$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/4756B350EF9011EBAAE0375AC4F9AE02.roa File: 4756B350EF9011EBAAE0375AC4F9AE02.roa (raw, json) Hash identifier: H5pjI/DUhiXyW6sQwhGG/wb5HeJLy8aTxQs1mqyRqSU= Subject key identifier: E9:32:A7:22:6E:D1:C5:43:16:9C:75:C0:1E:30:7D:93:18:1F:41:90 Certificate issuer: /CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Certificate serial: 0552 Authority key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/4756B350EF9011EBAAE0375AC4F9AE02.roa Signing time: Mon 02 Jun 2025 23:51:18 +0000 ROA not before: Mon 02 Jun 2025 23:51:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142125 IP address blocks: 103.166.148.0/23 maxlen: 24 2001:df6:9380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 23:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3377, serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Validity Not Before: Jun 2 23:51:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e38f6-f658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f0:aa:0c:a2:06:f4:44:a7:c7:0f:d0:fb:b3: 65:f2:5a:72:8e:bb:4d:9c:32:32:8f:c4:37:cb:98: f1:7a:17:ab:17:d9:3b:58:73:f2:76:6f:ff:b7:cb: f8:14:2a:e9:ed:1e:d4:2b:54:28:f0:63:6f:86:0a: 78:ad:ae:f5:69:c2:bf:c4:f7:e4:7c:a2:8a:f8:00: 7c:91:bd:d1:19:b2:ee:63:1b:78:11:ac:7b:a6:3d: 5b:53:2c:61:e4:7b:04:02:45:f5:57:4b:3e:f9:15: 43:19:ef:15:88:ef:fc:14:b3:0d:db:5d:8f:2f:a2: 71:54:a0:3b:fd:8c:21:9b:11:ba:5c:3f:80:63:26: 81:5a:07:23:88:bc:91:62:9f:7c:40:63:02:18:3c: 9c:f5:c9:18:8c:9c:b7:fe:4a:bf:d7:06:2d:b0:e0: 68:a7:3a:a6:e6:9c:dd:5b:90:38:20:d5:7e:c2:68: 10:b8:08:0e:24:c0:6b:b3:d8:6c:14:3c:fd:ca:48: 73:68:dd:05:f7:8c:f6:48:36:17:1c:ca:fd:69:92: 9d:b7:87:20:77:89:75:99:97:75:89:73:f4:0c:4a: 68:75:22:36:7e:32:b8:38:15:fe:8d:0d:f9:52:40: 2a:0b:05:3e:44:0d:b6:29:0f:55:2b:23:e6:73:59: 3b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:32:A7:22:6E:D1:C5:43:16:9C:75:C0:1E:30:7D:93:18:1F:41:90 X509v3 Authority Key Identifier: keyid:C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/4756B350EF9011EBAAE0375AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.148.0/23 IPv6: 2001:df6:9380::/48 Signature Algorithm: sha256WithRSAEncryption 51:63:84:87:d5:33:76:05:c3:7f:c9:bb:74:5f:81:92:0d:93: 04:f0:77:e3:db:2a:b0:12:cc:41:39:d3:13:fb:ff:7d:2b:86: f9:87:72:6a:26:11:ad:dd:96:ba:45:c2:99:34:66:79:7d:84: 0b:13:f1:07:f0:21:01:1d:37:e6:a5:06:24:17:6c:62:53:46: f2:90:a1:2f:fd:31:9f:cf:b2:8b:5a:d4:2c:4c:49:de:ce:bb: 1d:26:0b:83:ab:fd:fb:85:07:14:c1:57:ac:05:69:67:e5:9b: 87:73:34:da:57:8f:4d:0d:da:97:06:73:82:9b:88:0c:8f:9b: a4:3f:a3:44:a6:d1:e3:de:27:ee:34:b3:9b:ff:73:8f:f9:06: 52:94:48:4f:d6:88:b3:59:8b:69:c3:2f:4a:a3:21:c5:ee:63: e6:e7:90:f8:a4:16:bf:ae:74:72:23:3d:98:e1:7d:10:04:66: 28:7e:2b:5c:6d:e8:9c:50:dd:ef:3c:e6:4e:53:2b:be:5a:88: d8:18:b9:1a:0f:6b:ff:93:48:9c:2a:14:c7:eb:20:48:c5:6d: da:90:6d:7f:57:d3:23:06:4d:41:b9:ac:cb:97:f5:65:91:d5: 71:84:87:63:40:a4:0a:bc:8c:1b:c1:47:73:21:85:d6:71:cb: ce:f9:81:0c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzNzcxMTAvBgNVBAUTKEM3N0MxMzA5RjRBMTUzMEVBMzk1NDE0NTI4ODE1RjlD NzY3QzUxNUIwHhcNMjUwNjAyMjM1MTE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMzhmNi1mNjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvCqDKIG9ESnxw/Q+7Nl8lpyjrtNnDIyj8Q3y5jxeherF9k7WHPydm//t8v4 FCrp7R7UK1Qo8GNvhgp4ra71acK/xPfkfKKK+AB8kb3RGbLuYxt4Eax7pj1bUyxh 5HsEAkX1V0s++RVDGe8ViO/8FLMN212PL6JxVKA7/YwhmxG6XD+AYyaBWgcjiLyR Yp98QGMCGDyc9ckYjJy3/kq/1wYtsOBopzqm5pzdW5A4INV+wmgQuAgOJMBrs9hs FDz9ykhzaN0F94z2SDYXHMr9aZKdt4cgd4l1mZd1iXP0DEpodSI2fjK4OBX+jQ35 UkAqCwU+RA22KQ9VKyPmc1k76wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOkypyJu 0cVDFpx1wB4wfZMYH0GQMB8GA1UdIwQYMBaAFMd8Ewn0oVMOo5VBRSiBX5x2fFFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzM3Ny82MEI3N0RBRUVG OEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3NmpsVUZGS0lGZm5IWjhV VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gzd1RDZlNoVXc2amxVRkZLSUZmbkhaOFVWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTMzNzcvNjBCNzdEQUVFRjhFMTFFQkIwREE0RTU5QzRGOUFFMDIvNDc1NkIzNTBF RjkwMTFFQkFBRTAzNzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnppQwDwQCAAIwCQMHACABDfaTgDANBgkqhkiG9w0BAQsF AAOCAQEAUWOEh9UzdgXDf8m7dF+Bkg2TBPB349sqsBLMQTnTE/v/fSuG+YdyaiYR rd2WukXCmTRmeX2ECxPxB/AhAR035qUGJBdsYlNG8pChL/0xn8+yi1rULExJ3s67 HSYLg6v9+4UHFMFXrAVpZ+Wbh3M02lePTQ3alwZzgpuIDI+bpD+jRKbR494n7jSz m/9zj/kGUpRIT9aIs1mLacMvSqMhxe5j5ueQ+KQWv650ciM9mOF9EARmKH4rXG3o nFDd7zzmTlMrvlqI2Bi5Gg9r/5NInCoUx+sgSMVt2pBtf1fTIwZNQbmsy5f1ZZHV cYSHY0CkCryMG8FHcyGF1nHLzvmBDA== -----END CERTIFICATE-----Generated at Sat Jun 21 16:17:03 2025 by rpki-client