$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa File: EFB54FEC42D211EE9D8A0832C4F9AE02.roa (raw, json) Hash identifier: wUxQPb5MXG1WoNfvu2qlWFFygupmyl9Dg9T+dYAheO4= Subject key identifier: E1:0A:EB:C4:F2:54:5F:70:79:78:F2:CB:87:B2:E6:C8:8F:12:2F:5F Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 0157 Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa Signing time: Mon 09 Jun 2025 03:42:12 +0000 ROA not before: Mon 09 Jun 2025 03:42:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4768 IP address blocks: 203.99.66.0/24 maxlen: 24 203.99.67.0/24 maxlen: 24 203.99.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103, serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Jun 9 03:42:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68465814-3656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:93:03:cd:36:cb:df:3b:93:fd:05:ae:ce:a3: 80:af:1d:6b:85:e9:95:bf:46:e5:cf:e0:a1:d5:05: 1e:33:93:d9:14:2e:d4:18:4e:2d:8d:0c:09:11:01: 47:75:70:81:96:74:51:ff:5d:9c:ae:d9:08:1e:2f: a5:7c:23:07:d3:68:1f:3a:04:fa:7c:7d:70:90:a9: 0a:4d:9b:23:50:6e:59:cb:28:28:2f:4d:e6:9a:15: ce:1c:9f:9a:6c:cf:4e:b8:17:d0:3a:3a:e1:ce:e0: 64:a7:f6:34:62:37:c0:b9:9e:0c:2a:43:c4:4a:cd: 04:1e:1d:09:47:36:ac:4c:a9:7c:08:c5:da:bd:70: 21:4c:b4:1b:fa:f6:fc:93:9c:7d:0a:ad:58:5b:37: 84:b0:42:5f:85:fe:b3:52:1a:ab:6e:e0:3a:49:b1: 2d:1b:43:8a:e2:01:ec:a6:0f:2a:7d:43:9e:fa:21: b6:f4:86:5a:52:6a:82:dd:82:21:af:f4:b6:30:5a: 65:4e:59:81:af:9a:be:6b:26:65:bf:0f:44:9c:d4: ec:51:d2:57:6a:ab:47:70:0b:3e:58:44:c2:23:9f: 10:96:97:6f:9e:a2:dc:02:68:3e:4b:00:c5:06:dc: 5a:54:5a:d1:a7:55:71:32:12:f7:89:33:dc:2b:1d: 53:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:0A:EB:C4:F2:54:5F:70:79:78:F2:CB:87:B2:E6:C8:8F:12:2F:5F X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.66.0/23 203.99.69.0/24 Signature Algorithm: sha256WithRSAEncryption 28:39:95:29:81:33:a8:75:04:18:f2:95:c0:2d:38:58:e8:bb: 55:e9:7b:68:bd:9c:8b:a2:38:b3:13:c8:6f:92:4a:1a:05:e4: 91:fe:94:77:f3:3f:51:b1:e6:16:d4:d8:1d:89:f6:a9:f8:9d: b3:b7:55:af:26:38:c9:d8:64:63:39:27:90:71:fb:a7:5c:1e: 99:72:ad:96:6c:2f:fd:5e:0f:99:a8:86:78:f7:bf:7e:77:3e: 4b:7c:b2:ef:a2:57:a0:4b:06:3b:17:66:e8:38:df:ba:13:4a: 17:8b:36:17:36:97:77:0b:d1:57:11:62:a5:4b:0d:29:fb:36: c1:88:c3:0b:db:02:9b:4c:28:7e:c9:7d:f1:19:8c:9f:50:82: 67:d6:72:22:8b:0a:44:07:6f:ed:4f:cd:1b:a8:e7:8e:24:39: df:33:1d:c2:af:fb:6c:8d:b3:1b:de:63:0b:5e:21:a7:cf:84: e6:15:c8:9c:ab:53:77:ad:2a:29:4c:27:5b:9b:4f:15:0f:77: 8f:93:cf:01:83:e1:10:c3:99:ad:f1:72:f3:9e:d2:8c:62:1b: 96:f0:f7:7b:64:e7:9f:e9:65:8c:5b:9a:03:7a:5a:ae:44:a6: d5:f1:3c:63:3f:b2:5e:08:1f:0f:34:7e:44:8a:af:21:ae:16: aa:35:87:0e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxMDMxMTAvBgNVBAUTKEFEQTdCM0U2NDI4NDQwRTUyNERBMDY4Mzg2QTFFREYz MjFGODgxMUUwHhcNMjUwNjA5MDM0MjEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2NTgxNC0zNjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5MDzTbL3zuT/QWuzqOArx1rhemVv0blz+Ch1QUeM5PZFC7UGE4tjQwJEQFH dXCBlnRR/12crtkIHi+lfCMH02gfOgT6fH1wkKkKTZsjUG5ZyygoL03mmhXOHJ+a bM9OuBfQOjrhzuBkp/Y0YjfAuZ4MKkPESs0EHh0JRzasTKl8CMXavXAhTLQb+vb8 k5x9Cq1YWzeEsEJfhf6zUhqrbuA6SbEtG0OK4gHspg8qfUOe+iG29IZaUmqC3YIh r/S2MFplTlmBr5q+ayZlvw9EnNTsUdJXaqtHcAs+WETCI58QlpdvnqLcAmg+SwDF BtxaVFrRp1VxMhL3iTPcKx1TvwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOEK68Ty VF9weXjyy4ey5siPEi9fMB8GA1UdIwQYMBaAFK2ns+ZChEDlJNoGg4ah7fMh+IEe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzEwMy83QUI4MTEyQTQy RDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9yYWV6NWtLRVFPVWsyZ2FEaHFIdDh5SDRn UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDcxMDMvN0FCODExMkE0MkQyMTFFRUI3QzREMDFFQzRGOUFFMDIvRUZCNTRGRUM0 MkQyMTFFRTlEOEEwODMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHLY0IDBADLY0UwDQYJKoZIhvcNAQELBQADggEBACg5lSmB M6h1BBjylcAtOFjou1Xpe2i9nIuiOLMTyG+SShoF5JH+lHfzP1Gx5hbU2B2J9qn4 nbO3Va8mOMnYZGM5J5Bx+6dcHplyrZZsL/1eD5mohnj3v353Pkt8su+iV6BLBjsX Zug437oTSheLNhc2l3cL0VcRYqVLDSn7NsGIwwvbAptMKH7JffEZjJ9QgmfWciKL CkQHb+1PzRuo544kOd8zHcKv+2yNsxveYwteIafPhOYVyJyrU3etKilMJ1ubTxUP d4+TzwGD4RDDma3xcvOe0oxiG5bw93tk55/pZYxbmgN6Wq5EptXxPGM/sl4IHw80 fkSKryGuFqo1hw4= -----END CERTIFICATE-----Generated at Thu Jun 19 02:40:40 2025 by rpki-client