$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/F164038CBBE211ED8685DC61C4F9AE02.roa File: F164038CBBE211ED8685DC61C4F9AE02.roa (raw, json) Hash identifier: NBdHfFLz3DL0xp9ly121d+fttg0f9aauvwFg8/4e9ds= Subject key identifier: 6C:3D:50:E0:D1:26:F2:A5:C9:51:01:82:50:E2:62:03:23:45:FF:D6 Certificate issuer: /CN=A91BB5D3/serialNumber=05C32F5D6FD9567CB70005B1D74A41A85B5BE712 Certificate serial: 0611 Authority key identifier: 05:C3:2F:5D:6F:D9:56:7C:B7:00:05:B1:D7:4A:41:A8:5B:5B:E7:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BcMvXW_ZVny3AAWx10pBqFtb5xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/F164038CBBE211ED8685DC61C4F9AE02.roa Signing time: Thu 10 Apr 2025 23:03:55 +0000 ROA not before: Thu 10 Apr 2025 23:03:55 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 54415 IP address blocks: 103.99.169.0/24 maxlen: 24 103.99.170.0/24 maxlen: 24 103.99.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/BcMvXW_ZVny3AAWx10pBqFtb5xI.crl rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/BcMvXW_ZVny3AAWx10pBqFtb5xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BcMvXW_ZVny3AAWx10pBqFtb5xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5D3, serialNumber=05C32F5D6FD9567CB70005B1D74A41A85B5BE712 Validity Not Before: Apr 10 23:03:55 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f84e5a-47ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c3:ff:7e:c7:30:48:2b:4c:f5:28:2e:85:c8: 23:3d:f4:8c:0e:f5:be:5c:e4:d9:59:db:5b:2f:91: 66:05:2b:2d:67:db:36:7c:2f:e7:1c:87:6a:25:76: 0f:b8:73:0b:3b:4d:eb:e4:6f:c2:d0:c1:48:4e:39: 35:a7:d9:c4:d6:a6:df:31:a2:4b:39:30:08:fe:2f: a9:ef:9b:69:17:b7:7b:54:1c:90:b8:ac:b3:74:9a: 22:7e:37:36:cb:ac:2a:10:2d:c7:1f:68:b6:81:63: ed:1d:f1:47:86:7b:c3:9d:55:3a:9e:e3:b9:33:1e: 91:bd:b8:09:91:79:de:af:78:cc:f8:58:a6:50:66: 95:40:a1:a9:54:e5:88:56:97:fa:a7:b6:04:e1:16: b4:03:3d:f2:4d:3c:7d:30:3c:0f:55:db:cd:e4:93: c1:00:d9:aa:4f:0b:f9:7e:b8:d3:55:12:b3:71:ae: 7d:32:86:3e:f6:49:0f:df:22:dd:85:36:be:64:85: 57:5c:ce:2d:c9:cb:c8:5b:bc:44:92:ef:26:68:a9: 84:7f:fb:8b:02:00:c2:41:58:07:9f:81:b9:fa:6f: 2c:44:87:b7:5e:46:d7:41:ea:e4:05:be:c8:40:a4: be:fb:e5:00:a1:de:c5:b0:03:78:a8:26:9b:a7:63: ec:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3D:50:E0:D1:26:F2:A5:C9:51:01:82:50:E2:62:03:23:45:FF:D6 X509v3 Authority Key Identifier: keyid:05:C3:2F:5D:6F:D9:56:7C:B7:00:05:B1:D7:4A:41:A8:5B:5B:E7:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/BcMvXW_ZVny3AAWx10pBqFtb5xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BcMvXW_ZVny3AAWx10pBqFtb5xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5D3/6CA9D690A1A811EB83214C74C4F9AE02/F164038CBBE211ED8685DC61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.169.0-103.99.171.255 