$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa File: 5B01916AD15911EE8B8BB151C4F9AE02.roa (raw, json) Hash identifier: j94Y9byA6hrJjWvSwlJFmsvrVOzYBezuSr8IKFG6YL4= Subject key identifier: C4:A0:A0:59:94:75:EC:F9:04:9C:63:CB:04:A5:D6:A4:90:05:9E:DE Certificate issuer: /CN=A91BB87C/serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Certificate serial: 0CB5 Authority key identifier: EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa Signing time: Sat 26 Jul 2025 18:28:29 +0000 ROA not before: Sat 26 Jul 2025 18:28:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134204 IP address blocks: 103.58.72.0/22 maxlen: 24 203.76.220.0/22 maxlen: 24 2400:4d40::/32 maxlen: 32 2400:4d40::/36 maxlen: 36 2400:4d40:1000::/36 maxlen: 36 2400:4d40:2000::/36 maxlen: 36 2400:4d40:3000::/36 maxlen: 36 2400:4d40:4000::/36 maxlen: 36 2400:4d40:5000::/36 maxlen: 36 2400:4d40:6000::/36 maxlen: 36 2400:4d40:7000::/36 maxlen: 36 2400:4d40:8000::/36 maxlen: 36 2400:4d40:9000::/36 maxlen: 36 2400:4d40:a000::/36 maxlen: 36 2400:4d40:b000::/36 maxlen: 36 2400:4d40:c000::/36 maxlen: 36 2400:4d40:d000::/36 maxlen: 36 2400:4d40:e000::/36 maxlen: 36 2400:4d40:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB87C, serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Validity Not Before: Jul 26 18:28:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68851e4d-6f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:36:2f:b1:6b:47:5f:0d:48:f1:5b:c1:e4:ee: 4d:47:38:ce:be:b2:b5:48:91:ae:6c:56:0d:6f:81: 19:8f:8d:bc:eb:d5:85:42:9f:33:bf:47:9d:f5:70: 7d:5c:6d:d3:0a:00:97:1d:7a:cb:69:1a:cf:36:86: cd:1f:56:ee:ea:18:47:b8:94:23:64:e9:3b:24:9b: aa:64:03:2d:43:bb:f4:df:7f:fd:fc:45:1b:1a:9c: 1a:e0:ab:68:2c:ee:ba:d5:b5:65:ab:70:8b:d8:9c: c3:30:d2:b0:f2:94:dc:c0:21:e0:a1:5d:d2:96:fe: 4c:9a:d1:18:c5:85:10:e7:3a:a0:92:a3:f2:0f:7c: 23:b4:74:bc:78:32:2f:c7:87:8d:34:28:8e:61:65: fb:74:57:4e:30:21:dc:0c:96:be:22:f4:f9:d4:f4: 84:44:85:c3:c3:71:8c:e0:24:c6:b3:5e:e7:b7:d9: 3d:8f:dd:ec:0a:0a:40:6a:ee:1b:ea:7d:0c:5d:6e: de:ae:28:b2:2d:30:3e:04:9e:44:25:74:0c:79:55: 49:1d:4b:2b:76:cd:1f:56:a0:7c:67:5b:1e:78:e3: 83:6a:5e:fe:3e:a3:08:48:c7:14:ab:e8:6e:4c:4c: 21:db:56:de:38:d6:2e:54:cc:99:e6:c4:a5:26:58: a0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A0:A0:59:94:75:EC:F9:04:9C:63:CB:04:A5:D6:A4:90:05:9E:DE X509v3 Authority Key Identifier: keyid:EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.72.0/22 203.76.220.0/22 IPv6: 2400:4d40::/32 