$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa File: 6CAE0142092E11F094B4703FC4F9AE02.roa (raw, json) Hash identifier: OMRvHYE6qtGkjMaZA10UGy4kzsmijUfW8xz11XmOryU= Subject key identifier: 8F:26:29:72:36:BD:6B:5C:5E:18:85:3A:EC:20:D6:20:89:DA:7A:5C Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0BAC Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa Signing time: Sat 12 Apr 2025 06:11:16 +0000 ROA not before: Sat 12 Apr 2025 06:11:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 142622 IP address blocks: 103.7.116.0/24 maxlen: 24 103.12.53.0/24 maxlen: 24 103.12.54.0/24 maxlen: 24 103.13.16.0/24 maxlen: 24 103.13.17.0/24 maxlen: 24 103.13.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2988 (0xbac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Apr 12 06:11:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67fa0404-7717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:32:a3:af:bf:6d:93:2a:1f:98:18:30:49:cf: f9:dc:61:d8:5c:d2:94:4f:37:14:42:83:4a:da:f9: cf:e5:50:cd:a5:85:82:5e:37:64:3b:57:ef:ec:93: ba:1f:cc:6e:1a:a7:d4:cb:92:ce:45:51:22:89:a8: be:54:be:85:da:f7:41:7f:5e:77:29:26:2b:0e:1b: 6d:44:ea:d0:c6:d3:18:a3:be:8f:11:b4:db:d4:d1: a8:f9:cf:9d:13:1d:b9:49:18:b7:26:71:27:71:24: a4:b1:4b:89:8e:9f:72:8a:44:89:4a:a6:4c:5f:ef: c0:e6:1a:c4:54:27:d7:90:cb:ce:41:2f:46:72:ce: a4:9d:21:85:8a:38:1b:0b:91:8e:46:b5:a1:ab:45: 1d:85:6b:01:be:f9:4b:41:8b:a2:d9:2a:eb:3e:02: a1:6b:37:0d:5e:7b:0a:57:cc:45:0b:e4:07:e7:90: 2a:e6:b1:f3:7c:5e:73:79:11:93:3c:7b:cb:ed:58: 7b:b1:af:a1:39:10:9e:79:e0:de:39:aa:cd:39:25: a9:f6:0c:bf:dc:5e:30:7c:52:be:88:33:dc:d2:bc: 5c:d9:a4:aa:e4:df:88:64:e7:47:dd:bf:b3:26:b4: 6c:57:24:20:0b:23:e1:1e:a9:db:3b:1c:6e:4e:2f: bd:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:26:29:72:36:BD:6B:5C:5E:18:85:3A:EC:20:D6:20:89:DA:7A:5C X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.116.0/24 103.12.53.0-103.12.54.255 103.13.16.0-103.13.18.255 Signature Algorithm: sha256WithRSAEncryption 9f:14:0d:8a:bf:1f:8b:e5:58:9b:4b:4b:8b:a4:48:82:07:f8: 23:4c:20:63:f1:9e:96:7c:2c:1a:d2:c2:fb:e3:e7:b5:2c:ef: 29:0a:cb:06:f9:b0:36:7d:22:08:64:27:d0:cf:39:ce:66:d5: 50:5c:a8:1a:24:bb:aa:5f:9c:3c:d7:f2:57:12:03:81:fa:eb: 7d:17:f4:43:78:26:00:04:b1:c8:e1:78:23:ab:e5:01:ac:6f: fa:4a:38:1a:4c:4b:cf:4e:9c:b6:2e:6c:75:20:55:2a:e6:25: ed:a6:ef:38:ac:c1:b5:09:21:3b:36:34:00:cd:45:ba:57:da: 23:f7:04:03:89:b4:af:5c:3a:6e:ad:0a:c3:cf:82:78:0b:12: 57:8c:43:68:50:e0:71:f3:d8:4e:f4:53:3d:ab:73:d7:84:f8: 09:a2:55:9a:0e:e3:93:6a:c3:2a:0d:46:e2:ef:84:fe:2e:ac: 4d:7d:19:07:32:df:b6:a7:b4:92:3c:31:d5:c2:0b:05:2e:6e: b2:73:9b:20:69:c4:ae:75:4d:e5:3a:f3:80:cb:cc:3b:e4:c0: 09:aa:09:df:b1:5c:08:32:86:b3:19:b2:01:47:12:e4:38:b5: 7b:62:7b:b7:fd:62:0d:38:0c:c8:51:3c:84:d5:a3:8e:49:ee: ef:a4:bb:b1 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICC6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNDEyMDYxMTE2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhMDQwNC03NzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjKjr79tkyofmBgwSc/53GHYXNKUTzcUQoNK2vnP5VDNpYWCXjdkO1fv7JO6 H8xuGqfUy5LORVEiiai+VL6F2vdBf153KSYrDhttROrQxtMYo76PEbTb1NGo+c+d Ex25SRi3JnEncSSksUuJjp9yikSJSqZMX+/A5hrEVCfXkMvOQS9Gcs6knSGFijgb C5GORrWhq0UdhWsBvvlLQYui2SrrPgKhazcNXnsKV8xFC+QH55Aq5rHzfF5zeRGT PHvL7Vh7sa+hORCeeeDeOarNOSWp9gy/3F4wfFK+iDPc0rxc2aSq5N+IZOdH3b+z JrRsVyQgCyPhHqnbOxxuTi+9mwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFI8mKXI2 vWtcXhiFOuwg1iCJ2npcMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNkNBRTAxNDIw OTJFMTFGMDk0QjQ3MDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIDBABnB3QwDAMEAGcMNQMEAGcMNjAMAwQEZw0QAwQAZw0SMA0G CSqGSIb3DQEBCwUAA4IBAQCfFA2Kvx+L5VibS0uLpEiCB/gjTCBj8Z6WfCwa0sL7 4+e1LO8pCssG+bA2fSIIZCfQzznOZtVQXKgaJLuqX5w81/JXEgOB+ut9F/RDeCYA BLHI4Xgjq+UBrG/6SjgaTEvPTpy2Lmx1IFUq5iXtpu84rMG1CSE7NjQAzUW6V9oj 9wQDibSvXDpurQrDz4J4CxJXjENoUOBx89hO9FM9q3PXhPgJolWaDuOTasMqDUbi 74T+LqxNfRkHMt+2p7SSPDHVwgsFLm6yc5sgacSudU3lOvOAy8w75MAJqgnfsVwI MoazGbIBRxLkOLV7Ynu3/WINOAzIUTyE1aOOSe7vpLux -----END CERTIFICATE-----Generated at Sat Apr 26 07:45:24 2025 by rpki-client