$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa File: 1E35039C42D511EEAE5F803AC4F9AE02.roa (raw, json) Hash identifier: 7+kogSfoA5KHnVdL5HUL3JnEUIAqvGpgOMdM8vTSlLs= Subject key identifier: 82:7F:A9:4D:29:D5:74:6A:58:D1:56:48:E1:D4:AD:D2:80:7A:F3:3B Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 0156 Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa Signing time: Mon 09 Jun 2025 03:42:11 +0000 ROA not before: Mon 09 Jun 2025 03:42:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4648 IP address blocks: 203.99.64.0/24 maxlen: 24 203.99.65.0/24 maxlen: 24 203.99.68.0/24 maxlen: 24 203.99.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103, serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Jun 9 03:42:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68465813-5ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:00:ba:9e:5d:fd:1c:36:54:b9:ac:5f:3b: 48:ff:53:2b:6a:e0:51:ad:26:1e:34:11:ff:e6:d6: d3:e9:15:d3:54:2a:0c:38:ea:e2:10:a3:af:76:15: c1:df:87:0b:8d:fd:14:2f:95:47:fb:80:37:64:43: 39:5e:cb:75:5a:a8:3f:68:82:1e:06:4d:be:fd:4c: f9:15:f1:f7:b4:74:0c:9c:20:62:a2:98:2d:e3:ca: bd:01:e2:0e:35:6a:9d:75:7b:ca:de:00:9c:3a:3d: 6c:52:6d:dc:2e:f7:98:a8:fc:35:3e:04:5d:94:a5: c7:63:2a:66:46:6c:25:9f:20:ba:7c:61:c6:77:e2: d8:01:aa:b3:20:b0:47:b6:5c:0d:bc:41:ad:90:13: 8e:fa:78:8e:eb:4f:23:97:0e:bb:77:45:75:6c:ef: d2:d0:6b:58:cd:50:a8:52:e6:28:16:4d:68:73:25: 24:8a:be:7d:90:5a:ff:8d:a1:c3:c1:c1:8d:bf:33: 63:bb:1c:ab:3c:a8:5b:25:48:10:c0:c3:b3:5b:6f: e3:0c:cc:d9:77:8c:17:15:98:fa:29:8d:85:04:fe: 47:c2:47:46:05:ac:f6:4e:1b:40:c9:db:c1:a5:de: 27:44:0f:6a:cb:16:c9:9d:84:67:63:82:db:59:1e: a3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7F:A9:4D:29:D5:74:6A:58:D1:56:48:E1:D4:AD:D2:80:7A:F3:3B X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.64.0/23 203.99.68.0/24 203.99.71.0/24 Signature Algorithm: sha256WithRSAEncryption 25:5b:e3:73:e6:3e:ba:04:e2:3d:36:d5:e2:77:cf:bf:56:5b: 18:eb:a2:b1:b2:3c:6d:88:49:e4:d1:c0:f2:c1:0a:1d:a5:a7: 83:fa:84:35:e9:9c:3d:7b:88:63:28:c3:95:68:45:10:e7:f3: 12:af:9b:95:04:0e:96:67:74:98:b9:49:41:2e:91:3e:76:a6: 59:5b:fd:d9:67:1e:16:59:ca:1c:f7:ea:b3:4e:60:9e:24:7d: ac:02:1a:fc:11:13:c5:8d:fc:99:28:ec:f7:bb:08:ed:e4:dc: af:5e:a1:fd:47:5f:1b:85:02:d3:c6:07:97:f5:30:70:5f:c3: c0:85:fa:b5:65:97:54:f8:09:4b:40:81:ba:fe:7d:6a:83:41: 9a:1c:25:7e:8c:e8:c4:a4:b1:91:b8:34:b0:ad:47:08:15:43: 96:3a:3e:70:85:ac:c8:c4:85:e6:71:f9:72:42:64:26:b3:16: 77:2e:c9:6f:51:aa:c4:92:27:9e:1c:b8:c5:f2:2d:ab:1d:ef: b8:84:03:07:25:fb:6f:86:e7:f1:3a:40:0f:48:ed:eb:4f:86: 36:22:c0:7a:fc:25:4d:65:4d:e8:74:1a:3b:3b:5a:9d:84:32: 2b:cb:c6:86:53:57:78:15:14:f0:1d:d8:0a:a5:85:84:51:a9: ee:17:b4:05 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxMDMxMTAvBgNVBAUTKEFEQTdCM0U2NDI4NDQwRTUyNERBMDY4Mzg2QTFFREYz MjFGODgxMUUwHhcNMjUwNjA5MDM0MjExWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2NTgxMy01ZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKQAup5d/Rw2VLmsXztI/1MrauBRrSYeNBH/5tbT6RXTVCoMOOriEKOvdhXB 34cLjf0UL5VH+4A3ZEM5Xst1Wqg/aIIeBk2+/Uz5FfH3tHQMnCBiopgt48q9AeIO NWqddXvK3gCcOj1sUm3cLveYqPw1PgRdlKXHYypmRmwlnyC6fGHGd+LYAaqzILBH tlwNvEGtkBOO+niO608jlw67d0V1bO/S0GtYzVCoUuYoFk1ocyUkir59kFr/jaHD wcGNvzNjuxyrPKhbJUgQwMOzW2/jDMzZd4wXFZj6KY2FBP5HwkdGBaz2ThtAydvB pd4nRA9qyxbJnYRnY4LbWR6jsQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIJ/qU0p 1XRqWNFWSOHUrdKAevM7MB8GA1UdIwQYMBaAFK2ns+ZChEDlJNoGg4ah7fMh+IEe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzEwMy83QUI4MTEyQTQy RDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9yYWV6NWtLRVFPVWsyZ2FEaHFIdDh5SDRn UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDcxMDMvN0FCODExMkE0MkQyMTFFRUI3QzREMDFFQzRGOUFFMDIvMUUzNTAzOUM0 MkQ1MTFFRUFFNUY4MDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAHLY0ADBADLY0QDBADLY0cwDQYJKoZIhvcNAQELBQADggEB ACVb43PmProE4j021eJ3z79WWxjrorGyPG2ISeTRwPLBCh2lp4P6hDXpnD17iGMo w5VoRRDn8xKvm5UEDpZndJi5SUEukT52pllb/dlnHhZZyhz36rNOYJ4kfawCGvwR E8WN/Jko7Pe7CO3k3K9eof1HXxuFAtPGB5f1MHBfw8CF+rVll1T4CUtAgbr+fWqD QZocJX6M6MSksZG4NLCtRwgVQ5Y6PnCFrMjEheZx+XJCZCazFncuyW9RqsSSJ54c uMXyLasd77iEAwcl+2+G5/E6QA9I7etPhjYiwHr8JU1lTeh0Gjs7Wp2EMivLxoZT V3gVFPAd2AqlhYRRqe4XtAU= -----END CERTIFICATE-----Generated at Thu Jun 19 17:45:41 2025 by rpki-client