$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/D0CA23541BC611F09FDAC047C4F9AE02.roa File: D0CA23541BC611F09FDAC047C4F9AE02.roa (raw, json) Hash identifier: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8= Subject key identifier: E7:B4:52:06:B6:A3:61:36:A6:B0:3B:89:EF:E3:71:82:9D:8A:28:15 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 03 Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/D0CA23541BC611F09FDAC047C4F9AE02.roa Signing time: Thu 17 Apr 2025 20:01:57 +0000 ROA not before: Thu 17 Apr 2025 20:01:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 31287 IP address blocks: 103.170.192.0/23 maxlen: 24 2407:b6c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: Apr 17 20:01:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68015e35-6d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:90:c5:42:11:9e:d1:c2:1b:17:c5:1d:07:44: 5d:aa:c4:e2:58:8f:b8:5f:ec:33:5a:06:2c:41:27: 03:84:fa:5c:46:a2:3e:68:54:41:98:85:48:08:6f: 79:98:1a:10:9f:ea:ab:da:e0:b8:cd:e1:9c:be:44: ae:56:e7:5a:7c:7d:53:6e:f5:9e:86:96:e4:be:9d: 6a:fe:18:11:a7:44:d5:86:a7:36:b7:bc:68:fd:2c: e6:ed:2a:dd:1f:c7:4f:69:b8:56:b7:94:d3:2d:4c: 70:dd:21:93:00:b5:eb:91:ac:26:07:ef:67:ce:bb: 6e:ee:4f:a2:44:cb:53:f6:f9:7a:49:da:5f:a6:76: 60:df:4e:97:da:45:a2:dd:97:87:fa:2a:52:44:db: db:04:f2:3a:45:fb:20:c8:ff:a1:65:11:3f:17:fc: 3a:81:6b:97:80:d2:d1:88:2e:aa:26:38:b5:5f:07: 51:92:56:57:fc:d0:58:ba:d7:a7:31:4d:0b:b8:d2: 1a:80:6e:13:b8:49:f3:8a:cb:39:86:56:ec:ec:01: 80:19:01:79:ba:98:94:cb:af:e6:fe:0a:59:9e:26: 76:d4:66:77:59:d7:10:f5:8e:5d:cd:1a:c6:06:ff: 24:97:86:cf:8d:7a:50:c6:b7:99:07:f5:28:5c:2a: 06:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B4:52:06:B6:A3:61:36:A6:B0:3B:89:EF:E3:71:82:9D:8A:28:15 X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/D0CA23541BC611F09FDAC047C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.192.0/23 IPv6: 2407:b6c0::/32 Signature Algorithm: sha256WithRSAEncryption 03:ab:1f:b3:1a:46:2f:4f:39:85:13:7b:09:61:de:ec:8f:82: 90:60:97:30:72:4d:22:ab:72:42:1c:0a:fd:c0:8d:23:b7:34: 67:7b:b5:cf:f8:75:31:c3:c3:63:99:da:8f:31:f6:26:ba:78: 3c:dd:da:12:16:53:e0:0e:d3:84:86:56:4a:9e:ac:f4:63:cd: 0c:3b:35:d4:6c:09:ab:a3:f5:d2:2b:14:34:14:c9:e4:27:ab: 61:6b:6a:cd:47:39:a2:d7:b7:b4:a2:86:a4:d6:7f:a4:6c:2a: ee:f0:29:f0:15:7e:32:90:2a:d2:cf:2e:a0:ae:1c:f2:12:a4: e6:10:e8:c5:e2:ec:21:64:64:0a:9e:b7:e5:da:ca:4c:0c:60: 02:af:a4:4d:f6:55:49:b0:61:c4:28:c2:1b:8c:70:8b:8a:a4: 2b:fc:4b:7f:34:6c:42:79:e5:4f:fe:16:07:ec:9c:78:c6:df: 54:1e:f3:1f:ec:12:db:10:da:d0:8f:8d:c9:76:ed:d1:db:14: 32:9a:cc:5e:10:1b:90:62:1c:f8:d0:8c:aa:e5:58:ca:ea:fe: 75:e5:3d:7f:31:95:c5:54:3e:4a:5e:96:a0:b8:47:50:ab:70: ab:b5:bb:9f:4c:98:52:eb:f5:ef:55:69:53:08:24:68:d8:ab: 86:5d:cb:5d -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTA0MTcyMDAxNTdaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDE1ZTM1LTZkMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSkMVCEZ7RwhsXxR0HRF2qxOJYj7hf7DNaBixBJwOE+lxGoj5oVEGYhUgIb3mY GhCf6qva4LjN4Zy+RK5W51p8fVNu9Z6GluS+nWr+GBGnRNWGpza3vGj9LObtKt0f x09puFa3lNMtTHDdIZMAteuRrCYH72fOu27uT6JEy1P2+XpJ2l+mdmDfTpfaRaLd l4f6KlJE29sE8jpF+yDI/6FlET8X/DqBa5eA0tGILqomOLVfB1GSVlf80Fi616cx TQu40hqAbhO4SfOKyzmGVuzsAYAZAXm6mJTLr+b+ClmeJnbUZndZ1xD1jl3NGsYG /ySXhs+NelDGt5kH9ShcKga9AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU57RSBraj YTamsDuJ7+Nxgp2KKBUwHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwMS80NUFBQTFFODFCNTUxMUYwQTM5NUI4MTNDNEY5QUUwMi9EMENBMjM1NDFC QzYxMUYwOUZEQUMwNDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWeqwDANBAIAAjAHAwUAJAe2wDANBgkqhkiG9w0BAQsFAAOC AQEAA6sfsxpGL085hRN7CWHe7I+CkGCXMHJNIqtyQhwK/cCNI7c0Z3u1z/h1McPD Y5najzH2Jrp4PN3aEhZT4A7ThIZWSp6s9GPNDDs11GwJq6P10isUNBTJ5CerYWtq zUc5ote3tKKGpNZ/pGwq7vAp8BV+MpAq0s8uoK4c8hKk5hDoxeLsIWRkCp635drK TAxgAq+kTfZVSbBhxCjCG4xwi4qkK/xLfzRsQnnlT/4WB+yceMbfVB7zH+wS2xDa 0I+NyXbt0dsUMprMXhAbkGIc+NCMquVYyur+deU9fzGVxVQ+Sl6WoLhHUKtwq7W7 n0yYUuv171VpUwgkaNirhl3LXQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:08:55 2025 by rpki-client