$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/485DCAA8418111F093EDEF69C4F9AE02.roa File: 485DCAA8418111F093EDEF69C4F9AE02.roa (raw, json) Hash identifier: N98ZAqtSjhk7d30tVEfzffIJ5/FjeJUTPsh4dCjO5no= Subject key identifier: 7C:D3:DA:CD:4B:C9:AC:0E:B7:F0:30:19:0F:9F:FC:6C:AD:F0:F0:E3 Certificate issuer: /CN=A91AEE40/serialNumber=0305185735E097EFB36A860653B253ABE9FE115C Certificate serial: 0280 Authority key identifier: 03:05:18:57:35:E0:97:EF:B3:6A:86:06:53:B2:53:AB:E9:FE:11:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/485DCAA8418111F093EDEF69C4F9AE02.roa Signing time: Wed 04 Jun 2025 20:19:57 +0000 ROA not before: Wed 04 Jun 2025 20:19:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152479 IP address blocks: 103.66.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.crl rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE40, serialNumber=0305185735E097EFB36A860653B253ABE9FE115C Validity Not Before: Jun 4 20:19:57 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6840aa6d-5de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2a:e6:04:90:2b:20:cd:ca:d9:18:4b:d7:ef: 2a:a3:f0:0c:5f:9e:0e:b7:a2:07:b1:55:54:d0:c5: b1:d8:83:15:6f:0e:54:22:16:31:97:f6:37:1c:12: 9e:e4:80:99:4b:ac:d9:50:76:9d:02:96:1e:d6:3c: 16:f5:c9:71:0e:53:bb:51:8b:96:3f:fd:6c:10:75: 3a:72:5b:92:fa:96:2f:95:97:f3:87:45:28:41:99: 55:c8:b8:d1:d8:64:b8:f3:f8:6a:17:56:c6:72:cb: 0f:ec:36:e6:7e:38:36:b0:b0:5c:d5:57:f2:9c:55: 9f:1a:95:f1:5a:00:ba:e8:41:24:fc:ff:34:f5:8c: 4c:17:e2:f0:d3:cc:b7:a7:44:15:de:9d:94:ce:fe: cc:b1:c9:c8:3a:d1:73:f5:47:7b:66:de:42:ae:02: 37:80:eb:fd:ee:3f:75:a4:eb:d9:78:db:90:b2:85: 02:20:66:ea:ca:dd:09:48:c4:6e:a8:79:fc:59:59: e2:e7:c3:5d:bf:fc:fd:dd:53:9c:e1:d4:2b:d6:c0: 5c:50:81:72:61:92:9e:7e:c4:99:7d:4f:f9:62:74: b7:07:2d:09:87:41:6a:f4:96:91:81:8d:f0:8e:e0: 3b:90:6f:57:cb:9d:9f:04:b3:b2:7d:30:dd:93:6e: 86:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D3:DA:CD:4B:C9:AC:0E:B7:F0:30:19:0F:9F:FC:6C:AD:F0:F0:E3 X509v3 Authority Key Identifier: keyid:03:05:18:57:35:E0:97:EF:B3:6A:86:06:53:B2:53:AB:E9:FE:11:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/485DCAA8418111F093EDEF69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.168.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:f3:37:4f:81:6d:07:8d:0c:3c:4c:fe:0a:6b:0b:0c:e3:3e: a9:b9:54:9d:13:61:1a:81:5b:a9:ec:6a:4d:31:8e:e0:a1:f0: ff:81:95:dc:42:0b:62:98:db:1a:c9:8d:1d:b2:4e:7c:b0:cf: 34:f4:53:54:25:08:6d:b9:f7:0e:e1:eb:88:30:1c:35:28:93: 8e:f9:9c:f9:c7:2a:80:55:6d:a3:c8:f6:a8:f6:fe:41:8f:9d: b9:41:1b:72:14:05:14:9a:dd:e7:fc:72:90:2a:9d:93:f8:5d: ab:21:f2:80:00:0c:4c:78:a1:57:35:29:75:ae:fa:1d:ec:2f: 26:5d:2a:43:86:17:6f:16:5a:de:8c:d3:50:46:58:4d:9f:81: 14:cf:cb:ec:23:28:bb:ab:be:40:b4:13:b7:21:2f:f0:48:76: 6d:5a:ee:a0:c0:73:99:b2:f2:07:4d:96:55:6f:1a:e9:80:d4: 1f:86:00:bd:26:9c:ff:b9:d7:b5:e2:e6:9d:b5:3e:5a:64:34: f2:63:0d:ae:0c:af:d1:41:13:be:a5:fe:4c:ed:86:12:c0:ac: a1:64:c8:d3:a9:3e:85:02:29:80:ae:22:28:e9:d2:25:47:8e: 59:66:d4:c2:09:65:30:1d:b3:47:5a:c8:70:b0:70:28:da:ef: fd:29:23:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNDAxMTAvBgNVBAUTKDAzMDUxODU3MzVFMDk3RUZCMzZBODYwNjUzQjI1M0FC RTlGRTExNUMwHhcNMjUwNjA0MjAxOTU3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwYWE2ZC01ZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxirmBJArIM3K2RhL1+8qo/AMX54Ot6IHsVVU0MWx2IMVbw5UIhYxl/Y3HBKe 5ICZS6zZUHadApYe1jwW9clxDlO7UYuWP/1sEHU6cluS+pYvlZfzh0UoQZlVyLjR 2GS48/hqF1bGcssP7Dbmfjg2sLBc1VfynFWfGpXxWgC66EEk/P809YxMF+Lw08y3 p0QV3p2Uzv7MscnIOtFz9Ud7Zt5CrgI3gOv97j91pOvZeNuQsoUCIGbqyt0JSMRu qHn8WVni58Ndv/z93VOc4dQr1sBcUIFyYZKefsSZfU/5YnS3By0Jh0Fq9JaRgY3w juA7kG9Xy52fBLOyfTDdk26GrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHzT2s1L yawOt/AwGQ+f/Gyt8PDjMB8GA1UdIwQYMBaAFAMFGFc14Jfvs2qGBlOyU6vp/hFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0MC8wRUVDMjlGODBG MzAxMUVEQjM1NjhBODRDNEY5QUUwMi9Bd1VZVnpYZ2wtLXphb1lHVTdKVHEtbi1F VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3VVlWelhnbC0temFvWUdVN0pUcS1uLUVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVFNDAvMEVFQzI5RjgwRjMwMTFFREIzNTY4QTg0QzRGOUFFMDIvNDg1RENBQTg0 MTgxMTFGMDkzRURFRjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQqgwDQYJKoZIhvcNAQELBQADggEBAIrzN0+BbQeNDDxM /gprCwzjPqm5VJ0TYRqBW6nsak0xjuCh8P+BldxCC2KY2xrJjR2yTnywzzT0U1Ql CG259w7h64gwHDUok475nPnHKoBVbaPI9qj2/kGPnblBG3IUBRSa3ef8cpAqnZP4 Xash8oAADEx4oVc1KXWu+h3sLyZdKkOGF28WWt6M01BGWE2fgRTPy+wjKLurvkC0 E7chL/BIdm1a7qDAc5my8gdNllVvGumA1B+GAL0mnP+517Xi5p21PlpkNPJjDa4M r9FBE76l/kzthhLArKFkyNOpPoUCKYCuIijp0iVHjllm1MIJZTAds0dayHCwcCja 7/0pI0w= -----END CERTIFICATE-----Generated at Wed Jun 18 23:34:17 2025 by rpki-client