$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa File: 3408F1BA450811F09650FF5FC4F9AE02.roa (raw, json) Hash identifier: bCkwnolEga96G4fQjLHTSTCqelRgfcxersU3tEYQQXA= Subject key identifier: 42:FE:1D:06:B6:97:DD:B0:69:63:F0:DE:15:50:9E:DD:09:98:73:01 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 39 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa Signing time: Mon 09 Jun 2025 08:03:19 +0000 ROA not before: Mon 09 Jun 2025 08:03:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 401696 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: Jun 9 08:03:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68469546-a046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4d:8f:14:73:c9:0a:a1:60:09:ba:96:0a:2e: d0:57:42:bf:25:41:59:f3:cd:c5:3c:e4:7a:96:ac: 1b:b8:af:be:dd:ae:15:7b:0a:a1:fb:bc:8c:ce:a5: b5:3b:27:00:3d:5c:c8:12:1a:05:05:a5:03:da:97: 4e:8a:02:58:eb:25:69:22:45:70:3b:41:b4:12:82: bf:74:9a:be:28:1f:be:06:48:26:68:bc:9a:2a:d7: 52:ba:74:ce:5b:7f:68:56:d2:d6:e2:24:6d:84:55: 08:95:dd:cf:c1:24:d7:7d:27:3e:76:18:02:e3:ed: 8b:3f:08:e2:f3:b1:12:2e:53:d9:0f:81:d4:b2:94: d6:55:ff:aa:68:da:71:09:43:56:5e:50:f7:10:c6: 04:98:b7:20:84:7d:3c:d7:1d:b2:ec:2d:41:23:15: 50:dc:ac:bd:72:bf:c2:b7:1c:e3:a4:e9:1e:23:01: c0:69:46:c0:8c:4c:4e:c4:15:e4:e0:9b:db:71:93: 6f:fb:f0:20:d1:73:3a:f0:2b:53:0e:dd:7f:e1:f5: 72:eb:bf:62:ac:86:1d:30:67:d4:fd:1f:87:c6:6e: f6:e0:df:81:ac:70:18:44:3f:de:58:22:26:ba:04: ff:98:ae:3b:31:61:7e:7c:08:a3:21:69:2a:30:28: 23:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FE:1D:06:B6:97:DD:B0:69:63:F0:DE:15:50:9E:DD:09:98:73:01 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 92:c7:f3:06:bc:a5:d2:af:12:17:f6:a3:fd:5a:f6:5f:1c:fe: 50:6a:8e:a6:a3:1a:1c:92:8c:ee:9b:ee:d4:07:fe:ef:98:0e: 71:3e:24:4e:84:f6:a6:63:97:32:56:a3:bb:88:9b:e6:17:0a: 01:79:7a:16:fb:f8:b3:01:4b:6c:b7:cc:25:dc:80:13:33:d0: fa:f4:88:b7:11:ef:75:51:94:b5:c5:b2:aa:e3:60:6b:cb:a4: a1:1c:2a:77:39:73:65:55:2c:81:62:b5:36:fc:2f:c5:e0:00: f1:3f:9c:b1:af:ff:b3:20:d6:b9:17:ca:d2:5c:73:cb:cc:5d: 7e:09:63:c9:f6:2e:13:41:7f:01:52:a0:4d:72:59:20:1d:bc: 1e:0f:e4:00:92:ef:99:12:a7:61:18:bf:19:73:e9:1c:31:17: cc:98:91:dc:8a:4f:9e:62:c6:78:e5:b3:d7:46:58:11:51:ba: f0:48:8b:ce:d5:40:24:f7:e2:40:0f:34:50:b8:11:8b:6e:e9: e4:f0:29:fa:14:68:b1:de:8a:aa:11:7b:93:0b:f2:f2:3c:37: 91:ec:24:5f:54:a2:a9:4e:04:71:db:35:ec:7d:98:9d:82:80: 41:22:10:58:a1:f3:fa:ca:fd:33:cf:8b:0e:1e:69:d8:a4:89: 8a:0b:96:e9 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA2MDkwODAzMTlaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDY5NTQ2LWEwNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpTY8Uc8kKoWAJupYKLtBXQr8lQVnzzcU85HqWrBu4r77drhV7CqH7vIzOpbU7 JwA9XMgSGgUFpQPal06KAljrJWkiRXA7QbQSgr90mr4oH74GSCZovJoq11K6dM5b f2hW0tbiJG2EVQiV3c/BJNd9Jz52GALj7Ys/COLzsRIuU9kPgdSylNZV/6po2nEJ Q1ZeUPcQxgSYtyCEfTzXHbLsLUEjFVDcrL1yv8K3HOOk6R4jAcBpRsCMTE7EFeTg m9txk2/78CDRczrwK1MO3X/h9XLrv2Kshh0wZ9T9H4fGbvbg34GscBhEP95YIia6 BP+YrjsxYX58CKMhaSowKCMXAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUQv4dBraX 3bBpY/DeFVCe3QmYcwEwHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8zNDA4RjFCQTQ1 MDgxMUYwOTY1MEZGNUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmd1iAMEAmd5XAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEA ksfzBryl0q8SF/aj/Vr2Xxz+UGqOpqMaHJKM7pvu1Af+75gOcT4kToT2pmOXMlaj u4ib5hcKAXl6Fvv4swFLbLfMJdyAEzPQ+vSItxHvdVGUtcWyquNga8ukoRwqdzlz ZVUsgWK1NvwvxeAA8T+csa//syDWuRfK0lxzy8xdfgljyfYuE0F/AVKgTXJZIB28 Hg/kAJLvmRKnYRi/GXPpHDEXzJiR3IpPnmLGeOWz10ZYEVG68EiLztVAJPfiQA80 ULgRi27p5PAp+hRosd6KqhF7kwvy8jw3kewkX1SiqU4Ecds17H2YnYKAQSIQWKHz +sr9M8+LDh5p2KSJiguW6Q== -----END CERTIFICATE-----Generated at Sun Jun 15 08:28:39 2025 by rpki-client