$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/D59CB8F4968511EF93AE8239C4F9AE02.roa File: D59CB8F4968511EF93AE8239C4F9AE02.roa (raw, json) Hash identifier: rZ4CQjG/7W0/b4/xy8McSOxNbiTi926f91iRcbtKHeo= Subject key identifier: A5:2D:3A:BF:1A:AC:04:5B:0F:5C:05:2F:0C:33:49:1D:8E:85:C4:42 Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0CAA Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/D59CB8F4968511EF93AE8239C4F9AE02.roa Signing time: Sun 04 May 2025 18:28:12 +0000 ROA not before: Sun 04 May 2025 18:28:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139053 IP address blocks: 103.214.82.0/24 maxlen: 24 144.48.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3, serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: May 4 18:28:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817b1bc-fa18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:35:c0:ee:c0:1b:f9:af:92:cd:bb:8d:90:4e: a6:60:44:c7:b8:5a:e1:62:0f:4b:e0:1c:32:f4:70: 6d:2f:8e:bd:e9:4c:a3:b5:b2:34:f2:40:bf:59:d5: c9:c6:13:03:34:0e:cf:c7:64:de:4b:14:61:d8:3e: 69:1a:82:fd:b6:a6:ab:20:d5:2e:ee:d4:62:01:f1: 03:93:04:34:ed:65:4f:6c:61:42:53:69:a0:37:6e: ee:34:50:df:6d:b4:87:20:20:59:da:c6:e1:fc:46: 34:2a:97:83:5c:c5:c8:5c:d5:02:56:61:66:61:94: 08:4b:33:50:19:a2:2a:3f:a6:f9:48:5f:22:49:68: 72:86:06:07:ca:4e:fb:c5:94:26:0d:17:89:b4:91: 93:0e:e6:cf:03:bb:88:d2:f7:79:fa:25:a7:aa:e2: 57:e9:5e:52:ab:4c:fe:28:e1:20:85:3c:c7:93:5d: 21:31:19:87:31:7b:a1:76:eb:f2:f9:96:51:ec:bd: 50:5b:af:de:a5:8e:59:b1:0f:66:2c:1a:99:ff:e4: 5e:94:ff:69:b4:84:90:df:eb:e5:09:6b:b1:e7:d6: 51:e6:d8:bf:ba:d7:21:05:10:a7:bf:a0:4f:7b:53: ff:26:65:4f:11:8e:51:1c:11:50:d6:74:89:e4:25: 12:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2D:3A:BF:1A:AC:04:5B:0F:5C:05:2F:0C:33:49:1D:8E:85:C4:42 X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/D59CB8F4968511EF93AE8239C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.82.0/24 144.48.84.0/24 Signature Algorithm: sha256WithRSAEncryption 31:b7:53:7f:70:44:e0:18:a0:4d:5c:7b:1a:ec:cc:49:34:bd: b1:38:1d:cd:09:14:05:1e:e4:02:34:5d:cc:6e:91:a9:30:9b: eb:ca:0e:a3:34:e8:f4:ff:e5:0a:bf:9b:ed:27:3f:b0:71:f1: 82:6c:f1:58:68:f8:1a:d8:99:0e:71:99:3a:34:fb:e9:94:7d: f8:25:ff:04:c8:fb:92:11:42:61:d5:c7:64:62:5a:14:ac:a1: 51:62:66:9c:29:2e:c1:39:a1:5a:b6:5c:cd:c1:4f:32:43:f7: 17:52:8d:73:1f:14:57:9a:8c:d0:4d:28:4e:7a:b4:e3:3b:33: 11:d3:c4:09:1e:33:89:0a:2f:e2:58:51:4c:f8:e3:23:38:0a: 33:89:d9:70:7f:0c:cc:c7:8e:a0:72:e0:84:cd:5c:21:09:95: 69:8c:0a:4c:fa:80:7a:0d:9b:89:62:c9:7d:03:1d:d9:28:58: fa:c8:ef:57:6f:9d:56:d5:12:7f:e5:c8:2d:39:ea:6e:3c:32: 72:11:c3:d1:f4:93:42:80:1f:63:6e:08:0d:b4:a4:ac:4a:c1: f7:34:ba:01:98:06:31:9a:7b:f2:fa:95:f8:eb:17:5f:81:8e: 2d:c8:b5:2b:e7:a3:19:ed:fc:52:bc:f3:56:55:d5:c4:fd:b6: 66:f6:3b:b1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjUwNTA0MTgyODEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3YjFiYy1mYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTXA7sAb+a+SzbuNkE6mYETHuFrhYg9L4Bwy9HBtL4696UyjtbI08kC/WdXJ xhMDNA7Px2TeSxRh2D5pGoL9tqarINUu7tRiAfEDkwQ07WVPbGFCU2mgN27uNFDf bbSHICBZ2sbh/EY0KpeDXMXIXNUCVmFmYZQISzNQGaIqP6b5SF8iSWhyhgYHyk77 xZQmDReJtJGTDubPA7uI0vd5+iWnquJX6V5Sq0z+KOEghTzHk10hMRmHMXuhduvy +ZZR7L1QW6/epY5ZsQ9mLBqZ/+RelP9ptISQ3+vlCWux59ZR5ti/utchBRCnv6BP e1P/JmVPEY5RHBFQ1nSJ5CUSawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKUtOr8a rARbD1wFLwwzSR2OhcRCMB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCRTMvODBBRTEwQzYwNDUwMTFFQUJBODJDNDE1QzRGOUFFMDIvRDU5Q0I4RjQ5 Njg1MTFFRjkzQUU4MjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn1lIDBACQMFQwDQYJKoZIhvcNAQELBQADggEBADG3U39w ROAYoE1cexrszEk0vbE4Hc0JFAUe5AI0Xcxukakwm+vKDqM06PT/5Qq/m+0nP7Bx 8YJs8Vho+BrYmQ5xmTo0++mUffgl/wTI+5IRQmHVx2RiWhSsoVFiZpwpLsE5oVq2 XM3BTzJD9xdSjXMfFFeajNBNKE56tOM7MxHTxAkeM4kKL+JYUUz44yM4CjOJ2XB/ DMzHjqBy4ITNXCEJlWmMCkz6gHoNm4liyX0DHdkoWPrI71dvnVbVEn/lyC056m48 MnIRw9H0k0KAH2NuCA20pKxKwfc0ugGYBjGae/L6lfjrF1+Bji3ItSvnoxnt/FK8 81ZV1cT9tmb2O7E= -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:32 2025 by rpki-client