Signature Algorithm: sha256WithRSAEncryption 07:b4:46:c1:63:e9:9c:ad:b0:df:db:3f:4e:1f:a0:5f:08:ad: 4a:15:3b:7b:e7:8d:30:65:ac:95:bf:e8:28:e0:f5:66:ed:7e: 13:b6:89:5c:bf:a5:38:25:d9:bd:26:54:c9:4e:8e:0f:ba:50: d0:a5:d5:11:a9:2b:d9:eb:a0:9d:50:2d:f7:65:40:97:f6:91: 9d:4b:29:70:43:3d:80:76:aa:27:67:73:72:fb:69:e5:7e:7f: ba:4e:e7:4a:0b:73:57:e1:e4:27:64:fd:2f:5f:54:39:83:7f: 83:37:12:11:32:27:76:24:ca:19:6a:d4:56:a9:bb:26:15:c6: 02:98:c3:8e:64:01:51:fc:50:35:d5:18:7a:a4:e8:99:55:9b: 9f:97:15:68:1a:f8:e5:02:81:db:e6:cc:a1:35:94:45:65:ba: 46:74:5c:56:ab:ec:4b:4a:3b:fd:56:52:89:d5:d4:49:cc:34: e5:eb:56:c1:00:39:aa:b7:d8:f4:35:e2:22:7d:4d:56:28:15: 70:ea:94:d5:d9:ba:bb:92:0d:62:db:7c:5c:91:ce:4c:72:46: c6:88:03:eb:dc:46:d7:d8:6c:1b:6d:3d:04:0a:62:ab:78:fc: 81:62:9d:21:9b:a8:49:50:44:0d:f5:68:cd:d9:69:3d:69:26: c5:9d:27:31 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RDMxMTAvBgNVBAUTKDA1QzMyRjVENkZEOTU2N0NCNzAwMDVCMUQ3NEE0MUE4 NUI1QkU3MTIwHhcNMjUwNDEwMjMwMzU1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4NGU1YS00N2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsP/fscwSCtM9SguhcgjPfSMDvW+XOTZWdtbL5FmBSstZ9s2fC/nHIdqJXYP uHMLO03r5G/C0MFITjk1p9nE1qbfMaJLOTAI/i+p75tpF7d7VByQuKyzdJoifjc2 y6wqEC3HH2i2gWPtHfFHhnvDnVU6nuO5Mx6RvbgJkXner3jM+FimUGaVQKGpVOWI Vpf6p7YE4Ra0Az3yTTx9MDwPVdvN5JPBANmqTwv5frjTVRKzca59MoY+9kkP3yLd hTa+ZIVXXM4tycvIW7xEku8maKmEf/uLAgDCQVgHn4G5+m8sRIe3XkbXQerkBb7I QKS+++UAod7FsAN4qCabp2PsTQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFGw9UODR JvKlyVEBglDiYgMjRf/WMB8GA1UdIwQYMBaAFAXDL11v2VZ8twAFsddKQahbW+cS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVEMy82Q0E5RDY5MEEx QTgxMUVCODMyMTRDNzRDNEY5QUUwMi9CY012WFdfWlZueTNBQVd4MTBwQnFGdGI1 eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjTXZYV19aVm55M0FBV3gxMHBCcUZ0YjV4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI1RDMvNkNBOUQ2OTBBMUE4MTFFQjgzMjE0Qzc0QzRGOUFFMDIvRjE2NDAzOENC QkUyMTFFRDg2ODVEQzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGdjqQMEAmdjqDANBgkqhkiG9w0BAQsFAAOCAQEAB7RG wWPpnK2w39s/Th+gXwitShU7e+eNMGWslb/oKOD1Zu1+E7aJXL+lOCXZvSZUyU6O D7pQ0KXVEakr2eugnVAt92VAl/aRnUspcEM9gHaqJ2dzcvtp5X5/uk7nSgtzV+Hk J2T9L19UOYN/gzcSETIndiTKGWrUVqm7JhXGApjDjmQBUfxQNdUYeqTomVWbn5cV aBr45QKB2+bMoTWURWW6RnRcVqvsS0o7/VZSidXUScw05etWwQA5qrfY9DXiIn1N VigVcOqU1dm6u5INYtt8XJHOTHJGxogD69xG19hsG209BApiq3j8gWKdIZuoSVBE DfVozdlpPWkmxZ0nMQ== -----END CERTIFICATE-----Generated at Sat Apr 26 08:02:55 2025 by rpki-client