8: db:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:87:BA:AC:AF:94:87:8D:0F:9F:DD:B6:5E:B5:2F:71:B6:6F:B9:17 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/FF9C9380E84D11EFBDF0C033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.60.0/23 Signature Algorithm: sha256WithRSAEncryption d6:df:e1:50:b5:86:5b:6c:be:36:92:c8:a8:d2:48:1b:7a:3c: 41:02:e3:e0:97:9b:84:31:f6:40:3f:91:12:89:7f:8d:ea:a8: 29:4d:14:36:e2:b0:c5:6f:a6:22:ea:a5:0a:b8:ef:54:a9:0e: 42:33:d7:ac:a4:ed:da:7b:21:0d:d6:85:71:7e:e6:00:5f:5c: 5a:dc:5e:bc:6f:3d:a2:05:83:e0:73:b1:12:9f:75:c6:db:aa: 8c:ce:5a:a9:7d:a6:d7:a9:0b:08:45:29:f4:35:66:8b:97:77: 74:dd:16:17:34:a3:94:5c:83:30:e2:cd:a6:fb:48:d1:bc:c2: a1:e1:54:ca:fa:e1:07:e3:d9:78:4c:e5:cb:44:f6:23:4e:e3: 95:17:53:c7:46:9a:29:2e:43:78:77:57:66:b9:1f:0f:98:e1: ff:38:47:78:11:88:a3:f2:15:e9:d4:51:ba:5f:ec:00:2a:b1: d4:e9:e9:e4:60:dd:55:8c:94:53:2a:7e:a3:29:51:60:7e:e3: 5a:7e:91:35:34:10:56:04:ae:9c:10:69:c4:75:43:ae:bd:89: b9:0f:8c:cc:5b:7a:e0:48:69:07:ce:ad:72:62:96:7b:19:5e: 75:f3:13:4e:10:fc:bd:0d:b0:3a:dd:09:6d:91:a6:22:4b:c9: 40:c4:3b:1e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTA2MTMwNjQ3MzVaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGJjOTg2LWIwODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIFYzDjehESm97J18Z9vHcQTM0ljKjfn+ybKhN+sVJUv5OE/VvVQApUB/6LApu zH6N2/OfJZhDL8I2FU1fjBWDL/l0TgnqxqIUFeDQuL2+FUArldMJUxOikwG3wAnC upsVpOH2frDfK/2cR/+8IwSFXQsqLU7CC8OfFFKSFio2TQTBcE4d9oP6QwXJc8RK UcPArBsc+IRwLghHnzihQSsLQ66rqwz0d0ZXvTGBJ847xUwsvEFZXdLF38EuZRwK MJ3hWNW050U59Z4T5eIQItRLHKM3szue3zvEi1Xk5MulG8DgV8ov0EiFFHaZXk3w UBFrUx6OKoxGFyuMp6d3uNtPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDIe6rK+U h40Pn922XrUvcbZvuRcwHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwOC85RTI4NTU3RUU0RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9GRjlDOTM4MEU4 NEQxMUVGQkRGMEMwMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf6PDANBgkqhkiG9w0BAQsFAAOCAQEA1t/hULWGW2y+NpLI qNJIG3o8QQLj4JebhDH2QD+REol/jeqoKU0UNuKwxW+mIuqlCrjvVKkOQjPXrKTt 2nshDdaFcX7mAF9cWtxevG89ogWD4HOxEp91xtuqjM5aqX2m16kLCEUp9DVmi5d3 dN0WFzSjlFyDMOLNpvtI0bzCoeFUyvrhB+PZeEzly0T2I07jlRdTx0aaKS5DeHdX ZrkfD5jh/zhHeBGIo/IV6dRRul/sACqx1Onp5GDdVYyUUyp+oylRYH7jWn6RNTQQ VgSunBBpxHVDrr2JuQ+MzFt64EhpB86tcmKWexledfMTThD8vQ2wOt0JbZGmIkvJ QMQ7Hg== -----END CERTIFICATE-----Generated at Thu Jun 19 13:51:37 2025 by rpki-client