$ rpki-client -vvf rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/94817492A7AF11EE9ABC7953C4F9AE02.roa File: 94817492A7AF11EE9ABC7953C4F9AE02.roa (raw, json) Hash identifier: 0cSwyQIrwsLrX5HCGrd1L+L8tXaOyusCzdo4wFfko7I= Subject key identifier: 34:3D:BD:DF:4B:8E:A0:2A:41:03:2E:CA:90:CA:57:16:2A:63:03:B1 Certificate issuer: /CN=A91583E4/serialNumber=8A74EF40E65A127C0E666B14A6C6574A536F3673 Certificate serial: 018C Authority key identifier: 8A:74:EF:40:E6:5A:12:7C:0E:66:6B:14:A6:C6:57:4A:53:6F:36:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/94817492A7AF11EE9ABC7953C4F9AE02.roa Signing time: Sat 15 Feb 2025 04:45:28 +0000 ROA not before: Sat 15 Feb 2025 04:45:28 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150738 IP address blocks: 103.76.194.0/23 maxlen: 23 103.76.194.0/24 maxlen: 24 103.76.195.0/24 maxlen: 24 2001:df1:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/inTvQOZaEnwOZmsUpsZXSlNvNnM.crl rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/inTvQOZaEnwOZmsUpsZXSlNvNnM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91583E4, serialNumber=8A74EF40E65A127C0E666B14A6C6574A536F3673 Validity Not Before: Feb 15 04:45:28 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b01be7-d5bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:35:d7:4d:22:14:a1:4a:0a:1b:a0:2f:6b: 84:a0:d1:b2:03:30:06:1f:4c:50:c7:d8:58:f3:0b: 71:2e:70:eb:d9:9c:1c:7d:6d:c1:9d:66:91:2c:09: 1b:71:59:7c:a2:86:14:7c:d5:ec:dd:82:0d:6f:61: 74:ad:60:e8:a4:f0:ba:83:e9:5b:fc:37:ff:24:f6: b6:dd:e5:c6:d5:4c:48:b0:af:a1:26:6e:67:df:10: a6:20:6c:05:97:33:aa:ce:1a:3e:95:12:59:b7:5b: 50:a2:e4:e2:2b:9d:67:0d:30:5a:25:f1:c9:3b:3b: 8f:d8:1a:09:64:d0:e6:36:27:88:7f:06:13:a6:86: c0:f1:3d:9e:04:71:7f:f0:13:71:bb:3c:62:f1:32: 84:cb:ea:2a:be:16:76:3b:06:99:f8:d4:1b:bf:a4: 6f:c8:23:e0:c4:e9:7f:14:a3:b3:99:d4:d8:b1:53: d5:25:1f:47:9d:9b:3d:36:24:d7:19:f7:81:4e:3d: 05:8a:59:7a:10:f9:a0:d2:39:8d:92:86:e2:5b:b6: 1e:82:dd:da:f2:59:d7:cc:3f:27:5a:96:d8:bf:6a: e4:5e:d3:72:05:de:c1:c2:89:49:37:93:06:3b:9c: b5:0d:51:b1:21:c5:e8:12:b2:16:9b:6f:75:0a:71: 23:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:3D:BD:DF:4B:8E:A0:2A:41:03:2E:CA:90:CA:57:16:2A:63:03:B1 X509v3 Authority Key Identifier: keyid:8A:74:EF:40:E6:5A:12:7C:0E:66:6B:14:A6:C6:57:4A:53:6F:36:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/inTvQOZaEnwOZmsUpsZXSlNvNnM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/94817492A7AF11EE9ABC7953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.194.0/23 