$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13DA/2EACAE2820F511F095B65182C4F9AE02/E70C7B4620F611F09993632FC4F9AE02.roa File: E70C7B4620F611F09993632FC4F9AE02.roa (raw, json) Hash identifier: 3DawsxjCSxaO9Yqtl+Go5xRwWPPzE2NpLIfRRBuYg5c= Subject key identifier: FD:4B:6F:74:8C:9B:40:FF:60:6E:2C:BD:E0:6A:2B:A5:92:95:47:CC Certificate issuer: /CN=A91B13DA/serialNumber=0A46AE2FAFCCC7ADDEF272C702AB5FFABDCCAA4F Certificate serial: 04 Authority key identifier: 0A:46:AE:2F:AF:CC:C7:AD:DE:F2:72:C7:02:AB:5F:FA:BD:CC:AA:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkauL6_Mx63e8nLHAqtf-r3Mqk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13DA/2EACAE2820F511F095B65182C4F9AE02/E70C7B4620F611F09993632FC4F9AE02.roa Signing time: Thu 24 Apr 2025 10:38:10 +0000 ROA not before: Thu 24 Apr 2025 10:38:10 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 7630 IP address blocks: 103.151.50.0/24 maxlen: 24 2406:1440:1101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13DA/2EACAE2820F511F095B65182C4F9AE02/CkauL6_Mx63e8nLHAqtf-r3Mqk8.crl rsync://rpki.apnic.net/member_repository/A91B13DA/2EACAE2820F511F095B65182C4F9AE02/CkauL6_Mx63e8nLHAqtf-r3Mqk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkauL6_Mx63e8nLHAqtf-r3Mqk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:12:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13DA, serialNumber=0A46AE2FAFCCC7ADDEF272C702AB5FFABDCCAA4F Validity Not Before: Apr 24 10:38:10 2025 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=680a1491-e6c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:be:50:30:91:66:80:0d:9c:19:36:1f:0c:f2: 89:82:48:1a:10:41:6c:c0:f1:4a:08:15:c7:d4:db: aa:77:3d:df:06:66:04:f0:70:0b:7f:4c:76:63:3d: 5d:32:05:e3:93:95:19:a6:cb:2e:6d:c1:a1:a9:2f: f9:5b:bb:dd:d2:ac:46:1f:7b:9e:b5:f3:54:4e:53: 7e:33:33:08:5f:2b:b0:9f:f5:92:98:40:54:4c:6a: b5:c6:a7:d4:20:89:ba:f6:14:dd:6f:d8:2f:50:5b: a6:73:5d:7b:1b:3c:44:58:b7:1e:d9:ea:98:a8:e2: f5:a5:c1:93:06:df:36:88:49:ee:ac:4b:71:55:8f: bb:51:5d:b4:3d:09:b1:45:fc:40:91:d2:f7:2a:6b: 9b:f9:5f:71:e3:d8:33:05:3f:6a:a3:73:9e:21:be: 72:9b:e8:cc:d6:76:70:1e:36:ac:26:8e:ff:20:9b: 2d:bc:17:bb:a4:6b:9a:e5:3b:ca:0e:76:a8:59:5b: a7:eb:0d:27:de:73:72:e9:28:fc:c6:01:23:2b:96: 75:1a:dd:4b:a7:1b:4f:48:20:c4:1d:74:c3:ef:a5: cb:96:89:52:bf:99:c2:10:11:cb:d9:27:f3:36:7a: b1:98:f5:c3:24:2d:f4:50:3b:c0:d0:bd:9d:4b:70: 59:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4B:6F:74:8C:9B:40:FF:60:6E:2C:BD:E0:6A:2B:A5:92:95:47:CC X509v3 Authority Key Identifier: