$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa File: 6DEA717805F811F0833EAC2FC4F9AE02.roa (raw, json) Hash identifier: CCycuwjR/zG8JMtLvZuunOXdbHVwvFPn+/QALmHYm1I= Subject key identifier: 34:3D:80:C4:F7:B2:74:49:73:CB:A8:B4:55:07:18:C3:66:B4:FC:95 Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0B32 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa Signing time: Mon 02 Jun 2025 19:43:08 +0000 ROA not before: Mon 02 Jun 2025 19:43:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9311 IP address blocks: 103.231.36.0/24 maxlen: 24 103.231.37.0/24 maxlen: 24 103.231.38.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2866 (0xb32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Jun 2 19:43:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683dfecc-4714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:33:4b:de:c1:e0:e6:5e:7d:50:80:7a:65:79: 9b:e1:07:6d:62:3f:2f:c0:a0:be:19:83:b0:a2:47: c0:90:2a:32:46:ae:54:c3:51:1f:82:40:8b:94:29: 0c:7a:c8:84:87:87:15:53:80:72:28:3e:31:49:c9: d2:a0:9f:0f:54:47:43:4b:51:2a:6f:aa:05:18:02: fa:32:39:10:93:5f:54:74:01:5f:0c:e8:a2:c9:30: cf:f5:d5:36:19:45:d6:dd:65:0d:18:06:71:3d:32: 5d:fc:29:5a:01:69:a0:e3:5e:cd:83:17:d6:2d:32: ba:f1:55:27:81:34:06:95:b1:51:36:30:cb:2e:15: 43:1f:96:f6:56:7c:02:d6:ad:0b:f4:da:8b:1e:81: d5:c5:5e:57:5e:a8:53:e8:56:30:c7:00:3b:b7:8c: 57:9d:78:97:ea:7a:bb:38:45:ff:04:ff:93:87:29: 54:8b:7c:7b:75:8e:3e:e3:62:c3:b9:5c:50:c9:f0: b3:3c:7d:3d:30:05:bb:7c:68:54:1f:ee:48:58:f5: 93:36:c5:79:f2:e7:6b:b6:b5:ee:4e:ad:c0:ae:da: ca:a3:a8:73:76:6b:e4:82:ad:c3:d5:b8:73:d5:c6: 69:a3:c4:d7:02:4b:fc:ae:75:8d:db:be:11:f9:96: 20:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:3D:80:C4:F7:B2:74:49:73:CB:A8:B4:55:07:18:C3:66:B4:FC:95 X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.36.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:b4:38:f1:42:83:47:d4:39:16:8b:ce:14:1c:cb:a6:ed:8d: e5:63:cc:7a:7a:c6:69:e4:c1:6b:cb:29:40:6a:b7:8a:75:a9: b2:9c:0c:c4:99:c3:6c:56:e2:65:a1:4c:d3:9f:6b:a9:d6:6d: 0b:1b:9d:12:d0:49:3a:99:50:d8:20:be:2b:2d:c4:a9:02:29: e9:13:e3:f3:90:2e:7a:f7:96:6b:16:42:75:81:51:ea:a8:0c: 10:f2:48:26:6e:3a:28:18:99:01:22:5a:9c:57:85:27:ab:c3: d3:c1:57:f2:ea:28:ed:46:31:7d:3b:78:58:da:b8:bb:58:1b: b0:47:9a:da:dd:63:b3:e8:ea:ed:7f:de:68:6e:cc:43:bb:02: 3f:fa:22:6a:89:1d:bc:81:31:1d:89:7e:bb:17:1a:8e:65:d9: 7d:61:ce:c7:c0:d6:88:d5:2f:aa:34:9b:03:9d:6d:9b:69:84: bc:56:e7:05:bb:cf:07:d5:e4:ef:d7:bd:48:c8:76:1d:43:a8: 7d:d9:ab:0b:d7:1c:3f:f2:0f:f8:7a:a6:66:89:72:01:ab:ff: f8:8e:a0:f7:78:0f:50:de:2c:bf:90:4d:e3:05:d5:be:cd:08: 66:93:0d:f8:a7:e6:60:33:13:b8:9a:c1:5a:7d:cc:e6:0a:3c: b8:68:f3:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwNjAyMTk0MzA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkZmVjYy00NzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzNL3sHg5l59UIB6ZXmb4QdtYj8vwKC+GYOwokfAkCoyRq5Uw1EfgkCLlCkM esiEh4cVU4ByKD4xScnSoJ8PVEdDS1Eqb6oFGAL6MjkQk19UdAFfDOiiyTDP9dU2 GUXW3WUNGAZxPTJd/ClaAWmg417NgxfWLTK68VUngTQGlbFRNjDLLhVDH5b2VnwC 1q0L9NqLHoHVxV5XXqhT6FYwxwA7t4xXnXiX6nq7OEX/BP+ThylUi3x7dY4+42LD uVxQyfCzPH09MAW7fGhUH+5IWPWTNsV58udrtrXuTq3ArtrKo6hzdmvkgq3D1bhz 1cZpo8TXAkv8rnWN274R+ZYgLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDQ9gMT3 snRJc8uotFUHGMNmtPyVMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvNkRFQTcxNzgw NUY4MTFGMDgzM0VBQzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn5yQwDQYJKoZIhvcNAQELBQADggEBAE20OPFCg0fUORaL zhQcy6btjeVjzHp6xmnkwWvLKUBqt4p1qbKcDMSZw2xW4mWhTNOfa6nWbQsbnRLQ STqZUNggvistxKkCKekT4/OQLnr3lmsWQnWBUeqoDBDySCZuOigYmQEiWpxXhSer w9PBV/LqKO1GMX07eFjauLtYG7BHmtrdY7Po6u1/3mhuzEO7Aj/6ImqJHbyBMR2J frsXGo5l2X1hzsfA1ojVL6o0mwOdbZtphLxW5wW7zwfV5O/XvUjIdh1DqH3ZqwvX HD/yD/h6pmaJcgGr//iOoPd4D1DeLL+QTeMF1b7NCGaTDfin5mAzE7iawVp9zOYK PLho8ws= -----END CERTIFICATE-----Generated at Fri Jun 20 16:23:27 2025 by rpki-client