$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C997895C217D11F0B984637FC4F9AE02.roa File: C997895C217D11F0B984637FC4F9AE02.roa (raw, json) Hash identifier: Uu3y7Uhow44dJugxNnd2sRfQxgxG+pictix8HgXEDmU= Subject key identifier: 87:94:93:82:4A:ED:F5:04:BB:9D:37:F1:84:15:95:8F:22:91:FC:A9 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4A93 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C997895C217D11F0B984637FC4F9AE02.roa Signing time: Fri 25 Apr 2025 02:36:15 +0000 ROA not before: Fri 25 Apr 2025 02:36:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153447 IP address blocks: 103.180.132.0/23 maxlen: 24 103.180.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19091 (0x4a93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Apr 25 02:36:15 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=680af51f-0b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4a:d2:50:a4:b4:4a:d4:48:12:b1:c6:72:db: 7d:96:15:cd:9d:59:93:a3:2a:f7:9e:d4:f6:ee:ad: 83:9c:63:ee:a5:96:8b:84:cd:c5:ee:b5:cd:eb:c3: 11:66:4f:da:3e:ad:65:c7:a1:6f:86:d9:76:80:b3: 22:4a:92:77:25:96:13:5d:6f:54:c3:52:0d:ca:f0: d4:08:7b:0d:49:ad:33:9d:22:7a:8c:37:90:ee:3c: 76:3d:e0:4d:4e:6e:e0:68:85:23:bc:91:db:15:78: 31:0c:0c:9b:01:51:90:53:f5:ed:5f:15:c2:63:84: f2:d7:32:ac:8f:0c:57:d1:19:b5:97:be:97:36:e2: e4:68:b2:15:1d:89:16:77:27:8b:1b:d7:7d:29:0b: e2:8b:b6:3f:a8:fe:ea:64:0e:84:82:d8:f2:d4:3a: 97:c3:ba:42:c9:76:36:dd:74:68:9e:56:6d:55:2d: c9:38:56:92:c1:4f:8e:1c:65:36:5d:61:9a:2f:97: cd:ed:6f:db:0b:82:ea:54:7b:58:b8:c7:7f:5b:31: 72:1f:cc:78:66:af:f7:ab:84:4d:6a:5d:93:b6:73: f3:a9:b9:50:62:7d:10:18:81:4c:ec:50:ee:55:24: 79:90:ae:34:d2:59:8d:6f:7d:80:2b:f0:96:d2:ad: 87:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:94:93:82:4A:ED:F5:04:BB:9D:37:F1:84:15:95:8F:22:91:FC:A9 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C997895C217D11F0B984637FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.132.0/22 Signature Algorithm: sha256WithRSAEncryption 87:16:4b:9a:a3:2e:41:f1:74:8e:49:84:a2:dd:b5:8c:a0:f1: 77:75:10:25:17:21:84:19:2d:58:4e:f1:2d:27:e1:45:56:b4: a9:6f:b4:83:13:d5:cc:e7:ca:a6:ca:8a:b1:f0:2a:6b:6e:5e: 21:f6:6e:0e:51:d5:a2:b3:d4:39:cf:56:56:9a:2d:c3:46:00: 75:7f:b3:2a:4f:d8:ee:69:e0:1e:cc:fe:31:3f:ab:db:5a:27: 0d:99:1d:25:d6:05:4b:b5:e0:8d:23:1a:f0:75:67:78:9a:fe: 61:6f:5f:60:ac:d9:8f:f0:e5:42:06:49:aa:91:12:40:33:7f: b0:89:3a:e5:59:f3:bb:f6:69:78:24:c1:30:5e:c4:f1:d8:70: fb:2c:c7:77:d4:b8:75:f9:0d:e4:f4:65:9f:5f:33:7a:73:45: 74:a9:71:ad:3e:ae:7c:fc:9c:6b:7d:fc:7a:70:cd:56:83:d2: 46:69:39:21:ef:66:f1:ca:3a:b9:55:7e:b1:d8:1d:cf:7f:ac: 3f:89:8b:9e:75:44:d5:6d:1f:63:f5:4d:4b:40:ad:6a:82:18: 33:b1:06:e5:f1:54:d5:0b:e8:fc:3f:39:4d:f3:92:1b:23:d4: 2c:d3:f1:a3:de:3e:07:27:f6:74:44:ad:d4:79:0b:fb:bc:ae: dd:39:9a:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICSpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNDI1MDIzNjE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhZjUxZi0wYjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ErSUKS0StRIErHGctt9lhXNnVmToyr3ntT27q2DnGPupZaLhM3F7rXN68MR Zk/aPq1lx6Fvhtl2gLMiSpJ3JZYTXW9Uw1INyvDUCHsNSa0znSJ6jDeQ7jx2PeBN Tm7gaIUjvJHbFXgxDAybAVGQU/XtXxXCY4Ty1zKsjwxX0Rm1l76XNuLkaLIVHYkW dyeLG9d9KQvii7Y/qP7qZA6Egtjy1DqXw7pCyXY23XRonlZtVS3JOFaSwU+OHGU2 XWGaL5fN7W/bC4LqVHtYuMd/WzFyH8x4Zq/3q4RNal2TtnPzqblQYn0QGIFM7FDu VSR5kK400lmNb32AK/CW0q2HZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIeUk4JK 7fUEu5038YQVlY8ikfypMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzk5Nzg5NUMy MTdEMTFGMEI5ODQ2MzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJntIQwDQYJKoZIhvcNAQELBQADggEBAIcWS5qjLkHxdI5J hKLdtYyg8Xd1ECUXIYQZLVhO8S0n4UVWtKlvtIMT1cznyqbKirHwKmtuXiH2bg5R 1aKz1DnPVlaaLcNGAHV/sypP2O5p4B7M/jE/q9taJw2ZHSXWBUu14I0jGvB1Z3ia /mFvX2Cs2Y/w5UIGSaqREkAzf7CJOuVZ87v2aXgkwTBexPHYcPssx3fUuHX5DeT0 ZZ9fM3pzRXSpca0+rnz8nGt9/HpwzVaD0kZpOSHvZvHKOrlVfrHYHc9/rD+Ji551 RNVtH2P1TUtArWqCGDOxBuXxVNUL6Pw/OU3zkhsj1CzT8aPePgcn9nRErdR5C/u8 rt05mlg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:46:34 2025 by rpki-client