Signature Algorithm: sha256WithRSAEncryption 95:26:23:ec:f0:08:97:5d:8e:74:92:d9:50:2c:6d:f6:f5:23: 46:55:69:97:9d:53:01:b2:87:82:e1:23:41:03:04:88:e1:2e: b8:dd:20:4a:dd:0f:df:b2:28:54:be:16:68:e3:3f:63:9e:f2: 3a:5b:f3:33:31:4e:44:d8:96:7d:ae:a4:df:11:04:29:24:d9: 34:9e:99:56:86:74:cd:45:17:54:4a:50:5d:e3:ff:76:be:80: 2a:5a:35:96:fd:51:15:cd:9f:75:c2:c0:ef:14:60:53:45:aa: 65:28:2e:16:cd:d5:c5:a1:86:c0:46:11:0e:d8:1b:00:d5:ea: ca:9b:a2:89:4e:3f:61:a7:e5:e9:89:cc:da:9e:41:84:b0:aa: 4c:2f:90:34:c3:7f:d7:c9:2f:9b:7f:5b:95:d5:07:07:be:55: e2:f1:90:8b:3a:19:10:be:52:dd:75:55:54:2f:f7:64:ca:b3: 02:bd:49:6d:85:08:69:d5:bc:37:c5:c4:cf:e7:7f:49:4c:65: c8:e4:1d:9c:ae:25:54:67:5e:18:ef:25:1c:ce:dd:f8:2e:c9: 02:bc:1d:07:fe:c2:bf:e8:46:a0:da:a5:ee:51:29:dd:bb:66: 49:4f:8b:a2:a2:6d:dd:02:5f:5b:ee:97:37:45:b7:10:01:11: 23:18:c0:ca -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI4N0MxMTAvBgNVBAUTKEVBQTk2RENBNzQzMERGQTQ3MUNBMjlCODQzODM2QzFD ODBFNTQzOUUwHhcNMjUwNzI2MTgyODI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1MWU0ZC02ZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTYvsWtHXw1I8VvB5O5NRzjOvrK1SJGubFYNb4EZj42869WFQp8zv0ed9XB9 XG3TCgCXHXrLaRrPNobNH1bu6hhHuJQjZOk7JJuqZAMtQ7v033/9/EUbGpwa4Kto LO661bVlq3CL2JzDMNKw8pTcwCHgoV3Slv5MmtEYxYUQ5zqgkqPyD3wjtHS8eDIv x4eNNCiOYWX7dFdOMCHcDJa+IvT51PSERIXDw3GM4CTGs17nt9k9j93sCgpAau4b 6n0MXW7eriiyLTA+BJ5EJXQMeVVJHUsrds0fVqB8Z1seeOODal7+PqMISMcUq+hu TEwh21beONYuVMyZ5sSlJligOwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMSgoFmU dez5BJxjywSl1qSQBZ7eMB8GA1UdIwQYMBaAFOqpbcp0MN+kccopuEODbByA5UOe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjg3Qy82M0Q5MDMxMkZD MDIxMUU5QTQxOUYzNDBDNEY5QUUwMi82cWx0eW5RdzM2Unh5aW00UTROc0hJRGxR NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZxbHR5blF3MzZSeHlpbTRRNE5zSElEbFE1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI4N0MvNjNEOTAzMTJGQzAyMTFFOUE0MTlGMzQwQzRGOUFFMDIvNUIwMTkxNkFE MTU5MTFFRThCOEJCMTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnOkgDBALLTNwwDQQCAAIwBwMFACQATUAwDQYJKoZIhvcN AQELBQADggEBAJUmI+zwCJddjnSS2VAsbfb1I0ZVaZedUwGyh4LhI0EDBIjhLrjd IErdD9+yKFS+FmjjP2Oe8jpb8zMxTkTYln2upN8RBCkk2TSemVaGdM1FF1RKUF3j /3a+gCpaNZb9URXNn3XCwO8UYFNFqmUoLhbN1cWhhsBGEQ7YGwDV6sqboolOP2Gn 5emJzNqeQYSwqkwvkDTDf9fJL5t/W5XVBwe+VeLxkIs6GRC+Ut11VVQv92TKswK9 SW2FCGnVvDfFxM/nf0lMZcjkHZyuJVRnXhjvJRzO3fguyQK8HQf+wr/oRqDape5R Kd27ZklPi6Kibd0CX1vulzdFtxABESMYwMo= -----END CERTIFICATE-----Generated at Mon Aug 11 13:11:54 2025 by rpki-client