$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/304DD002EFAB11EF97C9610FC4F9AE02.roa File: 304DD002EFAB11EF97C9610FC4F9AE02.roa (raw, json) Hash identifier: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs= Subject key identifier: BB:E1:6A:0F:37:4F:DA:CC:DF:DB:52:FC:10:1E:CC:CA:F0:C5:EA:B8 Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 4C Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/304DD002EFAB11EF97C9610FC4F9AE02.roa Signing time: Tue 03 Jun 2025 07:38:41 +0000 ROA not before: Tue 03 Jun 2025 07:38:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139077 IP address blocks: 103.139.104.0/23 maxlen: 24 202.4.28.0/23 maxlen: 24 2001:df0:7380::/48 maxlen: 48 2401:c4a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Jun 3 07:38:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683ea681-207c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1f:5d:02:b2:ca:be:4e:9e:1c:58:1b:13:b1: b9:a9:30:a0:75:74:36:c4:f4:5b:7d:7e:97:59:f9: 5f:28:ca:62:ac:f5:19:ef:be:71:ef:bd:27:52:0f: 58:5a:ea:d2:7d:6f:f3:3f:eb:29:11:26:12:fb:f7: a4:74:f7:6f:81:2b:c6:ba:30:e5:de:41:af:dd:95: ca:54:e6:4a:78:f3:c4:aa:ed:bf:ca:ca:38:d6:4d: b6:9f:87:f6:ce:82:19:9a:82:3b:3d:10:50:57:a9: 57:f4:13:84:d4:b1:4e:f3:05:45:6a:25:74:29:e5: 8e:ed:24:ef:17:8f:91:10:f9:8a:fe:0e:35:87:52: 66:b1:3c:0e:4e:66:a5:7d:a4:dd:fa:5b:95:e6:06: 1a:7a:ad:9f:d7:01:c2:32:d4:e2:18:79:5b:0d:47: 22:39:c6:6c:56:7b:29:56:71:b2:54:56:90:14:c8: 0e:14:1b:bd:88:46:09:b0:d6:83:66:08:81:b0:0a: 9b:c2:4a:26:62:3c:8e:b0:d0:4d:14:1c:b8:a0:20: d1:7e:62:39:99:5a:71:6a:d3:96:75:79:71:06:91: 0d:12:b0:08:49:87:a4:82:63:66:ed:7d:93:c8:c0: b8:ad:14:fd:80:e0:07:59:c1:f1:53:99:4b:e9:55: bd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E1:6A:0F:37:4F:DA:CC:DF:DB:52:FC:10:1E:CC:CA:F0:C5:EA:B8 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/304DD002EFAB11EF97C9610FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.104.0/23 202.4.28.0/23 IPv6: 2001:df0:7380::/48 2401:c4a0::/32 Signature Algorithm: sha256WithRSAEncryption 54:b9:65:c9:5a:17:00:d8:80:cc:00:b7:94:5f:cb:ad:45:83: 35:0c:4c:51:77:b1:38:3a:66:21:e3:f4:83:bc:dc:81:df:58: 5e:47:5d:5d:bb:9b:35:a3:9a:ba:0a:5e:d8:02:bb:f5:ad:a5: 21:c7:48:9d:92:da:e7:05:7c:db:ba:b8:38:9b:95:0c:68:f7: 4d:02:cf:bc:2a:5e:17:b0:40:f1:c5:1f:ae:76:61:73:9b:41: 27:f7:35:61:3b:de:25:90:07:a3:94:20:42:ed:b4:38:bf:01: 8f:1f:7a:11:b2:91:49:d8:c7:a1:e7:32:a4:a9:9f:a8:24:36: e1:fc:e5:28:ad:a4:1e:8d:52:02:42:8e:7e:c4:17:eb:ca:75: ad:f4:36:51:29:26:30:df:54:33:e1:85:97:bc:75:ae:e0:8d: 1c:4c:38:09:00:0b:64:e8:4c:fb:f4:48:dd:48:3b:bf:26:4c: 93:a9:c5:54:6e:a4:89:38:a3:4d:b8:0c:da:a0:da:45:69:ae: 0b:d9:45:20:97:b8:37:08:c8:b2:f3:6a:5f:c3:54:43:d9:65: 32:37:df:0a:82:00:b5:8f:12:0b:c5:88:9a:3f:e1:e2:59:c1: 3e:8e:06:96:7b:9e:58:73:c9:3b:64:80:5a:de:b9:21:35:05: f4:57:ba:79 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MEY5MDExMC8GA1UEBRMoNUMwQTM1MjNGRDM2NDVBNzYzNUFGMjUxOUFEQ0QwMDJF MTMyRkJDRTAeFw0yNTA2MDMwNzM4NDFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2VhNjgxLTIwN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuH10Cssq+Tp4cWBsTsbmpMKB1dDbE9Ft9fpdZ+V8oymKs9RnvvnHvvSdSD1ha 6tJ9b/M/6ykRJhL796R092+BK8a6MOXeQa/dlcpU5kp488Sq7b/KyjjWTbafh/bO ghmagjs9EFBXqVf0E4TUsU7zBUVqJXQp5Y7tJO8Xj5EQ+Yr+DjWHUmaxPA5OZqV9 pN36W5XmBhp6rZ/XAcIy1OIYeVsNRyI5xmxWeylWcbJUVpAUyA4UG72IRgmw1oNm CIGwCpvCSiZiPI6w0E0UHLigINF+YjmZWnFq05Z1eXEGkQ0SsAhJh6SCY2btfZPI wLitFP2A4AdZwfFTmUvpVb3fAgMBAAGjggKzMIICrzAdBgNVHQ4EFgQUu+FqDzdP 2szf21L8EB7MyvDF6rgwHwYDVR0jBBgwFoAUXAo1I/02RadjWvJRmtzQAuEy+84w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwRjkwLzA0Nzc5QjlDRUQ4 MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEFvMUlfMDJSYWRqV3ZKUm10elFBdUV5LTg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEY5MC8wNDc3OUI5Q0VEODExMUVGQTAwMzY2MTZDNEY5QUUwMi8zMDRERDAwMkVG QUIxMUVGOTdDOTYxMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA9BggrBgEFBQcBBwEB/wQu MCwwEgQCAAEwDAMEAWeLaAMEAcoEHDAWBAIAAjAQAwcAIAEN8HOAAwUAJAHEoDAN BgkqhkiG9w0BAQsFAAOCAQEAVLllyVoXANiAzAC3lF/LrUWDNQxMUXexODpmIeP0 g7zcgd9YXkddXbubNaOaugpe2AK79a2lIcdInZLa5wV827q4OJuVDGj3TQLPvCpe F7BA8cUfrnZhc5tBJ/c1YTveJZAHo5QgQu20OL8Bjx96EbKRSdjHoecypKmfqCQ2 4fzlKK2kHo1SAkKOfsQX68p1rfQ2USkmMN9UM+GFl7x1ruCNHEw4CQALZOhM+/RI 3Ug7vyZMk6nFVG6kiTijTbgM2qDaRWmuC9lFIJe4NwjIsvNqX8NUQ9llMjffCoIA tY8SC8WImj/h4lnBPo4GlnueWHPJO2SAWt65ITUF9Fe6eQ== -----END CERTIFICATE-----Generated at Mon Jun 16 22:04:12 2025 by rpki-client