$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/6B6060E445A311F093AEF324C4F9AE02.roa File: 6B6060E445A311F093AEF324C4F9AE02.roa (raw, json) Hash identifier: KkaxMY/paqE0NvJV6adlijQxx/J7VWmCwLLLInlyw1A= Subject key identifier: A3:72:91:CE:C2:F4:A0:3B:EE:FC:F5:C9:A2:81:4E:7D:BB:D9:FE:69 Certificate issuer: /CN=A91EEA4D/serialNumber=D106FB972A71FEB74092E06378D54CD59E59E3A3 Certificate serial: 02 Authority key identifier: D1:06:FB:97:2A:71:FE:B7:40:92:E0:63:78:D5:4C:D5:9E:59:E3:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/6B6060E445A311F093AEF324C4F9AE02.roa Signing time: Tue 10 Jun 2025 02:34:23 +0000 ROA not before: Tue 10 Jun 2025 02:34:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138561 IP address blocks: 103.133.4.0/22 maxlen: 22 103.133.4.0/23 maxlen: 23 103.133.4.0/24 maxlen: 24 103.133.5.0/24 maxlen: 24 103.133.6.0/23 maxlen: 23 103.133.6.0/24 maxlen: 24 103.133.7.0/24 maxlen: 24 2404:44c0::/32 maxlen: 32 2404:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.crl rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEA4D, serialNumber=D106FB972A71FEB74092E06378D54CD59E59E3A3 Validity Not Before: Jun 10 02:34:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=684799af-8428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ae:86:2b:b9:46:bb:8e:d6:1f:d0:cd:1f:98: 7b:0c:d9:49:2c:6a:14:e6:89:a3:5e:a3:ac:d9:ea: df:a3:e5:da:3c:7c:6d:ba:e4:8a:c6:09:31:d1:77: 00:29:cd:16:47:df:28:ee:91:75:37:84:ef:1a:50: 1f:36:3e:c5:4e:81:09:ab:a3:53:ba:4d:ce:9f:c5: 77:d1:07:62:76:20:af:7f:cc:31:b3:e1:0c:27:8e: b4:5a:fc:38:21:ff:2f:83:5f:d7:83:eb:04:b2:10: 84:ee:27:d6:29:e7:16:6c:10:c1:e9:c8:3a:41:e1: 8b:4e:29:95:6f:7f:9d:f4:cd:08:d8:83:66:6d:cd: 5c:b7:07:ac:0a:da:e3:7a:6d:91:6a:45:57:bb:10: c7:25:4c:0a:9d:21:86:03:17:ba:8c:9f:c7:c2:9c: b0:50:66:99:35:27:ba:a1:d5:d4:af:d7:36:ab:c6: 37:df:a0:be:7c:a2:a9:bc:99:fe:71:f5:5c:06:b8: 36:f3:a7:52:94:1e:f6:1b:69:1a:3c:2a:aa:ec:32: 67:86:64:b2:83:89:0c:21:42:aa:be:78:4d:d3:a5: 41:5f:1d:da:84:cb:92:d0:f0:1b:6e:9b:35:80:00: b9:7a:cb:bd:a8:e9:ab:fc:e6:9a:8e:ae:eb:8f:4d: 6a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:72:91:CE:C2:F4:A0:3B:EE:FC:F5:C9:A2:81:4E:7D:BB:D9:FE:69 X509v3 Authority Key Identifier: keyid:D1:06:FB:97:2A:71:FE:B7:40:92:E0:63:78:D5:4C:D5:9E:59:E3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/6B6060E445A311F093AEF324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.4.0/22 IPv6: 2404:44c0::/32 Signature Algorithm: sha256WithRSAEncryption ae:a6:77:73:b3:4c:0b:a9:b9:c1:50:5b:82:66:eb:72:88:0f: ea:56:e5:c9:fb:30:da:1f:22:bf:15:85:3a:a1:6b:3f:a0:61: d1:b0:be:40:79:65:d9:e1:4d:f5:eb:f9:07:4f:bc:08:9b:17: 30:a6:ab:6b:05:39:00:02:05:3b:59:31:f5:38:f1:20:0d:fe: 62:02:87:15:66:f9:38:c1:a8:b7:a7:f4:0a:b5:14:b4:72:c7: 51:74:85:70:f6:44:92:db:11:21:bd:c2:b3:90:dc:52:3a:fd: ed:2c:15:32:8b:2a:11:e7:f4:e3:95:b5:01:14:5f:60:f7:13: 43:bd:7d:37:7d:ee:77:53:e4:0f:02:a8:91:95:16:d3:a9:e7: 89:de:c1:84:09:16:da:19:02:df:cc:05:d5:b6:a4:1f:73:f7: 0b:ab:28:e3:ac:7f:7b:ad:67:bc:2a:41:44:df:df:f5:fd:a4: 50:30:8c:6b:b4:e4:50:3d:2e:30:b7:e8:1d:9c:fa:a9:21:75: 42:d6:94:aa:b2:03:bf:f9:c2:21:1c:b3:9a:0e:d2:e8:45:69: bd:1f:13:68:4e:fd:11:40:06:a9:2c:2b:40:f2:a6:b6:3f:c8: 56:7c:de:de:18:b9:2b:65:89:51:29:4b:3f:2f:48:5d:b1:b0: 3f:18:e1:fe -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RUE0RDExMC8GA1UEBRMoRDEwNkZCOTcyQTcxRkVCNzQwOTJFMDYzNzhENTRDRDU5 RTU5RTNBMzAeFw0yNTA2MTAwMjM0MjNaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDc5OWFmLTg0MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVroYruUa7jtYf0M0fmHsM2UksahTmiaNeo6zZ6t+j5do8fG265IrGCTHRdwAp zRZH3yjukXU3hO8aUB82PsVOgQmro1O6Tc6fxXfRB2J2IK9/zDGz4QwnjrRa/Dgh /y+DX9eD6wSyEITuJ9Yp5xZsEMHpyDpB4YtOKZVvf530zQjYg2ZtzVy3B6wK2uN6 bZFqRVe7EMclTAqdIYYDF7qMn8fCnLBQZpk1J7qh1dSv1zarxjffoL58oqm8mf5x 9VwGuDbzp1KUHvYbaRo8KqrsMmeGZLKDiQwhQqq+eE3TpUFfHdqEy5LQ8BtumzWA ALl6y72o6av85pqOruuPTWpNAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUo3KRzsL0 oDvu/PXJooFOfbvZ/mkwHwYDVR0jBBgwFoAU0Qb7lypx/rdAkuBjeNVM1Z5Z46Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFQTRELzY2MUY3M0VDNDcz NzExRUFBQjE2QkI1MEM0RjlBRTAyLzBRYjdseXB4X3JkQWt1QmplTlZNMVo1WjQ2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFFiN2x5cHhfcmRBa3VCamVOVk0xWjVaNDZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUE0RC82NjFGNzNFQzQ3MzcxMUVBQUIxNkJCNTBDNEY5QUUwMi82QjYwNjBFNDQ1 QTMxMUYwOTNBRUYzMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmeFBDANBAIAAjAHAwUAJAREwDANBgkqhkiG9w0BAQsFAAOC AQEArqZ3c7NMC6m5wVBbgmbrcogP6lblyfsw2h8ivxWFOqFrP6Bh0bC+QHll2eFN 9ev5B0+8CJsXMKarawU5AAIFO1kx9TjxIA3+YgKHFWb5OMGot6f0CrUUtHLHUXSF cPZEktsRIb3Cs5DcUjr97SwVMosqEef045W1ARRfYPcTQ719N33ud1PkDwKokZUW 06nnid7BhAkW2hkC38wF1bakH3P3C6so46x/e61nvCpBRN/f9f2kUDCMa7TkUD0u MLfoHZz6qSF1QtaUqrIDv/nCIRyzmg7S6EVpvR8TaE79EUAGqSwrQPKmtj/IVnze 3hi5K2WJUSlLPy9IXbGwPxjh/g== -----END CERTIFICATE-----Generated at Thu Jun 19 16:45:45 2025 by rpki-client