$ rpki-client -vvf rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/6FEF33E05C2B11EAAE63403FC4F9AE02.roa File: 6FEF33E05C2B11EAAE63403FC4F9AE02.roa (raw, json) Hash identifier: OjmKjbirK1HOaPuAuxNpB1VjEustiEgzLqIxeeZ+0sM= Subject key identifier: F9:1A:F5:DB:4E:C0:7D:22:35:F3:E9:B9:A5:FB:75:9A:7D:72:A4:AA Certificate issuer: /CN=A91867F1/serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Certificate serial: 0A64 Authority key identifier: B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/6FEF33E05C2B11EAAE63403FC4F9AE02.roa Signing time: Tue 18 Feb 2025 20:38:27 +0000 ROA not before: Tue 18 Feb 2025 20:38:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132054 IP address blocks: 103.148.224.0/23 maxlen: 23 103.148.224.0/24 maxlen: 24 103.148.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2660 (0xa64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91867F1, serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Validity Not Before: Feb 18 20:38:27 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67b4efc2-faa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:21:65:51:ad:f2:d6:1a:84:c8:47:de:20:a6: 31:37:13:cf:6e:c7:34:10:32:32:e9:b1:cd:58:05: 62:8f:38:6c:ff:02:43:bd:03:b5:07:cb:0a:b7:82: 8e:f6:6e:8e:38:35:af:ca:64:0f:2b:75:c2:21:77: de:1c:38:ce:ad:dc:d1:b6:59:4b:cd:41:62:b6:d7: c4:b4:85:04:1b:42:69:3d:c8:07:d2:6d:b5:dc:63: 0b:62:83:56:28:6b:2a:f2:d7:cc:ee:3e:15:36:2d: e2:c5:71:07:70:46:20:c0:14:8e:0c:c0:36:6c:81: e8:27:41:f0:a8:e4:84:55:98:6d:9a:7a:c1:57:97: 47:de:19:11:05:79:97:d7:da:2a:33:28:6e:ca:0f: 82:0b:d5:89:75:19:6b:2e:a2:5b:0b:82:9e:99:8a: e8:7c:21:f5:9e:bb:25:b5:db:73:4c:65:bd:d0:f5: 2b:7c:64:c5:7d:29:2f:db:26:65:89:e3:37:fe:c8: 2f:d0:e9:f2:33:a2:80:5f:e9:bf:cd:f2:af:c0:ac: a0:12:65:88:45:16:fe:81:99:2a:5a:cc:9c:8d:19: cc:53:ca:67:ae:e1:50:9e:69:51:83:0c:cb:b6:30: 4d:3a:06:f9:8c:d6:7e:9a:28:b3:9f:8f:2a:ba:6a: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1A:F5:DB:4E:C0:7D:22:35:F3:E9:B9:A5:FB:75:9A:7D:72:A4:AA X509v3 Authority Key Identifier: keyid:B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/6FEF33E05C2B11EAAE63403FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.224.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:2f:c2:0f:15:53:3b:85:73:4c:4b:d4:d1:d2:71:32:41:3c: 2d:d9:41:6d:85:b8:47:94:5c:e8:f5:ce:d7:5e:55:7c:28:d7: 12:a3:91:1a:72:35:b3:e0:5b:e4:78:a4:0b:0f:40:59:e1:4a: e6:12:a6:b5:64:ef:31:b3:68:57:ca:d0:54:e0:9b:c7:62:bc: a3:38:d0:f2:c0:38:80:5c:02:39:b7:f9:14:b0:1b:57:d2:fc: 47:28:17:5e:3a:f4:ee:54:b0:c2:b5:21:ad:cb:64:97:6b:4b: 45:1e:95:cb:53:81:2e:ed:44:df:ce:26:20:27:93:56:65:f6: d2:64:e1:c9:52:94:78:50:fe:3d:69:82:5c:56:62:c4:35:82: 8c:31:e1:fc:b3:17:8b:ad:23:78:d9:06:0e:62:57:d3:5e:e5: 60:45:cd:b8:4a:11:d9:07:d7:c9:cf:78:26:d6:b5:3a:92:b4: 0c:39:18:36:a5:c2:32:c1:ef:e1:6b:7c:d2:a9:b0:12:b1:5d: a4:a6:21:1d:20:5d:1a:33:37:06:34:74:19:e6:ac:d4:11:21: bf:4d:be:db:77:c0:6c:74:68:02:10:12:77:04:de:b6:c9:97: a8:4b:60:e5:60:b1:e1:8f:27:d4:e2:8e:67:4d:c7:b1:b3:47: c9:9e:f5:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3RjExMTAvBgNVBAUTKEIzOTMxQjU2OEYyRUI5RDJFRDJDQTRENjRCRUJDMDg2 RkI5REI4OUEwHhcNMjUwMjE4MjAzODI3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0ZWZjMi1mYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyFlUa3y1hqEyEfeIKYxNxPPbsc0EDIy6bHNWAVijzhs/wJDvQO1B8sKt4KO 9m6OODWvymQPK3XCIXfeHDjOrdzRtllLzUFittfEtIUEG0JpPcgH0m213GMLYoNW KGsq8tfM7j4VNi3ixXEHcEYgwBSODMA2bIHoJ0HwqOSEVZhtmnrBV5dH3hkRBXmX 19oqMyhuyg+CC9WJdRlrLqJbC4KemYrofCH1nrsltdtzTGW90PUrfGTFfSkv2yZl ieM3/sgv0OnyM6KAX+m/zfKvwKygEmWIRRb+gZkqWsycjRnMU8pnruFQnmlRgwzL tjBNOgb5jNZ+miizn48qumocJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPka9dtO wH0iNfPpuaX7dZp9cqSqMB8GA1UdIwQYMBaAFLOTG1aPLrnS7Syk1kvrwIb7nbia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjdGMS84MDlENzE1QzU5 MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVkTHRMS1RXUy12QWh2dWR1 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1TWJWbzh1dWRMdExLVFdTLXZBaHZ1ZHVKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY3RjEvODA5RDcxNUM1OTFBMTFFQTk2OTJBQTNDQzRGOUFFMDIvNkZFRjMzRTA1 QzJCMTFFQUFFNjM0MDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlOAwDQYJKoZIhvcNAQELBQADggEBAAwvwg8VUzuFc0xL 1NHScTJBPC3ZQW2FuEeUXOj1ztdeVXwo1xKjkRpyNbPgW+R4pAsPQFnhSuYSprVk 7zGzaFfK0FTgm8divKM40PLAOIBcAjm3+RSwG1fS/EcoF1469O5UsMK1Ia3LZJdr S0UelctTgS7tRN/OJiAnk1Zl9tJk4clSlHhQ/j1pglxWYsQ1gowx4fyzF4utI3jZ Bg5iV9Ne5WBFzbhKEdkH18nPeCbWtTqStAw5GDalwjLB7+FrfNKpsBKxXaSmIR0g XRozNwY0dBnmrNQRIb9Nvtt3wGx0aAIQEncE3rbJl6hLYOVgseGPJ9TijmdNx7Gz R8me9aw= -----END CERTIFICATE-----Generated at Sat Apr 26 09:19:53 2025 by rpki-client