$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/40565FA23C8311ECA86D031EC4F9AE02.roa File: 40565FA23C8311ECA86D031EC4F9AE02.roa (raw, json) Hash identifier: 4ooeZLcPwkHZ/ZShvap31EsyiH4g04EjDdlB/3H2WWc= Subject key identifier: 78:22:C5:08:FE:4B:5E:EA:FD:20:A0:19:D7:DA:9D:77:D0:56:F0:D4 Certificate issuer: /CN=A91B1DCF/serialNumber=704BFF4ECAA9DC8A8B7209264C607DB5F22F2482 Certificate serial: 04A0 Authority key identifier: 70:4B:FF:4E:CA:A9:DC:8A:8B:72:09:26:4C:60:7D:B5:F2:2F:24:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEv_Tsqp3IqLcgkmTGB9tfIvJII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/40565FA23C8311ECA86D031EC4F9AE02.roa Signing time: Fri 11 Apr 2025 00:04:54 +0000 ROA not before: Fri 11 Apr 2025 00:04:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9744 IP address blocks: 103.212.96.0/22 maxlen: 24 139.5.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/cEv_Tsqp3IqLcgkmTGB9tfIvJII.crl rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/cEv_Tsqp3IqLcgkmTGB9tfIvJII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEv_Tsqp3IqLcgkmTGB9tfIvJII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1DCF, serialNumber=704BFF4ECAA9DC8A8B7209264C607DB5F22F2482 Validity Not Before: Apr 11 00:04:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f85ca6-47ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c3:c4:8a:f3:40:e2:cf:18:e2:02:d8:c7:18: 89:18:30:73:b8:8c:08:72:2f:67:23:b5:ea:d2:e9: bc:80:d4:45:a9:cf:1c:1b:4a:a0:0a:fa:ca:b9:53: f0:db:eb:f0:c2:43:7d:ac:80:76:9d:4c:d4:f8:4a: 5e:e2:86:c7:b6:af:25:02:44:14:d8:ed:fb:85:bc: 41:97:39:d6:f5:a0:f2:31:37:88:a8:54:36:1d:6a: 92:e4:08:10:97:82:08:b2:f9:30:ab:f2:dc:dc:63: ff:5b:4b:68:f4:26:eb:04:b9:db:b1:86:8f:78:ba: 0a:56:54:e9:f8:bf:74:58:24:47:8b:5f:d0:5a:c8: fd:1d:4d:88:3e:b7:bb:cd:f7:fd:ae:50:a2:3a:c4: a6:e3:b0:b8:24:ea:03:b1:c6:fc:33:b4:2a:54:c7: 3f:c5:50:f4:63:45:a2:c7:31:d0:07:b4:91:98:90: 15:b0:6f:e2:69:f8:e7:c7:ad:75:11:06:ef:2b:b1: d8:fd:81:88:17:2c:22:97:4a:b8:32:ce:8c:36:f4: 4e:0e:31:d5:7a:36:1d:7c:4a:78:41:be:f8:ae:4f: b3:60:58:d2:89:42:84:2d:d4:f7:91:db:79:06:ab: 6b:82:2e:36:7a:ce:ec:eb:a4:a2:1a:cc:55:59:42: 9c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:22:C5:08:FE:4B:5E:EA:FD:20:A0:19:D7:DA:9D:77:D0:56:F0:D4 X509v3 Authority Key Identifier: keyid:70:4B:FF:4E:CA:A9:DC:8A:8B:72:09:26:4C:60:7D:B5:F2:2F:24:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/cEv_Tsqp3IqLcgkmTGB9tfIvJII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEv_Tsqp3IqLcgkmTGB9tfIvJII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/40565FA23C8311ECA86D031EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.96.0/22 139.5.200.