$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa File: F23EB988E9A811E9864E3674C4F9AE02.roa (raw, json) Hash identifier: UHG9imzuae0kc1/YQZIGw4No6LetRC00ffO99sNT/HY= Subject key identifier: 6F:8D:7E:06:0C:9E:43:A6:9A:B5:83:E4:99:C6:A9:27:E9:89:B5:1B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D16 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa Signing time: Mon 31 Mar 2025 18:17:39 +0000 ROA not before: Mon 31 Mar 2025 18:17:39 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 135033 IP address blocks: 103.206.192.0/24 maxlen: 24 103.206.193.0/24 maxlen: 24 103.206.194.0/24 maxlen: 24 103.206.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Mar 31 18:17:39 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67eadc43-6109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:01:c1:15:70:99:78:ee:45:e7:4b:53:26:5c: 30:4a:d0:ad:04:74:56:da:56:61:b2:d5:b0:12:05: 6b:e5:12:05:f4:94:ea:02:c6:16:c1:22:99:76:9f: 15:ae:48:9d:a5:f0:63:4f:19:19:07:85:8a:8e:8d: 74:ed:a8:9b:7b:b3:58:38:81:58:af:64:d9:89:96: c2:5c:a9:94:4e:76:1a:02:80:b2:01:d7:0f:8d:80: 78:63:eb:f8:1c:d8:02:33:04:c0:38:66:97:e5:1a: 9c:32:b1:29:10:ba:7c:1d:3d:90:1d:cb:df:a2:21: 60:9a:5e:91:b3:5a:17:c8:af:e0:09:ee:4d:fa:24: f4:f4:cb:79:e4:95:90:39:23:44:e2:a0:1b:1f:ff: 89:1a:eb:54:2a:a1:10:98:e5:07:c4:e5:85:49:27: f0:a5:99:64:b7:46:09:5d:62:17:5a:bd:a9:10:af: 0a:21:c3:2d:7c:d9:b7:a0:57:b0:f0:e0:7a:5f:6d: 1d:4f:8e:c3:15:1a:f4:f6:f8:40:c3:66:bf:96:ab: ca:fb:8d:04:e5:bd:46:7e:91:07:4a:fc:92:cb:e2: d1:6f:9a:3d:58:7c:07:bf:99:a5:26:0d:75:6e:cc: 63:93:d5:e8:d5:51:fc:02:74:4e:cf:64:2a:67:ce: c8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8D:7E:06:0C:9E:43:A6:9A:B5:83:E4:99:C6:A9:27:E9:89:B5:1B X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.192.0/22 Signature Algorithm: sha256WithRSAEncryption d1:2e:81:89:13:79:72:83:47:ce:76:42:29:8d:a9:16:ff:e8: e9:af:84:fd:74:c2:dc:45:5e:06:4e:66:09:80:4d:9c:54:49: 0e:a4:a6:9b:f1:00:fb:21:39:a7:c0:3b:7c:88:7a:44:e3:d8: 3c:72:bf:4f:e4:d8:70:60:0e:ce:53:00:5e:f6:8d:7b:f2:14: 90:9d:78:7b:ac:a2:7e:e6:8f:4f:57:d5:a9:c2:88:34:d5:58: d0:ae:be:6c:4e:37:ce:47:bc:66:29:ff:2b:ba:a7:6b:68:86: ad:da:0a:8b:7c:fc:2d:71:78:3b:f9:89:cb:0e:6d:65:b3:b8: e6:74:bb:02:ef:fc:3d:79:db:3d:23:e9:0d:e6:ab:e9:d7:0c: 3b:24:02:3d:23:15:91:57:5c:43:65:0e:5f:91:ff:fc:af:25: b5:f6:86:91:8a:f1:56:04:a8:b4:ac:9e:8d:3a:c2:43:27:6c: 25:93:2f:64:c8:d1:9b:9f:e8:74:d9:cc:a6:c7:aa:b0:8c:a0: eb:57:ed:44:fe:f8:bf:45:6b:a4:71:d3:fa:25:fa:8d:31:12: 28:a7:01:19:45:db:c4:68:11:62:3e:2b:16:a0:f9:d3:40:de: 03:88:a4:05:4a:3b:04:0e:1a:78:14:2e:35:ef:6c:4c:42:88: 0d:44:86:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwMzMxMTgxNzM5WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhZGM0My02MTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAHBFXCZeO5F50tTJlwwStCtBHRW2lZhstWwEgVr5RIF9JTqAsYWwSKZdp8V rkidpfBjTxkZB4WKjo107aibe7NYOIFYr2TZiZbCXKmUTnYaAoCyAdcPjYB4Y+v4 HNgCMwTAOGaX5RqcMrEpELp8HT2QHcvfoiFgml6Rs1oXyK/gCe5N+iT09Mt55JWQ OSNE4qAbH/+JGutUKqEQmOUHxOWFSSfwpZlkt0YJXWIXWr2pEK8KIcMtfNm3oFew 8OB6X20dT47DFRr09vhAw2a/lqvK+40E5b1GfpEHSvySy+LRb5o9WHwHv5mlJg11 bsxjk9Xo1VH8AnROz2QqZ87I9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFG+NfgYM nkOmmrWD5JnGqSfpibUbMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE4NTcvRjEzMDdCNzREQUQ3MTFFOTlGOENBQzc4QzRGOUFFMDIvRjIzRUI5ODhF OUE4MTFFOTg2NEUzNjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzsAwDQYJKoZIhvcNAQELBQADggEBANEugYkTeXKDR852 QimNqRb/6OmvhP10wtxFXgZOZgmATZxUSQ6kppvxAPshOafAO3yIekTj2Dxyv0/k 2HBgDs5TAF72jXvyFJCdeHuson7mj09X1anCiDTVWNCuvmxON85HvGYp/yu6p2to hq3aCot8/C1xeDv5icsObWWzuOZ0uwLv/D152z0j6Q3mq+nXDDskAj0jFZFXXENl Dl+R//yvJbX2hpGK8VYEqLSsno06wkMnbCWTL2TI0Zuf6HTZzKbHqrCMoOtX7UT+ +L9Fa6Rx0/ol+o0xEiinARlF28RoEWI+Kxag+dNA3gOIpAVKOwQOGngULjXvbExC iA1EhlU= -----END CERTIFICATE-----Generated at Sat Apr 26 08:00:25 2025 by rpki-client