$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/CE833D6041CD11F088FC5360C4F9AE02.roa File: CE833D6041CD11F088FC5360C4F9AE02.roa (raw, json) Hash identifier: O15QErBCIgPZsXbySjYZJc/Lui6vvCcRiPy5b+jKZ40= Subject key identifier: 18:4B:03:D4:EA:28:0F:1B:BF:35:77:01:FC:55:AF:95:1B:BC:ED:9E Certificate issuer: /CN=A91E2391/serialNumber=BF9E0D788870911BD574C0ECD4A05C290A09B5FF Certificate serial: 02 Authority key identifier: BF:9E:0D:78:88:70:91:1B:D5:74:C0:EC:D4:A0:5C:29:0A:09:B5:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v54NeIhwkRvVdMDs1KBcKQoJtf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/CE833D6041CD11F088FC5360C4F9AE02.roa Signing time: Thu 05 Jun 2025 05:27:44 +0000 ROA not before: Thu 05 Jun 2025 05:27:44 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136799 IP address blocks: 103.35.112.0/24 maxlen: 24 103.117.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/v54NeIhwkRvVdMDs1KBcKQoJtf8.crl rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/v54NeIhwkRvVdMDs1KBcKQoJtf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v54NeIhwkRvVdMDs1KBcKQoJtf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2391, serialNumber=BF9E0D788870911BD574C0ECD4A05C290A09B5FF Validity Not Before: Jun 5 05:27:44 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68412acf-b9d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:6f:f9:c5:7e:18:9c:aa:f1:7d:73:23:1c: 7f:a2:32:0c:ab:98:9f:c2:50:0b:fd:e3:cb:2e:47: 39:bb:a2:3d:2d:42:6c:16:e1:d8:72:b1:48:38:cd: a7:07:db:83:f7:25:d7:27:0a:5c:b9:c5:c5:07:3e: 3e:2b:34:ae:e0:70:c0:ff:47:00:e6:ff:29:a5:bf: 43:c5:b3:6a:3f:cb:54:a6:5c:55:00:31:61:1d:93: 5d:1f:e7:62:e6:95:4b:90:06:91:a0:1e:52:ad:b5: 56:37:98:c0:b9:ff:67:67:c9:f1:f9:1b:fa:de:60: 6a:89:fe:0a:8d:0e:09:8b:f2:ed:1e:12:f0:5c:c0: c5:43:b2:8d:3f:15:9e:f5:0b:05:c2:7a:a0:4a:51: 9d:e4:3c:6b:72:b7:9c:20:34:b9:9c:55:d8:3d:74: 40:3a:68:83:7a:59:af:de:d6:28:a3:88:50:25:34: 95:43:d9:00:a1:4d:c7:e3:27:13:08:32:35:36:c9: da:c6:ef:b3:df:dd:f5:73:0f:1e:59:30:cb:a9:6e: 15:ee:36:51:fb:91:e5:0b:e0:ed:57:52:2e:03:c4: 44:23:c5:ee:bd:f1:e7:3c:f5:fc:1b:f2:c3:4f:c5: a5:9d:e2:41:66:d8:b1:d9:86:83:ee:5d:8d:94:e1: b6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4B:03:D4:EA:28:0F:1B:BF:35:77:01:FC:55:AF:95:1B:BC:ED:9E X509v3 Authority Key Identifier: keyid:BF:9E:0D:78:88:70:91:1B:D5:74:C0:EC:D4:A0:5C:29:0A:09:B5:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/v54NeIhwkRvVdMDs1KBcKQoJtf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v54NeIhwkRvVdMDs1KBcKQoJtf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2391/607552D641CD11F09DF6F35EC4F9AE02/CE833D6041CD11F088FC5360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.112.0/24 