$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/84C2EDA244EC11F0BA9B197EC4F9AE02.roa File: 84C2EDA244EC11F0BA9B197EC4F9AE02.roa (raw, json) Hash identifier: fB+DTatBA4Q8/LwVjOHrY6iTM39J2BLXp8RFZMl1nHw= Subject key identifier: D0:E3:16:EE:08:93:4E:D6:1D:68:0E:B6:4A:EA:45:BE:B7:FF:95:6C Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 030B Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/84C2EDA244EC11F0BA9B197EC4F9AE02.roa Signing time: Mon 09 Jun 2025 04:45:08 +0000 ROA not before: Mon 09 Jun 2025 04:45:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.26.9.0/24 maxlen: 24 103.26.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 779 (0x30b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Jun 9 04:45:08 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=684666d4-b1ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:f5:49:4d:ab:99:97:b7:54:1a:ca:3f:21: d0:6d:ed:58:33:cc:31:02:3e:2f:36:e9:ea:8a:7b: 0a:92:8e:6a:30:cb:63:ad:1c:1a:20:5e:18:eb:af: 6f:db:43:fb:4f:bb:71:77:a5:b6:c3:6a:40:ad:cb: 06:28:f4:b5:2d:99:df:50:e0:d6:c4:7a:77:43:3f: 26:34:f2:96:cc:5a:71:c0:4f:7f:d2:71:3a:7a:5a: 0a:33:49:2d:65:fc:86:d3:39:b1:7e:56:ee:1c:d8: 3b:c3:60:dd:b8:f1:1e:58:5b:28:f7:49:02:ff:0a: 78:ca:64:ce:b6:ca:c1:ab:8c:60:5b:d7:0c:79:c5: a4:74:b3:c4:30:bd:60:6a:42:a3:41:c4:01:b2:9d: f6:65:3a:e7:fd:61:c8:82:11:87:db:25:1e:3d:97: 98:f6:ac:92:8a:d1:77:a5:20:f7:10:b4:9b:d0:4a: 5d:03:a1:b1:a6:db:99:70:ea:9c:8b:15:f2:ad:02: 1c:41:02:3c:f6:0f:60:95:98:d5:a5:a7:c6:fe:77: 66:ca:8a:e6:17:54:51:b1:0e:9d:f5:f9:4d:1d:aa: 2c:34:71:d9:97:6e:ad:2e:da:9c:e9:1a:8d:d3:4b: 0f:69:40:11:58:52:30:2e:8c:41:83:77:97:dc:33: 76:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E3:16:EE:08:93:4E:D6:1D:68:0E:B6:4A:EA:45:BE:B7:FF:95:6C X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/84C2EDA244EC11F0BA9B197EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.9.0/24 103.26.11.0/24 Signature Algorithm: sha256WithRSAEncryption 90:7d:91:6b:b8:f4:63:b8:b5:4e:99:09:c2:1c:8d:1f:2d:81: be:b0:c7:e3:f8:55:87:7a:30:56:cb:60:64:a1:54:58:a0:91: 3d:5c:38:57:41:0a:5d:f0:37:1e:28:eb:a3:49:57:a1:18:02: 02:86:82:be:0a:9c:94:f6:5e:e1:69:b5:ee:72:30:f2:62:19: 15:39:d7:d8:78:f8:9f:d0:19:e9:2a:5d:16:53:95:5b:ef:d2: 42:8e:1d:19:96:02:5b:54:0d:76:ce:18:6f:53:03:7e:1a:7f: fb:82:2b:42:23:3e:74:94:53:fd:e3:5b:58:6d:86:ff:a3:dd: 9d:65:d2:90:46:95:bb:94:f4:ce:01:ef:65:8f:8e:2b:11:78: d4:71:79:a5:13:db:ab:61:cf:76:fc:5a:bc:9d:1c:10:1f:e3: 8c:57:b9:62:cc:6b:ff:7a:cb:7b:4a:76:55:bc:3b:01:31:f8: ad:9f:f9:c8:17:54:9f:6c:4b:28:1a:40:92:52:ee:db:f4:32: f1:a4:f6:81:62:71:e0:32:dc:6f:0c:24:d8:63:06:17:b5:27: 2c:7c:c2:75:d4:b5:dd:f8:00:4a:d6:29:cd:39:c8:ca:c2:67: aa:0e:35:b2:2c:ae:f4:cf:ca:05:cc:b2:9f:c1:59:14:11:44: 6c:da:7b:d3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUwNjA5MDQ0NTA4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2NjZkNC1iMWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmT1SU2rmZe3VBrKPyHQbe1YM8wxAj4vNunqinsKko5qMMtjrRwaIF4Y669v 20P7T7txd6W2w2pArcsGKPS1LZnfUODWxHp3Qz8mNPKWzFpxwE9/0nE6eloKM0kt ZfyG0zmxflbuHNg7w2DduPEeWFso90kC/wp4ymTOtsrBq4xgW9cMecWkdLPEML1g akKjQcQBsp32ZTrn/WHIghGH2yUePZeY9qySitF3pSD3ELSb0EpdA6GxptuZcOqc ixXyrQIcQQI89g9glZjVpafG/ndmyormF1RRsQ6d9flNHaosNHHZl26tLtqc6RqN 00sPaUARWFIwLoxBg3eX3DN2ywIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNDjFu4I k07WHWgOtkrqRb63/5VsMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFMzIvNzIwOTU5RkMwMUMwMTFFREJEN0M2RjU4QzRGOUFFMDIvODRDMkVEQTI0 NEVDMTFGMEJBOUIxOTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnGgkDBABnGgswDQYJKoZIhvcNAQELBQADggEBAJB9kWu4 9GO4tU6ZCcIcjR8tgb6wx+P4VYd6MFbLYGShVFigkT1cOFdBCl3wNx4o66NJV6EY AgKGgr4KnJT2XuFpte5yMPJiGRU519h4+J/QGekqXRZTlVvv0kKOHRmWAltUDXbO GG9TA34af/uCK0IjPnSUU/3jW1hthv+j3Z1l0pBGlbuU9M4B72WPjisReNRxeaUT 26thz3b8WrydHBAf44xXuWLMa/96y3tKdlW8OwEx+K2f+cgXVJ9sSygaQJJS7tv0 MvGk9oFiceAy3G8MJNhjBhe1Jyx8wnXUtd34AErWKc05yMrCZ6oONbIsrvTPygXM sp/BWRQRRGzae9M= -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:50 2025 by rpki-client