$ rpki-client -vvf rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa File: B0B70006B19211EC9EAAD44EC4F9AE02.roa (raw, json) Hash identifier: i853W0E/Chff6sq6i5MGm8h4afp0uwHZH5nrhPAd2hQ= Subject key identifier: 91:A2:0F:64:3B:B5:4F:82:0A:0A:DF:4D:A9:63:76:BE:EC:66:1F:4C Certificate issuer: /CN=A91642A0/serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Certificate serial: 0CB0 Authority key identifier: 02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa Signing time: Mon 31 Mar 2025 18:18:06 +0000 ROA not before: Mon 31 Mar 2025 18:18:06 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 138612 IP address blocks: 103.134.124.0/24 maxlen: 24 103.134.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91642A0, serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Validity Not Before: Mar 31 18:18:06 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67eadc5e-e6db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:a8:b1:b6:56:9f:1d:1a:bc:20:f7:3b:7b: 29:6e:55:c5:b3:ea:ee:0a:fa:43:5d:80:a3:d4:82: 5c:68:57:1f:73:64:30:6e:33:a6:a2:b3:8b:d3:dc: 53:fa:14:d1:80:c7:67:d9:bd:d1:1a:32:11:5f:e8: e6:4a:80:e0:60:5c:be:3b:4b:d8:e7:ea:66:a2:be: ae:bc:8c:c4:52:dc:08:a3:f4:d2:1a:7e:cf:08:51: 39:05:dd:bd:a5:b1:c4:bc:14:10:b1:bd:b7:8c:d8: 4f:74:e4:28:67:e1:14:e0:59:91:b4:31:a7:af:14: c5:0e:09:d6:ba:76:92:76:bc:73:17:02:e9:ee:af: f7:23:62:25:4f:ae:65:46:d9:e2:df:1d:5a:bf:f0: 66:28:a7:e6:64:8b:a2:f4:4b:cc:af:0d:42:7e:34: f8:a3:04:6d:13:0b:87:c4:92:e7:f6:32:d7:c4:f6: 3a:ae:3f:b9:59:ba:ad:83:90:b2:8f:bf:af:13:a8: 8d:83:98:93:ca:4f:8c:78:74:1b:bd:c6:85:02:75: b9:fe:94:31:f4:03:0a:0f:8c:63:1a:67:ac:5b:aa: 41:09:e5:14:2f:4c:21:13:42:56:27:8a:49:07:1a: 7a:0c:47:dd:7b:85:12:85:e1:d3:7f:fe:72:5e:ca: 24:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A2:0F:64:3B:B5:4F:82:0A:0A:DF:4D:A9:63:76:BE:EC:66:1F:4C X509v3 Authority Key Identifier: keyid:02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.124.0/23 Signature Algorithm: sha256WithRSAEncryption 91:90:f3:a3:4b:3f:b4:41:0b:a1:c1:ea:6d:a5:2e:b7:ef:43: c5:05:a4:6d:07:cf:59:8f:e7:d1:e2:de:11:52:12:bf:3c:9d: 9e:90:07:0a:c0:e3:72:59:36:37:44:a0:1a:e4:82:74:02:d3: 82:fd:e2:a1:67:21:1f:0f:c8:42:2a:9c:8d:e3:c7:d0:76:c0: 32:d0:5e:7c:a4:34:9a:f8:04:9b:76:62:68:ad:b7:a6:6b:fa: 1a:1e:d5:af:64:31:42:41:f5:dc:b9:7f:54:b1:ef:cc:b6:b8: 46:4f:f2:55:7e:d6:85:c0:0e:36:6c:86:41:dd:69:5c:0a:dd: f2:c3:29:ae:5a:8b:8b:5c:3e:9a:71:48:7c:57:e6:a8:7c:8f: e4:03:49:5d:55:17:64:43:9e:01:29:03:26:83:3f:e6:40:ec: 58:aa:f5:e2:b9:e1:4a:a6:80:f6:36:e5:65:38:fc:36:67:2d: b5:fc:14:a6:cf:e8:b7:b6:df:94:f3:e1:ad:5e:72:54:fb:fb: e6:79:3f:70:47:91:f1:54:fe:df:61:39:da:45:6a:61:05:40: e7:05:8f:b7:97:df:80:1e:58:a0:d5:a2:6c:f7:06:48:e6:56: b3:88:2b:ab:fc:0a:ca:be:8c:65:e4:b7:df:bd:69:33:56:13: 4a:12:6d:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyQTAxMTAvBgNVBAUTKDAyQUU4NEY2MTFCN0U4MkZEN0Q2RkY4RjQ1MkQ4NzI1 RUY0ODkwODgwHhcNMjUwMzMxMTgxODA2WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhZGM1ZS1lNmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOeosbZWnx0avCD3O3spblXFs+ruCvpDXYCj1IJcaFcfc2QwbjOmorOL09xT +hTRgMdn2b3RGjIRX+jmSoDgYFy+O0vY5+pmor6uvIzEUtwIo/TSGn7PCFE5Bd29 pbHEvBQQsb23jNhPdOQoZ+EU4FmRtDGnrxTFDgnWunaSdrxzFwLp7q/3I2IlT65l Rtni3x1av/BmKKfmZIui9EvMrw1CfjT4owRtEwuHxJLn9jLXxPY6rj+5Wbqtg5Cy j7+vE6iNg5iTyk+MeHQbvcaFAnW5/pQx9AMKD4xjGmesW6pBCeUUL0whE0JWJ4pJ Bxp6DEfde4USheHTf/5yXsokWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJGiD2Q7 tU+CCgrfTaljdr7sZh9MMB8GA1UdIwQYMBaAFAKuhPYRt+gv19b/j0UthyXvSJCI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDJBMC9DQTdEMTE2MkY2 NzYxMUU5OTBCQUEyMjJDNEY5QUUwMi9BcTZFOWhHMzZDX1gxdi1QUlMySEplOUlr SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxNkU5aEczNkNfWDF2LVBSUzJISmU5SWtJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQyQTAvQ0E3RDExNjJGNjc2MTFFOTkwQkFBMjIyQzRGOUFFMDIvQjBCNzAwMDZC MTkyMTFFQzlFQUFENDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnhnwwDQYJKoZIhvcNAQELBQADggEBAJGQ86NLP7RBC6HB 6m2lLrfvQ8UFpG0Hz1mP59Hi3hFSEr88nZ6QBwrA43JZNjdEoBrkgnQC04L94qFn IR8PyEIqnI3jx9B2wDLQXnykNJr4BJt2Ymitt6Zr+hoe1a9kMUJB9dy5f1Sx78y2 uEZP8lV+1oXADjZshkHdaVwK3fLDKa5ai4tcPppxSHxX5qh8j+QDSV1VF2RDngEp AyaDP+ZA7Fiq9eK54UqmgPY25WU4/DZnLbX8FKbP6Le235Tz4a1eclT7++Z5P3BH kfFU/t9hOdpFamEFQOcFj7eX34AeWKDVomz3BkjmVrOIK6v8Csq+jGXkt9+9aTNW E0oSbT4= -----END CERTIFICATE-----Generated at Sat Apr 26 05:56:35 2025 by rpki-client