$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/0CDAA8EEE86611EFA5152A24C4F9AE02.roa File: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (raw, json) Hash identifier: lUMcuws+kkSP+r54F6XS/v0f47726g1ZKxyTfmh7RHY= Subject key identifier: 58:71:5D:6B:52:C1:F0:83:49:13:4B:31:77:C6:BF:F8:85:99:31:F5 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 01C7 Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/0CDAA8EEE86611EFA5152A24C4F9AE02.roa Signing time: Tue 11 Feb 2025 10:50:47 +0000 ROA not before: Tue 11 Feb 2025 10:50:47 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140711 IP address blocks: 103.19.122.0/23 maxlen: 23 103.19.122.0/24 maxlen: 24 103.19.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Feb 11 10:50:47 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67ab2b87-d146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6a:4b:91:a5:a9:89:96:68:2b:93:6c:e9:ef: d0:82:ac:2d:9d:45:e2:7b:eb:4a:b4:c5:46:86:ee: 54:da:51:ea:58:91:43:45:40:12:c6:ad:d0:21:57: de:4d:28:b0:3f:ac:a0:2a:44:fe:0b:14:9b:81:33: 22:5d:74:09:86:71:c2:c8:dc:31:e2:07:1a:7e:1f: ae:fa:91:72:a2:3e:86:8f:84:55:9c:f2:46:d6:a1: 1c:06:95:71:e9:81:40:d6:3a:54:c8:5e:5a:d6:23: 60:a9:cd:38:73:d2:1a:38:0a:f0:d5:97:5c:1f:60: 74:90:a4:fc:70:11:81:a2:d3:b1:99:45:49:8e:68: 72:b7:c5:7d:80:8f:cc:04:31:27:48:83:8d:fa:fd: 81:6c:65:e3:39:2b:7b:3b:13:7c:2d:bb:fd:a9:41: 5a:fb:d1:6c:79:14:1e:b2:3e:60:d7:08:28:f7:ca: a4:52:85:36:4e:ba:f1:e0:3d:68:9e:a5:f7:e8:87: c2:ae:6b:65:8f:df:e2:d3:f4:b0:fc:35:17:82:99: b2:7d:59:68:38:2a:8a:54:9f:16:61:96:52:dd:32: f4:64:90:d2:3f:ce:c9:9d:32:06:6d:30:78:be:72: 1c:91:c3:52:6c:37:9e:aa:ad:81:14:dd:9b:81:5c: 57:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:71:5D:6B:52:C1:F0:83:49:13:4B:31:77:C6:BF:F8:85:99:31:F5 X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/0CDAA8EEE86611EFA5152A24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.122.0/23 Signature Algorithm: sha256WithRSAEncryption 35:a2:a7:d3:c7:0d:de:60:40:05:18:95:a1:50:53:53:52:09: bd:80:63:8b:be:2e:60:9f:6a:9f:0a:ff:78:41:31:1a:2b:13: d7:99:ee:fe:80:98:21:12:5d:cd:34:7c:f8:7e:ea:e3:b4:b5: 8b:12:0c:5e:c2:9c:88:15:60:70:6a:83:74:d4:7d:66:00:ed: 88:b7:b1:79:a9:5f:e4:17:ea:f1:19:84:3d:48:39:1e:7d:ff: b6:85:6c:26:c2:ae:c8:ab:5b:b8:f5:9b:e2:59:e7:b1:55:4e: 90:82:77:19:c0:77:19:03:5a:2f:2f:e5:f4:b5:e4:2b:31:5c: ef:09:d1:a1:c4:56:51:96:69:82:70:d5:95:bf:00:6f:03:ea: 45:08:80:61:0c:60:43:28:64:ac:11:95:6e:15:58:c1:a5:99: b5:9e:30:cb:56:6d:d4:66:30:c4:7a:69:79:9a:51:69:89:69: 65:d6:cd:60:93:6a:ba:fd:c2:57:b7:11:48:24:3e:22:97:dd: 19:cc:5a:ec:f6:dc:37:ba:a2:2b:b6:ac:2b:35:b4:82:19:bf: 99:95:fd:0a:ab:7e:ec:f6:40:04:89:bc:86:4d:81:69:09:51: e5:8f:87:f7:39:bc:c2:48:f5:86:1f:ec:d7:2f:a8:ec:f0:60: a2:55:18:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjUwMjExMTA1MDQ3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FiMmI4Ny1kMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGpLkaWpiZZoK5Ns6e/QgqwtnUXie+tKtMVGhu5U2lHqWJFDRUASxq3QIVfe TSiwP6ygKkT+CxSbgTMiXXQJhnHCyNwx4gcafh+u+pFyoj6Gj4RVnPJG1qEcBpVx 6YFA1jpUyF5a1iNgqc04c9IaOArw1ZdcH2B0kKT8cBGBotOxmUVJjmhyt8V9gI/M BDEnSION+v2BbGXjOSt7OxN8Lbv9qUFa+9FseRQesj5g1wgo98qkUoU2Trrx4D1o nqX36IfCrmtlj9/i0/Sw/DUXgpmyfVloOCqKVJ8WYZZS3TL0ZJDSP87JnTIGbTB4 vnIckcNSbDeeqq2BFN2bgVxX+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFhxXWtS wfCDSRNLMXfGv/iFmTH1MB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU2OUUvMjUyNUM3Qzg0RDI1MTFFREE2REREMjJFQzRGOUFFMDIvMENEQUE4RUVF ODY2MTFFRkE1MTUyQTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnE3owDQYJKoZIhvcNAQELBQADggEBADWip9PHDd5gQAUY laFQU1NSCb2AY4u+LmCfap8K/3hBMRorE9eZ7v6AmCESXc00fPh+6uO0tYsSDF7C nIgVYHBqg3TUfWYA7Yi3sXmpX+QX6vEZhD1IOR59/7aFbCbCrsirW7j1m+JZ57FV TpCCdxnAdxkDWi8v5fS15CsxXO8J0aHEVlGWaYJw1ZW/AG8D6kUIgGEMYEMoZKwR lW4VWMGlmbWeMMtWbdRmMMR6aXmaUWmJaWXWzWCTarr9wle3EUgkPiKX3RnMWuz2 3De6oiu2rCs1tIIZv5mV/Qqrfuz2QASJvIZNgWkJUeWPh/c5vMJI9YYf7NcvqOzw YKJVGOo= -----END CERTIFICATE-----Generated at Sat Apr 26 07:57:28 2025 by rpki-client