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:72:e2:a3:d6:e6:24:7b:12:f9:48:b9:bd:79:fc:02:e1:28: fd:05:8e:30:58:62:7d:8b:e6:f8:bd:87:6d:42:80:84:4f:cf: 7a:25:c2:f6:5c:80:9e:d0:f8:bb:de:55:c5:63:8f:a5:bc:df: 43:63:c7:2f:db:38:26:16:45:b5:fe:f9:80:6f:55:2b:32:ed: f2:8c:2b:48:fe:9c:e0:2a:b5:98:19:83:9f:9c:06:29:b6:a6: 5e:e9:20:1f:91:a0:32:ec:ba:a2:c7:5e:18:21:41:b7:a6:43: dd:e2:4c:e4:f8:3b:c2:fe:35:a5:19:f7:5a:8c:b3:ee:bd:39: a9:f1:4a:d5:3f:0c:55:8a:3d:d3:75:8a:7c:37:cc:0b:dc:94: 1e:88:f4:5c:18:ce:44:af:15:b0:63:59:d2:5b:66:c6:07:e8: 10:dc:26:08:c8:18:18:8f:7d:5b:6d:c3:93:21:5a:9d:fa:8a: c1:d4:ff:91:b9:8f:e9:ef:4f:13:0c:8d:ac:47:12:0d:5d:47: 71:ce:15:2b:4a:5a:e1:e0:6a:d0:12:49:bd:89:44:6d:fe:44: 55:6e:74:95:c0:a7:09:92:79:15:3c:cc:87:fb:6d:18:cf:10: 90:65:8d:23:f5:78:d0:5b:e5:07:e9:60:c9:ee:ae:ae:45:c5: 65:1b:1f:4c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFEQ0YxMTAvBgNVBAUTKDcwNEJGRjRFQ0FBOURDOEE4QjcyMDkyNjRDNjA3REI1 RjIyRjI0ODIwHhcNMjUwNDExMDAwNDU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4NWNhNi00N2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsPEivNA4s8Y4gLYxxiJGDBzuIwIci9nI7Xq0um8gNRFqc8cG0qgCvrKuVPw 2+vwwkN9rIB2nUzU+Epe4obHtq8lAkQU2O37hbxBlznW9aDyMTeIqFQ2HWqS5AgQ l4IIsvkwq/Lc3GP/W0to9CbrBLnbsYaPeLoKVlTp+L90WCRHi1/QWsj9HU2IPre7 zff9rlCiOsSm47C4JOoDscb8M7QqVMc/xVD0Y0WixzHQB7SRmJAVsG/iafjnx611 EQbvK7HY/YGIFywil0q4Ms6MNvRODjHVejYdfEp4Qb74rk+zYFjSiUKELdT3kdt5 Bqtrgi42es7s66SiGsxVWUKcswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHgixQj+ S17q/SCgGdfanXfQVvDUMB8GA1UdIwQYMBaAFHBL/07KqdyKi3IJJkxgfbXyLySC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMURDRi8zNjk3OEE3QzMw QkMxMUVDQTMwM0VGODZDNEY5QUUwMi9jRXZfVHNxcDNJcUxjZ2ttVEdCOXRmSXZK SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NFdl9Uc3FwM0lxTGNna21UR0I5dGZJdkpJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFEQ0YvMzY5NzhBN0MzMEJDMTFFQ0EzMDNFRjg2QzRGOUFFMDIvNDA1NjVGQTIz QzgzMTFFQ0E4NkQwMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1GADBAKLBcgwDQYJKoZIhvcNAQELBQADggEBAD5y4qPW 5iR7EvlIub15/ALhKP0FjjBYYn2L5vi9h21CgIRPz3olwvZcgJ7Q+LveVcVjj6W8 30Njxy/bOCYWRbX++YBvVSsy7fKMK0j+nOAqtZgZg5+cBim2pl7pIB+RoDLsuqLH XhghQbemQ93iTOT4O8L+NaUZ91qMs+69OanxStU/DFWKPdN1inw3zAvclB6I9FwY zkSvFbBjWdJbZsYH6BDcJgjIGBiPfVttw5MhWp36isHU/5G5j+nvTxMMjaxHEg1d R3HOFStKWuHgatASSb2JRG3+RFVudJXApwmSeRU8zIf7bRjPEJBljSP1eNBb5Qfp YMnurq5FxWUbH0w= -----END CERTIFICATE-----Generated at Sat Apr 26 07:52:32 2025 by rpki-client