$ rpki-client -vvf rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa File: AC8124909A4911E7857CA62FC4F9AE02.roa (raw, json) Hash identifier: gkf5l1306jNCZlXkzkzc37H/VOhptBWvvDD29cbTyo0= Subject key identifier: 0F:FE:18:8C:F1:2C:D3:3D:66:5F:02:DA:56:45:4E:4D:0F:2C:10:67 Certificate issuer: /CN=A91970E2/serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Certificate serial: 1BC2 Authority key identifier: D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa Signing time: Tue 04 Mar 2025 16:53:34 +0000 ROA not before: Tue 04 Mar 2025 16:53:34 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 58689 IP address blocks: 103.205.132.0/24 maxlen: 24 103.205.134.0/23 maxlen: 24 144.48.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7106 (0x1bc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91970E2, serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Validity Not Before: Mar 4 16:53:34 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67c7300e-917e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fe:5a:ce:55:55:c5:ec:c4:61:09:54:68:ad: ee:52:d4:ec:2d:08:7c:59:dd:3c:04:6c:b8:d0:2f: 85:77:6d:60:4d:0c:f4:ae:4e:6e:12:b3:36:e7:2f: 6a:80:14:e3:83:e2:a3:ed:ff:d7:13:b0:ad:55:97: 0d:49:53:29:7e:d0:a1:a9:c2:3e:c2:f7:a9:34:49: ff:83:2b:6b:88:3c:67:de:fd:0c:25:04:19:b1:40: 38:f9:74:00:f7:01:b3:97:c7:4d:b6:7b:ab:3d:76: bc:34:fe:ac:66:b5:fd:08:76:d7:ab:65:59:4e:c8: 8f:54:91:f7:12:f5:70:3b:ba:3c:9e:c0:7d:d5:25: c7:37:25:5d:6c:52:25:63:64:68:c7:7f:10:a5:97: ca:97:52:80:ef:57:22:0e:68:96:a1:ba:3e:5e:80: df:94:e0:96:75:70:18:ce:b8:e6:51:8a:ff:91:fd: ab:e2:a4:f5:cd:de:96:7e:b9:07:5b:7d:b0:3d:25: c4:03:5e:f9:0d:52:8f:39:57:da:53:56:90:0b:23: 2e:a6:f6:45:12:0a:8c:f3:30:d6:a3:e1:2d:ee:f5: 1c:96:81:c1:f8:45:c2:36:2e:db:f8:ab:3c:76:a4: f3:d2:9c:59:d2:88:31:72:1f:4b:69:ab:b0:d0:2e: ad:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:FE:18:8C:F1:2C:D3:3D:66:5F:02:DA:56:45:4E:4D:0F:2C:10:67 X509v3 Authority Key Identifier: keyid:D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.132.0/24 103.205.134.0/23 144.48.108.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:ad:09:f9:7f:73:df:33:8a:23:79:fd:31:b2:ab:70:ef:17: 6e:76:10:75:ac:3c:73:aa:9c:9a:61:75:f0:d3:c7:b9:cf:72: fb:79:fa:3c:52:6b:3c:12:3c:04:57:76:6e:6d:18:8d:1f:46: e4:83:e7:d1:d7:a7:07:bc:ad:45:73:50:31:7f:de:71:f8:02: 93:fd:34:9c:f6:8d:08:bd:72:95:bf:5a:e6:be:8f:27:34:42: ab:0e:6b:02:da:7c:98:90:dc:66:b5:b7:64:42:57:16:ac:3f: 9c:bc:53:6d:47:4b:93:4f:2f:67:98:ef:e3:19:05:ea:c5:04: 7f:c7:85:5d:a6:9e:34:4d:0b:7d:19:a1:23:28:57:06:91:24: c4:0c:80:c7:40:ea:19:0c:2c:ff:57:7c:74:39:cb:81:e1:b6: ed:e9:6e:9b:6f:b4:c7:36:5b:a1:f6:22:b1:66:31:15:10:09: 9a:b0:24:e4:e0:20:c7:30:ff:8a:26:b9:a3:e1:dc:49:2a:28: 11:3e:22:a8:f4:61:e1:7e:b9:bb:97:af:1a:2f:a9:08:8c:10: 02:46:b7:f2:8a:f9:ee:b6:90:82:7f:7b:2a:89:d4:45:b2:55: 58:45:27:34:ab:d9:7c:87:e0:12:ac:2c:2b:2b:5f:8c:9f:af: 9d:e5:a2:01 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICG8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcwRTIxMTAvBgNVBAUTKEQ0RDE3Nzk5RUFDOUM5OTYyQjMyNUZFRDg3RjkzMEMy RUFDODJDQUYwHhcNMjUwMzA0MTY1MzM0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3MzAwZS05MTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/5azlVVxezEYQlUaK3uUtTsLQh8Wd08BGy40C+Fd21gTQz0rk5uErM25y9q gBTjg+Kj7f/XE7CtVZcNSVMpftChqcI+wvepNEn/gytriDxn3v0MJQQZsUA4+XQA 9wGzl8dNtnurPXa8NP6sZrX9CHbXq2VZTsiPVJH3EvVwO7o8nsB91SXHNyVdbFIl Y2Rox38QpZfKl1KA71ciDmiWobo+XoDflOCWdXAYzrjmUYr/kf2r4qT1zd6WfrkH W32wPSXEA175DVKPOVfaU1aQCyMupvZFEgqM8zDWo+Et7vUcloHB+EXCNi7b+Ks8 dqTz0pxZ0ogxch9Laauw0C6t8QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFA/+GIzx LNM9Zl8C2lZFTk0PLBBnMB8GA1UdIwQYMBaAFNTRd5nqycmWKzJf7Yf5MMLqyCyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzBFMi84MTAxMjU4Q0Y5 QTgxMUU2QTRFRkUwMkVDNEY5QUUwMi8xTkYzbWVySnlaWXJNbF90aF9rd3d1cklM SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFORjNtZXJKeVpZck1sX3RoX2t3d3VySUxLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcwRTIvODEwMTI1OENGOUE4MTFFNkE0RUZFMDJFQzRGOUFFMDIvQUM4MTI0OTA5 QTQ5MTFFNzg1N0NBNjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnzYQDBAFnzYYDBAKQMGwwDQYJKoZIhvcNAQELBQADggEB ACutCfl/c98ziiN5/TGyq3DvF252EHWsPHOqnJphdfDTx7nPcvt5+jxSazwSPARX dm5tGI0fRuSD59HXpwe8rUVzUDF/3nH4ApP9NJz2jQi9cpW/Wua+jyc0QqsOawLa fJiQ3Ga1t2RCVxasP5y8U21HS5NPL2eY7+MZBerFBH/HhV2mnjRNC30ZoSMoVwaR JMQMgMdA6hkMLP9XfHQ5y4Hhtu3pbptvtMc2W6H2IrFmMRUQCZqwJOTgIMcw/4om uaPh3EkqKBE+Iqj0YeF+ubuXrxovqQiMEAJGt/KK+e62kIJ/eyqJ1EWyVVhFJzSr 2XyH4BKsLCsrX4yfr53logE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:07 2025 by rpki-client