$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa File: F0223A56C8F711EFB2542D5FC4F9AE02.roa (raw, json) Hash identifier: PgMBENTeyWyz3nCYdAUNFSDbq4rzld/sgQolQLS27eY= Subject key identifier: 70:9C:0A:EB:44:F8:71:56:1B:B7:FF:0C:5F:42:49:D8:42:D4:19:34 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 03B0 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa Signing time: Wed 09 Apr 2025 11:54:44 +0000 ROA not before: Wed 09 Apr 2025 11:54:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149058 IP address blocks: 103.138.146.0/24 maxlen: 24 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40::/36 maxlen: 36 2407:3b40:1000::/36 maxlen: 36 2407:3b40:2000::/36 maxlen: 36 2407:3b40:3000::/36 maxlen: 36 2407:3b40:4000::/36 maxlen: 36 2407:3b40:5000::/36 maxlen: 36 2407:3b40:6000::/36 maxlen: 36 2407:3b40:7000::/36 maxlen: 36 2407:3b40:9000::/36 maxlen: 36 2407:3b40:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720, serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: Apr 9 11:54:44 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67f66004-e487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9c:89:bf:ad:51:85:4e:7f:b5:82:62:2d:7f: d1:7d:b2:06:3d:4a:87:be:4b:8d:29:e3:56:ba:fd: 67:68:f3:e4:a9:1d:8a:cd:32:0b:70:00:ba:73:38: 15:76:3a:e7:bc:bb:4c:dd:bc:0c:b4:8d:19:56:93: fd:06:5d:fc:a6:28:ac:b7:2e:ba:81:38:ea:02:9b: 21:09:b6:01:ee:41:01:8b:5d:71:17:16:23:32:bb: 0c:54:eb:97:c0:57:bf:21:74:32:ba:7f:c0:9d:92: 69:0a:35:da:0f:84:f5:8d:cd:22:c7:10:c4:7a:13: 37:69:a4:d9:d0:27:b4:08:95:ae:44:4e:03:c5:4d: 93:26:2c:8b:4a:30:c0:4b:73:61:7c:0e:cb:50:4a: da:23:41:ec:ed:52:76:a9:df:57:cf:48:17:91:15: ff:10:20:d5:17:3c:97:69:20:b5:3a:e5:fb:1d:11: 88:ee:e6:fa:b8:ee:4d:6d:78:58:bb:90:9f:b6:77: da:86:f6:29:67:58:0f:74:c9:36:91:e4:8e:79:38: 14:dc:83:70:c2:bb:1b:7e:d1:c8:85:bb:72:07:42: 62:2b:8e:2b:37:40:5a:6b:e2:1e:c1:09:42:12:2a: c1:d7:9f:4f:80:1b:18:07:58:12:5c:c7:88:73:b7: 12:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9C:0A:EB:44:F8:71:56:1B:B7:FF:0C:5F:42:49:D8:42:D4:19:34 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.146.0/23 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption a7:e2:bf:0e:46:e5:d2:63:e8:94:18:d9:04:95:c2:65:5c:f4: 91:6f:d8:21:75:17:f3:3f:27:48:10:ae:fb:8c:eb:43:77:e4: cd:08:c5:39:65:b0:d7:08:b1:4b:ca:bb:fb:5f:29:9d:9c:41: 36:f9:95:89:c7:19:6e:1f:5a:2f:ff:49:bb:14:d4:4e:c2:86: e3:79:74:99:61:c7:bd:47:57:5e:92:11:ac:9e:5a:3d:38:87: ba:af:fb:1b:c2:a9:12:87:a2:15:42:80:a7:f9:59:41:3a:f1: 28:b7:2a:ee:4f:83:8a:ce:d4:f3:e1:5d:d0:be:8b:d3:d5:89: 21:e0:71:2c:90:d4:52:d3:1e:90:c5:03:62:be:5e:d9:49:df: ff:fd:cc:18:ff:88:fa:37:03:89:0b:23:0e:68:f1:88:cf:19: 32:78:d2:b3:ae:cd:3d:d0:63:fb:b0:df:66:f8:c0:c8:d7:d9: 34:fe:6e:bd:5c:e5:f3:67:da:ab:34:71:54:4c:d7:59:f3:92: ea:fe:7e:88:ae:29:d0:71:62:06:8c:11:c5:10:d1:2f:16:8d: e5:90:a0:7b:d5:19:da:14:d3:99:20:61:6c:96:12:f7:16:5f: 9d:ac:8f:dc:bb:cf:32:9a:c8:a7:67:20:57:89:10:2d:a0:79: 3a:9d:ef:12 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjUwNDA5MTE1NDQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y2NjAwNC1lNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpyJv61RhU5/tYJiLX/RfbIGPUqHvkuNKeNWuv1naPPkqR2KzTILcAC6czgV djrnvLtM3bwMtI0ZVpP9Bl38piisty66gTjqApshCbYB7kEBi11xFxYjMrsMVOuX wFe/IXQyun/AnZJpCjXaD4T1jc0ixxDEehM3aaTZ0Ce0CJWuRE4DxU2TJiyLSjDA S3NhfA7LUEraI0Hs7VJ2qd9Xz0gXkRX/ECDVFzyXaSC1OuX7HRGI7ub6uO5NbXhY u5CftnfahvYpZ1gPdMk2keSOeTgU3INwwrsbftHIhbtyB0JiK44rN0Baa+IewQlC EirB159PgBsYB1gSXMeIc7cSrQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHCcCutE +HFWG7f/DF9CSdhC1Bk0MB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvRjAyMjNBNTZD OEY3MTFFRkIyNTQyRDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnipIwDQQCAAIwBwMFACQHO0AwDQYJKoZIhvcNAQELBQAD ggEBAKfivw5G5dJj6JQY2QSVwmVc9JFv2CF1F/M/J0gQrvuM60N35M0IxTllsNcI sUvKu/tfKZ2cQTb5lYnHGW4fWi//SbsU1E7ChuN5dJlhx71HV16SEayeWj04h7qv +xvCqRKHohVCgKf5WUE68Si3Ku5Pg4rO1PPhXdC+i9PViSHgcSyQ1FLTHpDFA2K+ XtlJ3//9zBj/iPo3A4kLIw5o8YjPGTJ40rOuzT3QY/uw32b4wMjX2TT+br1c5fNn 2qs0cVRM11nzkur+foiuKdBxYgaMEcUQ0S8WjeWQoHvVGdoU05kgYWyWEvcWX52s j9y7zzKayKdnIFeJEC2geTqd7xI= -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:02 2025 by rpki-client