$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/D3EA977EF32D11EA8498822CC4F9AE02.roa File: D3EA977EF32D11EA8498822CC4F9AE02.roa (raw, json) Hash identifier: W17rFdVVlgGDVf5Sl4I92TD7UhWdwp3Z8iY6u8GBaHw= Subject key identifier: 04:B3:8F:43:C2:F2:8B:14:0A:B0:34:EB:56:DD:FA:34:71:E2:F7:F5 Certificate issuer: /CN=A91F1C46/serialNumber=C6C19169EEA7D066BC9BCA72DD8830BC183A1266 Certificate serial: 07E3 Authority key identifier: C6:C1:91:69:EE:A7:D0:66:BC:9B:CA:72:DD:88:30:BC:18:3A:12:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xsGRae6n0Ga8m8py3YgwvBg6EmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/D3EA977EF32D11EA8498822CC4F9AE02.roa Signing time: Fri 06 Jun 2025 21:39:41 +0000 ROA not before: Fri 06 Jun 2025 21:39:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45144 IP address blocks: 43.252.36.0/22 maxlen: 24 103.4.4.0/23 maxlen: 24 103.4.6.0/24 maxlen: 24 182.239.40.0/22 maxlen: 24 2407:de00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/xsGRae6n0Ga8m8py3YgwvBg6EmY.crl rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/xsGRae6n0Ga8m8py3YgwvBg6EmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xsGRae6n0Ga8m8py3YgwvBg6EmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2019 (0x7e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1C46, serialNumber=C6C19169EEA7D066BC9BCA72DD8830BC183A1266 Validity Not Before: Jun 6 21:39:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6843601d-1ba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fa:99:ce:fc:e4:e6:97:76:c0:a6:84:55:73: fe:e6:c2:7f:af:11:aa:90:91:68:02:aa:f8:10:a1: a6:f6:71:58:3d:2f:02:ea:35:b8:56:b7:8c:a9:07: 16:83:49:e2:72:3e:ab:e0:f8:7a:35:35:6e:89:53: 32:76:7d:f0:17:8f:be:c3:a1:a2:57:0b:d0:d2:bc: e0:ee:3b:67:7c:0d:52:99:49:54:c6:6a:fc:73:8b: ab:e9:15:28:2a:6c:ad:ad:f5:69:3b:ee:68:4f:6a: 50:ea:55:67:af:cf:ef:30:a0:6a:38:8f:c4:64:9c: 82:7b:a6:ec:0c:8e:ef:95:fc:6a:08:c6:b3:3d:03: 07:76:99:e8:78:ee:91:0c:c8:50:28:9c:6b:a2:96: d1:c3:1d:8f:ad:97:46:0a:95:ff:42:e0:43:83:a4: 66:c9:47:bf:43:4c:58:b2:8e:59:b5:7a:9c:33:6b: 08:1b:88:c6:d0:27:32:72:ed:cc:1b:b4:2b:59:c5: d4:6c:f6:87:6a:a3:09:8a:b7:c4:14:1c:6d:2b:21: 1a:09:13:30:17:a9:be:1c:74:6c:0b:da:bb:68:f9: d1:2a:5c:bf:ea:43:16:d6:52:66:2d:44:fa:6d:9f: b7:17:f3:82:7f:12:24:d9:75:45:44:05:cb:88:09: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B3:8F:43:C2:F2:8B:14:0A:B0:34:EB:56:DD:FA:34:71:E2:F7:F5 X509v3 Authority Key Identifier: keyid:C6:C1:91:69:EE:A7:D0:66:BC:9B:CA:72:DD:88:30:BC:18:3A:12:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/xsGRae6n0Ga8m8py3YgwvBg6EmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xsGRae6n0Ga8m8py3YgwvBg6EmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1C46/05CADD16F18611EA8DEC3C14C4F9AE02/D3EA977EF32D11EA8498822CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.36.0/22 