103.117.104.0/23 Signature Algorithm: sha256WithRSAEncryption 82:98:8c:b3:e8:26:95:6b:d2:86:5e:0c:ff:bb:d3:96:63:63: 81:d9:e0:d6:52:39:9c:18:23:f3:d3:86:68:7c:22:6b:2a:cf: 72:08:3b:1a:18:0d:8b:cf:7b:f8:67:32:4c:22:6f:78:24:c4: 64:0e:60:de:58:6b:c6:83:2c:c5:21:12:85:ce:5d:0d:87:53: 5c:e8:63:fc:35:11:51:d1:19:0f:36:de:56:cc:e5:22:48:97: 07:f6:a4:69:4e:8d:9b:1d:2a:fe:94:4a:66:70:37:c2:5a:3e: 8f:da:04:7d:c5:37:54:52:4e:d9:98:cd:c8:2c:d1:14:95:db: 01:c3:43:6b:4e:d0:bb:7e:86:8b:3f:3e:9b:0c:fe:07:70:15: 46:b6:4f:9a:49:28:9f:26:bd:2a:42:eb:18:a4:c9:26:2a:a0: ed:95:15:23:4f:78:d8:75:4b:cc:1f:a7:ee:e4:f3:ae:bd:3a: 73:67:d9:18:76:0c:d5:40:7b:8f:32:db:f3:e5:ca:11:d8:8b: fa:d5:68:f9:da:2b:9a:ff:2d:9d:64:d0:6d:14:ab:b8:67:4d: 75:7d:e5:ba:07:c6:0e:f8:21:9b:ca:f1:4b:72:22:3e:f6:70: 58:92:da:c9:eb:d6:03:80:e0:cf:ab:57:f9:aa:29:80:a0:1f: 31:cc:8f:e8 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MjM5MTExMC8GA1UEBRMoQkY5RTBENzg4ODcwOTExQkQ1NzRDMEVDRDRBMDVDMjkw QTA5QjVGRjAeFw0yNTA2MDUwNTI3NDRaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDEyYWNmLWI5ZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHCG/5xX4YnKrxfXMjHH+iMgyrmJ/CUAv948suRzm7oj0tQmwW4dhysUg4zacH 24P3JdcnCly5xcUHPj4rNK7gcMD/RwDm/ymlv0PFs2o/y1SmXFUAMWEdk10f52Lm lUuQBpGgHlKttVY3mMC5/2dnyfH5G/reYGqJ/gqNDgmL8u0eEvBcwMVDso0/FZ71 CwXCeqBKUZ3kPGtyt5wgNLmcVdg9dEA6aIN6Wa/e1iijiFAlNJVD2QChTcfjJxMI MjU2ydrG77Pf3fVzDx5ZMMupbhXuNlH7keUL4O1XUi4DxEQjxe698ec89fwb8sNP xaWd4kFm2LHZhoPuXY2U4baRAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUGEsD1Ooo Dxu/NXcB/FWvlRu87Z4wHwYDVR0jBBgwFoAUv54NeIhwkRvVdMDs1KBcKQoJtf8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyMzkxLzYwNzU1MkQ2NDFD RDExRjA5REY2RjM1RUM0RjlBRTAyL3Y1NE5lSWh3a1J2VmRNRHMxS0JjS1FvSnRm OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjU0TmVJaHdrUnZWZE1EczFLQmNLUW9KdGY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjM5MS82MDc1NTJENjQxQ0QxMUYwOURGNkYzNUVDNEY5QUUwMi9DRTgzM0Q2MDQx Q0QxMUYwODhGQzUzNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGcjcAMEAWd1aDANBgkqhkiG9w0BAQsFAAOCAQEAgpiMs+gm lWvShl4M/7vTlmNjgdng1lI5nBgj89OGaHwiayrPcgg7GhgNi897+GcyTCJveCTE ZA5g3lhrxoMsxSEShc5dDYdTXOhj/DURUdEZDzbeVszlIkiXB/akaU6Nmx0q/pRK ZnA3wlo+j9oEfcU3VFJO2ZjNyCzRFJXbAcNDa07Qu36Giz8+mwz+B3AVRrZPmkko nya9KkLrGKTJJiqg7ZUVI0942HVLzB+n7uTzrr06c2fZGHYM1UB7jzLb8+XKEdiL +tVo+dormv8tnWTQbRSruGdNdX3lugfGDvghm8rxS3IiPvZwWJLayevWA4Dgz6tX +aopgKAfMcyP6A== -----END CERTIFICATE-----Generated at Mon Jun 16 10:34:28 2025 by rpki-client