$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/F4246CDA561811E98A165872C4F9AE02.roa File: F4246CDA561811E98A165872C4F9AE02.roa (raw, json) Hash identifier: C/PaFQfpTy7SRBE+0XzPzL+bck/ugVag2KSCjWGbACs= Subject key identifier: D9:F6:C5:C7:90:B7:D7:DD:44:50:E3:B3:9D:0F:D9:03:13:46:99:AE Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 28FE Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/F4246CDA561811E98A165872C4F9AE02.roa Signing time: Thu 24 Apr 2025 15:42:26 +0000 ROA not before: Thu 24 Apr 2025 15:42:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10075 IP address blocks: 103.7.248.0/22 maxlen: 22 103.7.248.0/24 maxlen: 24 103.7.249.0/24 maxlen: 24 103.7.250.0/24 maxlen: 24 103.7.251.0/24 maxlen: 24 103.229.82.0/23 maxlen: 23 103.229.82.0/24 maxlen: 24 103.229.83.0/24 maxlen: 24 163.47.156.0/22 maxlen: 22 163.47.156.0/23 maxlen: 23 163.47.156.0/24 maxlen: 24 163.47.157.0/24 maxlen: 24 163.47.158.0/24 maxlen: 24 163.47.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10494 (0x28fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: Apr 24 15:42:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a5be2-6e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fc:0c:b0:e2:43:01:fc:6d:cc:5d:6f:bb:8c: 34:93:4c:88:98:be:36:c6:b7:7b:91:66:e6:c0:43: 2f:cf:59:7a:1a:20:a7:52:2d:06:aa:1e:df:15:5d: a1:9f:d2:3a:90:bc:dd:82:1b:eb:d8:30:92:7a:fc: 44:90:ce:df:b4:f8:61:6c:3d:2b:45:b5:5b:d5:9e: 63:21:40:40:5e:42:c3:1d:19:46:fe:8c:b9:fe:51: a9:fb:26:de:8f:91:65:ed:2e:ac:2a:2d:67:65:04: 38:7f:74:ad:47:ca:f5:9c:9d:cb:7f:f8:3a:04:8f: d8:ac:e3:75:3d:03:82:ac:f0:16:39:e2:e2:25:8d: b5:de:af:3b:36:e9:d7:89:db:f8:da:35:86:6c:6f: c1:5e:86:70:56:91:cc:29:0c:da:02:7c:61:d9:af: 64:22:9b:fc:fd:d7:3f:dc:92:0a:a8:1f:b6:40:dc: 3f:c5:51:25:3f:52:8a:bc:d5:4c:0a:db:ac:af:97: 86:72:fb:fc:6a:3a:85:46:41:d5:2f:90:a4:0d:f7: 79:6c:a6:e7:8f:ce:2f:ad:af:91:ca:e2:e3:df:89: 78:a3:35:64:a8:81:dc:9e:99:71:29:12:83:2d:d6: a1:11:eb:da:8a:c2:cb:ac:e7:65:d0:be:c2:69:ac: 47:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F6:C5:C7:90:B7:D7:DD:44:50:E3:B3:9D:0F:D9:03:13:46:99:AE X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/F4246CDA561811E98A165872C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.248.0/22 103.229.82.0/23 163.47.156.0/22 Signature Algorithm: sha256WithRSAEncryption b5:6e:bf:5b:2d:ee:5b:35:83:b9:25:f5:4c:7e:ac:ad:44:59: 07:64:09:8a:82:c2:f1:d7:5e:4b:ad:69:99:04:94:d3:eb:7a: 73:b6:24:f7:30:cd:4c:73:a5:3e:e8:fc:80:5d:ba:4b:17:d2: 21:2b:7f:3e:bf:d1:80:fe:ed:58:85:3a:1a:94:01:b5:d6:db: be:ab:4c:f5:78:99:fa:6a:a2:50:96:22:74:e5:0f:b2:b4:98: 05:a6:6c:74:8f:15:10:5c:fb:38:db:23:c1:1c:c2:b2:19:01: 80:86:72:18:58:b3:5f:13:8c:d4:da:45:7d:d5:d2:d6:62:de: 0b:ec:c0:0a:ff:97:16:a9:f9:95:c8:1b:2f:df:19:70:a4:f1: c5:a3:22:9c:7f:76:1d:87:83:bb:79:64:18:a5:48:cd:63:2e: 00:a7:80:97:34:38:50:15:b5:3d:51:f9:94:7e:3d:c9:37:84: 21:a6:47:b3:85:2c:b7:70:cd:0f:50:e2:35:d5:5d:81:98:c7: d5:0a:c8:48:23:31:f0:63:5b:ac:ea:e9:0e:59:f9:15:d9:1a: 39:d4:39:ad:f8:99:be:e6:88:d0:e4:c6:62:dd:64:c1:9c:82: 00:b5:f3:de:99:05:45:a2:42:58:da:21:8e:c9:c9:89:25:c1: 84:df:80:1c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICKP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjUwNDI0MTU0MjI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNWJlMi02ZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvwMsOJDAfxtzF1vu4w0k0yImL42xrd7kWbmwEMvz1l6GiCnUi0Gqh7fFV2h n9I6kLzdghvr2DCSevxEkM7ftPhhbD0rRbVb1Z5jIUBAXkLDHRlG/oy5/lGp+ybe j5Fl7S6sKi1nZQQ4f3StR8r1nJ3Lf/g6BI/YrON1PQOCrPAWOeLiJY213q87NunX idv42jWGbG/BXoZwVpHMKQzaAnxh2a9kIpv8/dc/3JIKqB+2QNw/xVElP1KKvNVM Ctusr5eGcvv8ajqFRkHVL5CkDfd5bKbnj84vra+RyuLj34l4ozVkqIHcnplxKRKD LdahEevaisLLrOdl0L7CaaxHmQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNn2xceQ t9fdRFDjs50P2QMTRpmuMB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1MTcvNDA2RjkwNEM2QUU2MTFFNDkxOTE0Njg3QzRGOUFFMDIvRjQyNDZDREE1 NjE4MTFFOThBMTY1ODcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnB/gDBAFn5VIDBAKjL5wwDQYJKoZIhvcNAQELBQADggEB ALVuv1st7ls1g7kl9Ux+rK1EWQdkCYqCwvHXXkutaZkElNPrenO2JPcwzUxzpT7o /IBduksX0iErfz6/0YD+7ViFOhqUAbXW276rTPV4mfpqolCWInTlD7K0mAWmbHSP FRBc+zjbI8EcwrIZAYCGchhYs18TjNTaRX3V0tZi3gvswAr/lxap+ZXIGy/fGXCk 8cWjIpx/dh2Hg7t5ZBilSM1jLgCngJc0OFAVtT1R+ZR+Pck3hCGmR7OFLLdwzQ9Q 4jXVXYGYx9UKyEgjMfBjW6zq6Q5Z+RXZGjnUOa34mb7miNDkxmLdZMGcggC1896Z BUWiQljaIY7JyYklwYTfgBw= -----END CERTIFICATE-----Generated at Sat Apr 26 09:26:40 2025 by rpki-client