$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/1CA71D84493D11EAAB30C638C4F9AE02.roa File: 1CA71D84493D11EAAB30C638C4F9AE02.roa (raw, json) Hash identifier: Namfm+gMj3DTGbqctWwU+VBkFxpSXUjfjiuK5KjjSb8= Subject key identifier: 3F:D2:10:96:8D:58:41:4F:84:69:08:46:9E:32:90:50:3C:1B:90:44 Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 13F8 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/1CA71D84493D11EAAB30C638C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:15:42 +0000 ROA not before: Thu 24 Apr 2025 17:15:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 64095 IP address blocks: 103.212.52.0/22 maxlen: 22 139.5.164.0/22 maxlen: 22 2404:9e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5112 (0x13f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Apr 24 17:15:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a71be-9ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:62:14:1c:98:2a:1d:b6:b4:3c:28:68:d8:35: 1a:fb:f7:41:6f:b2:95:b4:c3:39:5f:d4:38:79:f5: 44:5e:dc:02:53:11:58:89:8b:a8:cd:e8:a0:e4:3a: fc:06:e8:ba:6f:b9:d1:2f:77:c2:5a:2e:81:ea:44: 94:64:71:03:ba:26:c8:ff:af:0a:a6:3c:02:f1:73: 79:14:3d:05:1e:a3:d0:ee:f3:bd:c5:5d:22:74:52: 09:db:f2:c0:5f:3c:ab:6e:c9:b5:30:04:e6:5f:34: 5b:a9:8b:a2:da:d5:98:6a:4f:e1:17:47:0f:10:78: 93:68:13:1a:1d:41:b5:41:2d:92:bd:a3:a6:cb:6e: c2:8f:33:ad:75:b3:77:b9:ac:cb:6c:7b:7d:d0:10: 8b:4d:4c:12:0c:a6:4c:7b:4d:8c:45:e7:cd:40:61: 45:9c:e4:f8:08:5d:a5:74:5e:b0:8d:df:d9:22:dc: 33:73:b0:b3:90:4e:a4:e0:3b:07:d1:b4:bc:5b:2d: 27:2e:9a:2b:3a:94:d0:a4:5f:5f:ae:95:5c:6e:43: 23:17:bd:47:61:4f:6a:3c:9b:d6:44:c8:65:af:8c: 0c:47:dc:14:b6:43:58:a9:97:2c:6d:cb:7c:5b:cf: f0:fd:17:ba:e7:bd:b4:59:a9:4a:eb:c8:ff:71:57: 14:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D2:10:96:8D:58:41:4F:84:69:08:46:9E:32:90:50:3C:1B:90:44 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/1CA71D84493D11EAAB30C638C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.52.0/22 139.5.164.0/22 IPv6: 2404:9e80::/32 Signature Algorithm: sha256WithRSAEncryption 80:80:1e:aa:e7:83:30:5a:b0:bf:d4:ee:a1:6c:16:ee:63:76: bf:a3:0d:d2:0d:df:f6:4a:46:b1:29:7e:ea:9a:a8:a0:43:b0: 1a:0c:3d:f8:1a:ab:08:56:b2:c4:a2:15:94:3a:64:3d:6f:b5: 0c:f9:df:b5:b3:5d:e6:51:f7:31:ae:f7:9f:fc:89:59:a4:2e: ac:95:87:af:9b:7c:c5:1d:b4:ca:a0:95:ff:fc:4f:fd:ac:c3: b8:dd:a8:5a:22:41:85:b0:46:d7:ac:42:c8:fc:9a:18:e1:0e: 6e:7b:20:ac:b2:1f:bf:71:95:07:c7:06:73:95:14:88:d7:0f: 34:49:c5:df:5a:4b:e3:78:56:62:fa:15:ff:95:4a:81:bb:e0: e5:43:4b:75:4f:f6:a5:6d:79:a8:1c:8b:ab:66:24:9b:dc:b0: 73:a9:15:b3:b1:34:3c:29:08:df:63:2a:1e:7d:44:70:b8:09: 5c:f0:36:32:d8:11:f7:4f:89:c4:67:c9:09:32:64:b2:02:b3: 71:26:3e:67:e3:ed:45:72:22:d7:92:56:6f:55:ef:0b:7e:18: f7:aa:95:c5:c1:83:f9:bc:b3:5b:0e:2c:9c:f3:08:ec:48:fa: 6c:f1:56:3e:47:c2:3b:c6:9b:93:2a:a7:98:1a:df:8c:09:e7: 2b:97:b7:09 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICE/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjUwNDI0MTcxNTQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzFiZS05ZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WIUHJgqHba0PCho2DUa+/dBb7KVtMM5X9Q4efVEXtwCUxFYiYuozeig5Dr8 Bui6b7nRL3fCWi6B6kSUZHEDuibI/68KpjwC8XN5FD0FHqPQ7vO9xV0idFIJ2/LA Xzyrbsm1MATmXzRbqYui2tWYak/hF0cPEHiTaBMaHUG1QS2SvaOmy27CjzOtdbN3 uazLbHt90BCLTUwSDKZMe02MRefNQGFFnOT4CF2ldF6wjd/ZItwzc7CzkE6k4DsH 0bS8Wy0nLporOpTQpF9frpVcbkMjF71HYU9qPJvWRMhlr4wMR9wUtkNYqZcsbct8 W8/w/Re65720WalK68j/cVcUTQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFD/SEJaN WEFPhGkIRp4ykFA8G5BEMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQyODYvQjIxQUEwOTQ3RjQ5MTFFODg4RDM1NjQyQzRGOUFFMDIvMUNBNzFEODQ0 OTNEMTFFQUFCMzBDNjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1DQDBAKLBaQwDQQCAAIwBwMFACQEnoAwDQYJKoZIhvcN AQELBQADggEBAICAHqrngzBasL/U7qFsFu5jdr+jDdIN3/ZKRrEpfuqaqKBDsBoM PfgaqwhWssSiFZQ6ZD1vtQz537WzXeZR9zGu95/8iVmkLqyVh6+bfMUdtMqglf/8 T/2sw7jdqFoiQYWwRtesQsj8mhjhDm57IKyyH79xlQfHBnOVFIjXDzRJxd9aS+N4 VmL6Ff+VSoG74OVDS3VP9qVteagci6tmJJvcsHOpFbOxNDwpCN9jKh59RHC4CVzw NjLYEfdPicRnyQkyZLICs3EmPmfj7UVyIteSVm9V7wt+GPeqlcXBg/m8s1sOLJzz COxI+mzxVj5HwjvGm5Mqp5ga34wJ5yuXtwk= -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:06 2025 by rpki-client