$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/5A51D464F5FA11EC9B35372AC4F9AE02.roa File: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (raw, json) Hash identifier: ibMAngc6C4+JXufdc4UjRpgLZzdehYxv7hgLysgCefA= Subject key identifier: 92:D6:60:7F:C9:59:9E:D5:85:D3:78:30:BC:3C:58:75:7F:3D:C6:33 Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 0736 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/5A51D464F5FA11EC9B35372AC4F9AE02.roa Signing time: Tue 03 Jun 2025 05:46:20 +0000 ROA not before: Tue 03 Jun 2025 05:46:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 142300 IP address blocks: 103.150.208.0/24 maxlen: 24 103.150.209.0/24 maxlen: 24 2406:f480:0:80::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1846 (0x736) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Jun 3 05:46:20 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=683e8c2c-73ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:92:61:cb:97:07:0d:19:8a:85:4f:59:8a:24: 1e:6f:bb:95:81:93:f8:23:8f:f3:13:37:45:88:a8: 3f:0b:01:2f:27:0b:81:02:28:7e:18:e7:78:4e:5f: ee:50:02:d6:f6:19:b9:89:97:18:f9:7d:e3:f9:1b: 02:43:0c:0d:a9:1c:2e:dd:cf:e5:d6:e5:3b:ab:d2: b9:84:df:5d:73:26:fc:96:37:c6:0d:a9:cf:f2:1b: f3:52:79:c6:03:54:79:95:ee:a5:4f:94:ba:43:2f: b6:50:8d:1b:61:f3:93:9f:b4:c9:57:11:25:ea:dd: 75:1b:55:5c:ff:da:d5:0a:53:c6:51:17:9b:e4:19: 77:8b:85:4e:ac:bf:c4:fe:c4:37:e6:f3:9f:12:70: 2e:eb:15:a1:4d:04:04:80:74:1c:b5:66:a7:58:d6: d8:91:4e:6c:c9:43:ad:57:e2:5f:55:64:7c:dc:c3: 31:c6:58:74:7a:b2:7f:a7:5c:0d:70:ac:d1:c5:2e: 8e:ed:4a:97:b3:0d:d9:4d:5a:42:17:c9:cf:ee:dd: 39:f6:d0:3c:eb:73:7f:ff:2a:30:6a:e5:cd:c5:24: 7b:34:0c:c2:d5:98:ab:0e:d2:e3:97:9f:b1:01:fb: 88:ce:e5:6b:36:f3:c5:6b:b8:01:11:70:09:50:1f: a6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D6:60:7F:C9:59:9E:D5:85:D3:78:30:BC:3C:58:75:7F:3D:C6:33 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/5A51D464F5FA11EC9B35372AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.208.0/23 IPv6: 2406:f480:0:80::/64 Signature Algorithm: sha256WithRSAEncryption 44:17:6a:3a:65:af:ce:e5:d7:7d:6d:4f:1b:07:fc:b1:2d:d1: 7a:35:a0:61:c7:1f:ff:7e:29:17:a0:13:28:b4:a8:c9:60:9a: bd:84:0c:a5:bd:9d:bf:80:df:5c:04:fc:b9:8f:43:65:d1:77: 2b:05:b6:df:9c:63:c3:ae:a0:5e:3d:ab:64:c1:e5:fa:81:fd: aa:6a:3b:00:5b:54:24:79:ca:5e:58:97:62:c2:78:27:ec:7f: ac:ed:c8:1f:28:a8:7f:95:03:47:da:44:7d:ef:7a:76:17:85: 92:0e:29:2c:87:2f:d7:f1:e1:29:9d:99:c4:ac:50:71:a0:5b: a1:cc:56:3c:d7:c2:2b:c7:d3:dc:9d:8a:41:75:00:8b:f6:dd: 9e:f7:b2:d9:62:16:ec:a8:b0:78:39:71:82:de:ac:f5:56:ac: ba:7c:54:eb:16:aa:3f:7d:09:3d:89:b4:a7:51:0c:3b:1c:69: 4b:56:12:dc:e2:91:ec:b5:61:41:37:b0:89:44:15:4f:f2:c9: b3:f9:73:3c:8d:25:33:b3:ea:72:51:15:21:84:11:30:41:92: 6e:ad:3e:82:93:65:51:16:bc:02:17:1b:4c:e8:54:ed:02:7a: c3:30:5b:a1:f6:b8:68:6b:70:ed:c1:1b:2a:1c:b4:3b:51:6d: f8:36:c4:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwNjAzMDU0NjIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlOGMyYy03M2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJJhy5cHDRmKhU9ZiiQeb7uVgZP4I4/zEzdFiKg/CwEvJwuBAih+GOd4Tl/u UALW9hm5iZcY+X3j+RsCQwwNqRwu3c/l1uU7q9K5hN9dcyb8ljfGDanP8hvzUnnG A1R5le6lT5S6Qy+2UI0bYfOTn7TJVxEl6t11G1Vc/9rVClPGUReb5Bl3i4VOrL/E /sQ35vOfEnAu6xWhTQQEgHQctWanWNbYkU5syUOtV+JfVWR83MMxxlh0erJ/p1wN cKzRxS6O7UqXsw3ZTVpCF8nP7t059tA863N//yowauXNxSR7NAzC1ZirDtLjl5+x AfuIzuVrNvPFa7gBEXAJUB+m1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLWYH/J WZ7VhdN4MLw8WHV/PcYzMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvNUE1MUQ0NjRG NUZBMTFFQzlCMzUzNzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBAFnltAwEQQCAAIwCwMJACQG9IAAAACAMA0GCSqGSIb3DQEB CwUAA4IBAQBEF2o6Za/O5dd9bU8bB/yxLdF6NaBhxx//fikXoBMotKjJYJq9hAyl vZ2/gN9cBPy5j0Nl0XcrBbbfnGPDrqBePatkweX6gf2qajsAW1QkecpeWJdiwngn 7H+s7cgfKKh/lQNH2kR973p2F4WSDikshy/X8eEpnZnErFBxoFuhzFY818Irx9Pc nYpBdQCL9t2e97LZYhbsqLB4OXGC3qz1Vqy6fFTrFqo/fQk9ibSnUQw7HGlLVhLc 4pHstWFBN7CJRBVP8smz+XM8jSUzs+pyURUhhBEwQZJurT6Ck2VRFrwCFxtM6FTt AnrDMFuh9rhoa3DtwRsqHLQ7UW34NsQR -----END CERTIFICATE-----Generated at Fri Jun 20 19:11:16 2025 by rpki-client