$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/B23B879EE89C11ECA30FD20EC4F9AE02.roa File: B23B879EE89C11ECA30FD20EC4F9AE02.roa (raw, json) Hash identifier: mbvfRY70V57uQreQCGpE8MBwbcSS+3BOrVbu6LPmK2Y= Subject key identifier: 29:D6:61:13:5C:1E:44:87:7C:33:F4:F1:9A:8A:0F:BA:C7:79:83:35 Certificate issuer: /CN=A91F8A41/serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Certificate serial: 0713 Authority key identifier: CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/B23B879EE89C11ECA30FD20EC4F9AE02.roa Signing time: Sat 10 May 2025 22:22:20 +0000 ROA not before: Sat 10 May 2025 22:22:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133788 IP address blocks: 103.42.208.0/22 maxlen: 22 103.42.208.0/23 maxlen: 23 103.42.209.0/24 maxlen: 24 103.42.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1811 (0x713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A41, serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Validity Not Before: May 10 22:22:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681fd19b-1467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8b:6e:28:07:1f:ba:fc:8c:e0:ce:8e:8f:40: e9:71:78:61:a3:50:37:c6:56:a7:75:a5:ac:dc:38: 26:40:b9:6c:13:26:f2:df:6c:bf:f0:dc:e3:6a:bb: 82:e5:a3:3a:df:da:f9:e0:ed:2a:a5:93:f9:f3:e5: ac:1e:c6:e7:2c:35:6e:64:ce:b1:e1:13:4c:e4:ec: 56:26:73:12:bc:40:00:e7:cc:46:be:cf:66:04:47: 7e:f1:26:1b:b5:14:84:12:f8:7f:6c:46:65:54:dd: 55:73:4a:82:81:e5:18:c4:ce:3b:32:12:98:5e:94: be:a9:cb:66:bb:2a:d2:ee:2e:35:a1:eb:be:07:26: e5:b8:26:46:ae:74:e3:60:97:d8:bf:f7:5e:ef:8f: e1:94:ac:4e:f9:55:4a:60:07:e6:e7:df:29:ac:d6: f4:b8:ba:e2:c3:d2:ab:89:42:4c:72:12:66:0d:70: 43:f4:66:9e:dc:28:e4:a8:20:42:74:54:f1:a8:e0: b1:8d:56:fb:f2:25:8f:1a:fb:24:59:80:65:40:41: e3:ef:c6:50:dc:50:56:89:cb:a0:75:1e:05:58:e0: 78:43:8d:6d:f8:4e:8f:69:ef:35:80:e9:2e:73:0c: 91:e2:02:42:a9:ca:1a:7d:4e:6c:8e:dd:07:97:83: 58:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D6:61:13:5C:1E:44:87:7C:33:F4:F1:9A:8A:0F:BA:C7:79:83:35 X509v3 Authority Key Identifier: keyid:CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/B23B879EE89C11ECA30FD20EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.208.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:09:d3:fb:b4:9f:0b:2e:d2:f7:b9:b7:5d:3e:91:0f:13:97: 19:63:4e:30:12:d0:7e:71:e5:97:fa:28:1a:c3:5a:92:8e:1d: af:49:44:62:49:fa:83:b5:da:5f:82:39:ec:8e:9e:ec:af:73: b6:65:d8:58:c2:ac:ff:ae:8f:44:f0:d4:bf:9d:d9:bd:78:68: 72:d9:8b:d5:dd:2b:31:c9:02:ce:22:63:ec:b4:68:67:57:5d: e6:11:5a:f7:fb:42:7f:ce:94:f2:b4:e9:15:c6:2a:65:f2:37: 08:b8:c8:18:c3:f2:0e:ea:4f:5e:20:25:a8:a2:d5:35:14:e0: 86:b6:a7:bf:29:2f:66:ec:b3:61:bc:5e:db:d7:89:92:a5:e5: 65:db:b9:cd:23:23:c8:f0:18:ee:39:85:0c:5c:44:a5:9f:1d: 95:d5:2d:e1:c9:b1:e9:ee:47:3b:c3:c9:a7:05:d7:56:60:5d: c0:07:a7:81:a6:ed:67:d9:b0:e5:cf:46:c9:72:f6:e6:16:b9: 9b:0a:b7:0f:b8:2b:03:3b:f2:a4:98:66:0d:88:11:87:31:ac: 07:e4:da:22:1d:58:a0:c0:38:59:c5:f7:65:77:30:0c:66:10: 2f:e7:87:dc:13:96:db:2a:91:16:27:15:c2:9b:fb:d2:27:a2: f8:2d:d0:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDExMTAvBgNVBAUTKENERkVERjJENDExQzg0QzM2REMzQkI2QTAyRkRGMUFD NTBCNUJBMTQwHhcNMjUwNTEwMjIyMjIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmZDE5Yi0xNDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYtuKAcfuvyM4M6Oj0DpcXhho1A3xlandaWs3DgmQLlsEyby32y/8NzjaruC 5aM639r54O0qpZP58+WsHsbnLDVuZM6x4RNM5OxWJnMSvEAA58xGvs9mBEd+8SYb tRSEEvh/bEZlVN1Vc0qCgeUYxM47MhKYXpS+qctmuyrS7i41oeu+BybluCZGrnTj YJfYv/de74/hlKxO+VVKYAfm598prNb0uLriw9KriUJMchJmDXBD9Gae3CjkqCBC dFTxqOCxjVb78iWPGvskWYBlQEHj78ZQ3FBWicugdR4FWOB4Q41t+E6Pae81gOku cwyR4gJCqcoafU5sjt0Hl4NYgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCnWYRNc HkSHfDP08ZqKD7rHeYM1MB8GA1UdIwQYMBaAFM3+3y1BHITDbcO7agL98axQtboU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0MS81NTQxNDBERTg3 QkMxMUVCQjNDMDgyNzJDNEY5QUUwMi96ZjdmTFVFY2hNTnR3N3RxQXYzeHJGQzF1 aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pmN2ZMVUVjaE1OdHc3dHFBdjN4ckZDMXVoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhBNDEvNTU0MTQwREU4N0JDMTFFQkIzQzA4MjcyQzRGOUFFMDIvQjIzQjg3OUVF ODlDMTFFQ0EzMEZEMjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKtAwDQYJKoZIhvcNAQELBQADggEBAGwJ0/u0nwsu0ve5 t10+kQ8TlxljTjAS0H5x5Zf6KBrDWpKOHa9JRGJJ+oO12l+COeyOnuyvc7Zl2FjC rP+uj0Tw1L+d2b14aHLZi9XdKzHJAs4iY+y0aGdXXeYRWvf7Qn/OlPK06RXGKmXy Nwi4yBjD8g7qT14gJaii1TUU4Ia2p78pL2bss2G8XtvXiZKl5WXbuc0jI8jwGO45 hQxcRKWfHZXVLeHJsenuRzvDyacF11ZgXcAHp4Gm7WfZsOXPRsly9uYWuZsKtw+4 KwM78qSYZg2IEYcxrAfk2iIdWKDAOFnF92V3MAxmEC/nh9wTltsqkRYnFcKb+9In ovgt0Lw= -----END CERTIFICATE-----Generated at Fri Jun 20 17:04:41 2025 by rpki-client