$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa File: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (raw, json) Hash identifier: FOS9hpfhSMJ/5W+e+NFkrecUhC86TAOPH0uxsIPYP4A= Subject key identifier: 8F:76:38:D3:37:8E:34:CA:AB:53:39:4D:FA:2A:84:7C:C0:9D:99:95 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 0665 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa Signing time: Tue 08 Apr 2025 22:32:59 +0000 ROA not before: Tue 08 Apr 2025 22:32:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137455 IP address blocks: 103.2.240.0/22 maxlen: 24 103.74.200.0/23 maxlen: 23 103.74.202.0/23 maxlen: 23 103.109.112.0/22 maxlen: 24 2402:78c0:1000::/36 maxlen: 36 2402:78c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Apr 8 22:32:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5a41a-9913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:05:87:a7:42:51:8b:4e:c0:38:0a:fb:db:7c: e1:10:cf:72:31:ea:b9:c6:dd:40:4a:69:7b:c2:94: 20:a6:84:19:8d:9a:a4:51:92:35:5b:35:44:12:43: 69:64:d8:38:53:19:33:7d:da:3d:13:97:bb:04:b3: bf:a1:61:c0:7c:ea:b3:a2:24:cd:b4:1f:38:2a:cc: 08:72:f6:5a:9e:1b:85:c2:e7:2b:ba:dc:90:56:7f: 5f:f0:06:e2:a0:6a:80:c8:29:58:c8:5a:3d:16:ce: 00:9e:36:ee:91:85:2e:9f:98:bc:68:39:87:38:33: 4d:fb:a5:7e:75:69:06:74:24:75:73:0d:ed:37:6a: 04:ff:48:87:37:27:1a:db:a8:24:95:5d:19:a7:a4: b1:35:97:54:1e:82:de:fd:e5:a3:74:0a:44:77:59: 8b:44:51:06:2d:19:24:5c:cb:12:25:b7:ae:04:03: bd:50:88:71:b1:15:d4:5b:eb:46:22:f3:fa:e2:3f: 93:30:db:1b:85:42:1b:79:1c:ba:95:ee:60:d6:2d: dc:ab:e3:76:7e:0e:4e:23:97:88:0b:13:98:c1:06: ff:f4:70:99:26:2c:37:66:38:ee:0e:66:d8:77:17: e2:6a:ee:ea:3d:66:f2:bb:5e:a3:00:11:49:34:46: 54:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:76:38:D3:37:8E:34:CA:AB:53:39:4D:FA:2A:84:7C:C0:9D:99:95 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.240.0/22 103.74.200.0/22 103.109.112.0/22 IPv6: 2402:78c0:1000::-2402:78c0:2fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 28:90:39:9a:ee:70:89:9e:1a:99:31:17:16:37:d4:8a:25:7c: 95:62:80:69:cf:1d:26:3d:34:1a:a6:b5:5d:48:b4:ac:19:7b: 26:8a:d6:4f:3d:8c:36:d7:c2:46:35:1f:36:59:47:1d:fd:fe: 7f:62:73:7a:fc:77:e8:0a:df:cf:2e:e2:66:9f:f9:1b:91:f8: 63:2b:63:42:10:9b:ca:84:0b:3a:b8:bc:71:5c:3b:5f:85:ee: 43:62:e0:2a:ea:1c:9e:df:c9:20:3c:63:5c:18:56:98:15:73: b2:42:f4:86:90:dd:3c:6d:ee:66:4b:bf:46:47:a5:df:0f:6a: 3c:61:cc:6e:e2:f1:e3:db:8c:5c:59:c9:86:ef:2e:97:70:03: 26:df:7e:ed:b1:95:a6:45:00:24:ae:88:a4:50:b8:7b:e9:95: 4e:c9:45:98:e7:a3:6b:ab:70:d7:59:25:c5:8e:c9:05:b9:67: 72:5f:f4:2b:7a:5a:9f:2c:8f:ca:0b:89:b3:ec:3e:62:76:a0: 78:16:ff:84:e1:37:21:73:db:66:92:3c:5d:9d:b8:94:8d:af: 4d:71:d3:d3:05:7b:e0:c9:3d:c4:3c:54:66:42:13:6d:4d:21: 80:28:7f:a0:eb:02:91:e7:22:df:a5:54:ea:85:bd:0a:23:e7: 4e:7c:77:62 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUwNDA4MjIzMjU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1YTQxYS05OTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwWHp0JRi07AOAr723zhEM9yMeq5xt1ASml7wpQgpoQZjZqkUZI1WzVEEkNp ZNg4Uxkzfdo9E5e7BLO/oWHAfOqzoiTNtB84KswIcvZanhuFwucrutyQVn9f8Abi oGqAyClYyFo9Fs4AnjbukYUun5i8aDmHODNN+6V+dWkGdCR1cw3tN2oE/0iHNyca 26gklV0Zp6SxNZdUHoLe/eWjdApEd1mLRFEGLRkkXMsSJbeuBAO9UIhxsRXUW+tG IvP64j+TMNsbhUIbeRy6le5g1i3cq+N2fg5OI5eICxOYwQb/9HCZJiw3ZjjuDmbY dxfiau7qPWbyu16jABFJNEZUXwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFI92ONM3 jjTKq1M5TfoqhHzAnZmVMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QUMvNDk3MjA5OTY4MTQ1MTFFQkIyREQ1RDRCQzRGOUFFMDIvMDA4MUYzRDZG MjIxMTFFRThFRUMwNzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAJnAvADBAJnSsgDBAJnbXAwGAQCAAIwEjAQAwYEJAJ4wBAD BgQkAnjAIDANBgkqhkiG9w0BAQsFAAOCAQEAKJA5mu5wiZ4amTEXFjfUiiV8lWKA ac8dJj00Gqa1XUi0rBl7JorWTz2MNtfCRjUfNllHHf3+f2Jzevx36Arfzy7iZp/5 G5H4YytjQhCbyoQLOri8cVw7X4XuQ2LgKuocnt/JIDxjXBhWmBVzskL0hpDdPG3u Zku/Rkel3w9qPGHMbuLx49uMXFnJhu8ul3ADJt9+7bGVpkUAJK6IpFC4e+mVTslF mOeja6tw11klxY7JBblncl/0K3panyyPyguJs+w+YnageBb/hOE3IXPbZpI8XZ24 lI2vTXHT0wV74Mk9xDxUZkITbU0hgCh/oOsCkeci36VU6oW9CiPnTnx3Yg== -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:40 2025 by rpki-client