keyid:0A:46:AE:2F:AF:CC:C7:AD:DE:F2:72:C7:02:AB:5F:FA:BD:CC:AA:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13DA/2EACAE2820F511F095B65182C4F9AE02/CkauL6_Mx63e8nLHAqtf-r3Mqk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkauL6_Mx63e8nLHAqtf-r3Mqk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13DA/2EACAE2820F511F095B65182C4F9AE02/E70C7B4620F611F09993632FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.50.0/24 IPv6: 2406:1440:1101::/48 Signature Algorithm: sha256WithRSAEncryption 7b:93:43:1d:2b:76:5e:c2:d7:18:7e:3b:0f:a3:8d:91:57:9a: 2f:fc:67:bc:18:53:27:90:d4:cd:6c:cc:5e:43:4e:19:31:50: 09:23:8c:14:dd:55:69:f4:e5:5e:e3:cc:bf:54:43:a9:4b:71: 39:b0:77:b9:7b:b1:70:67:f8:e0:e2:4a:8a:6b:e5:58:c4:b6: d2:83:6b:6f:40:08:35:f9:79:4e:64:32:ff:0c:0e:33:2a:e8: 5e:1d:ca:98:ef:6e:dd:ee:5c:40:07:ef:7b:11:75:c7:43:69: 3a:01:08:98:5e:ef:a1:55:98:b0:52:7e:a8:e8:85:7a:15:b3: 7b:57:77:78:db:ac:5d:2b:dc:e4:d7:30:b8:93:b4:3a:91:0b: 9e:af:a6:87:ab:34:ad:a4:2f:86:a0:dd:66:e7:8b:7b:e1:1f: 3d:72:0f:d2:1f:c2:08:20:0c:8e:a6:a5:4d:a3:5e:e4:72:c9: 89:c4:f5:57:f4:8f:19:38:1c:f6:7c:5b:5c:ca:f7:99:67:2c: 26:1b:9a:e2:f0:1d:1b:d5:72:16:f2:9b:39:c5:55:00:33:99: 53:5b:12:2f:22:6f:39:c6:5b:d5:ca:eb:c9:03:c9:1b:ff:8d: d0:c4:7e:da:b3:58:c9:b4:50:88:f5:aa:dc:6b:3d:65:e5:fe: bb:93:3e:d6 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTNEQTExMC8GA1UEBRMoMEE0NkFFMkZBRkNDQzdBRERFRjI3MkM3MDJBQjVGRkFC RENDQUE0RjAeFw0yNTA0MjQxMDM4MTBaFw0yNzA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGExNDkxLWU2YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+vlAwkWaADZwZNh8M8omCSBoQQWzA8UoIFcfU26p3Pd8GZgTwcAt/THZjPV0y BeOTlRmmyy5twaGpL/lbu93SrEYfe56181ROU34zMwhfK7Cf9ZKYQFRMarXGp9Qg ibr2FN1v2C9QW6ZzXXsbPERYtx7Z6pio4vWlwZMG3zaISe6sS3FVj7tRXbQ9CbFF /ECR0vcqa5v5X3Hj2DMFP2qjc54hvnKb6MzWdnAeNqwmjv8gmy28F7uka5rlO8oO dqhZW6frDSfec3LpKPzGASMrlnUa3UunG09IIMQddMPvpcuWiVK/mcIQEcvZJ/M2 erGY9cMkLfRQO8DQvZ1LcFlnAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU/UtvdIyb QP9gbiy94GorpZKVR8wwHwYDVR0jBBgwFoAUCkauL6/Mx63e8nLHAqtf+r3Mqk8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxM0RBLzJFQUNBRTI4MjBG NTExRjA5NUI2NTE4MkM0RjlBRTAyL0NrYXVMNl9NeDYzZThuTEhBcXRmLXIzTXFr OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2thdUw2X014NjNlOG5MSEFxdGYtcjNNcWs4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTNEQS8yRUFDQUUyODIwRjUxMUYwOTVCNjUxODJDNEY5QUUwMi9FNzBDN0I0NjIw RjYxMUYwOTk5MzYzMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeXMjAPBAIAAjAJAwcAJAYUQBEBMA0GCSqGSIb3DQEBCwUA A4IBAQB7k0MdK3ZewtcYfjsPo42RV5ov/Ge8GFMnkNTNbMxeQ04ZMVAJI4wU3VVp 9OVe48y/VEOpS3E5sHe5e7FwZ/jg4kqKa+VYxLbSg2tvQAg1+XlOZDL/DA4zKuhe HcqY727d7lxAB+97EXXHQ2k6AQiYXu+hVZiwUn6o6IV6FbN7V3d426xdK9zk1zC4 k7Q6kQuer6aHqzStpC+GoN1m54t74R89cg/SH8IIIAyOpqVNo17kcsmJxPVX9I8Z OBz2fFtcyveZZywmG5ri8B0b1XIW8ps5xVUAM5lTWxIvIm85xlvVyuvJA8kb/43Q xH7as1jJtFCI9arcaz1l5f67kz7W -----END CERTIFICATE-----Generated at Sat Apr 26 08:06:55 2025 by rpki-client