$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa File: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (raw, json) Hash identifier: G5wltjNSD/O3ajAJpyjvE7MGloJrQIziYtmSgOapwTQ= Subject key identifier: 56:B3:5C:25:90:73:D0:C0:EC:59:FA:4F:9F:09:16:B4:08:2D:60:DF Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: F3 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa Signing time: Mon 21 Apr 2025 18:56:14 +0000 ROA not before: Mon 21 Apr 2025 18:56:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 396982 IP address blocks: 167.103.171.0/24 maxlen: 24 167.103.172.0/24 maxlen: 24 167.103.173.0/24 maxlen: 24 167.103.174.0/24 maxlen: 24 167.103.175.0/24 maxlen: 24 167.103.176.0/24 maxlen: 24 167.103.177.0/24 maxlen: 24 167.103.178.0/24 maxlen: 24 167.103.179.0/24 maxlen: 24 167.103.180.0/24 maxlen: 24 167.103.181.0/24 maxlen: 24 167.103.182.0/24 maxlen: 24 167.103.183.0/24 maxlen: 24 167.103.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Apr 21 18:56:14 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=680694ce-eadf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d2:33:be:1a:71:5a:f4:56:00:6c:35:4e:43: ca:c2:57:bd:10:b5:4a:5e:98:f9:87:84:f3:9e:b1: e4:9d:4b:b4:bf:c5:dc:97:9d:6c:7c:7c:4c:4f:a0: 23:fb:07:8b:7f:4f:9b:61:51:16:b3:1d:04:6e:7a: d5:45:38:71:96:8b:4a:37:29:bf:4e:be:dd:da:2a: fb:e8:8a:ca:41:b9:d5:2c:62:38:8d:69:81:89:09: bd:8e:4a:a1:04:bc:65:af:2f:89:33:d3:da:0d:7a: e3:fa:9c:35:e2:04:70:be:b1:7f:da:72:cb:89:a8: da:f4:47:f9:d6:30:a2:9d:a4:ec:a2:a9:a8:09:b4: a0:c8:a5:53:0a:21:11:7c:69:21:01:33:a5:11:90: 3d:fc:c8:f7:10:1d:38:be:31:51:6b:b2:88:87:14: 55:30:71:05:2b:99:00:b1:cf:7c:43:77:6a:bb:cf: 41:74:01:b3:7c:e4:eb:18:24:77:da:21:e6:43:86: 81:41:2e:81:63:5a:0c:0d:c3:a5:4f:8d:31:f5:04: ac:31:d2:52:de:ec:74:de:4d:dd:13:d6:58:87:37: 33:4d:67:9e:c0:61:4a:78:7b:91:cd:dc:ce:fc:5f: cc:d5:fa:ce:e3:e6:fa:ac:f5:b8:78:25:65:6e:02: 0f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B3:5C:25:90:73:D0:C0:EC:59:FA:4F:9F:09:16:B4:08:2D:60:DF X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.171.0-167.103.184.255 Signature Algorithm: sha256WithRSAEncryption 5e:db:fc:39:76:77:55:fc:fe:60:2c:c6:18:c1:d0:5a:aa:94: 0e:a1:57:ad:c0:8d:1d:3c:f6:b5:1e:d4:86:73:02:2d:51:47: ad:e7:99:40:97:04:65:30:15:29:37:8d:d7:bb:f1:73:6f:2f: 78:c5:25:de:30:fb:84:8b:07:5b:01:07:be:04:be:cc:9c:65: 1b:a6:c9:6c:2d:85:dd:fc:aa:45:82:ed:0f:55:ff:db:b9:7d: 0d:86:57:e9:d4:27:ca:93:0d:32:1c:9e:fc:e6:59:46:aa:11: f3:d8:4d:b3:8e:ce:b6:72:0d:7e:80:1e:dd:5e:1b:32:a2:3c: 5e:6f:c0:bd:63:4b:de:f2:91:80:17:a9:da:c3:3d:56:b7:bf: 3d:ee:9b:dd:e6:1c:a5:c9:31:94:75:ac:37:40:98:db:79:b3: 16:e8:9d:80:a3:03:23:cb:99:36:0d:7e:89:c1:2b:d2:0f:ee: 6b:dd:48:2c:00:31:ed:38:bb:05:df:23:06:2d:69:4a:09:b9: 4c:6c:a8:01:f1:df:7e:8c:75:b8:8d:47:93:f0:f6:63:34:36: fe:dd:03:8c:c7:55:06:9d:84:93:56:9d:25:79:87:d1:a4:5b: 9f:90:d5:34:73:d7:5c:9f:d0:68:c1:89:22:6a:e1:4c:be:06: bf:ed:2b:c5 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNDIxMTg1NjE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA2OTRjZS1lYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudIzvhpxWvRWAGw1TkPKwle9ELVKXpj5h4TznrHknUu0v8Xcl51sfHxMT6Aj +weLf0+bYVEWsx0EbnrVRThxlotKNym/Tr7d2ir76IrKQbnVLGI4jWmBiQm9jkqh BLxlry+JM9PaDXrj+pw14gRwvrF/2nLLiaja9Ef51jCinaTsoqmoCbSgyKVTCiER fGkhATOlEZA9/Mj3EB04vjFRa7KIhxRVMHEFK5kAsc98Q3dqu89BdAGzfOTrGCR3 2iHmQ4aBQS6BY1oMDcOlT40x9QSsMdJS3ux03k3dE9ZYhzczTWeewGFKeHuRzdzO /F/M1frO4+b6rPW4eCVlbgIPPQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFFazXCWQ c9DA7Fn6T58JFrQILWDfMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvNzJFOTdCM0Ex QkRCMTFGMEI3N0IxMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAKdnqwMEAKdnuDANBgkqhkiG9w0BAQsFAAOCAQEAXtv8 OXZ3Vfz+YCzGGMHQWqqUDqFXrcCNHTz2tR7UhnMCLVFHreeZQJcEZTAVKTeN17vx c28veMUl3jD7hIsHWwEHvgS+zJxlG6bJbC2F3fyqRYLtD1X/27l9DYZX6dQnypMN Mhye/OZZRqoR89hNs47OtnINfoAe3V4bMqI8Xm/AvWNL3vKRgBep2sM9Vre/Pe6b 3eYcpckxlHWsN0CY23mzFuidgKMDI8uZNg1+icEr0g/ua91ILAAx7Ti7Bd8jBi1p Sgm5TGyoAfHffox1uI1Hk/D2YzQ2/t0DjMdVBp2Ek1adJXmH0aRbn5DVNHPXXJ/Q aMGJImrhTL4Gv+0rxQ== -----END CERTIFICATE-----Generated at Sat Apr 26 17:00:02 2025 by rpki-client