$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/C64C7958422411EA9CA5F423C4F9AE02.roa File: C64C7958422411EA9CA5F423C4F9AE02.roa (raw, json) Hash identifier: gJwOccgnH3xfVK9Ge3NY4ACv1N9EO/ya1L5O9ulfS9A= Subject key identifier: 0E:EB:37:BF:7A:FA:40:6C:CB:76:B6:B1:42:5C:9A:36:AD:31:67:6E Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 348C Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/C64C7958422411EA9CA5F423C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:20:51 +0000 ROA not before: Tue 08 Apr 2025 15:20:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18159 IP address blocks: 103.26.16.0/23 maxlen: 23 103.233.20.0/22 maxlen: 24 110.92.16.0/22 maxlen: 24 112.213.40.0/21 maxlen: 24 202.9.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06, serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Apr 8 15:20:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f53ed3-dd95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:21:62:6d:3a:19:e5:45:a6:f9:05:27:6e: 82:0a:87:17:65:da:a3:b6:6d:62:31:55:5e:cd:e5: 57:5d:fb:a9:6b:ed:13:af:af:da:5d:94:c8:dd:32: 52:cb:4a:94:97:6d:ad:b2:ab:29:d4:00:03:eb:e2: 60:ed:f6:f0:b0:86:db:7f:33:b7:4a:f6:f0:26:cd: 46:4c:6d:39:53:1f:f6:fb:e3:c4:a5:b0:f4:2c:9b: b1:63:39:ab:e5:c5:ab:9a:fa:1d:61:6d:ca:27:00: 0d:5e:33:6f:64:72:be:36:75:ca:a8:e0:94:39:97: e3:b7:75:49:4e:69:75:a8:29:f8:59:4a:37:17:5b: bb:89:b6:5f:9f:38:60:3d:7f:a0:90:13:f5:81:37: cb:81:03:d9:0f:fb:70:31:78:9c:0c:97:eb:6e:63: 9a:58:a0:14:cf:8c:8f:2d:cf:2a:01:40:f5:e8:0c: a7:30:02:23:6a:58:66:53:7a:a8:5e:c8:b6:f8:2d: 34:f8:eb:73:10:65:7b:2d:0a:b2:c6:ca:f5:fa:4a: 71:9d:98:a7:2c:68:6d:d4:ba:97:36:f5:1e:73:13: c5:25:ed:32:a4:41:bb:b8:45:0b:a0:42:b1:28:e4: 2b:c0:7e:12:ab:1b:64:79:b3:86:f0:9b:a0:83:32: 68:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:EB:37:BF:7A:FA:40:6C:CB:76:B6:B1:42:5C:9A:36:AD:31:67:6E X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/C64C7958422411EA9CA5F423C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.16.0/23 103.233.20.0/22 110.92.16.0/22 112.213.40.0/21 202.9.116.0/22 Signature Algorithm: sha256WithRSAEncryption 12:28:5a:24:34:c5:21:bb:b1:fb:94:66:3d:b1:33:dc:32:f9: 34:4b:4c:6a:e6:f2:ec:9e:27:c3:ee:64:71:3e:87:74:90:d0: 07:4e:14:86:53:dc:14:c7:68:7a:03:e4:4c:79:83:6b:ea:eb: 91:8a:2b:f5:a4:4b:4e:9c:69:63:8f:51:1a:0d:8b:43:08:44: cd:6b:17:e6:af:9e:7d:af:5c:0b:af:d1:e6:c8:83:57:f3:ad: 92:2d:e9:e0:d1:ed:b3:55:95:32:a6:8c:b5:9f:10:e2:7a:32: 00:ef:a3:80:64:47:62:77:6d:a6:83:c9:fa:e0:a0:aa:60:65: 80:70:32:e7:ec:36:e4:1d:f2:63:a0:ee:5b:b0:09:bc:1a:07: 0c:b3:7b:aa:c3:60:e5:45:7d:b0:78:1a:b7:e9:99:47:c3:8e: 1c:df:1d:0f:fa:a9:04:d2:c6:e1:71:c5:f4:f3:36:f5:41:50: 45:9e:53:90:2b:f0:6b:89:5c:ea:33:3a:98:76:e8:89:c3:48: 99:b3:69:3b:3a:76:1e:7c:67:76:6b:f2:9b:34:7c:00:5a:53: c6:f8:9a:95:68:04:29:5c:da:99:98:94:b7:b7:2a:d5:c1:55: ed:a5:cf:f4:f9:a6:c2:08:62:54:f7:ad:f7:a7:15:05:e6:35: d3:28:1c:ba -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjUwNDA4MTUyMDUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1M2VkMy1kZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2IhYm06GeVFpvkFJ26CCocXZdqjtm1iMVVezeVXXfupa+0Tr6/aXZTI3TJS y0qUl22tsqsp1AAD6+Jg7fbwsIbbfzO3SvbwJs1GTG05Ux/2++PEpbD0LJuxYzmr 5cWrmvodYW3KJwANXjNvZHK+NnXKqOCUOZfjt3VJTml1qCn4WUo3F1u7ibZfnzhg PX+gkBP1gTfLgQPZD/twMXicDJfrbmOaWKAUz4yPLc8qAUD16AynMAIjalhmU3qo Xsi2+C00+OtzEGV7LQqyxsr1+kpxnZinLGht1LqXNvUecxPFJe0ypEG7uEULoEKx KOQrwH4SqxtkebOG8JuggzJoHwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFA7rN796 +kBsy3a2sUJcmjatMWduMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDMDYvNkRFQUUyMUMxRDlEMTFFMjhCMUZBNzhDMDhCMDJDRDIvQzY0Qzc5NTg0 MjI0MTFFQTlDQTVGNDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAFnGhADBAJn6RQDBAJuXBADBANw1SgDBALKCXQwDQYJKoZI hvcNAQELBQADggEBABIoWiQ0xSG7sfuUZj2xM9wy+TRLTGrm8uyeJ8PuZHE+h3SQ 0AdOFIZT3BTHaHoD5Ex5g2vq65GKK/WkS06caWOPURoNi0MIRM1rF+avnn2vXAuv 0ebIg1fzrZIt6eDR7bNVlTKmjLWfEOJ6MgDvo4BkR2J3baaDyfrgoKpgZYBwMufs NuQd8mOg7luwCbwaBwyze6rDYOVFfbB4GrfpmUfDjhzfHQ/6qQTSxuFxxfTzNvVB UEWeU5Ar8GuJXOozOph26InDSJmzaTs6dh58Z3Zr8ps0fABaU8b4mpVoBClc2pmY lLe3KtXBVe2lz/T5psIIYlT3rfenFQXmNdMoHLo= -----END CERTIFICATE-----Generated at Sat Apr 26 09:13:11 2025 by rpki-client