$ rpki-client -vvf rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa File: CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa (raw, json) Hash identifier: N/Z1A4qeNZSHVNwv9cte5LA7OvaaTxHRAR2tgd6keJ0= Subject key identifier: 85:DE:05:6E:A3:A2:90:00:E4:B9:A0:21:12:99:6E:AD:61:6E:91:D1 Certificate issuer: /CN=A91637DD/serialNumber=7C131EE0A80B834D48D17D69655A5BC7BE668B6A Certificate serial: 040F Authority key identifier: 7C:13:1E:E0:A8:0B:83:4D:48:D1:7D:69:65:5A:5B:C7:BE:66:8B:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa Signing time: Fri 31 Jan 2025 00:45:09 +0000 ROA not before: Fri 31 Jan 2025 00:45:09 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149295 IP address blocks: 103.177.242.0/23 maxlen: 23 103.177.242.0/24 maxlen: 24 103.177.243.0/24 maxlen: 24 2001:df0:2dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.crl rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91637DD, serialNumber=7C131EE0A80B834D48D17D69655A5BC7BE668B6A Validity Not Before: Jan 31 00:45:09 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679c1d15-678a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d9:72:e7:04:36:5c:8e:a8:e9:36:51:17:99: 3e:bc:52:d2:19:c1:a0:6f:df:bc:64:e4:40:ee:7b: 09:74:d5:dc:e2:5f:2c:5b:8a:08:60:65:6b:63:72: 58:78:0f:bb:2f:d8:69:de:38:6d:e2:b7:29:d6:25: c4:f0:19:00:8c:12:41:3e:93:56:a3:4d:aa:86:64: b2:e8:b2:98:82:1f:2c:3a:7d:3a:3a:6b:41:8f:e4: 4e:cc:48:a3:80:47:9a:0a:2a:93:3c:0b:e0:b9:ee: 8c:05:ee:6f:ed:54:66:ce:46:bd:e2:ea:4b:3d:85: e6:2a:8d:6f:3b:c0:7c:47:b0:26:af:5d:7c:d3:0e: 86:f5:85:92:07:47:30:b5:59:56:6d:24:de:8b:0f: 68:9e:b0:ac:9e:84:7a:23:22:4a:19:e8:84:ea:f3: 03:99:fc:76:e5:14:a6:c4:24:58:e2:78:fb:b4:e4: d6:2b:fc:f5:ac:e4:10:f9:98:fa:b1:97:1f:d0:da: 87:03:c3:7e:95:6f:d6:92:03:c5:7d:f7:6d:0d:cd: 34:a2:5e:62:63:11:95:27:03:d3:25:b4:49:2c:69: 89:cb:e3:54:fa:90:e8:78:f1:93:ba:89:c9:5f:a6: 29:ba:c2:84:96:ac:96:66:bb:c1:a3:f4:e0:8e:60: d0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:DE:05:6E:A3:A2:90:00:E4:B9:A0:21:12:99:6E:AD:61:6E:91:D1 X509v3 Authority Key Identifier: keyid:7C:13:1E:E0:A8:0B:83:4D:48:D1:7D:69:65:5A:5B:C7:BE:66:8B:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.242.0/23 IPv6: 2001:df0:2dc0::/48 Signature Algorithm: sha256WithRSAEncryption 24:53:8d:68:40:1b:ec:16:7a:a5:ac:35:d1:99:3b:1b:e4:d1: