$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/834C938A12C711F09998A234C4F9AE02.roa File: 834C938A12C711F09998A234C4F9AE02.roa (raw, json) Hash identifier: M4mfahqMzwmq58j++0Teybq9n4Aqspe3mvfksixkbgE= Subject key identifier: 56:02:F2:D1:82:82:1B:E3:0C:DF:A3:33:6A:3F:7F:00:6F:B2:31:8B Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0A28 Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/834C938A12C711F09998A234C4F9AE02.roa Signing time: Sun 06 Apr 2025 09:14:16 +0000 ROA not before: Sun 06 Apr 2025 09:14:16 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137425 IP address blocks: 103.108.60.0/22 maxlen: 22 103.108.60.0/23 maxlen: 23 103.108.60.0/24 maxlen: 24 103.108.61.0/24 maxlen: 24 103.108.62.0/23 maxlen: 23 103.108.62.0/24 maxlen: 24 103.108.63.0/24 maxlen: 24 2406:ebc0::/32 maxlen: 32 2406:ebc0::/36 maxlen: 36 2406:ebc0:1000::/36 maxlen: 36 2406:ebc0:2000::/36 maxlen: 36 2406:ebc0:3000::/36 maxlen: 36 2406:ebc0:4000::/36 maxlen: 36 2406:ebc0:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 19:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC, serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Apr 6 09:14:16 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f245e8-5a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f8:46:38:5d:80:dd:cd:a7:12:ee:6c:40:5c: a1:ff:68:f1:3a:7b:02:df:96:4f:17:df:88:3e:81: 9d:38:eb:54:5f:b5:b0:01:af:ff:9d:eb:ef:a7:fe: 0c:cf:73:e2:38:fa:4b:f7:d5:f7:b6:66:f7:06:50: 6b:92:c1:f1:3b:46:82:af:7e:ca:1a:97:5c:f2:5c: 65:4d:18:e8:d0:82:5c:82:80:64:85:bb:48:48:83: e5:16:a9:f4:80:b5:ba:d5:aa:e1:c3:7d:2a:50:27: ea:02:4d:24:ec:a5:3a:5c:e8:b5:75:1a:a1:59:8c: 6a:c4:72:c2:b2:84:cd:2d:52:cb:db:fd:c6:9c:62: f5:65:a8:68:db:2d:9f:b3:9d:a7:00:b6:2b:a5:c7: 12:1b:35:86:99:9e:21:0e:0e:e7:cd:6e:1c:ca:f0: 8d:69:0c:5a:b1:35:1e:ff:2f:0c:95:00:5d:b5:93: 8b:aa:8a:72:72:74:4f:35:f7:53:c5:ec:77:50:98: 78:94:fe:00:d8:f1:fa:98:8b:59:dc:c7:fc:04:95: cf:29:41:87:51:76:49:8c:d4:26:92:76:85:8a:76: 6c:49:5f:76:f5:ac:d5:64:05:e3:77:c8:d4:43:38: b3:02:b1:ee:c8:8e:ea:64:ce:37:96:e7:e7:c0:c3: 64:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:02:F2:D1:82:82:1B:E3:0C:DF:A3:33:6A:3F:7F:00:6F:B2:31:8B X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/834C938A12C711F09998A234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.60.0/22 IPv6: 2406:ebc0::/32 Signature Algorithm: sha256WithRSAEncryption 05:f3:94:7b:73:f1:63:1d:9c:75:f2:3c:32:35:d7:86:c3:0e: 22:42:37:5e:aa:49:1c:d7:55:1b:93:0e:29:34:af:21:69:28: df:a6:39:30:ab:95:03:df:6e:78:bf:a4:b1:29:74:15:23:ca: 59:3e:2f:ef:bd:ae:4e:2a:c1:b9:23:e2:9b:ee:ca:72:e8:46: c8:62:00:a7:20:79:c4:21:1f:a7:af:a9:7d:20:ab:2d:6d:c9: 3c:e3:41:04:0b:f3:0f:fb:bd:80:a2:76:10:33:5f:cf:c9:f0: 15:f5:61:4d:78:01:e1:f0:7a:45:40:c2:06:f6:31:81:51:ca: de:c7:76:c1:9e:b6:f2:7e:da:40:ac:5c:f8:54:2b:9d:dc:eb: 82:12:e5:09:26:4c:68:28:ee:54:07:88:c5:e7:4b:09:3a:83: a4:41:fb:31:4d:be:f1:26:dc:23:61:11:53:48:00:d2:2d:d3: ab:4a:35:f4:2c:5f:a6:37:60:42:a2:4c:69:1b:2e:9f:72:db: d6:f3:3e:dd:d5:21:cf:97:67:93:b3:4f:e1:2d:ec:95:16:8d: 1d:0f:8a:48:dd:28:de:47:52:29:a1:a3:80:85:c7:8e:f8:15: 5c:e7:4f:7b:6d:84:10:3b:7b:77:96:29:6b:f3:0a:36:a1:7f: b7:14:fc:52 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjUwNDA2MDkxNDE2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YyNDVlOC01YTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfhGOF2A3c2nEu5sQFyh/2jxOnsC35ZPF9+IPoGdOOtUX7WwAa//nevvp/4M z3PiOPpL99X3tmb3BlBrksHxO0aCr37KGpdc8lxlTRjo0IJcgoBkhbtISIPlFqn0 gLW61arhw30qUCfqAk0k7KU6XOi1dRqhWYxqxHLCsoTNLVLL2/3GnGL1Zaho2y2f s52nALYrpccSGzWGmZ4hDg7nzW4cyvCNaQxasTUe/y8MlQBdtZOLqopycnRPNfdT xex3UJh4lP4A2PH6mItZ3Mf8BJXPKUGHUXZJjNQmknaFinZsSV929azVZAXjd8jU QzizArHuyI7qZM43lufnwMNkxwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFYC8tGC ghvjDN+jM2o/fwBvsjGLMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY2RkMvQUIxRjRFQ0E3MjlBMTFFQUFCQkY5MTQxQzRGOUFFMDIvODM0QzkzOEEx MkM3MTFGMDk5OThBMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbDwwDQQCAAIwBwMFACQG68AwDQYJKoZIhvcNAQELBQAD ggEBAAXzlHtz8WMdnHXyPDI114bDDiJCN16qSRzXVRuTDik0ryFpKN+mOTCrlQPf bni/pLEpdBUjylk+L++9rk4qwbkj4pvuynLoRshiAKcgecQhH6evqX0gqy1tyTzj QQQL8w/7vYCidhAzX8/J8BX1YU14AeHwekVAwgb2MYFRyt7HdsGetvJ+2kCsXPhU K53c64IS5QkmTGgo7lQHiMXnSwk6g6RB+zFNvvEm3CNhEVNIANIt06tKNfQsX6Y3 YEKiTGkbLp9y29bzPt3VIc+XZ5OzT+Et7JUWjR0PikjdKN5HUimho4CFx474FVzn T3tthBA7e3eWKWvzCjahf7cU/FI= -----END CERTIFICATE-----Generated at Sat May 3 23:59:25 2025 by rpki-client