$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/EB292D8A6BF811EB8E899650C4F9AE02.roa File: EB292D8A6BF811EB8E899650C4F9AE02.roa (raw, json) Hash identifier: QHZWlLh2PyAY4WTgaNICz7qTAAizZpA7yqBBQ8slHlk= Subject key identifier: A6:FB:51:2D:20:30:F2:67:36:88:D1:9D:BC:7B:87:7F:CD:1A:C1:CA Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 0686 Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/EB292D8A6BF811EB8E899650C4F9AE02.roa Signing time: Fri 04 Apr 2025 22:32:37 +0000 ROA not before: Fri 04 Apr 2025 22:32:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132745 IP address blocks: 103.24.140.0/22 maxlen: 22 103.162.176.0/24 maxlen: 24 103.162.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE, serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: Apr 4 22:32:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f05e04-1a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:f6:ac:21:60:13:74:5d:9a:06:98:7c:a7: 20:52:c6:01:e1:a5:0e:11:39:e3:b0:1a:71:9b:73: d0:3b:8d:51:2b:ce:f5:c1:3d:97:8a:bb:80:30:71: 72:a9:af:c3:cc:a0:e2:2e:8e:94:a3:70:f1:eb:90: 84:52:23:2a:bc:31:15:95:83:ec:95:6c:82:35:1a: 20:4e:4d:4b:d2:71:51:00:3e:d9:1c:78:6b:0e:aa: b6:24:e0:a4:16:1b:d3:79:01:77:02:ed:bc:86:6e: 0a:d9:ed:39:7e:e6:08:41:d3:31:a9:01:f3:73:c3: c5:5c:d5:a3:d6:1b:99:f7:46:51:6d:14:4c:60:74: 15:69:b4:58:1e:ac:4b:f2:fb:14:ec:d1:73:b6:80: 44:28:f1:7c:ea:01:4b:9b:2f:dc:a0:fb:15:c9:43: 20:25:7b:96:1d:d8:8b:87:93:87:e1:5b:bb:aa:97: b7:0d:b8:e6:36:74:95:42:69:2d:bb:76:0e:25:c9: d0:e7:05:16:56:4a:c9:40:9d:97:a6:95:68:87:66: e9:4c:a1:b5:de:16:47:9b:28:95:19:bf:91:91:ba: 37:05:bb:44:c7:28:17:e5:67:70:d4:2e:6c:f2:d8: b0:b9:71:4a:56:66:e9:d6:ea:85:43:2a:72:be:44: 44:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:FB:51:2D:20:30:F2:67:36:88:D1:9D:BC:7B:87:7F:CD:1A:C1:CA X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/EB292D8A6BF811EB8E899650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.140.0/22 103.162.176.0/23 Signature Algorithm: sha256WithRSAEncryption 94:99:49:a6:ec:45:10:53:13:72:84:c8:f6:03:4f:96:09:d4: 7a:42:b9:34:be:11:6e:11:e6:bf:f1:dd:1b:4b:46:d3:a8:ef: cc:9e:14:f5:7e:0e:37:ba:bc:92:a7:86:b6:d1:68:72:57:25: a9:93:e7:c1:0c:df:04:f2:ad:0a:3b:c8:6a:2b:e4:1e:28:d7: d4:2a:7b:4b:97:4f:a5:61:fb:a0:7f:3c:08:30:d4:ce:17:28: 2a:41:90:1e:bc:f3:c6:89:e7:6e:42:b2:41:da:ec:62:1c:80: 85:98:ad:35:cd:b2:82:c0:19:d0:e7:8d:42:46:8c:21:08:fe: 8c:99:9a:4c:7a:93:ec:2e:a8:bf:10:3b:84:a0:41:85:f5:37: 8c:3b:43:d8:22:94:0f:3b:9e:d3:5b:48:66:37:a8:77:16:23: 90:0d:8e:6f:c8:56:42:e8:3d:c6:93:aa:88:01:c6:d2:52:14: d3:d3:86:a3:57:34:e1:37:ed:be:92:f9:4a:76:d9:3c:c4:8a: a7:40:8c:ad:1b:1f:57:0c:89:e5:19:81:dd:91:ce:05:37:3e: 8e:70:fd:99:8b:9e:be:7a:79:ad:52:e6:bf:53:29:61:73:c2: e9:7f:88:24:0f:af:ad:5d:b5:51:6d:28:57:93:c2:40:9b:c2: 52:7f:5f:b2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjUwNDA0MjIzMjM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNWUwNC0xYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufr2rCFgE3RdmgaYfKcgUsYB4aUOETnjsBpxm3PQO41RK871wT2XiruAMHFy qa/DzKDiLo6Uo3Dx65CEUiMqvDEVlYPslWyCNRogTk1L0nFRAD7ZHHhrDqq2JOCk FhvTeQF3Au28hm4K2e05fuYIQdMxqQHzc8PFXNWj1huZ90ZRbRRMYHQVabRYHqxL 8vsU7NFztoBEKPF86gFLmy/coPsVyUMgJXuWHdiLh5OH4Vu7qpe3DbjmNnSVQmkt u3YOJcnQ5wUWVkrJQJ2XppVoh2bpTKG13hZHmyiVGb+Rkbo3BbtExygX5Wdw1C5s 8tiwuXFKVmbp1uqFQypyvkREHwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKb7US0g MPJnNojRnbx7h3/NGsHKMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODIwQ0UvQjczMDY5QzY2QkU5MTFFQkI3RDU1NjBEQzRGOUFFMDIvRUIyOTJEOEE2 QkY4MTFFQjhFODk5NjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnGIwDBAFnorAwDQYJKoZIhvcNAQELBQADggEBAJSZSabs RRBTE3KEyPYDT5YJ1HpCuTS+EW4R5r/x3RtLRtOo78yeFPV+Dje6vJKnhrbRaHJX JamT58EM3wTyrQo7yGor5B4o19Qqe0uXT6Vh+6B/PAgw1M4XKCpBkB6888aJ525C skHa7GIcgIWYrTXNsoLAGdDnjUJGjCEI/oyZmkx6k+wuqL8QO4SgQYX1N4w7Q9gi lA87ntNbSGY3qHcWI5ANjm/IVkLoPcaTqogBxtJSFNPThqNXNOE37b6S+Up22TzE iqdAjK0bH1cMieUZgd2RzgU3Po5w/ZmLnr56ea1S5r9TKWFzwul/iCQPr61dtVFt KFeTwkCbwlJ/X7I= -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:48 2025 by rpki-client