$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/F0EC7AEAE48C11EF8BA4602AC4F9AE02.roa File: F0EC7AEAE48C11EF8BA4602AC4F9AE02.roa (raw, json) Hash identifier: nsJgzUwSSMXcZYSBnW8T1s1Gr6R7nDs7M70WL4KuFGw= Subject key identifier: BD:E9:11:7E:71:2D:38:E2:F3:B4:CE:CE:D3:62:1C:B0:87:D1:A7:A8 Certificate issuer: /CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Certificate serial: 0A2E Authority key identifier: 27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/F0EC7AEAE48C11EF8BA4602AC4F9AE02.roa Signing time: Thu 06 Mar 2025 20:10:08 +0000 ROA not before: Thu 06 Mar 2025 20:10:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138582 IP address blocks: 103.133.172.0/23 maxlen: 23 103.133.172.0/24 maxlen: 24 103.133.173.0/24 maxlen: 24 2404:5140::/32 maxlen: 32 2404:5140::/48 maxlen: 48 2404:5140:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2606 (0xa2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0BEC, serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Validity Not Before: Mar 6 20:10:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca0120-90ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ad:f1:75:1b:d5:f4:82:73:5b:b0:ee:2c:b4: 5a:47:7d:d1:64:2e:26:f5:3a:42:e1:44:bf:7a:b3: a7:bc:ed:55:da:74:a4:40:7b:a9:12:98:7f:da:6f: 6b:bb:d8:70:3d:e7:57:75:6a:e7:b7:f7:f3:7b:d3: 94:10:a6:10:e8:4d:28:57:ce:13:25:e6:50:e0:f4: 4f:91:2d:0d:fa:bf:f1:ed:5e:b3:10:0a:92:a7:97: 22:de:e5:c8:e6:77:4a:22:01:10:9a:60:2b:31:96: cd:1e:e4:7a:c2:6b:b8:30:6b:4f:a8:ec:ce:3f:cd: 69:c3:66:02:cd:24:28:a5:d4:9d:72:e7:60:0c:65: 0d:da:9f:76:fb:8b:f4:4f:e5:65:ef:b8:d7:0b:7e: c2:51:64:66:61:45:7b:2e:2d:7d:1a:a9:b1:b0:5e: 85:16:f3:b4:c3:4b:e0:95:cc:76:76:04:10:ae:02: 3b:4e:e3:51:16:fc:82:1c:5c:67:85:51:ed:a7:8d: 56:68:69:ec:ce:6b:37:51:32:4c:32:70:a6:43:7b: 5b:ac:48:c9:3d:0c:68:45:19:3d:bb:fa:1f:b4:30: 45:26:ea:a8:7f:5d:af:f1:45:87:90:5f:ef:87:4b: e7:e9:a4:1c:7e:4a:e9:2b:db:54:bf:3b:fe:20:e5: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E9:11:7E:71:2D:38:E2:F3:B4:CE:CE:D3:62:1C:B0:87:D1:A7:A8 X509v3 Authority Key Identifier: keyid:27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/F0EC7AEAE48C11EF8BA4602AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.172.0/23 IPv6: 2404:5140::/32 Signature Algorithm: sha256WithRSAEncryption 7a:d0:16:05:36:27:5b:70:23:d1:ec:bf:fe:42:c8:70:b2:77: a7:c3:11:75:b4:16:04:7a:19:a4:de:47:df:29:5d:7b:8d:4c: 88:8e:a3:81:c7:a5:f6:02:59:68:c3:7d:2f:9a:fb:7b:4a:fd: d2:3c:3b:5f:99:a7:5b:eb:67:7a:3f:8d:cd:04:84:90:b1:1e: 36:4e:e0:b4:2b:3e:71:d7:65:65:80:89:4b:f0:af:09:b0:0e: f5:38:18:59:62:c2:f0:dd:24:ef:89:a8:0b:0c:24:c1:08:34: c9:6a:a1:f1:92:d4:7b:73:42:cc:95:18:0f:a6:af:29:c2:cc: 93:bc:d0:5b:5b:05:c3:fb:f5:11:fe:a6:5f:73:9f:1d:41:c4: de:39:68:06:9c:4d:5c:4e:03:8b:6b:bb:38:26:f1:04:d6:44: 70:c8:32:57:a1:ee:c4:c0:f8:1c:c4:ef:fd:b5:0d:98:07:b1: 35:31:4f:b7:26:e4:21:f5:85:aa:41:a3:ec:9f:3b:cf:76:45: 62:0d:59:b1:a9:bf:14:9e:ea:15:70:e6:0b:1f:7e:31:7a:06: e4:82:63:3d:fb:ac:13:62:a4:14:f3:18:5f:f8:53:62:46:2c: 5c:b4:f8:b6:5b:86:27:61:5b:e3:8c:2d:92:1d:b4:1f:4e:0a: ab:e3:28:78 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBCRUMxMTAvBgNVBAUTKDI3N0Y2ODYyNjg0MDcyQjYyQTE1NkRERjc1REQ3NzI1 QzM4RjUxRDAwHhcNMjUwMzA2MjAxMDA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhMDEyMC05MGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8q3xdRvV9IJzW7DuLLRaR33RZC4m9TpC4US/erOnvO1V2nSkQHupEph/2m9r u9hwPedXdWrnt/fze9OUEKYQ6E0oV84TJeZQ4PRPkS0N+r/x7V6zEAqSp5ci3uXI 5ndKIgEQmmArMZbNHuR6wmu4MGtPqOzOP81pw2YCzSQopdSdcudgDGUN2p92+4v0 T+Vl77jXC37CUWRmYUV7Li19GqmxsF6FFvO0w0vglcx2dgQQrgI7TuNRFvyCHFxn hVHtp41WaGnszms3UTJMMnCmQ3tbrEjJPQxoRRk9u/oftDBFJuqof12v8UWHkF/v h0vn6aQcfkrpK9tUvzv+IOX8PQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFL3pEX5x LTji87TOztNiHLCH0aeoMB8GA1UdIwQYMBaAFCd/aGJoQHK2KhVt33XddyXDj1HQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEJFQy83QjdGMjhFMjY3 N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNyWXFGVzNmZGQxM0pjT1BV ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozOW9ZbWhBY3JZcUZXM2ZkZDEzSmNPUFVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBCRUMvN0I3RjI4RTI2NzdFMTFFQThCRDgyNjJEQzRGOUFFMDIvRjBFQzdBRUFF NDhDMTFFRjhCQTQ2MDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnhawwDQQCAAIwBwMFACQEUUAwDQYJKoZIhvcNAQELBQAD ggEBAHrQFgU2J1twI9Hsv/5CyHCyd6fDEXW0FgR6GaTeR98pXXuNTIiOo4HHpfYC WWjDfS+a+3tK/dI8O1+Zp1vrZ3o/jc0EhJCxHjZO4LQrPnHXZWWAiUvwrwmwDvU4 GFliwvDdJO+JqAsMJMEINMlqofGS1HtzQsyVGA+mrynCzJO80FtbBcP79RH+pl9z nx1BxN45aAacTVxOA4truzgm8QTWRHDIMleh7sTA+BzE7/21DZgHsTUxT7cm5CH1 hapBo+yfO892RWINWbGpvxSe6hVw5gsffjF6BuSCYz37rBNipBTzGF/4U2JGLFy0 +LZbhidhW+OMLZIdtB9OCqvjKHg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:47:08 2025 by rpki-client