$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/0302AEA644EC11F0A3CAA17CC4F9AE02.roa File: 0302AEA644EC11F0A3CAA17CC4F9AE02.roa (raw, json) Hash identifier: 0z1waO+5HW62K3EJHAb4r2vi3xr/GTetqDAZuDYFPrM= Subject key identifier: 77:E9:31:7F:48:92:98:DD:D0:8F:F7:14:4B:69:F0:9C:20:96:40:7C Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 0500 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/0302AEA644EC11F0A3CAA17CC4F9AE02.roa Signing time: Thu 12 Jun 2025 04:48:13 +0000 ROA not before: Thu 12 Jun 2025 04:48:13 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 834 IP address blocks: 103.204.20.0/24 maxlen: 24 103.204.21.0/24 maxlen: 24 103.204.22.0/24 maxlen: 24 103.204.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1280 (0x500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Jun 12 04:48:13 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=684a5c0d-81f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:90:6e:12:f7:7e:dd:2f:71:9e:ef:27:f4: ed:e2:2c:5e:5f:3d:a7:a0:e1:17:36:19:95:0e:ed: 2e:14:04:e6:83:c4:23:48:45:1b:f7:0f:0e:10:09: 53:d5:3d:58:43:c9:82:2f:c8:0a:b4:51:f9:44:f3: 9f:92:cc:02:f9:6c:8f:d8:4b:4e:98:33:94:92:b1: 9f:5a:13:20:ca:32:07:16:fe:9d:5d:0e:59:4e:29: 4a:5f:93:3f:bc:1c:8b:ed:0e:d6:de:75:6f:ba:ee: 1f:2e:c9:32:4b:99:1f:f0:40:ca:31:d4:77:8c:a5: 10:16:20:e3:17:3d:4d:62:39:8a:21:2d:8d:44:a3: a9:62:27:64:cc:4f:1a:5d:20:d6:88:4d:c5:c0:b2: 04:9c:99:92:7b:ae:7a:f9:11:86:cb:2f:f2:3e:12: 58:3c:7d:26:9c:a9:2b:90:d6:e1:4b:b6:cb:30:4c: 1a:a6:82:8b:76:84:9c:fb:0e:3e:fc:77:37:a1:64: 2c:5e:b1:66:fb:f3:65:9e:30:4d:22:03:86:e7:5d: 44:26:b7:e9:e5:01:09:92:e2:b6:1f:96:49:32:49: 39:0a:38:9b:3d:f6:e1:28:04:ba:3d:9a:c9:ac:a3: 6b:3b:45:91:f6:c5:73:96:d0:70:84:c8:21:a2:76: e8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E9:31:7F:48:92:98:DD:D0:8F:F7:14:4B:69:F0:9C:20:96:40:7C X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/0302AEA644EC11F0A3CAA17CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.20.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:86:e0:c1:d3:5d:f6:93:91:e9:f1:4c:32:dd:5a:1e:3e:6d: ae:ba:3a:24:6e:bf:35:61:f2:6d:49:02:ad:19:d9:9f:2b:a0: 57:35:f5:f0:b0:de:37:3d:80:e1:3f:30:f5:d7:22:f9:b6:b4: fa:f1:38:56:40:7f:14:87:7a:85:04:cd:c9:7f:4c:e2:b3:7c: 77:bd:b5:83:6e:be:75:75:70:5e:ad:8e:b3:f8:6e:35:64:30: 13:78:41:0b:53:4f:23:bf:c9:91:88:39:11:7d:e1:77:74:24: b2:49:b4:a1:32:6c:6d:52:4b:c9:51:6f:ea:88:49:d4:63:59: 7b:ce:9a:f2:2f:27:37:90:4e:dd:09:f5:e3:47:99:a5:d4:28: 07:90:06:73:50:6f:70:5b:a5:60:62:c0:6f:fc:4e:98:5f:5a: 53:f2:f1:0b:1d:ad:26:17:d3:63:70:13:0c:df:63:3e:d3:cd: 54:83:0a:c3:12:ba:a3:d7:90:86:5a:a7:43:82:2a:ea:07:a9: 57:4d:82:fd:c8:59:9f:b1:cb:11:c6:99:9b:99:06:0d:da:1a: e9:7d:4e:c0:8b:f7:a1:7d:ab:5d:bd:59:f8:55:a4:ff:9c:e3: 66:f6:4a:c3:c7:f7:d9:2f:82:d6:31:a6:5d:9c:d7:ff:bb:b8: 8b:e6:c3:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjUwNjEyMDQ0ODEzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRhNWMwZC04MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPWQbhL3ft0vcZ7vJ/Tt4ixeXz2noOEXNhmVDu0uFATmg8QjSEUb9w8OEAlT 1T1YQ8mCL8gKtFH5RPOfkswC+WyP2EtOmDOUkrGfWhMgyjIHFv6dXQ5ZTilKX5M/ vByL7Q7W3nVvuu4fLskyS5kf8EDKMdR3jKUQFiDjFz1NYjmKIS2NRKOpYidkzE8a XSDWiE3FwLIEnJmSe656+RGGyy/yPhJYPH0mnKkrkNbhS7bLMEwapoKLdoSc+w4+ /Hc3oWQsXrFm+/NlnjBNIgOG511EJrfp5QEJkuK2H5ZJMkk5CjibPfbhKAS6PZrJ rKNrO0WR9sVzltBwhMghonbofwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHfpMX9I kpjd0I/3FEtp8JwglkB8MB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBEODcvRjY4M0NFRjIyMUVCMTFFQzkyNTAxODE5QzRGOUFFMDIvMDMwMkFFQTY0 NEVDMTFGMEEzQ0FBMTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzBQwDQYJKoZIhvcNAQELBQADggEBAF+G4MHTXfaTkenx TDLdWh4+ba66OiRuvzVh8m1JAq0Z2Z8roFc19fCw3jc9gOE/MPXXIvm2tPrxOFZA fxSHeoUEzcl/TOKzfHe9tYNuvnV1cF6tjrP4bjVkMBN4QQtTTyO/yZGIORF94Xd0 JLJJtKEybG1SS8lRb+qISdRjWXvOmvIvJzeQTt0J9eNHmaXUKAeQBnNQb3BbpWBi wG/8TphfWlPy8QsdrSYX02NwEwzfYz7TzVSDCsMSuqPXkIZap0OCKuoHqVdNgv3I WZ+xyxHGmZuZBg3aGul9TsCL96F9q129WfhVpP+c42b2SsPH99kvgtYxpl2c1/+7 uIvmwxY= -----END CERTIFICATE-----Generated at Sun Jun 15 09:49:00 2025 by rpki-client