103.4.4.0-103.4.6.255 182.239.40.0/22 IPv6: 2407:de00::/32 Signature Algorithm: sha256WithRSAEncryption 27:b2:be:93:21:a6:22:90:57:bb:b2:d4:e9:ff:71:3c:f9:29: dc:bd:52:f4:f3:43:cf:bf:26:e1:3c:10:bc:2c:53:1f:c4:08: 0d:c4:a5:32:0f:8e:c0:57:85:73:89:94:6f:8e:14:27:cf:4a: 6f:bb:ae:a9:a0:14:c7:f3:f5:df:78:f1:8a:ff:de:4b:b2:dc: 13:0e:36:f4:9c:ef:45:33:9a:a1:be:63:cc:18:0d:1f:3f:bb: 32:04:46:06:a8:2a:bc:56:23:99:d3:bd:24:31:31:01:60:2b: e4:dd:9b:c4:42:93:40:1a:7e:3b:f0:67:e5:44:bf:72:c2:71: da:0b:10:cc:ec:f9:f3:6b:84:92:81:fa:b6:b6:3c:60:14:a8: b0:b8:f2:79:2b:65:d6:2e:b6:b8:97:a2:5e:27:12:30:f9:50: 48:4f:d9:29:cd:23:a8:08:02:60:cc:9b:c2:ec:b6:43:5d:8e: 8c:4c:ee:5b:44:10:84:b2:72:d4:8d:e6:3c:58:45:4c:86:ae: e6:ee:8c:02:1e:9f:8b:ff:36:fa:d7:a0:69:b4:3a:bc:4c:50: bc:47:90:0d:62:ba:70:ac:f5:69:e8:b5:15:3e:f6:a2:a1:82: fc:7a:0f:3d:64:67:ed:40:a7:a4:9c:b0:89:22:53:91:d5:cd: 73:9c:99:ca -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICB+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFDNDYxMTAvBgNVBAUTKEM2QzE5MTY5RUVBN0QwNjZCQzlCQ0E3MkREODgzMEJD MTgzQTEyNjYwHhcNMjUwNjA2MjEzOTQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzNjAxZC0xYmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPqZzvzk5pd2wKaEVXP+5sJ/rxGqkJFoAqr4EKGm9nFYPS8C6jW4VreMqQcW g0nicj6r4Ph6NTVuiVMydn3wF4++w6GiVwvQ0rzg7jtnfA1SmUlUxmr8c4ur6RUo KmytrfVpO+5oT2pQ6lVnr8/vMKBqOI/EZJyCe6bsDI7vlfxqCMazPQMHdpnoeO6R DMhQKJxropbRwx2PrZdGCpX/QuBDg6RmyUe/Q0xYso5ZtXqcM2sIG4jG0Ccycu3M G7QrWcXUbPaHaqMJirfEFBxtKyEaCRMwF6m+HHRsC9q7aPnRKly/6kMW1lJmLUT6 bZ+3F/OCfxIk2XVFRAXLiAklcwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFASzj0PC 8osUCrA061bd+jRx4vf1MB8GA1UdIwQYMBaAFMbBkWnup9BmvJvKct2IMLwYOhJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUM0Ni8wNUNBREQxNkYx ODYxMUVBOERFQzNDMTRDNEY5QUUwMi94c0dSYWU2bjBHYThtOHB5M1lnd3ZCZzZF bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hzR1JhZTZuMEdhOG04cHkzWWd3dkJnNkVtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFDNDYvMDVDQUREMTZGMTg2MTFFQThERUMzQzE0QzRGOUFFMDIvRDNFQTk3N0VG MzJEMTFFQTg0OTg4MjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBoDBAIr/CQwDAMEAmcEBAMEAGcEBgMEArbvKDANBAIAAjAHAwUA JAfeADANBgkqhkiG9w0BAQsFAAOCAQEAJ7K+kyGmIpBXu7LU6f9xPPkp3L1S9PND z78m4TwQvCxTH8QIDcSlMg+OwFeFc4mUb44UJ89Kb7uuqaAUx/P133jxiv/eS7Lc Ew429JzvRTOaob5jzBgNHz+7MgRGBqgqvFYjmdO9JDExAWAr5N2bxEKTQBp+O/Bn 5US/csJx2gsQzOz582uEkoH6trY8YBSosLjyeStl1i62uJeiXicSMPlQSE/ZKc0j qAgCYMybwuy2Q12OjEzuW0QQhLJy1I3mPFhFTIau5u6MAh6fi/82+tegabQ6vExQ vEeQDWK6cKz1aei1FT72oqGC/HoPPWRn7UCnpJywiSJTkdXNc5yZyg== -----END CERTIFICATE-----Generated at Fri Jun 20 20:53:14 2025 by rpki-client