$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/BF466AE8325611EFA462C323C4F9AE02.roa File: BF466AE8325611EFA462C323C4F9AE02.roa (raw, json) Hash identifier: KhqMoTs+Qi/II5aRP9wPpcsu1xRmCyMAj25hDB2Fy0c= Subject key identifier: 13:8F:72:96:02:3E:3F:3E:F9:16:60:08:B6:19:D7:29:18:8C:2B:C3 Certificate issuer: /CN=A91A2E6A/serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Certificate serial: 9A Authority key identifier: 82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/BF466AE8325611EFA462C323C4F9AE02.roa Signing time: Mon 07 Apr 2025 05:43:33 +0000 ROA not before: Mon 07 Apr 2025 05:43:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150806 IP address blocks: 103.109.184.0/24 maxlen: 24 103.109.185.0/24 maxlen: 24 2001:df2:1840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2E6A, serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Validity Not Before: Apr 7 05:43:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f36604-a52c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:92:c5:a3:24:1f:75:7d:a0:e0:f7:51:dc:5e: a2:10:99:1d:bb:93:23:69:93:51:17:4b:1e:0b:11: b7:6a:9d:8e:2c:65:82:cc:d1:2a:40:30:db:28:d5: 80:52:4e:0c:5b:99:88:18:2c:e8:de:26:36:fd:94: 5e:03:32:77:fd:92:c2:b7:ba:eb:60:02:2b:a4:6d: d7:6a:53:cd:79:1f:99:60:05:6a:07:ab:ad:d1:88: 62:73:2f:2e:09:dd:e5:08:51:fd:91:41:f3:c5:cc: 45:d7:61:55:4d:de:45:45:13:7a:8c:2c:a5:47:2f: 1a:0e:61:d0:46:ee:90:f1:a2:16:dc:23:2e:fd:92: d6:2d:54:29:d7:78:09:f1:78:45:ce:3e:42:9a:80: df:61:72:aa:3e:7c:30:ce:dd:f2:82:8b:b9:66:3b: 7d:8e:99:05:5f:01:e1:40:67:6c:73:ba:79:ee:1f: 1c:e5:58:fe:2d:ea:48:ee:f0:e1:9f:80:df:f5:35: 10:13:3d:f4:da:3b:10:40:b4:3f:1c:e6:69:77:7a: 82:42:b7:07:4c:6e:5f:39:e8:4a:76:90:52:cb:73: 0d:78:ea:83:a1:f1:df:c4:18:f8:dc:9a:c1:99:db: 4a:e4:04:81:38:e3:96:93:93:d8:a8:ba:ca:84:f2: c4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8F:72:96:02:3E:3F:3E:F9:16:60:08:B6:19:D7:29:18:8C:2B:C3 X509v3 Authority Key Identifier: keyid:82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/BF466AE8325611EFA462C323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.184.0/23 IPv6: 2001:df2:1840::/48 Signature Algorithm: sha256WithRSAEncryption 04:bd:fd:3f:8a:d0:3e:58:e7:9b:30:c8:58:0a:d9:8b:97:82: 90:5f:30:13:50:a7:07:b0:08:cc:16:41:95:6d:03:d9:40:0d: cc:4f:d9:fd:db:fc:de:a9:31:a7:e7:b1:bc:52:6b:d8:a7:1b: 3b:4d:31:91:73:9d:c9:10:34:4d:db:68:33:5a:1f:6b:33:a2: 0e:aa:79:e7:fc:e7:1c:95:5c:6a:32:2c:9d:68:7a:44:53:41: 91:0c:32:a7:82:ae:86:97:98:e3:8a:af:32:b1:d5:09:78:d4: 4e:39:63:00:3c:9c:97:52:24:2e:00:05:22:eb:9b:2a:c1:d5: d7:4f:96:4b:4f:5a:45:b3:19:88:bc:84:bf:09:ed:83:33:55: ae:cf:2d:9d:e6:a5:e7:a3:51:0e:a8:77:10:f1:2a:96:94:b2: 8b:7a:20:fc:1e:f8:65:8f:f3:14:69:1d:5d:a2:a0:fb:36:ff: 31:b6:02:10:09:d8:68:40:9b:4c:d6:34:d9:d5:7e:5c:3a:27: a4:bb:46:89:ff:98:66:9e:4f:b8:97:f7:cd:95:6d:4f:37:ea: f8:08:f2:8f:61:ac:e1:ff:2b:5f:f9:4c:01:77:a4:a2:24:3e: 25:07:14:44:24:2b:bb:61:00:39:ef:8d:13:af:08:b3:21:46: 57:41:e2:85 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJFNkExMTAvBgNVBAUTKDgyMzEwMEI3NUU1REQ0MUExRTdDMzI4MUMzNTcxM0Y0 NEJFODZDOTgwHhcNMjUwNDA3MDU0MzMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YzNjYwNC1hNTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpLFoyQfdX2g4PdR3F6iEJkdu5MjaZNRF0seCxG3ap2OLGWCzNEqQDDbKNWA Uk4MW5mIGCzo3iY2/ZReAzJ3/ZLCt7rrYAIrpG3XalPNeR+ZYAVqB6ut0Yhicy8u Cd3lCFH9kUHzxcxF12FVTd5FRRN6jCylRy8aDmHQRu6Q8aIW3CMu/ZLWLVQp13gJ 8XhFzj5CmoDfYXKqPnwwzt3ygou5Zjt9jpkFXwHhQGdsc7p57h8c5Vj+LepI7vDh n4Df9TUQEz302jsQQLQ/HOZpd3qCQrcHTG5fOehKdpBSy3MNeOqDofHfxBj43JrB mdtK5ASBOOOWk5PYqLrKhPLErQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBOPcpYC Pj8++RZgCLYZ1ykYjCvDMB8GA1UdIwQYMBaAFIIxALdeXdQaHnwygcNXE/RL6GyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkU2QS9BRTM3M0Q4NDMy MzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9nakVBdDE1ZDFCb2VmREtCdzFjVDlFdm9i SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqRUF0MTVkMUJvZWZES0J3MWNUOUV2b2JKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJFNkEvQUUzNzNEODQzMjMwMTFFRjlFNTMyMTU2QzRGOUFFMDIvQkY0NjZBRTgz MjU2MTFFRkE0NjJDMzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnbbgwDwQCAAIwCQMHACABDfIYQDANBgkqhkiG9w0BAQsF AAOCAQEABL39P4rQPljnmzDIWArZi5eCkF8wE1CnB7AIzBZBlW0D2UANzE/Z/dv8 3qkxp+exvFJr2KcbO00xkXOdyRA0TdtoM1ofazOiDqp55/znHJVcajIsnWh6RFNB kQwyp4KuhpeY44qvMrHVCXjUTjljADycl1IkLgAFIuubKsHV10+WS09aRbMZiLyE vwntgzNVrs8tneal56NRDqh3EPEqlpSyi3og/B74ZY/zFGkdXaKg+zb/MbYCEAnY aECbTNY02dV+XDonpLtGif+YZp5PuJf3zZVtTzfq+Ajyj2Gs4f8rX/lMAXekoiQ+ JQcURCQru2EAOe+NE68IsyFGV0HihQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:35 2025 by rpki-client