$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/07BAAB7C9B1611EFB5C28465C4F9AE02.roa File: 07BAAB7C9B1611EFB5C28465C4F9AE02.roa (raw, json) Hash identifier: ofbztl5uVlglZWvlUxP/w/vzUs13H0jw290VgxrDPX8= Subject key identifier: 6D:14:F1:D6:F2:AE:87:3A:76:F0:4C:E7:FA:E4:65:6B:F7:18:99:30 Certificate issuer: /CN=A91A8047/serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Certificate serial: 5F Authority key identifier: 88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/07BAAB7C9B1611EFB5C28465C4F9AE02.roa Signing time: Tue 01 Apr 2025 07:02:24 +0000 ROA not before: Tue 01 Apr 2025 07:02:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134673 IP address blocks: 103.209.224.0/22 maxlen: 22 203.18.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8047, serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Validity Not Before: Apr 1 07:02:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb8f80-abfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:25:df:7e:ad:b1:50:70:d0:80:c3:37:36:6b: 62:1d:b8:a7:d4:0e:bc:c7:1b:48:a3:5d:1d:5a:de: 4a:22:08:65:20:33:98:6d:57:53:44:cb:c5:bd:79: ad:18:26:97:9e:db:f2:db:76:b1:fd:1b:2d:e9:8e: 03:19:fb:7e:09:c5:94:a6:00:9c:47:07:45:5a:b8: 8e:5d:75:07:42:bb:49:db:2a:2c:dc:9a:ba:5f:a8: 4b:b9:5a:35:ef:ef:96:57:fb:ac:2d:0d:03:46:09: 76:6c:15:77:63:c3:93:6c:da:81:df:c7:0c:8f:23: ae:26:86:f1:07:7b:86:27:a3:99:cd:fc:1f:2f:1d: f2:c7:d5:0c:09:1a:d3:01:c2:3b:15:b5:cf:4e:ab: d6:08:d3:d4:9e:af:e6:0e:a7:4c:6f:09:6d:a8:5e: 5c:15:1e:fd:e7:e3:9e:c4:8f:bb:4d:8c:23:dd:ac: 99:38:02:f5:cd:81:0f:e3:1a:bc:64:78:00:a6:48: cb:24:01:26:a4:54:e6:4c:50:7b:c0:3b:69:a6:ff: ac:3d:63:50:31:2e:2b:d8:d6:59:28:71:8b:cb:f6: 67:9f:05:9e:44:61:85:89:c0:27:ec:cf:62:49:df: e1:a9:15:e2:c5:46:5e:4b:d5:e8:07:41:5c:12:c1: fe:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:14:F1:D6:F2:AE:87:3A:76:F0:4C:E7:FA:E4:65:6B:F7:18:99:30 X509v3 Authority Key Identifier: keyid:88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/07BAAB7C9B1611EFB5C28465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.224.0/22 203.18.59.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:b6:46:c2:4e:d5:57:09:71:e4:0c:b2:ac:95:bf:16:cf:2c: de:e8:9d:8c:cf:4b:b5:17:31:5d:90:5b:df:a0:c7:1e:58:46: 83:49:19:fc:57:ef:74:29:be:d6:8d:9d:d2:0b:d8:63:e0:9d: fa:35:7d:ef:de:ed:23:31:8f:da:83:29:8b:7e:29:0a:8f:3d: d2:5c:29:46:c5:8f:1a:a9:be:cf:09:9d:4c:1f:a8:5e:33:eb: eb:ea:a2:f8:99:bc:bd:ca:9b:c7:06:bc:ab:00:6c:a1:6f:74: 86:49:c4:b7:42:fc:23:65:94:62:71:a8:63:db:ad:5b:c6:11: 94:76:c8:73:a4:a0:15:08:0c:bc:5d:3a:74:07:ca:af:21:55: 84:ea:55:af:53:49:00:51:8d:84:75:63:88:7b:29:4e:be:d7: 0a:4c:0d:8c:ca:9d:26:d9:3d:90:50:96:3f:cb:33:06:11:c6: f9:db:23:9e:fd:84:86:42:ed:6a:32:e6:fd:cb:e4:a2:cb:1b: 29:3b:eb:b4:60:19:0c:b6:3a:fd:b8:68:92:38:35:25:25:67: b1:f1:c8:42:64:f6:4f:74:0b:1e:71:c5:ce:7d:ba:dd:d0:b8: fc:4f:20:05:8f:b4:bc:60:76:9b:1c:92:7c:7f:44:58:7a:71: 96:88:f3:a8 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODA0NzExMC8GA1UEBRMoODg0OEFBQ0RGMjk1MTMwM0U3MDk4RjQxOUQ4Q0EwMDQy Mjg5MEM2OTAeFw0yNTA0MDEwNzAyMjRaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWI4ZjgwLWFiZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+Jd9+rbFQcNCAwzc2a2IduKfUDrzHG0ijXR1a3koiCGUgM5htV1NEy8W9ea0Y Jpee2/LbdrH9Gy3pjgMZ+34JxZSmAJxHB0VauI5ddQdCu0nbKizcmrpfqEu5WjXv 75ZX+6wtDQNGCXZsFXdjw5Ns2oHfxwyPI64mhvEHe4Yno5nN/B8vHfLH1QwJGtMB wjsVtc9Oq9YI09Ser+YOp0xvCW2oXlwVHv3n457Ej7tNjCPdrJk4AvXNgQ/jGrxk eACmSMskASakVOZMUHvAO2mm/6w9Y1AxLivY1lkocYvL9mefBZ5EYYWJwCfsz2JJ 3+GpFeLFRl5L1egHQVwSwf7vAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUbRTx1vKu hzp28Ezn+uRla/cYmTAwHwYDVR0jBBgwFoAUiEiqzfKVEwPnCY9BnYygBCKJDGkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MDQ3LzM0NEEwMUEyOUIx NTExRUY4NkVCMzc0NkM0RjlBRTAyL2lFaXF6ZktWRXdQbkNZOUJuWXlnQkNLSkRH ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUVpcXpmS1ZFd1BuQ1k5Qm5ZeWdCQ0tKREdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODA0Ny8zNDRBMDFBMjlCMTUxMUVGODZFQjM3NDZDNEY5QUUwMi8wN0JBQUI3QzlC MTYxMUVGQjVDMjg0NjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfR4AMEAMsSOzANBgkqhkiG9w0BAQsFAAOCAQEACrZGwk7V Vwlx5AyyrJW/Fs8s3uidjM9LtRcxXZBb36DHHlhGg0kZ/FfvdCm+1o2d0gvYY+Cd +jV9797tIzGP2oMpi34pCo890lwpRsWPGqm+zwmdTB+oXjPr6+qi+Jm8vcqbxwa8 qwBsoW90hknEt0L8I2WUYnGoY9utW8YRlHbIc6SgFQgMvF06dAfKryFVhOpVr1NJ AFGNhHVjiHspTr7XCkwNjMqdJtk9kFCWP8szBhHG+dsjnv2EhkLtajLm/cvkossb KTvrtGAZDLY6/bhokjg1JSVnsfHIQmT2T3QLHnHFzn263dC4/E8gBY+0vGB2mxyS fH9EWHpxlojzqA== -----END CERTIFICATE-----Generated at Sat Apr 26 08:11:43 2025 by rpki-client