$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa File: 5DA849821C1211EA819EA46EC4F9AE02.roa (raw, json) Hash identifier: 9WFKUJqUOgDB07wt9CN3L8jHFMm+Bp2TRv/IY0cRCLM= Subject key identifier: 76:3F:D3:61:D7:AC:B3:40:71:50:98:B9:DC:39:CD:03:3D:7A:D4:32 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0C20 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa Signing time: Thu 12 Jun 2025 18:52:59 +0000 ROA not before: Thu 12 Jun 2025 18:52:59 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138546 IP address blocks: 43.243.96.0/22 maxlen: 24 103.38.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 18:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Jun 12 18:52:59 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=684b220b-f352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3a:c4:9a:f3:09:52:60:24:72:58:c3:cb:3d: e4:73:d5:8f:a5:ae:a3:61:31:63:d9:df:a9:c4:51: 63:d5:1d:b1:9e:94:ab:7f:72:80:43:fc:b4:52:4f: c3:24:b1:a2:4c:32:ca:aa:af:7f:ac:ab:78:7f:3b: df:fe:78:62:54:ac:5b:98:92:5e:5c:e0:1b:a2:76: 2c:ca:f9:fd:aa:f0:36:af:0d:a5:05:5a:b5:23:68: 8e:e3:ef:a9:8f:bb:c6:ad:1f:30:3a:9f:06:75:7c: f6:98:af:53:57:db:96:82:af:db:1f:94:0b:f6:11: c8:9a:b3:60:c6:f9:86:52:c0:5b:84:2a:2e:c7:a5: 0a:d9:ee:25:7d:bf:4f:d4:5d:69:3f:0f:2b:a5:de: af:80:7e:a9:56:e5:11:19:c4:da:7a:62:ac:a4:9d: 0f:1f:62:37:09:fe:dc:82:2e:35:46:c3:40:71:59: d7:ad:a8:12:c2:61:a7:93:ba:3e:fb:96:d8:1c:5d: 15:c8:40:52:f7:95:26:c4:28:38:74:67:67:ec:1f: 0a:5f:dc:83:63:1a:ab:a1:f0:4d:22:86:f5:1c:6b: 21:6f:6a:c3:8d:43:09:29:5e:30:13:24:e9:9b:35: 03:7e:16:c0:ec:8f:43:cd:6a:30:60:8c:66:b0:b3: 3a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:3F:D3:61:D7:AC:B3:40:71:50:98:B9:DC:39:CD:03:3D:7A:D4:32 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.96.0/22 103.38.196.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:d4:09:a9:f9:f3:33:48:da:11:0f:dc:73:82:5f:87:4e:ac: 2f:69:d0:8c:64:1d:4c:ba:6a:d4:ad:65:68:53:44:20:31:d1: ab:41:e9:37:a1:30:8a:ee:57:99:1d:9a:f5:96:8a:41:11:94: 4c:8c:2e:b9:48:8a:43:c7:d8:bb:c2:78:9a:46:2c:e9:55:33: aa:b2:b4:e6:20:f1:d7:fb:3b:31:59:78:7e:3e:e8:90:fa:54: f0:0a:7c:9c:ee:85:a3:62:9f:4b:a1:f7:0c:7f:1b:22:c3:27: bf:ca:4b:21:14:42:3c:14:86:0b:a2:25:9d:2c:ed:53:bf:48: ed:74:34:b2:c6:5e:fa:c3:6d:ca:f0:f1:94:c6:7f:bf:d0:fa: 4f:d7:cd:8a:94:af:d4:70:a3:91:37:78:da:af:85:58:c6:6c: d2:0b:b4:9e:b9:e7:5d:0a:68:d8:0c:85:5d:14:b3:88:e9:69: 80:86:70:03:d0:73:fb:d8:73:bb:3f:c3:76:7d:5a:80:c1:e6: af:1a:0e:69:d2:f4:fc:c8:db:1d:04:95:5a:3b:df:16:10:af: 43:eb:bd:74:7b:50:86:3a:9d:e5:45:ac:61:ca:ca:18:45:22: 7d:33:dd:b0:4d:bf:6c:96:24:6c:00:d7:b3:dd:af:4d:39:6b: a6:cf:e1:23 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjUwNjEyMTg1MjU5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiMjIwYi1mMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDrEmvMJUmAkcljDyz3kc9WPpa6jYTFj2d+pxFFj1R2xnpSrf3KAQ/y0Uk/D JLGiTDLKqq9/rKt4fzvf/nhiVKxbmJJeXOAbonYsyvn9qvA2rw2lBVq1I2iO4++p j7vGrR8wOp8GdXz2mK9TV9uWgq/bH5QL9hHImrNgxvmGUsBbhCoux6UK2e4lfb9P 1F1pPw8rpd6vgH6pVuURGcTaemKspJ0PH2I3Cf7cgi41RsNAcVnXragSwmGnk7o+ +5bYHF0VyEBS95UmxCg4dGdn7B8KX9yDYxqrofBNIob1HGshb2rDjUMJKV4wEyTp mzUDfhbA7I9DzWowYIxmsLM66QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHY/02HX rLNAcVCYudw5zQM9etQyMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvNURBODQ5ODIx QzEyMTFFQTgxOUVBNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr82ADBAJnJsQwDQYJKoZIhvcNAQELBQADggEBACvUCan5 8zNI2hEP3HOCX4dOrC9p0IxkHUy6atStZWhTRCAx0atB6TehMIruV5kdmvWWikER lEyMLrlIikPH2LvCeJpGLOlVM6qytOYg8df7OzFZeH4+6JD6VPAKfJzuhaNin0uh 9wx/GyLDJ7/KSyEUQjwUhguiJZ0s7VO/SO10NLLGXvrDbcrw8ZTGf7/Q+k/XzYqU r9Rwo5E3eNqvhVjGbNILtJ65510KaNgMhV0Us4jpaYCGcAPQc/vYc7s/w3Z9WoDB 5q8aDmnS9PzI2x0ElVo73xYQr0PrvXR7UIY6neVFrGHKyhhFIn0z3bBNv2yWJGwA 17Pdr005a6bP4SM= -----END CERTIFICATE-----Generated at Mon Jun 23 00:39:02 2025 by rpki-client