$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/FF9C9380E84D11EFBDF0C033C4F9AE02.roa File: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (raw, json) Hash identifier: VsfS/oejZClbqFlHZRJnAMGoiF1B4LGgl4LCmgAUmio= Subject key identifier: A5:7C:4D:63:67:FF:1F:C5:2E:9F:0E:FF:F8:A4:64:4D:75:3A:B4:8B Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 26 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/FF9C9380E84D11EFBDF0C033C4F9AE02.roa Signing time: Thu 03 Apr 2025 23:48:22 +0000 ROA not before: Thu 03 Apr 2025 23:48:22 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132835 IP address blocks: 103.250.60.0/23 maxlen: 23 103.250.60.0/24 maxlen: 24 103.250.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Apr 3 23:48:22 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67ef1e46-e759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d6:bc:1d:8b:c4:c7:b0:6b:a3:69:36:91:e1: df:2d:6f:b8:b9:0a:c0:11:45:10:41:2e:7d:fd:b2: b8:a2:2d:6d:29:04:c3:08:71:aa:0e:e2:ff:f6:8b: 02:47:3d:a5:ab:67:4e:66:3e:5a:39:e0:9a:c6:15: 23:e0:92:66:34:75:e7:f8:50:f8:78:e0:3c:65:2d: 7f:80:2d:b3:26:15:c3:de:62:30:83:9d:d5:d2:ce: ff:18:50:1c:5a:b9:cc:6b:83:2f:c9:d1:8d:4d:0c: 7e:43:21:9f:1a:1d:96:32:9f:a6:d3:97:73:81:6f: 16:ab:4c:36:7d:4f:c8:e2:30:7c:ac:16:42:bf:d9: 9c:ab:2c:8a:d7:fb:5f:07:37:a8:99:08:df:95:40: 4e:5b:53:c4:f8:bb:26:82:34:27:ea:bd:b5:9d:3c: 6c:34:55:3c:b0:8e:44:59:57:46:2d:4a:f7:c3:19: b7:2e:cb:1e:97:31:56:12:61:54:1d:86:e9:40:b4: 89:cd:c4:ea:e8:e4:5e:ab:d3:55:52:7b:58:22:2b: 6d:25:41:c5:aa:d1:84:2e:af:d7:29:18:76:ad:8a: d9:33:04:88:0e:e7:01:6c:6d:7c:a5:5e:64:2a:35: f9:5e:15:c8:d5:ae:28:bd:e4:87:9f:03:5b:b9:6f: 4e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7C:4D:63:67:FF:1F:C5:2E:9F:0E:FF:F8:A4:64:4D:75:3A:B4:8B X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/FF9C9380E84D11EFBDF0C033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.60.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:ae:19:2b:61:9f:b3:88:b4:63:c9:42:cd:f7:55:36:44:0c: 39:3b:84:66:dc:bd:6e:46:c8:11:cc:c9:7d:55:75:6c:d5:85: 0a:f0:fd:28:f3:0e:00:99:ba:f7:1a:f1:c3:a5:81:97:c9:82: 71:76:3a:87:cf:f8:2c:87:ba:3c:8d:42:dd:ae:0a:3f:91:2b: 82:be:9a:1b:15:0c:ea:e9:f6:fd:82:cf:a8:26:9d:e9:1e:8a: 5e:b0:c6:21:c8:2a:0b:55:06:f5:92:4f:0d:f0:c7:c7:48:bb: 65:c8:b6:b7:1d:86:15:ec:10:4b:74:38:cc:34:12:4b:ab:5e: 2e:a4:54:b3:1d:ef:88:2a:8d:39:3f:a7:d7:08:7f:0f:e6:99: 31:ee:65:34:15:33:48:32:c5:53:8c:58:d2:cc:c8:63:d2:e6: 52:9a:32:f1:56:ef:86:db:eb:83:30:35:9c:1d:47:b5:7d:6d: 9d:3d:aa:2f:88:15:27:57:79:22:07:36:12:f5:e9:d3:e0:e3: f6:a7:31:b7:d7:7f:18:ab:da:12:50:f0:f3:40:5f:50:cc:4d: e1:15:c6:65:fd:b7:7a:9f:a7:a6:b0:cc:5d:c4:39:fd:19:ac: 6c:8a:f0:e9:43:dc:19:fd:02:93:8e:34:00:fc:54:73:a4:e7: 5e:cd:c2:de -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTA0MDMyMzQ4MjJaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWYxZTQ2LWU3NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC11rwdi8THsGujaTaR4d8tb7i5CsARRRBBLn39sriiLW0pBMMIcaoO4v/2iwJH PaWrZ05mPlo54JrGFSPgkmY0def4UPh44DxlLX+ALbMmFcPeYjCDndXSzv8YUBxa ucxrgy/J0Y1NDH5DIZ8aHZYyn6bTl3OBbxarTDZ9T8jiMHysFkK/2ZyrLIrX+18H N6iZCN+VQE5bU8T4uyaCNCfqvbWdPGw0VTywjkRZV0YtSvfDGbcuyx6XMVYSYVQd hulAtInNxOro5F6r01VSe1giK20lQcWq0YQur9cpGHatitkzBIgO5wFsbXylXmQq NfleFcjVrii95IefA1u5b05jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUpXxNY2f/ H8Uunw7/+KRkTXU6tIswHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwOC85RTI4NTU3RUU0RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9GRjlDOTM4MEU4 NEQxMUVGQkRGMEMwMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf6PDANBgkqhkiG9w0BAQsFAAOCAQEAbq4ZK2Gfs4i0Y8lC zfdVNkQMOTuEZty9bkbIEczJfVV1bNWFCvD9KPMOAJm69xrxw6WBl8mCcXY6h8/4 LIe6PI1C3a4KP5Ergr6aGxUM6un2/YLPqCad6R6KXrDGIcgqC1UG9ZJPDfDHx0i7 Zci2tx2GFewQS3Q4zDQSS6teLqRUsx3viCqNOT+n1wh/D+aZMe5lNBUzSDLFU4xY 0szIY9LmUpoy8VbvhtvrgzA1nB1HtX1tnT2qL4gVJ1d5Igc2EvXp0+Dj9qcxt9d/ GKvaElDw80BfUMxN4RXGZf23ep+nprDMXcQ5/RmsbIrw6UPcGf0Ck440APxUc6Tn Xs3C3g== -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:56 2025 by rpki-client