IPv6: 2001:df1:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 33:35:f1:70:ac:80:ab:82:aa:21:c8:cb:4a:98:a0:1d:f0:81: 71:06:7f:a1:9c:b1:38:6e:06:31:48:a7:fa:46:6a:6b:bc:cd: 76:1f:1d:85:1d:b8:8d:52:fe:82:23:33:fb:a1:29:44:e6:56: 51:3d:48:9b:a4:1b:b7:28:59:9c:41:00:d0:51:29:1b:8d:61: df:f9:2c:f3:6b:3b:8e:39:6c:5b:35:bf:ec:be:38:75:06:0a: cf:df:af:d7:8e:14:4f:33:95:69:aa:4a:9f:0e:64:3b:81:f6: c7:1d:65:98:30:da:42:77:1b:5a:49:ce:8b:67:11:9e:de:cf: 44:d6:4a:de:69:a1:23:be:3e:93:56:1a:1c:e2:33:64:3d:c9: 16:58:9d:8c:2c:ac:9f:e2:f4:ce:e2:3e:b4:a6:68:ba:83:98: 08:07:20:ac:f6:31:fe:69:5e:82:54:05:c1:96:8c:1c:48:a1: cc:63:c3:95:d4:94:ec:7a:4a:87:8b:92:dc:91:0e:6f:4a:27: ad:2c:af:bb:f0:e6:23:2b:7e:8c:4c:60:06:51:3e:17:cb:8b: ba:3b:99:e3:63:33:30:55:3c:52:aa:f3:19:02:0a:3a:ba:c2: 7b:86:db:a5:33:28:2a:02:5f:48:ad:cb:51:b4:19:e3:2d:c7: 53:e1:97:22 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgzRTQxMTAvBgNVBAUTKDhBNzRFRjQwRTY1QTEyN0MwRTY2NkIxNEE2QzY1NzRB NTM2RjM2NzMwHhcNMjUwMjE1MDQ0NTI4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2IwMWJlNy1kNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XU1100iFKFKChugL2uEoNGyAzAGH0xQx9hY8wtxLnDr2ZwcfW3BnWaRLAkb cVl8ooYUfNXs3YINb2F0rWDopPC6g+lb/Df/JPa23eXG1UxIsK+hJm5n3xCmIGwF lzOqzho+lRJZt1tQouTiK51nDTBaJfHJOzuP2BoJZNDmNieIfwYTpobA8T2eBHF/ 8BNxuzxi8TKEy+oqvhZ2OwaZ+NQbv6RvyCPgxOl/FKOzmdTYsVPVJR9HnZs9NiTX GfeBTj0Fill6EPmg0jmNkobiW7Yegt3a8lnXzD8nWpbYv2rkXtNyBd7BwolJN5MG O5y1DVGxIcXoErIWm291CnEjMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDQ9vd9L jqAqQQMuypDKVxYqYwOxMB8GA1UdIwQYMBaAFIp070DmWhJ8DmZrFKbGV0pTbzZz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODNFNC8wNUZFRjQ0QTlF MEMxMUVEQkE5RDFEMjZDNEY5QUUwMi9pblR2UU9aYUVud09abXNVcHNaWFNsTnZO bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2luVHZRT1phRW53T1ptc1Vwc1pYU2xOdk5uTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgzRTQvMDVGRUY0NEE5RTBDMTFFREJBOUQxRDI2QzRGOUFFMDIvOTQ4MTc0OTJB N0FGMTFFRTlBQkM3OTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnTMIwDwQCAAIwCQMHACABDfHhwDANBgkqhkiG9w0BAQsF AAOCAQEAMzXxcKyAq4KqIcjLSpigHfCBcQZ/oZyxOG4GMUin+kZqa7zNdh8dhR24 jVL+giMz+6EpROZWUT1Im6QbtyhZnEEA0FEpG41h3/ks82s7jjlsWzW/7L44dQYK z9+v144UTzOVaapKnw5kO4H2xx1lmDDaQncbWknOi2cRnt7PRNZK3mmhI74+k1Ya HOIzZD3JFlidjCysn+L0zuI+tKZouoOYCAcgrPYx/mleglQFwZaMHEihzGPDldSU 7HpKh4uS3JEOb0onrSyvu/DmIyt+jExgBlE+F8uLujuZ42MzMFU8UqrzGQIKOrrC e4bbpTMoKgJfSK3LUbQZ4y3HU+GXIg== -----END CERTIFICATE-----Generated at Sat Apr 26 09:30:42 2025 by rpki-client