$ rpki-client -vvf rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/B4D2B6A2C1A811EA80577A47C4F9AE02.roa File: B4D2B6A2C1A811EA80577A47C4F9AE02.roa (raw, json) Hash identifier: oyNqHuI92CZn4/vowEHhL13J2MzcFLxMYrnO9NR1z4I= Subject key identifier: 57:DC:04:A3:8F:9B:18:E0:25:61:0D:AF:F3:BC:A5:54:D7:E9:4D:39 Certificate issuer: /CN=A91C254D/serialNumber=8D41336CB5D0AFFF1028216D9534BB7E02C3E785 Certificate serial: 0887 Authority key identifier: 8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/B4D2B6A2C1A811EA80577A47C4F9AE02.roa Signing time: Mon 16 Jun 2025 20:46:51 +0000 ROA not before: Mon 16 Jun 2025 20:46:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140633 IP address blocks: 103.151.150.0/23 maxlen: 23 2001:df3:c680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2183 (0x887) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C254D, serialNumber=8D41336CB5D0AFFF1028216D9534BB7E02C3E785 Validity Not Before: Jun 16 20:46:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685082ba-5b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:35:91:2a:d6:13:f4:29:9a:e1:a5:7b:de:61: d4:36:d0:96:5a:3c:cb:b8:2e:95:8a:72:a6:fb:83: 73:53:ab:47:95:11:eb:83:0b:1f:64:2c:1d:5a:be: 6d:c7:dc:c7:63:96:9b:7d:77:b0:cf:c5:59:26:52: a0:c3:27:23:06:a9:cd:58:df:3f:74:ca:24:33:79: df:f7:eb:78:54:6a:4d:63:98:63:16:33:a6:5f:5b: 3b:85:13:5b:79:e9:23:9f:89:10:37:ad:75:9a:5e: b0:ad:45:95:ef:12:9c:34:66:aa:7c:b8:ed:cb:51: 4a:5a:1b:df:d7:75:81:2b:e0:b3:a1:42:cc:db:5f: 1a:f0:8a:6d:5f:b5:01:88:84:bf:d6:48:59:b3:ae: 13:fb:f4:5a:8d:85:9d:57:68:4b:50:54:a5:27:c0: ac:91:ed:39:cc:cd:cb:68:50:54:f0:52:d2:f5:ba: 28:82:d5:ee:c7:72:78:93:a3:a1:08:8d:17:da:dc: b3:64:ee:57:ef:24:fe:d5:c0:a6:b3:2b:53:45:df: ff:fe:e9:30:84:64:87:6a:cc:85:4a:f5:f6:d3:60: 9d:e0:45:af:79:03:b3:5a:d9:48:5b:ea:6b:f3:14: b7:fb:b3:f4:fc:84:ce:ff:a4:61:1e:c5:dd:6e:85: e9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DC:04:A3:8F:9B:18:E0:25:61:0D:AF:F3:BC:A5:54:D7:E9:4D:39 X509v3 Authority Key Identifier: keyid:8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/B4D2B6A2C1A811EA80577A47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.150.0/23 IPv6: 2001:df3:c680::/48 Signature Algorithm: sha256WithRSAEncryption 4a:76:97:54:9e:15:cc:04:de:b6:89:e2:4a:50:19:44:ff:dd: 2c:bd:fe:bf:17:78:cf:69:11:47:be:4d:77:ad:49:92:5e:c5: e7:b8:7e:03:03:d5:a6:3b:67:30:b5:64:29:5a:08:f7:09:5d: b2:5c:e2:42:05:87:de:54:af:2a:09:9a:f4:d1:fd:4d:43:3b: d0:ad:af:8d:87:2d:c4:ed:51:1a:ed:0d:9d:a8:c0:0e:84:f8: 89:09:34:58:54:5d:34:c9:0e:10:83:23:71:8f:90:f3:b9:0a: b1:76:b0:30:ac:33:48:1a:97:f3:d9:c6:7f:cf:13:b5:65:ef: dd:33:ea:33:23:5a:8a:a9:ad:e8:10:b2:f6:97:42:27:c1:b8: 8e:a7:87:a4:f1:e0:1c:3d:2d:f9:73:c9:d6:7b:0c:33:8f:6c: 4b:4c:fa:61:08:0a:bf:60:b2:cf:83:ab:9c:aa:a2:46:cd:e9: 5d:2a:e6:7e:58:90:e7:e5:ec:e3:92:fc:fc:5e:68:bb:5b:93: 1b:b7:dd:ad:fe:13:0f:dd:29:ce:b7:25:c4:1c:cf:90:fd:d7: d1:85:02:7b:e3:d6:ab:da:1d:3d:07:e2:c0:78:48:c8:c3:8a: 65:a8:b8:a6:8e:ec:1b:2a:81:50:ed:43:6f:4b:4b:51:a7:fc: d0:f2:40:2d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI1NEQxMTAvBgNVBAUTKDhENDEzMzZDQjVEMEFGRkYxMDI4MjE2RDk1MzRCQjdF MDJDM0U3ODUwHhcNMjUwNjE2MjA0NjUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwODJiYS01Yjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjWRKtYT9Cma4aV73mHUNtCWWjzLuC6VinKm+4NzU6tHlRHrgwsfZCwdWr5t x9zHY5abfXewz8VZJlKgwycjBqnNWN8/dMokM3nf9+t4VGpNY5hjFjOmX1s7hRNb eekjn4kQN611ml6wrUWV7xKcNGaqfLjty1FKWhvf13WBK+CzoULM218a8IptX7UB iIS/1khZs64T+/RajYWdV2hLUFSlJ8Cske05zM3LaFBU8FLS9boogtXux3J4k6Oh CI0X2tyzZO5X7yT+1cCmsytTRd///ukwhGSHasyFSvX202Cd4EWveQOzWtlIW+pr 8xS3+7P0/ITO/6RhHsXdboXpzQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFfcBKOP mxjgJWENr/O8pVTX6U05MB8GA1UdIwQYMBaAFI1BM2y10K//ECghbZU0u34Cw+eF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjU0RC84Q0U2MkRGQUMx QTcxMUVBOUQ2Qjg3NDNDNEY5QUUwMi9qVUV6YkxYUXJfOFFLQ0Z0bFRTN2ZnTEQ1 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVRXpiTFhRcl84UUtDRnRsVFM3ZmdMRDU0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI1NEQvOENFNjJERkFDMUE3MTFFQTlENkI4NzQzQzRGOUFFMDIvQjREMkI2QTJD MUE4MTFFQTgwNTc3QTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnl5YwDwQCAAIwCQMHACABDfPGgDANBgkqhkiG9w0BAQsF AAOCAQEASnaXVJ4VzATetoniSlAZRP/dLL3+vxd4z2kRR75Nd61Jkl7F57h+AwPV pjtnMLVkKVoI9wldslziQgWH3lSvKgma9NH9TUM70K2vjYctxO1RGu0NnajADoT4 iQk0WFRdNMkOEIMjcY+Q87kKsXawMKwzSBqX89nGf88TtWXv3TPqMyNaiqmt6BCy 9pdCJ8G4jqeHpPHgHD0t+XPJ1nsMM49sS0z6YQgKv2Cyz4OrnKqiRs3pXSrmfliQ 5+Xs45L8/F5ou1uTG7fdrf4TD90pzrclxBzPkP3X0YUCe+PWq9odPQfiwHhIyMOK Zai4po7sGyqBUO1Db0tLUaf80PJALQ== -----END CERTIFICATE-----Generated at Thu Jun 19 15:06:16 2025 by rpki-client