$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA594/522B6D6E553C11EB8F085C71C4F9AE02/1AC0CFAA554F11EB99946233C4F9AE02.roa File: 1AC0CFAA554F11EB99946233C4F9AE02.roa (raw, json) Hash identifier: M4wskVyxngrHuY03UIwusYbtRWJWk73Kf7frzvsTsis= Subject key identifier: 34:EA:E1:BD:11:6F:53:87:7C:DC:E6:84:D2:49:AD:ED:4E:C8:BD:F4 Certificate issuer: /CN=A91BA594/serialNumber=DB1F7798C00117B20C6F3BC32994802CF2094837 Certificate serial: 06D4 Authority key identifier: DB:1F:77:98:C0:01:17:B2:0C:6F:3B:C3:29:94:80:2C:F2:09:48:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2x93mMABF7IMbzvDKZSALPIJSDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA594/522B6D6E553C11EB8F085C71C4F9AE02/1AC0CFAA554F11EB99946233C4F9AE02.roa Signing time: Thu 06 Mar 2025 22:13:22 +0000 ROA not before: Thu 06 Mar 2025 22:13:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 58441 IP address blocks: 103.247.144.0/22 maxlen: 24 2404:2100::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA594/522B6D6E553C11EB8F085C71C4F9AE02/2x93mMABF7IMbzvDKZSALPIJSDc.crl rsync://rpki.apnic.net/member_repository/A91BA594/522B6D6E553C11EB8F085C71C4F9AE02/2x93mMABF7IMbzvDKZSALPIJSDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2x93mMABF7IMbzvDKZSALPIJSDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA594, serialNumber=DB1F7798C00117B20C6F3BC32994802CF2094837 Validity Not Before: Mar 6 22:13:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca1e02-da04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:da:8a:aa:50:90:5d:25:bd:76:a4:33:22: 54:a5:85:67:d4:7f:c0:be:dd:8d:97:62:9a:2b:13: 0c:c9:5d:6e:a0:17:3a:5a:f6:45:af:2f:33:9c:bc: d8:f4:61:bf:d3:c2:39:68:84:b2:cc:4c:07:85:e5: 78:37:4d:c3:c5:1b:bd:04:5c:39:0f:d6:23:71:32: 44:82:40:b9:0b:ec:0e:ee:76:77:42:47:5e:8c:46: 62:78:15:89:20:c9:4d:f7:bc:bf:54:3e:f2:56:55: d1:2f:ea:2f:62:1f:f9:69:30:40:bd:0c:6d:6c:a9: 0d:82:31:8b:fb:b8:d6:7a:6d:ce:9c:cd:4a:2d:0d: 90:47:66:5c:fa:fb:fd:8c:57:cc:bb:50:b6:7a:44: 75:73:f9:49:78:f4:dc:f7:a3:1a:1d:13:6e:ec:68: 97:ca:0b:f0:84:3c:86:1c:55:f9:ea:2b:0a:dd:b9: ae:a2:e2:3a:e1:c7:4e:45:67:1a:8a:d8:54:02:53: 5f:3f:a5:ea:52:ab:a7:d4:07:17:5e:25:b1:bb:af: a2:2d:ec:25:8f:f6:97:f5:29:e6:f0:a4:8d:a4:dd: fc:0e:df:56:7c:a7:ad:23:41:b0:68:7f:2c:70:a2: 11:33:07:41:4a:dc:32:98:be:42:41:9a:fd:2a:f8: 4b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:EA:E1:BD:11:6F:53:87:7C:DC:E6:84:D2:49:AD:ED:4E:C8:BD:F4 X509v3 Authority Key Identifier: keyid:DB:1F:77:98:C0:01:17:B2:0C:6F:3B:C3:29:94:80:2C:F2:09:48:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA594/522B6D6E553C11EB8F085C71C4F9AE02/2x93mMABF7IMbzvDKZSALPIJSDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2x93mMABF7IMbzvDKZSALPIJSDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA594/522B6D6E553C11EB8F085C71C4F9AE02/1AC0CFAA554F11EB99946233C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.144.0/22 