b6:8a:21:e3:70:65:a9:e5:eb:89:2d:7b:3c:28:2c:4b:9d:ec: 02:4f:2a:ec:01:6d:d2:57:85:16:d0:53:5f:c4:e0:d3:1a:85: db:27:cf:47:91:dd:4d:3f:67:15:bb:af:70:42:2c:ad:25:4c: f0:3d:c0:ff:e4:8a:d4:cf:ab:54:86:98:b7:4c:b9:3d:92:75: ba:f9:6f:0e:e3:90:eb:c2:7b:90:2d:ec:bb:97:0d:ed:36:8b: 66:d5:38:d3:fc:cf:84:dd:a9:60:a3:5e:b0:b1:34:e7:e9:17: 4f:74:0c:25:31:b7:f0:a4:b1:3c:eb:c2:d3:f7:9d:40:8c:12: 47:ec:45:65:8c:15:07:a6:87:e1:91:a7:84:b7:b2:0e:e4:bd: 22:8c:9e:a2:c9:81:ec:39:69:d2:c0:8e:05:00:05:86:39:7c: 4c:87:db:d1:2e:b3:f8:95:51:bc:77:9e:61:ca:db:8e:ec:d0: 8b:65:8d:d2:b5:95:61:b4:01:b1:d0:f8:a3:98:e6:a3:11:67: 30:f1:e8:65:37:57:65:00:40:56:30:40:40:06:f8:80:04:d3: d5:58:b3:78:11:f7:00:d9:7d:d5:06:a5:3e:ee:ce:06:c0:9a: 6b:f1:10:03 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM3REQxMTAvBgNVBAUTKDdDMTMxRUUwQTgwQjgzNEQ0OEQxN0Q2OTY1NUE1QkM3 QkU2NjhCNkEwHhcNMjUwMTMxMDA0NTA5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljMWQxNS02NzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdly5wQ2XI6o6TZRF5k+vFLSGcGgb9+8ZORA7nsJdNXc4l8sW4oIYGVrY3JY eA+7L9hp3jht4rcp1iXE8BkAjBJBPpNWo02qhmSy6LKYgh8sOn06OmtBj+ROzEij gEeaCiqTPAvgue6MBe5v7VRmzka94upLPYXmKo1vO8B8R7Amr1180w6G9YWSB0cw tVlWbSTeiw9onrCsnoR6IyJKGeiE6vMDmfx25RSmxCRY4nj7tOTWK/z1rOQQ+Zj6 sZcf0NqHA8N+lW/WkgPFffdtDc00ol5iYxGVJwPTJbRJLGmJy+NU+pDoePGTuonJ X6YpusKElqyWZrvBo/TgjmDQQQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIXeBW6j opAA5LmgIRKZbq1hbpHRMB8GA1UdIwQYMBaAFHwTHuCoC4NNSNF9aWVaW8e+Zotq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzdERC9ERTU5RjYwMjVF NzMxMUVDOEJFNENDNEVDNEY5QUUwMi9mQk1lNEtnTGcwMUkwWDFwWlZwYng3NW1p Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZCTWU0S2dMZzAxSTBYMXBaVnBieDc1bWkyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM3REQvREU1OUY2MDI1RTczMTFFQzhCRTRDQzRFQzRGOUFFMDIvQ0E5NUZCMEVB MUU2MTFFREFCRkQ3RDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsfIwDwQCAAIwCQMHACABDfAtwDANBgkqhkiG9w0BAQsF AAOCAQEAJFONaEAb7BZ6paw10Zk7G+TRtooh43BlqeXriS17PCgsS53sAk8q7AFt 0leFFtBTX8Tg0xqF2yfPR5HdTT9nFbuvcEIsrSVM8D3A/+SK1M+rVIaYt0y5PZJ1 uvlvDuOQ68J7kC3su5cN7TaLZtU40/zPhN2pYKNesLE05+kXT3QMJTG38KSxPOvC 0/edQIwSR+xFZYwVB6aH4ZGnhLeyDuS9IoyeosmB7Dlp0sCOBQAFhjl8TIfb0S6z +JVRvHeeYcrbjuzQi2WN0rWVYbQBsdD4o5jmoxFnMPHoZTdXZQBAVjBAQAb4gATT 1VizeBH3ANl91QalPu7OBsCaa/EQAw== -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:19 2025 by rpki-client