$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/B379B0346F4711EA81200366C4F9AE02.roa File: B379B0346F4711EA81200366C4F9AE02.roa (raw, json) Hash identifier: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU= Subject key identifier: 4D:D6:E4:9A:9C:1C:34:6B:75:1A:DD:94:44:06:8C:76:9D:57:78:2A Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0AB2 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/B379B0346F4711EA81200366C4F9AE02.roa Signing time: Wed 04 Jun 2025 20:05:03 +0000 ROA not before: Wed 04 Jun 2025 20:05:03 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 39356 IP address blocks: 103.13.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2738 (0xab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Jun 4 20:05:03 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6840a6ee-ac9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e0:a9:bc:06:15:cc:ec:34:66:93:00:78:c4: e0:4e:0b:1a:61:5a:35:64:39:18:06:1a:8c:62:14: 54:e9:09:0b:d5:c3:c0:74:0e:e0:e3:f6:d0:47:68: 72:d1:78:8c:17:bf:ef:24:23:e1:22:30:26:8a:ca: 50:e0:89:c3:2c:df:18:e6:d4:1d:fd:7b:b4:13:bd: 6b:24:c3:c1:61:3f:2a:3e:9d:ad:96:12:82:6c:b4: a3:de:fa:c9:51:31:77:c6:96:e1:ac:1d:34:1c:0f: a7:c6:c4:92:62:22:2f:2c:d7:c3:21:8e:67:8e:9b: 67:b3:32:bf:10:5b:d1:55:d9:5c:a9:7a:44:d6:06: 11:2d:09:a1:87:38:74:89:8c:6d:02:64:ce:43:18: 3b:ed:14:84:04:e5:0a:f8:43:aa:83:53:4f:90:5d: 8a:f6:fc:9e:cf:02:1c:aa:19:94:1c:2d:50:2d:78: 99:ff:a0:ed:bd:f5:82:95:f1:fc:65:4c:78:77:fa: e5:eb:12:4a:12:e9:4b:91:9e:6b:cb:69:bf:cd:a0: e7:15:d9:fc:d7:2b:ad:a8:83:33:17:01:b8:9f:4d: 13:de:50:a4:ba:3f:b8:b1:e2:b0:69:19:8e:ed:ba: 68:18:41:7e:b4:42:2b:e0:b0:a5:f8:e7:50:c1:9d: 48:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D6:E4:9A:9C:1C:34:6B:75:1A:DD:94:44:06:8C:76:9D:57:78:2A X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/B379B0346F4711EA81200366C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.191.0/24 Signature Algorithm: sha256WithRSAEncryption 44:fa:cc:1f:42:03:5c:95:a6:9a:58:9b:31:81:76:c0:4b:6f: e6:c6:7b:07:dc:c2:59:38:81:a0:cd:62:d3:90:e6:b6:45:cb: ba:8d:f6:70:39:c8:a2:2c:7b:ba:7a:31:a4:ed:00:9f:51:2a: c8:07:06:44:ff:65:3f:df:10:2b:de:15:8a:15:d6:4c:40:59: fa:50:58:47:3a:ef:c1:04:85:05:ff:68:39:0d:a1:6e:72:53: 96:85:20:5f:50:27:52:7c:35:11:94:30:14:59:20:bb:23:16: 57:c6:ce:1a:cf:9d:5a:f3:03:50:86:5c:c7:92:a7:cf:7e:6a: dd:9b:6a:61:5b:0d:fb:fc:b0:d7:2e:62:f5:a5:0b:0f:a6:14: 8a:a0:1d:8b:01:8c:51:60:b8:c7:7d:8d:6a:28:72:97:33:23: 12:e8:81:c4:b1:2c:c5:7e:a2:2e:31:18:c7:99:a6:a0:3a:64: 6c:8b:fb:53:75:cb:a9:e2:25:23:7d:ff:30:4b:fa:d9:0e:ac: 62:66:d1:da:95:de:50:4c:8f:ed:87:f7:be:76:e8:5f:37:68: cd:dc:47:06:38:86:cc:00:d5:b5:c2:3a:b7:dd:75:f1:81:39: f5:34:7d:7c:ca:22:61:f9:1e:f4:e1:38:3d:cd:40:69:9f:a0: 0c:6b:27:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUwNjA0MjAwNTAzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwYTZlZS1hYzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuCpvAYVzOw0ZpMAeMTgTgsaYVo1ZDkYBhqMYhRU6QkL1cPAdA7g4/bQR2hy 0XiMF7/vJCPhIjAmispQ4InDLN8Y5tQd/Xu0E71rJMPBYT8qPp2tlhKCbLSj3vrJ UTF3xpbhrB00HA+nxsSSYiIvLNfDIY5njptnszK/EFvRVdlcqXpE1gYRLQmhhzh0 iYxtAmTOQxg77RSEBOUK+EOqg1NPkF2K9vyezwIcqhmUHC1QLXiZ/6DtvfWClfH8 ZUx4d/rl6xJKEulLkZ5ry2m/zaDnFdn81yutqIMzFwG4n00T3lCkuj+4seKwaRmO 7bpoGEF+tEIr4LCl+OdQwZ1IuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE3W5Jqc HDRrdRrdlEQGjHadV3gqMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMjcvRjM4ODg3NjY2RjNBMTFFQTk4NDAxMzNEQzRGOUFFMDIvQjM3OUIwMzQ2 RjQ3MTFFQTgxMjAwMzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDb8wDQYJKoZIhvcNAQELBQADggEBAET6zB9CA1yVpppY mzGBdsBLb+bGewfcwlk4gaDNYtOQ5rZFy7qN9nA5yKIse7p6MaTtAJ9RKsgHBkT/ ZT/fECveFYoV1kxAWfpQWEc678EEhQX/aDkNoW5yU5aFIF9QJ1J8NRGUMBRZILsj FlfGzhrPnVrzA1CGXMeSp89+at2bamFbDfv8sNcuYvWlCw+mFIqgHYsBjFFguMd9 jWoocpczIxLogcSxLMV+oi4xGMeZpqA6ZGyL+1N1y6niJSN9/zBL+tkOrGJm0dqV 3lBMj+2H97526F83aM3cRwY4hswA1bXCOrfddfGBOfU0fXzKImH5HvThOD3NQGmf oAxrJ10= -----END CERTIFICATE-----Generated at Fri Jun 20 15:30:29 2025 by rpki-client