$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa File: 9233AB983ED411F0B38CCD78C4F9AE02.roa (raw, json) Hash identifier: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ= Subject key identifier: D2:92:9E:77:70:47:4E:E8:A0:05:C1:9C:51:49:9E:48:9D:2F:DF:DD Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 0367 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa Signing time: Sun 01 Jun 2025 11:24:40 +0000 ROA not before: Sun 01 Jun 2025 11:24:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140228 IP address blocks: 103.186.20.0/24 maxlen: 24 103.186.21.0/24 maxlen: 24 2400:6c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Jun 1 11:24:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683c3878-a358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2d:42:12:63:df:29:d8:aa:0b:b0:a2:47:1c: f3:8d:c8:0c:f0:02:bc:2d:bf:a1:18:a8:9f:66:a3: cb:be:04:4d:d5:2a:f3:4d:89:37:f6:e3:97:e6:5a: 11:2f:f8:c9:ed:e0:bb:52:e7:20:6c:fd:9e:ba:61: 19:f6:01:7a:4e:66:9e:2e:62:84:f4:16:45:68:a2: 33:ad:8c:e1:ac:79:aa:a2:71:2c:5e:2d:70:dc:b7: 25:ee:a3:e8:8a:61:c6:32:45:ae:44:65:d5:7b:9b: b1:da:89:1f:c6:23:0f:1e:13:a9:45:35:9b:43:f5: e2:cd:cc:96:fc:b8:b1:47:74:d7:df:02:ad:3d:e7: 1e:73:dd:1a:a6:d6:3c:f6:f4:cd:ca:c5:9a:e2:1d: cf:44:1b:fb:de:4a:3f:72:81:6f:31:28:9a:76:ca: 34:b7:0d:f0:11:26:ab:43:49:6f:95:1b:9c:5d:40: 4a:af:76:28:ac:46:cb:32:73:aa:ce:e7:59:0b:85: cd:31:d9:b6:fe:34:39:78:0b:2b:37:31:33:b4:cc: 88:40:85:a5:c4:4b:d0:1c:0a:2f:51:6d:c1:66:18: da:1e:bb:e7:f7:08:ab:3b:61:ed:e6:82:b0:66:4a: 8f:1a:16:16:ce:85:5a:30:f0:ab:da:05:51:69:44: 87:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:92:9E:77:70:47:4E:E8:A0:05:C1:9C:51:49:9E:48:9D:2F:DF:DD X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.20.0/23 IPv6: 2400:6c60::/32 Signature Algorithm: sha256WithRSAEncryption 71:98:4d:8d:19:3f:6e:d9:5a:71:9b:3d:65:fc:a1:71:d9:96: 4e:47:9f:e5:1f:ad:8e:cd:9c:2b:1d:11:9e:83:39:9d:89:68: 03:58:45:d1:a3:44:2b:47:62:d7:f0:94:fb:05:cc:8c:e1:29: 9e:0b:0b:7b:90:a0:98:1c:21:97:3d:4a:8b:f5:a0:27:59:ab: 21:df:77:30:b9:37:0c:a0:2c:93:17:bb:f7:d5:b9:a2:b3:ef: 3a:cf:f2:84:45:18:a0:76:3a:a7:ad:62:3b:f5:50:2b:c0:57: 79:4e:f7:e7:94:89:f5:ef:ed:1d:47:ba:76:0c:0d:b0:21:f2: 97:14:16:ec:db:f9:0d:32:1c:81:8d:b3:66:17:1f:5d:bb:97: bc:50:ad:63:79:86:88:ed:71:ec:7e:e1:06:fc:71:d2:0f:70: 5c:ca:77:03:29:79:7f:43:ca:12:0e:d3:2b:0b:b2:ac:28:ad: 38:b0:e2:a1:b6:45:ef:e5:4c:2d:63:66:c6:f5:15:3b:c1:69: f8:6d:02:d2:21:2e:66:d3:4a:09:32:ef:47:10:02:74:e3:19: f9:2e:b2:b2:a3:65:42:1f:d6:05:e6:2d:b6:b8:5c:c7:74:d6: e1:2a:6d:e7:56:d8:c9:e4:e2:4c:07:0f:9c:e7:93:9c:47:b7: a9:9d:3e:f8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwNjAxMTEyNDQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNjMzg3OC1hMzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1y1CEmPfKdiqC7CiRxzzjcgM8AK8Lb+hGKifZqPLvgRN1SrzTYk39uOX5loR L/jJ7eC7UucgbP2eumEZ9gF6TmaeLmKE9BZFaKIzrYzhrHmqonEsXi1w3Lcl7qPo imHGMkWuRGXVe5ux2okfxiMPHhOpRTWbQ/XizcyW/LixR3TX3wKtPecec90aptY8 9vTNysWa4h3PRBv73ko/coFvMSiadso0tw3wESarQ0lvlRucXUBKr3YorEbLMnOq zudZC4XNMdm2/jQ5eAsrNzEztMyIQIWlxEvQHAovUW3BZhjaHrvn9wirO2Ht5oKw ZkqPGhYWzoVaMPCr2gVRaUSHnQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNKSnndw R07ooAXBnFFJnkidL9/dMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCMkQvOTY1QkQ1N0VCODk1MTFFQzgyNDJEMjdFQzRGOUFFMDIvOTIzM0FCOTgz RUQ0MTFGMEIzOENDRDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnuhQwDQQCAAIwBwMFACQAbGAwDQYJKoZIhvcNAQELBQAD ggEBAHGYTY0ZP27ZWnGbPWX8oXHZlk5Hn+UfrY7NnCsdEZ6DOZ2JaANYRdGjRCtH YtfwlPsFzIzhKZ4LC3uQoJgcIZc9Sov1oCdZqyHfdzC5NwygLJMXu/fVuaKz7zrP 8oRFGKB2OqetYjv1UCvAV3lO9+eUifXv7R1HunYMDbAh8pcUFuzb+Q0yHIGNs2YX H127l7xQrWN5hojtcex+4Qb8cdIPcFzKdwMpeX9DyhIO0ysLsqworTiw4qG2Re/l TC1jZsb1FTvBafhtAtIhLmbTSgky70cQAnTjGfkusrKjZUIf1gXmLba4XMd01uEq bedW2Mnk4kwHD5znk5xHt6mdPvg= -----END CERTIFICATE-----Generated at Sun Jun 15 10:11:12 2025 by rpki-client