$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/CB8AA43A4D9B11EFB201E984C4F9AE02.roa File: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (raw, json) Hash identifier: BndO95FjlN4yoYJHwmdg6jMh7CCU5xFJrJ+5TfJ2qvA= Subject key identifier: 8A:CB:0B:4D:71:DC:C5:B5:CE:63:57:E5:06:61:0D:0A:9F:F6:A0:7C Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 03D7 Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/CB8AA43A4D9B11EFB201E984C4F9AE02.roa Signing time: Tue 15 Apr 2025 00:35:48 +0000 ROA not before: Tue 15 Apr 2025 00:35:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149513 IP address blocks: 103.181.164.0/23 maxlen: 23 103.181.164.0/24 maxlen: 24 103.181.165.0/24 maxlen: 24 2400:5a60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: Apr 15 00:35:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67fda9e4-fe92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:70:d0:40:5a:b7:ca:8f:bb:18:b8:9d:27:32: bc:97:5c:42:32:b2:e6:75:49:51:4f:66:52:0f:20: 48:e3:9e:ee:ed:af:11:4e:79:f7:63:71:59:82:86: a9:a1:c0:50:7d:bf:87:80:f3:7e:cd:be:b2:3b:20: 68:7c:ef:5b:a4:f0:d7:e5:a6:fe:e1:73:d1:9a:7b: 1a:31:5f:b5:c7:19:c7:72:46:3f:28:32:e3:91:ce: f2:03:b4:73:06:76:5a:be:b2:33:41:14:6f:c4:2a: 9b:63:b0:62:8e:e0:87:a2:cf:54:2a:2c:c2:ae:f2: f4:88:51:18:63:ea:4a:0a:9f:82:47:cd:d3:28:e8: 99:9d:d8:da:63:a4:dd:49:a2:85:01:e4:d0:dc:d0: 4f:6f:0f:da:26:48:cc:5c:a9:21:cb:60:af:0d:92: 3b:3b:65:56:5e:91:59:74:32:90:e6:4b:16:bf:9f: cf:26:14:88:4e:6a:44:fa:9b:28:09:86:17:38:e6: d4:f6:1f:a4:18:4d:9e:b2:8c:ca:f2:f9:05:f7:3a: 08:d3:de:ee:81:33:d8:4f:7a:08:35:16:82:1b:1e: 03:5b:94:5d:f3:96:41:d2:ea:8a:bb:85:82:33:5f: 2b:8f:1d:90:d7:c7:8e:c9:c5:c5:aa:72:75:1f:cd: 4e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CB:0B:4D:71:DC:C5:B5:CE:63:57:E5:06:61:0D:0A:9F:F6:A0:7C X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/CB8AA43A4D9B11EFB201E984C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.164.0/23 IPv6: 2400:5a60::/48 Signature Algorithm: sha256WithRSAEncryption 01:cf:12:60:8f:23:1a:ac:1d:81:93:e0:5f:6b:ef:f7:75:86: 47:6a:c4:d8:06:a8:05:af:4d:0b:03:b5:3b:a8:99:8c:67:9e: 4d:68:1e:e2:17:6f:a2:37:5b:db:d0:78:75:62:ea:f6:3d:70: 21:58:5e:8b:51:e0:67:8e:f1:d1:12:57:24:bd:90:54:12:db: e8:9e:91:64:ca:3b:46:f1:80:d0:33:ec:b7:1a:19:c8:21:b3: 35:0f:ce:40:fb:69:7d:16:bc:1a:e7:68:1a:2e:cd:e3:08:5c: b5:94:29:5d:a3:d8:33:bd:e5:d5:ab:6e:68:8f:13:79:2a:72: df:85:9a:d8:36:24:2f:52:c9:a8:45:a4:a4:7a:9e:8e:8b:0e: 60:ee:62:57:93:60:89:16:05:34:aa:86:ce:42:4c:3b:3b:f4: f1:e5:02:b0:f8:59:f4:4b:73:78:09:c3:fa:1e:5e:d7:07:cd: 09:81:9f:63:41:13:28:d6:15:9d:4b:fe:f8:ad:36:4f:5f:2a: 94:10:27:b0:6b:33:8e:c8:e7:37:62:60:b5:f6:b9:82:14:4d: 5d:a8:5f:51:0f:a7:84:de:56:45:ab:86:d0:68:43:e0:18:ce: b2:ab:e7:07:64:c6:be:75:bf:be:8d:63:24:7d:fa:80:54:14: 30:33:ce:45 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjUwNDE1MDAzNTQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkYTllNC1mZTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nDQQFq3yo+7GLidJzK8l1xCMrLmdUlRT2ZSDyBI457u7a8RTnn3Y3FZgoap ocBQfb+HgPN+zb6yOyBofO9bpPDX5ab+4XPRmnsaMV+1xxnHckY/KDLjkc7yA7Rz BnZavrIzQRRvxCqbY7BijuCHos9UKizCrvL0iFEYY+pKCp+CR83TKOiZndjaY6Td SaKFAeTQ3NBPbw/aJkjMXKkhy2CvDZI7O2VWXpFZdDKQ5ksWv5/PJhSITmpE+pso CYYXOObU9h+kGE2esozK8vkF9zoI097ugTPYT3oINRaCGx4DW5Rd85ZB0uqKu4WC M18rjx2Q18eOycXFqnJ1H81OswIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIrLC01x 3MW1zmNX5QZhDQqf9qB8MB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEwMTgvODgzNkZBNjA4RDRDMTFFQzk4OEFFODVEQzRGOUFFMDIvQ0I4QUE0M0E0 RDlCMTFFRkIyMDFFOTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntaQwDwQCAAIwCQMHACQAWmAAADANBgkqhkiG9w0BAQsF AAOCAQEAAc8SYI8jGqwdgZPgX2vv93WGR2rE2AaoBa9NCwO1O6iZjGeeTWge4hdv ojdb29B4dWLq9j1wIVhei1HgZ47x0RJXJL2QVBLb6J6RZMo7RvGA0DPstxoZyCGz NQ/OQPtpfRa8GudoGi7N4whctZQpXaPYM73l1atuaI8TeSpy34Wa2DYkL1LJqEWk pHqejosOYO5iV5NgiRYFNKqGzkJMOzv08eUCsPhZ9EtzeAnD+h5e1wfNCYGfY0ET KNYVnUv++K02T18qlBAnsGszjsjnN2Jgtfa5ghRNXahfUQ+nhN5WRauG0GhD4BjO sqvnB2TGvnW/vo1jJH36gFQUMDPORQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:54 2025 by rpki-client