IPv6: 2404:2100::/32 Signature Algorithm: sha256WithRSAEncryption 28:d1:f4:31:3f:b8:1e:2a:18:31:a3:f6:82:da:91:ab:83:e6: 6a:f6:c8:54:fd:50:17:24:13:57:fe:bb:71:82:bf:0e:1c:12: ef:3f:82:b5:ec:05:8e:b7:9a:0a:8a:2d:8d:0b:d6:78:83:60: b1:fd:41:b4:6f:e0:c3:41:09:a7:a0:41:7e:84:a0:a5:ac:3c: 9a:5f:9f:6a:4f:0f:9a:f8:47:d3:41:ec:5d:a8:2f:6c:5d:92: 46:f6:e9:43:35:7f:f6:19:23:e7:59:78:f2:a9:97:1d:1a:1e: 91:d7:10:ec:bd:0f:1c:ff:a2:0a:9b:ad:69:51:01:1c:6d:f1: d0:0e:d0:bd:ba:fd:3e:21:dc:2c:69:7d:07:d7:71:71:e6:5f: f5:2c:58:d4:86:e5:93:67:88:00:ca:a3:fd:b7:04:e9:77:7f: 47:53:ab:1f:14:74:1e:b3:79:02:bd:ce:35:3f:6b:83:c1:36: 9a:a4:33:33:aa:07:c8:fa:66:1f:ca:d5:c9:e6:2a:d7:4b:39: 4b:77:fc:83:b1:99:c7:47:b3:7d:ce:71:cc:1b:61:59:67:b1: e9:2a:c1:18:5a:fd:c3:18:d6:42:1f:dd:c1:7c:22:1b:b8:43: b6:9a:e2:5c:4a:aa:c5:c3:fa:b9:a0:38:61:a0:06:0b:04:fe: a8:c7:5b:34 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE1OTQxMTAvBgNVBAUTKERCMUY3Nzk4QzAwMTE3QjIwQzZGM0JDMzI5OTQ4MDJD RjIwOTQ4MzcwHhcNMjUwMzA2MjIxMzIyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhMWUwMi1kYTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuHaiqpQkF0lvXakMyJUpYVn1H/Avt2Nl2KaKxMMyV1uoBc6WvZFry8znLzY 9GG/08I5aISyzEwHheV4N03DxRu9BFw5D9YjcTJEgkC5C+wO7nZ3QkdejEZieBWJ IMlN97y/VD7yVlXRL+ovYh/5aTBAvQxtbKkNgjGL+7jWem3OnM1KLQ2QR2Zc+vv9 jFfMu1C2ekR1c/lJePTc96MaHRNu7GiXygvwhDyGHFX56isK3bmuouI64cdORWca ithUAlNfP6XqUqun1AcXXiWxu6+iLewlj/aX9Snm8KSNpN38Dt9WfKetI0GwaH8s cKIRMwdBStwymL5CQZr9KvhLBQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDTq4b0R b1OHfNzmhNJJre1OyL30MB8GA1UdIwQYMBaAFNsfd5jAAReyDG87wymUgCzyCUg3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTU5NC81MjJCNkQ2RTU1 M0MxMUVCOEYwODVDNzFDNEY5QUUwMi8yeDkzbU1BQkY3SU1ienZES1pTQUxQSUpT RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4OTNtTUFCRjdJTWJ6dkRLWlNBTFBJSlNEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE1OTQvNTIyQjZENkU1NTNDMTFFQjhGMDg1QzcxQzRGOUFFMDIvMUFDMENGQUE1 NTRGMTFFQjk5OTQ2MjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn95AwDQQCAAIwBwMFACQEIQAwDQYJKoZIhvcNAQELBQAD ggEBACjR9DE/uB4qGDGj9oLakauD5mr2yFT9UBckE1f+u3GCvw4cEu8/grXsBY63 mgqKLY0L1niDYLH9QbRv4MNBCaegQX6EoKWsPJpfn2pPD5r4R9NB7F2oL2xdkkb2 6UM1f/YZI+dZePKplx0aHpHXEOy9Dxz/ogqbrWlRARxt8dAO0L26/T4h3CxpfQfX cXHmX/UsWNSG5ZNniADKo/23BOl3f0dTqx8UdB6zeQK9zjU/a4PBNpqkMzOqB8j6 Zh/K1cnmKtdLOUt3/IOxmcdHs33OccwbYVlnsekqwRha/cMY1kIf3cF8Ihu4Q7aa 4lxKqsXD+rmgOGGgBgsE/qjHWzQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:01:30 2025 by rpki-client