$ rpki-client -vvf rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa File: 6FFF14F0695E11EFAF2AF785C4F9AE02.roa (raw, json) Hash identifier: hdydafQMMkJvIt5EBnS/YGAF8bc0IukS3bIy5kaR5Xw= Subject key identifier: D4:D8:D9:D8:A7:B1:73:04:3E:CB:AD:92:0B:DE:55:32:DF:8F:F4:D4 Certificate issuer: /CN=A91834AD/serialNumber=4D76F793E2B129F46F8FC90E21F9D0FEAF10D040 Certificate serial: 0C1F Authority key identifier: 4D:76:F7:93:E2:B1:29:F4:6F:8F:C9:0E:21:F9:D0:FE:AF:10:D0:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa Signing time: Mon 10 Mar 2025 19:08:44 +0000 ROA not before: Mon 10 Mar 2025 19:08:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136425 IP address blocks: 103.87.137.0/24 maxlen: 24 103.87.138.0/24 maxlen: 24 103.87.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.crl rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91834AD, serialNumber=4D76F793E2B129F46F8FC90E21F9D0FEAF10D040 Validity Not Before: Mar 10 19:08:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67cf38bc-5249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e3:38:ea:ed:23:27:46:17:82:7b:da:a7:ad: 13:e0:4c:8b:77:00:3f:77:5c:99:74:a0:28:51:66: 32:f5:13:ea:73:cb:49:2f:79:fc:69:21:b6:da:47: a5:b8:5a:5a:2e:70:8e:ce:b6:8f:de:24:39:94:3d: 1d:02:49:f8:3e:c3:14:86:47:3c:8b:9a:d9:b4:bf: b5:a8:f0:70:aa:9f:da:46:2c:64:a4:c6:59:ec:af: 0d:73:01:a4:39:05:49:59:9b:d1:31:35:71:b7:e9: 9b:27:ab:f6:d6:39:e6:75:2a:aa:54:26:0a:8f:d8: ce:ec:6a:be:88:d3:a5:6d:92:21:91:64:ce:4a:23: 8a:43:a9:83:90:c5:df:c2:85:e6:22:69:6e:e8:64: 8c:93:a5:26:ee:f2:32:7f:90:6d:8b:50:7d:40:d3: 3a:7b:f0:06:77:f5:f0:c5:29:77:41:de:e4:e1:99: c7:a2:0c:92:eb:c5:d4:7f:f6:42:84:68:dc:02:03: 39:75:df:ee:86:3b:0a:6e:40:a4:d2:71:a5:bd:46: f1:e2:ad:06:da:3e:92:33:90:bb:17:6e:78:c3:e7: 4c:59:f2:74:7c:1f:ea:b0:8f:1f:fd:08:b1:6e:aa: 6f:a6:a7:7a:20:42:3f:82:1a:9f:1f:36:00:13:e7: 91:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D8:D9:D8:A7:B1:73:04:3E:CB:AD:92:0B:DE:55:32:DF:8F:F4:D4 X509v3 Authority Key Identifier: keyid:4D:76:F7:93:E2:B1:29:F4:6F:8F:C9:0E:21:F9:D0:FE:AF:10:D0:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.137.0-103.87.139.255 Signature Algorithm: sha256WithRSAEncryption 23:e7:de:3d:c5:1f:76:39:e9:c3:67:73:1e:58:25:3d:57:66: b4:89:ed:9b:3e:0e:a4:40:5f:ab:5e:6a:dd:03:6e:8e:09:8e: f4:26:6e:4b:ff:3a:dd:5b:ff:63:a5:77:3c:0d:c1:22:e1:00: 5b:ff:97:bc:b5:8c:40:c0:06:e7:05:63:78:03:23:20:09:e1: 5d:34:d4:b4:88:83:1c:a0:d7:ff:13:45:71:3f:81:7f:a9:25: 8f:16:2c:b3:e2:15:2c:16:9d:30:48:22:3c:b3:f2:5e:9c:e0: e0:d1:9c:26:0d:c5:43:0c:b1:a8:53:ac:b4:b5:67:97:e9:67: bb:18:86:75:bf:f2:6d:da:b2:4b:4b:a0:7e:92:f9:ae:4b:cf: f0:53:56:72:9a:94:f6:bf:8c:e0:06:be:7d:e2:22:41:db:cb: 90:62:d7:a6:70:0b:df:91:47:60:b4:9d:48:29:ff:aa:2e:51: 69:09:50:6a:97:dc:f8:e5:1f:dc:96:ea:46:e6:a9:b5:0b:76: 8a:99:10:b3:38:cb:5d:88:52:cd:3c:bb:12:e8:a6:22:54:21: ed:5a:87:2a:85:e8:9e:97:c6:6f:ac:00:6f:59:38:61:3c:95: 4b:f0:20:d7:6e:2b:6c:c6:d3:69:1d:3d:a4:61:d9:b1:58:b3: d0:60:63:c0 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM0QUQxMTAvBgNVBAUTKDRENzZGNzkzRTJCMTI5RjQ2RjhGQzkwRTIxRjlEMEZF QUYxMEQwNDAwHhcNMjUwMzEwMTkwODQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmMzhiYy01MjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuM46u0jJ0YXgnvap60T4EyLdwA/d1yZdKAoUWYy9RPqc8tJL3n8aSG22kel uFpaLnCOzraP3iQ5lD0dAkn4PsMUhkc8i5rZtL+1qPBwqp/aRixkpMZZ7K8NcwGk OQVJWZvRMTVxt+mbJ6v21jnmdSqqVCYKj9jO7Gq+iNOlbZIhkWTOSiOKQ6mDkMXf woXmImlu6GSMk6Um7vIyf5Bti1B9QNM6e/AGd/XwxSl3Qd7k4ZnHogyS68XUf/ZC hGjcAgM5dd/uhjsKbkCk0nGlvUbx4q0G2j6SM5C7F254w+dMWfJ0fB/qsI8f/Qix bqpvpqd6IEI/ghqfHzYAE+eR7wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFNTY2din sXMEPsutkgveVTLfj/TUMB8GA1UdIwQYMBaAFE1295PisSn0b4/JDiH50P6vENBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzRBRC8wREU0QUQwNDA4 RkUxMUVBOTgzM0M1NzhDNEY5QUUwMi9UWGIzay1LeEtmUnZqOGtPSWZuUV9xOFEw RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYYjNrLUt4S2ZSdmo4a09JZm5RX3E4UTBFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM0QUQvMERFNEFEMDQwOEZFMTFFQTk4MzNDNTc4QzRGOUFFMDIvNkZGRjE0RjA2 OTVFMTFFRkFGMkFGNzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGdXiQMEAmdXiDANBgkqhkiG9w0BAQsFAAOCAQEAI+fe PcUfdjnpw2dzHlglPVdmtIntmz4OpEBfq15q3QNujgmO9CZuS/863Vv/Y6V3PA3B IuEAW/+XvLWMQMAG5wVjeAMjIAnhXTTUtIiDHKDX/xNFcT+Bf6kljxYss+IVLBad MEgiPLPyXpzg4NGcJg3FQwyxqFOstLVnl+lnuxiGdb/ybdqyS0ugfpL5rkvP8FNW cpqU9r+M4Aa+feIiQdvLkGLXpnAL35FHYLSdSCn/qi5RaQlQapfc+OUf3JbqRuap tQt2ipkQszjLXYhSzTy7EuimIlQh7VqHKoXonpfGb6wAb1k4YTyVS/Ag124rbMbT aR09pGHZsViz0GBjwA== -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:20 2025 by rpki-client