$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/9ED423000B1211F08F4E1E7EC4F9AE02.roa File: 9ED423000B1211F08F4E1E7EC4F9AE02.roa (raw, json) Hash identifier: v8qSAeEdxSO2j5pYLLpKU3/5CkL0nXrFia2RZ6BC5b8= Subject key identifier: 7D:3D:EC:57:BA:1E:3A:22:E5:F5:8F:FE:B6:AF:5F:C1:BD:1E:EB:E7 Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Certificate serial: 03B1 Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/9ED423000B1211F08F4E1E7EC4F9AE02.roa Signing time: Thu 05 Jun 2025 02:57:38 +0000 ROA not before: Thu 05 Jun 2025 02:57:38 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 55933 IP address blocks: 103.151.4.0/23 maxlen: 23 103.151.5.0/24 maxlen: 24 103.178.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 945 (0x3b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDCF1, serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Validity Not Before: Jun 5 02:57:38 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=684107a2-df3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4b:ee:23:8e:b1:f2:dd:03:95:24:db:ec:c9: fe:1d:14:c6:d4:fb:25:b9:05:ef:a7:c6:b8:12:52: a2:43:15:41:04:a5:30:fe:8c:79:30:14:f5:8f:12: 56:76:e3:67:49:23:71:0e:78:8c:e2:eb:39:8a:50: f9:69:0e:6f:fb:0b:14:a8:d3:74:7e:2f:8d:a5:5c: 8a:93:65:1c:89:68:0d:f2:e2:eb:a7:22:d1:00:bf: 67:ef:8a:10:20:ff:71:c8:de:91:68:ee:10:b9:cd: 82:05:ab:c5:b7:53:3f:70:2a:65:d1:62:03:4b:d2: b0:65:0f:b6:05:60:30:be:10:1d:73:e9:54:fe:e1: 3a:d3:12:14:11:9b:93:2a:a7:7f:c6:fc:3f:aa:f4: 78:22:7c:4b:f0:ef:d6:b6:b4:14:57:81:b0:5e:55: c0:17:c4:01:47:24:a4:f1:79:37:40:8c:8e:df:46: 35:58:2f:26:a4:5c:9c:08:f2:e3:ef:0a:00:aa:a4: 9d:d4:4c:70:b5:f8:a8:23:03:70:b2:af:0c:d7:dc: 41:fd:10:19:bd:5c:fb:f8:21:19:57:22:5f:e3:a9: 1c:a1:61:85:e8:f1:19:ed:6f:2d:8e:d5:93:77:0c: f1:60:38:72:cc:1a:69:c0:dd:05:bd:a7:e2:31:1b: 49:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3D:EC:57:BA:1E:3A:22:E5:F5:8F:FE:B6:AF:5F:C1:BD:1E:EB:E7 X509v3 Authority Key Identifier: keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/9ED423000B1211F08F4E1E7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.4.0/23 103.178.56.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:97:f2:39:58:b5:9f:a7:6b:85:4f:ab:25:ac:6d:62:15:3b: 91:a4:99:ae:ec:08:ce:ba:ea:30:c5:7d:22:94:06:e8:8d:f9: 83:91:0a:00:64:67:e5:bb:8e:ee:48:5f:1c:e2:f7:73:69:30: de:d2:51:53:da:0c:1e:09:87:c9:49:59:8b:75:e2:b1:42:a3: a7:48:33:6f:86:95:4a:66:d5:ae:e6:95:97:8c:84:ce:09:64: 1d:9e:72:52:07:3e:29:d6:8d:b9:24:4d:f9:f0:b8:1b:ce:05: 6d:91:52:a4:86:57:58:01:c4:b7:86:5b:cd:46:a4:96:68:86: 91:ae:5c:c9:19:41:0d:53:36:6c:f7:22:30:16:3e:72:d6:d0: 4b:55:cf:24:cd:4b:0c:14:e0:fa:03:17:63:55:d1:90:74:14: ad:0f:e9:90:d9:e6:a6:12:02:31:d2:5b:1a:a5:6e:13:84:22: d2:a1:7f:f4:80:20:c8:fa:60:1f:1d:a6:89:4e:b3:db:22:b3: 18:66:09:3e:f4:41:c9:c5:0a:b3:8d:93:fa:4e:f5:14:6d:ee: c1:7c:4d:16:06:23:23:58:09:0f:1a:e7:b0:c0:69:df:2b:93: 31:6b:84:95:98:c8:55:cf:72:c0:a8:83:82:f7:e6:19:76:9b: 6a:69:67:98 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC NDc1QzdCOUEwHhcNMjUwNjA1MDI1NzM4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMDdhMi1kZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEvuI46x8t0DlSTb7Mn+HRTG1PsluQXvp8a4ElKiQxVBBKUw/ox5MBT1jxJW duNnSSNxDniM4us5ilD5aQ5v+wsUqNN0fi+NpVyKk2UciWgN8uLrpyLRAL9n74oQ IP9xyN6RaO4Quc2CBavFt1M/cCpl0WIDS9KwZQ+2BWAwvhAdc+lU/uE60xIUEZuT Kqd/xvw/qvR4InxL8O/WtrQUV4GwXlXAF8QBRySk8Xk3QIyO30Y1WC8mpFycCPLj 7woAqqSd1ExwtfioIwNwsq8M19xB/RAZvVz7+CEZVyJf46kcoWGF6PEZ7W8tjtWT dwzxYDhyzBppwN0FvafiMRtJyQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFH097Fe6 Hjoi5fWP/ravX8G9HuvnMB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4 M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvOUVENDIzMDAw QjEyMTFGMDhGNEUxRTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnlwQDBAFnsjgwDQYJKoZIhvcNAQELBQADggEBAEqX8jlY tZ+na4VPqyWsbWIVO5Gkma7sCM666jDFfSKUBuiN+YORCgBkZ+W7ju5IXxzi93Np MN7SUVPaDB4Jh8lJWYt14rFCo6dIM2+GlUpm1a7mlZeMhM4JZB2eclIHPinWjbkk TfnwuBvOBW2RUqSGV1gBxLeGW81GpJZohpGuXMkZQQ1TNmz3IjAWPnLW0EtVzyTN SwwU4PoDF2NV0ZB0FK0P6ZDZ5qYSAjHSWxqlbhOEItKhf/SAIMj6YB8dpolOs9si sxhmCT70QcnFCrONk/pO9RRt7sF8TRYGIyNYCQ8a57DAad8rkzFrhJWYyFXPcsCo g4L35hl2m2ppZ5g= -----END CERTIFICATE-----Generated at Sat Jun 14 05:32:21 2025 by rpki-client