$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa File: 97D3AF84DCC611EDB75B695EC4F9AE02.roa (raw, json) Hash identifier: rRipsWIPpFCqvwU6GU8CPWQ7Gw24E8Icdhb0XLzQIeY= Subject key identifier: F6:4B:54:EF:2B:FD:9E:9B:39:90:C1:15:EA:45:1B:4A:93:03:9E:37 Certificate issuer: /CN=A91557F5/serialNumber=B06F82965AFEE3ABDA1B3A1F2D6017E007278CE5 Certificate serial: 06AD Authority key identifier: B0:6F:82:96:5A:FE:E3:AB:DA:1B:3A:1F:2D:60:17:E0:07:27:8C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa Signing time: Thu 20 Mar 2025 22:33:05 +0000 ROA not before: Thu 20 Mar 2025 22:33:05 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 141680 IP address blocks: 103.161.248.0/23 maxlen: 24 2001:df5:d880::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.crl rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F5, serialNumber=B06F82965AFEE3ABDA1B3A1F2D6017E007278CE5 Validity Not Before: Mar 20 22:33:05 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67dc97a0-2705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:35:27:d2:0f:a9:ad:eb:df:df:09:31:c3:4e: b0:85:59:d0:0d:35:95:0c:fb:20:12:d3:c9:9b:15: ad:3f:66:98:b2:8b:bb:31:29:65:ac:e4:dc:52:47: f6:81:d8:5f:fb:6e:7d:0e:67:29:5c:bc:1e:0e:9d: b6:37:69:de:f3:5d:dc:7d:19:b7:19:8c:3a:62:18: d6:8a:19:9c:a2:b2:e7:79:c5:81:c2:5f:db:a0:36: 07:f9:42:62:1a:2b:5f:f5:8a:a2:c9:4d:2e:e1:55: 65:38:d9:ef:a3:ad:c8:90:16:0f:ed:b3:9a:05:d2: f6:6e:3a:fe:36:b2:24:c5:fb:c2:70:6a:aa:65:c7: 3f:cf:5c:9b:ec:74:af:be:e8:8d:33:6e:e2:d2:55: 5e:3e:cc:7f:b6:a0:8e:73:5f:ad:76:f5:7c:bf:a0: 31:8e:a7:cc:86:89:3f:04:47:ac:4c:22:60:09:96: df:90:cb:03:5f:12:2f:d1:20:c1:dc:a4:5b:4a:66: 87:d4:84:b4:6e:48:83:84:84:06:40:f2:28:83:0b: e2:3e:2a:db:11:52:f8:a4:21:54:b4:5a:cb:33:88: 05:19:83:c5:7c:bf:85:c2:b7:3f:11:97:a6:7d:ff: 1f:88:e7:c5:33:24:23:31:78:ff:de:86:c0:87:70: 6d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:4B:54:EF:2B:FD:9E:9B:39:90:C1:15:EA:45:1B:4A:93:03:9E:37 X509v3 Authority Key Identifier: keyid:B0:6F:82:96:5A:FE:E3:AB:DA:1B:3A:1F:2D:60:17:E0:07:27:8C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.248.0/23 IPv6: 2001:df5:d880::/47 Signature Algorithm: sha256WithRSAEncryption 13:81:87:4f:ff:3f:34:52:87:f4:56:40:93:11:a7:5f:98:82: 98:74:a5:09:fc:ba:24:10:15:4d:79:6f:f9:4b:cf:1c:93:3e: ae:fe:5b:83:22:ce:8a:4b:29:74:40:c7:ee:7c:65:ec:6a:30: 8c:4f:56:fa:9c:3c:ab:4d:1d:37:d4:d2:0d:0e:4c:a2:96:76: 44:42:ad:1f:de:f8:a6:6f:51:05:ee:46:d0:bd:30:d6:ae:be: e1:86:fc:28:ac:6e:b7:7a:18:a5:64:db:b1:98:05:45:3b:0e: 1c:a7:ad:16:80:45:f5:fc:35:c8:4d:e8:fa:8f:e3:5a:35:46: 86:74:1f:3d:cf:28:f0:10:3c:20:ef:cf:81:36:09:28:74:72: ea:3a:33:6a:5a:7d:65:95:b4:47:44:4a:80:36:8a:16:59:ea: ea:ed:a4:66:f7:89:67:96:c3:e1:a7:fc:b4:0b:be:3d:71:7a: 55:9a:0a:94:34:1d:07:0e:4c:77:48:e5:15:c0:48:48:2b:84: 6d:92:bc:20:b3:fb:47:a8:1c:bc:31:6b:e1:05:1a:6d:00:4e: 10:24:3b:7e:5f:da:7e:7a:0f:e8:47:bc:f8:2e:35:e6:f2:49: 4e:b9:9f:13:17:85:eb:ee:2b:59:f0:f5:0e:a3:e9:63:f0:31: ec:3d:26:45 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjUxMTAvBgNVBAUTKEIwNkY4Mjk2NUFGRUUzQUJEQTFCM0ExRjJENjAxN0Uw MDcyNzhDRTUwHhcNMjUwMzIwMjIzMzA1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjOTdhMC0yNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zUn0g+prevf3wkxw06whVnQDTWVDPsgEtPJmxWtP2aYsou7MSllrOTcUkf2 gdhf+259DmcpXLweDp22N2ne813cfRm3GYw6YhjWihmcorLnecWBwl/boDYH+UJi Gitf9YqiyU0u4VVlONnvo63IkBYP7bOaBdL2bjr+NrIkxfvCcGqqZcc/z1yb7HSv vuiNM27i0lVePsx/tqCOc1+tdvV8v6AxjqfMhok/BEesTCJgCZbfkMsDXxIv0SDB 3KRbSmaH1IS0bkiDhIQGQPIogwviPirbEVL4pCFUtFrLM4gFGYPFfL+Fwrc/EZem ff8fiOfFMyQjMXj/3obAh3BtVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPZLVO8r /Z6bOZDBFepFG0qTA543MB8GA1UdIwQYMBaAFLBvgpZa/uOr2hs6Hy1gF+AHJ4zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGNS9FQzQwNUUxNjVD NkYxMUVCQUMzQTg4NTZDNEY5QUUwMi9zRy1DbGxyLTQ2dmFHem9mTFdBWDRBY25q T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHLUNsbHItNDZ2YUd6b2ZMV0FYNEFjbmpPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU3RjUvRUM0MDVFMTY1QzZGMTFFQkFDM0E4ODU2QzRGOUFFMDIvOTdEM0FGODRE Q0M2MTFFREI3NUI2OTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnofgwDwQCAAIwCQMHASABDfXYgDANBgkqhkiG9w0BAQsF AAOCAQEAE4GHT/8/NFKH9FZAkxGnX5iCmHSlCfy6JBAVTXlv+UvPHJM+rv5bgyLO ikspdEDH7nxl7GowjE9W+pw8q00dN9TSDQ5MopZ2REKtH974pm9RBe5G0L0w1q6+ 4Yb8KKxut3oYpWTbsZgFRTsOHKetFoBF9fw1yE3o+o/jWjVGhnQfPc8o8BA8IO/P gTYJKHRy6jozalp9ZZW0R0RKgDaKFlnq6u2kZveJZ5bD4af8tAu+PXF6VZoKlDQd Bw5Md0jlFcBISCuEbZK8ILP7R6gcvDFr4QUabQBOECQ7fl/afnoP6Ee8+C415vJJ TrmfExeF6+4rWfD1DqPpY/Ax7D0mRQ== -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:44 2025 by rpki-client