$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa File: 862D5B3A2C8611EEB04B7B66C4F9AE02.roa (raw, json) Hash identifier: XO+ul7lF7sjvsPZ/wUsLZ1kf4agxiZYpp0ew7HMRh6M= Subject key identifier: D2:3D:FF:08:55:53:68:23:35:12:08:CD:C3:B3:D7:A6:20:12:0A:40 Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: 016D Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa Signing time: Tue 03 Jun 2025 04:02:34 +0000 ROA not before: Tue 03 Jun 2025 04:02:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150371 IP address blocks: 103.204.32.0/24 maxlen: 24 103.204.33.0/24 maxlen: 24 2001:df2:7840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2, serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Validity Not Before: Jun 3 04:02:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e73d9-8641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ad:e0:ab:61:9b:07:d5:ec:5b:8e:46:83:c7: e4:4d:a2:4d:a1:80:84:88:02:fe:7f:91:c1:83:9e: 5d:1e:47:5a:6f:d6:ab:ab:74:28:8c:62:cb:5e:ef: 32:9f:ea:73:a2:92:1e:ef:0b:c7:2b:33:b4:3b:50: 8d:3b:f6:65:7e:0c:97:78:41:94:5e:10:e9:89:86: 70:89:4c:5b:ba:16:d4:aa:a1:fb:35:bc:44:0b:8d: 2f:87:3e:b7:1c:cf:cc:5d:5f:f7:c5:a6:e3:8d:bd: 15:e4:07:a0:63:88:73:ac:47:b5:3f:a3:1b:b4:6f: 8e:c7:ad:01:9b:f3:89:c9:bd:ef:5a:87:46:f5:33: e7:56:58:8d:af:ba:f0:48:2d:bd:51:98:be:55:b8: 34:4a:6f:20:e4:57:82:e8:11:3d:77:b9:d6:d6:3a: c0:37:d3:32:80:c3:1b:a7:40:f5:4a:e8:d7:b2:38: 4e:11:33:9c:5e:2a:a9:b2:e1:cd:22:54:d6:a5:22: 2e:09:19:42:a6:37:08:7e:27:de:97:70:48:2c:7a: 25:2b:9f:1b:47:ee:70:6a:5e:9c:2c:6b:74:95:94: ce:d6:30:96:7a:c3:4c:7d:96:8e:fb:bd:70:1f:f4: aa:ef:1f:e0:d9:ee:a7:8d:17:1e:10:0b:be:77:b8: 78:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:3D:FF:08:55:53:68:23:35:12:08:CD:C3:B3:D7:A6:20:12:0A:40 X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.32.0/23 IPv6: 2001:df2:7840::/48 Signature Algorithm: sha256WithRSAEncryption 1f:d9:62:e7:cb:76:ab:f0:53:18:2a:26:b5:ab:8c:69:3a:b4: df:ce:88:07:84:e4:61:93:65:72:52:4d:62:19:5d:19:6b:5b: 04:cb:e5:01:3b:04:cb:f9:3f:e0:5b:3b:dc:b3:06:4c:92:bd: f1:92:61:38:62:3d:16:47:c8:e8:07:68:64:78:f0:91:e1:ef: 93:85:04:83:1a:f8:b4:20:bf:97:11:e1:5f:1a:81:92:10:7c: e8:db:21:7b:9a:94:fe:48:c8:ea:b6:21:e8:b1:08:b4:bf:e6: fd:a2:5a:48:ff:bd:f4:fc:66:54:8d:86:5b:fd:a1:b4:2c:da: 33:c6:c9:77:6d:d5:bb:50:0f:83:9d:cb:3f:f4:40:02:e1:bd: 04:7b:aa:7e:11:97:95:c7:27:f2:59:83:8a:8b:c8:fe:c8:06: eb:9d:16:25:8d:ac:d4:00:73:e8:bb:7b:47:8c:d4:b8:97:85: 3d:44:52:7a:81:9d:0a:9a:db:ac:96:23:4a:1f:67:bc:ff:83: 60:7b:54:be:47:6b:b9:80:ac:6e:2f:6e:fd:19:87:eb:be:d0: 15:06:ad:f3:58:95:a3:87:d3:f6:c1:d2:e5:a1:21:c9:09:b2: df:2b:57:9b:2d:28:d3:0e:de:01:61:40:51:be:65:92:29:74: e5:59:0e:75 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjUwNjAzMDQwMjM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNzNkOS04NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK3gq2GbB9XsW45Gg8fkTaJNoYCEiAL+f5HBg55dHkdab9arq3QojGLLXu8y n+pzopIe7wvHKzO0O1CNO/ZlfgyXeEGUXhDpiYZwiUxbuhbUqqH7NbxEC40vhz63 HM/MXV/3xabjjb0V5AegY4hzrEe1P6MbtG+Ox60Bm/OJyb3vWodG9TPnVliNr7rw SC29UZi+Vbg0Sm8g5FeC6BE9d7nW1jrAN9MygMMbp0D1SujXsjhOETOcXiqpsuHN IlTWpSIuCRlCpjcIfifel3BILHolK58bR+5wal6cLGt0lZTO1jCWesNMfZaO+71w H/Sq7x/g2e6njRceEAu+d7h4oQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNI9/whV U2gjNRIIzcOz16YgEgpAMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQzRDIvNDJDMUQ4RjgyQzg2MTFFRUE5Qjc0RjQzQzRGOUFFMDIvODYyRDVCM0Ey Qzg2MTFFRUIwNEI3QjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnzCAwDwQCAAIwCQMHACABDfJ4QDANBgkqhkiG9w0BAQsF AAOCAQEAH9li58t2q/BTGComtauMaTq0386IB4TkYZNlclJNYhldGWtbBMvlATsE y/k/4Fs73LMGTJK98ZJhOGI9FkfI6AdoZHjwkeHvk4UEgxr4tCC/lxHhXxqBkhB8 6Nshe5qU/kjI6rYh6LEItL/m/aJaSP+99PxmVI2GW/2htCzaM8bJd23Vu1APg53L P/RAAuG9BHuqfhGXlccn8lmDiovI/sgG650WJY2s1ABz6Lt7R4zUuJeFPURSeoGd CprbrJYjSh9nvP+DYHtUvkdruYCsbi9u/RmH677QFQat81iVo4fT9sHS5aEhyQmy 3ytXmy0o0w7eAWFAUb5lkil05VkOdQ== -----END CERTIFICATE-----Generated at Sat Jun 21 03:59:11 2025 by rpki-client