$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDEC8/8A05098856E111EBAACBEE73C4F9AE02/D693E0B656E211EB83D9EA74C4F9AE02.roa File: D693E0B656E211EB83D9EA74C4F9AE02.roa (raw, json) Hash identifier: ShBRwbTuBxj9yKQsDtx+jaY1y+xIJPIpBM97g/zTojo= Subject key identifier: ED:9D:2C:E7:4B:EA:7B:27:CF:DF:D3:0F:C5:2E:C4:4A:B2:C5:E8:97 Certificate issuer: /CN=A91EDEC8/serialNumber=D30B804D42AB7D020C5F1F76F3B3DD1F292D866A Certificate serial: 06DF Authority key identifier: D3:0B:80:4D:42:AB:7D:02:0C:5F:1F:76:F3:B3:DD:1F:29:2D:86:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0wuATUKrfQIMXx9287PdHykthmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDEC8/8A05098856E111EBAACBEE73C4F9AE02/D693E0B656E211EB83D9EA74C4F9AE02.roa Signing time: Wed 18 Jun 2025 22:30:09 +0000 ROA not before: Wed 18 Jun 2025 22:30:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135421 IP address blocks: 103.219.7.0/24 maxlen: 24 2001:df2:2e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDEC8/8A05098856E111EBAACBEE73C4F9AE02/0wuATUKrfQIMXx9287PdHykthmo.crl rsync://rpki.apnic.net/member_repository/A91EDEC8/8A05098856E111EBAACBEE73C4F9AE02/0wuATUKrfQIMXx9287PdHykthmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0wuATUKrfQIMXx9287PdHykthmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDEC8, serialNumber=D30B804D42AB7D020C5F1F76F3B3DD1F292D866A Validity Not Before: Jun 18 22:30:09 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68533df1-ccba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b5:db:8b:d8:31:d4:59:a1:a4:77:90:7c:18: b7:f2:11:35:c1:81:99:37:ca:db:1f:01:5c:a0:47: 3c:38:04:ac:60:cf:52:fd:55:0f:6e:8c:01:2f:10: dc:88:da:f5:bb:50:3f:5e:af:1c:88:0c:2e:87:70: 11:45:cb:9c:49:c4:cc:fc:41:eb:ef:4e:5e:90:dc: 5a:de:7e:16:ed:77:65:27:94:f2:df:59:bb:5d:26: 8c:6d:7a:69:ab:15:31:12:30:8e:13:e9:c1:ca:3b: 78:92:88:2a:23:45:07:03:9c:be:37:0d:2e:df:a7: b1:ff:66:fa:13:ee:59:3f:10:aa:92:5b:e1:56:9f: 29:ad:a3:a9:8c:d9:b8:14:9e:f3:37:7f:98:c1:73: df:24:9d:1e:3d:4f:e8:c3:c4:95:ed:3d:e4:1e:d3: 0a:b7:31:0e:26:6d:3d:61:c5:28:c6:9f:2d:8e:18: b9:3c:24:ad:2a:1b:05:c4:e4:8c:79:15:b0:d7:da: e1:b5:37:a7:6e:48:f9:40:a9:fa:5a:76:25:2b:ec: 84:bc:db:93:65:2d:a8:6b:08:14:55:f9:39:d8:ee: 01:2c:34:2a:88:66:1b:c8:e1:1a:3d:9b:d9:79:31: de:57:34:35:93:0b:a3:eb:71:c3:3d:10:37:99:02: ea:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9D:2C:E7:4B:EA:7B:27:CF:DF:D3:0F:C5:2E:C4:4A:B2:C5:E8:97 X509v3 Authority Key Identifier: keyid:D3:0B:80:4D:42:AB:7D:02:0C:5F:1F:76:F3:B3:DD:1F:29:2D:86:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDEC8/8A05098856E111EBAACBEE73C4F9AE02/0wuATUKrfQIMXx9287PdHykthmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0wuATUKrfQIMXx9287PdHykthmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDEC8/8A05098856E111EBAACBEE73C4F9AE02/D693E0B656E211EB83D9EA74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.7.0/24 