$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/4279BBD80C5811EA93151657C4F9AE02.roa File: 4279BBD80C5811EA93151657C4F9AE02.roa (raw, json) Hash identifier: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI= Subject key identifier: A8:36:3B:8A:00:51:33:44:25:62:C9:4C:82:FA:37:0A:F3:A9:EE:13 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C37 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/4279BBD80C5811EA93151657C4F9AE02.roa Signing time: Sat 14 Jun 2025 18:32:30 +0000 ROA not before: Sat 14 Jun 2025 18:32:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137889 IP address blocks: 103.116.164.0/22 maxlen: 24 2402:fd40::/32 maxlen: 32 2402:fd40::/36 maxlen: 36 2402:fd40:1000::/36 maxlen: 36 2402:fd40:1000::/48 maxlen: 48 2402:fd40:1001::/48 maxlen: 48 2402:fd40:1002::/48 maxlen: 48 2402:fd40:1003::/48 maxlen: 48 2402:fd40:1004::/48 maxlen: 48 2402:fd40:1005::/48 maxlen: 48 2402:fd40:1006::/48 maxlen: 48 2402:fd40:1007::/48 maxlen: 48 2402:fd40:2000::/36 maxlen: 36 2402:fd40:3000::/36 maxlen: 36 2402:fd40:4000::/36 maxlen: 36 2402:fd40:5000::/36 maxlen: 36 2402:fd40:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 18:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3127 (0xc37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Jun 14 18:32:30 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684dc03d-cdf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5b:87:c9:da:bd:09:b7:62:e3:88:48:40:15: 33:31:22:cd:fb:87:a5:80:3d:0f:3f:17:c6:46:7e: 4d:79:ba:6d:65:0d:70:d9:c0:69:a8:f6:e6:16:06: af:4b:8b:f1:df:3b:c7:82:80:ca:96:18:06:46:75: a1:3c:07:40:7f:06:bc:dd:ae:4a:90:89:6e:0b:ef: d2:13:56:b2:aa:23:59:ec:c3:36:cd:a4:04:5a:54: 01:24:ed:a9:ce:b6:0c:3a:fa:74:4f:bd:a5:52:b2: 94:37:a7:f3:17:fd:2c:b9:85:3c:7b:d8:17:c4:8a: c4:4c:1d:7a:b0:5e:0d:ad:82:20:71:ee:ac:e3:e3: 04:28:c9:c2:c7:5f:4a:77:fb:d8:24:66:78:14:8c: b7:93:ce:ee:2e:ed:62:5e:ec:d6:e3:78:4d:7d:5d: 4c:cb:7d:ee:4c:b5:18:4d:7b:6a:70:82:72:f8:f5: 19:7f:4c:7b:a4:a5:4f:4f:54:75:1c:24:fc:c9:bc: 26:50:71:d5:7a:8a:25:be:bc:c1:cf:89:3d:e9:a7: c1:33:c1:5b:06:f1:97:5b:cc:d6:8b:5a:eb:bd:f2: f7:19:e8:61:7e:d9:9e:28:76:8b:f2:be:8c:94:65: be:87:9d:4e:35:db:b4:5c:d9:db:3a:65:84:b9:81: 0f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:36:3B:8A:00:51:33:44:25:62:C9:4C:82:FA:37:0A:F3:A9:EE:13 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/4279BBD80C5811EA93151657C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.164.0/22 IPv6: 2402:fd40::/32 Signature Algorithm: sha256WithRSAEncryption 7d:ab:53:2c:33:ef:9e:71:2d:dd:94:47:ac:62:ec:47:71:2b: 77:c1:6a:34:75:0d:17:95:83:cb:80:e3:a3:5e:25:83:d4:1a: 37:b8:97:66:b6:85:53:74:62:0c:bf:91:81:e9:df:41:fb:20: 5c:4a:c6:e8:af:c7:a0:f5:7d:ce:10:ce:b5:ea:77:0f:dd:65: a6:7c:bb:ed:3d:04:14:33:ca:bf:c0:4a:9c:69:7c:6a:21:6e: 9c:6d:32:d6:26:b6:cc:59:ba:ff:65:78:ee:bf:99:2e:d8:7d: db:c3:f3:93:a2:99:59:8a:03:df:67:dc:3f:85:f0:29:b1:c6: 5c:72:39:9a:a6:ec:df:8e:b4:e6:c8:7e:f1:30:d0:54:5c:af: 51:2d:0d:83:56:1c:6c:d6:fa:d8:0c:01:6a:2a:cf:40:58:e0: 24:07:2f:d5:51:4f:a4:ed:f4:48:20:4c:25:be:ac:13:39:49: 71:e6:f3:40:0c:e7:97:82:18:af:c5:97:85:ed:ff:8d:08:9a: 01:f3:67:e0:7e:22:d3:82:60:83:f8:aa:08:47:3d:11:f0:75: 5b:c1:7f:19:00:61:e9:4f:15:a6:00:e9:86:cb:4b:27:6f:50: 9e:6b:1d:51:99:04:81:f2:17:bc:9e:41:15:73:9a:98:8a:1e: 51:f3:6b:22 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUwNjE0MTgzMjMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRkYzAzZC1jZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VuHydq9Cbdi44hIQBUzMSLN+4elgD0PPxfGRn5NebptZQ1w2cBpqPbmFgav S4vx3zvHgoDKlhgGRnWhPAdAfwa83a5KkIluC+/SE1ayqiNZ7MM2zaQEWlQBJO2p zrYMOvp0T72lUrKUN6fzF/0suYU8e9gXxIrETB16sF4NrYIgce6s4+MEKMnCx19K d/vYJGZ4FIy3k87uLu1iXuzW43hNfV1My33uTLUYTXtqcIJy+PUZf0x7pKVPT1R1 HCT8ybwmUHHVeoolvrzBz4k96afBM8FbBvGXW8zWi1rrvfL3GehhftmeKHaL8r6M lGW+h51ONdu0XNnbOmWEuYEPLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKg2O4oA UTNEJWLJTIL6Nwrzqe4TMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgxNTEvNzAxMTREQUEwQzU3MTFFQTk4NTEwMjU2QzRGOUFFMDIvNDI3OUJCRDgw QzU4MTFFQTkzMTUxNjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndKQwDQQCAAIwBwMFACQC/UAwDQYJKoZIhvcNAQELBQAD ggEBAH2rUywz755xLd2UR6xi7EdxK3fBajR1DReVg8uA46NeJYPUGje4l2a2hVN0 Ygy/kYHp30H7IFxKxuivx6D1fc4QzrXqdw/dZaZ8u+09BBQzyr/ASpxpfGohbpxt MtYmtsxZuv9leO6/mS7YfdvD85OimVmKA99n3D+F8CmxxlxyOZqm7N+OtObIfvEw 0FRcr1EtDYNWHGzW+tgMAWoqz0BY4CQHL9VRT6Tt9EggTCW+rBM5SXHm80AM55eC GK/Fl4Xt/40ImgHzZ+B+ItOCYIP4qghHPRHwdVvBfxkAYelPFaYA6YbLSydvUJ5r HVGZBIHyF7yeQRVzmpiKHlHzayI= -----END CERTIFICATE-----Generated at Sun Jun 22 04:58:22 2025 by rpki-client