IPv6: 2001:df2:2e00::/48 Signature Algorithm: sha256WithRSAEncryption 70:32:fb:39:e5:1d:ff:31:03:0c:b6:c9:91:52:14:1e:dc:02: be:18:4e:87:df:88:87:c0:58:0d:2f:68:4d:65:ca:b7:11:f1: 31:81:04:f8:04:a2:be:0b:76:ed:54:be:b5:93:68:94:1b:a8: 9d:7e:c9:18:fd:12:87:e3:a5:ff:59:14:c0:fa:04:cd:4d:d1: a0:16:d2:91:5d:90:af:29:28:b6:31:d4:3f:02:45:3c:27:da: 7e:d0:11:66:b3:74:3a:3f:95:31:6b:e2:a2:eb:14:ec:c1:1e: 9b:23:29:02:a5:b4:4d:9f:25:74:09:44:1a:35:74:75:7b:12: 4b:7e:88:c9:c7:cc:c8:d9:08:f0:2c:0e:d1:00:e3:c8:b0:1d: e7:fc:86:61:6b:dc:96:3e:92:ca:6d:e6:d0:13:b2:d0:47:10: 27:9d:28:52:c5:41:1b:99:f6:5a:ff:f7:7a:5c:30:33:95:d8: 50:7a:47:4d:aa:35:39:fd:af:6d:45:09:de:51:18:ec:6b:a4: 52:ee:3e:dd:a2:a4:26:83:cb:15:21:85:2e:6f:54:8d:83:58: dd:39:1e:8a:8d:1e:c9:99:8e:9b:b1:28:ab:c6:eb:86:c9:ca: d1:07:f5:31:0d:9b:99:21:65:a2:53:bc:ed:f2:8a:2d:fe:1d: 8e:a7:65:b6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURFQzgxMTAvBgNVBAUTKEQzMEI4MDRENDJBQjdEMDIwQzVGMUY3NkYzQjNERDFG MjkyRDg2NkEwHhcNMjUwNjE4MjIzMDA5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzM2RmMS1jY2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLXbi9gx1FmhpHeQfBi38hE1wYGZN8rbHwFcoEc8OASsYM9S/VUPbowBLxDc iNr1u1A/Xq8ciAwuh3ARRcucScTM/EHr705ekNxa3n4W7XdlJ5Ty31m7XSaMbXpp qxUxEjCOE+nByjt4kogqI0UHA5y+Nw0u36ex/2b6E+5ZPxCqklvhVp8praOpjNm4 FJ7zN3+YwXPfJJ0ePU/ow8SV7T3kHtMKtzEOJm09YcUoxp8tjhi5PCStKhsFxOSM eRWw19rhtTenbkj5QKn6WnYlK+yEvNuTZS2oawgUVfk52O4BLDQqiGYbyOEaPZvZ eTHeVzQ1kwuj63HDPRA3mQLquQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO2dLOdL 6nsnz9/TD8UuxEqyxeiXMB8GA1UdIwQYMBaAFNMLgE1Cq30CDF8fdvOz3R8pLYZq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREVDOC84QTA1MDk4ODU2 RTExMUVCQUFDQkVFNzNDNEY5QUUwMi8wd3VBVFVLcmZRSU1YeDkyODdQZEh5a3Ro bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB3dUFUVUtyZlFJTVh4OTI4N1BkSHlrdGhtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURFQzgvOEEwNTA5ODg1NkUxMTFFQkFBQ0JFRTczQzRGOUFFMDIvRDY5M0UwQjY1 NkUyMTFFQjgzRDlFQTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn2wcwDwQCAAIwCQMHACABDfIuADANBgkqhkiG9w0BAQsF AAOCAQEAcDL7OeUd/zEDDLbJkVIUHtwCvhhOh9+Ih8BYDS9oTWXKtxHxMYEE+ASi vgt27VS+tZNolBuonX7JGP0Sh+Ol/1kUwPoEzU3RoBbSkV2QrykotjHUPwJFPCfa ftARZrN0Oj+VMWviousU7MEemyMpAqW0TZ8ldAlEGjV0dXsSS36IycfMyNkI8CwO 0QDjyLAd5/yGYWvclj6Sym3m0BOy0EcQJ50oUsVBG5n2Wv/3elwwM5XYUHpHTao1 Of2vbUUJ3lEY7GukUu4+3aKkJoPLFSGFLm9UjYNY3Tkeio0eyZmOm7Eoq8brhsnK 0Qf1MQ2bmSFlolO87fKKLf4djqdltg== -----END CERTIFICATE-----Generated at Fri Jun 20 07:58:03 2025 by rpki-client