$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/5FD6BBF27CEB11EDA3D10364C4F9AE02.roa File: 5FD6BBF27CEB11EDA3D10364C4F9AE02.roa (raw, json) Hash identifier: 0Oz6HpcNAzjqeshjFrvekby33hTL3YTq6SC57jA7J/c= Subject key identifier: 3A:E9:8F:CF:2D:AE:37:69:03:4E:6F:B9:C9:B6:21:83:74:E3:EB:06 Certificate issuer: /CN=A91C0C0C/serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Certificate serial: 0389 Authority key identifier: B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/5FD6BBF27CEB11EDA3D10364C4F9AE02.roa Signing time: Sat 05 Apr 2025 01:06:27 +0000 ROA not before: Sat 05 Apr 2025 01:06:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136970 IP address blocks: 103.146.140.0/23 maxlen: 23 103.146.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0C, serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Validity Not Before: Apr 5 01:06:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67f08213-3472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:39:aa:ab:d5:85:4c:a0:fc:3c:c6:e2:c5:06: 79:b8:03:1a:ef:4a:cf:cd:9f:26:31:d6:8d:96:43: a8:57:e7:f1:79:1a:21:f6:47:f2:a2:0b:48:5e:25: 37:c6:fe:10:c3:51:ed:58:4e:04:8a:a3:b4:18:3f: f3:60:81:b5:95:45:32:1d:9a:ee:d3:06:e1:e1:4c: c3:4b:25:2c:a5:3b:55:ff:67:fc:fb:7b:db:ff:48: b1:cc:47:26:41:4b:7e:ed:68:60:71:72:dd:f5:95: 5b:1a:9f:e8:85:94:c7:33:38:d8:0e:06:57:e2:72: 87:4f:2d:1e:b2:7b:2e:04:71:c0:3e:37:f0:32:f3: bc:18:8f:46:b0:0e:36:8d:df:e4:69:39:7e:e4:3d: cf:b9:53:b9:8e:07:1f:43:48:0d:d1:d6:ca:61:e0: b8:d0:1f:62:7e:a5:d3:85:f3:d8:da:36:61:c5:a1: ba:e5:c6:cc:d7:85:82:44:86:6b:3e:76:38:99:cb: 69:00:e6:62:e0:3f:cf:df:59:5f:6e:1f:90:37:53: 0c:54:73:19:10:1d:f4:e8:84:b3:ed:3e:98:04:38: 10:76:b2:b1:6a:e5:11:d8:6f:e3:b9:2a:75:0a:ae: 37:15:21:69:d2:68:93:35:aa:fd:ac:97:6d:47:8e: 87:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E9:8F:CF:2D:AE:37:69:03:4E:6F:B9:C9:B6:21:83:74:E3:EB:06 X509v3 Authority Key Identifier: keyid:B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/5FD6BBF27CEB11EDA3D10364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.140.0/23 Signature Algorithm: sha256WithRSAEncryption 31:1c:ae:b8:2a:52:7b:0a:fb:71:fb:b3:65:f9:83:1c:c2:3d: 9c:5f:0b:25:e3:7d:bb:ea:08:67:c9:68:ec:6d:13:99:04:76: 5a:9f:e9:45:84:d0:49:66:34:4a:51:39:6a:89:cd:1a:a9:6e: f9:34:74:24:46:12:86:e9:19:a2:ff:2a:82:92:9d:87:57:09: 6d:4e:97:ef:b1:2b:ec:0e:ff:3f:24:90:77:30:c1:c6:39:21: 66:d9:ce:9e:85:da:b5:83:6c:80:da:35:6d:70:2e:ca:b0:97: 3e:e4:73:bc:22:61:67:74:d9:60:90:ca:07:b8:3b:db:98:95: 75:20:69:8e:92:14:9c:87:e0:aa:a3:2f:04:93:66:11:51:b3: 69:03:e8:81:d5:a6:92:33:1b:e0:b6:49:c1:c9:17:82:59:4f: a0:4c:63:d4:39:5a:d2:91:e8:54:1a:c1:c4:51:67:db:ce:23: c5:7e:49:5e:7a:cc:ee:cd:2a:01:78:f1:54:e8:2d:c4:49:df: 40:8f:84:8b:af:46:1c:4e:72:be:7c:5e:72:f2:1c:71:97:06: 1e:3f:05:0e:84:23:09:65:12:3c:43:55:48:3a:35:23:0d:07: cf:cf:9e:0c:7e:66:56:b2:4e:05:89:c5:c0:f1:d5:49:d8:d1: cc:b2:c4:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEMxMTAvBgNVBAUTKEI5RENFN0E5OEJDRTdDMEUyODMyOEIxM0NCRUFCNTQz MUQwRjY2QkQwHhcNMjUwNDA1MDEwNjI3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODIxMy0zNDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTmqq9WFTKD8PMbixQZ5uAMa70rPzZ8mMdaNlkOoV+fxeRoh9kfyogtIXiU3 xv4Qw1HtWE4EiqO0GD/zYIG1lUUyHZru0wbh4UzDSyUspTtV/2f8+3vb/0ixzEcm QUt+7WhgcXLd9ZVbGp/ohZTHMzjYDgZX4nKHTy0esnsuBHHAPjfwMvO8GI9GsA42 jd/kaTl+5D3PuVO5jgcfQ0gN0dbKYeC40B9ifqXThfPY2jZhxaG65cbM14WCRIZr PnY4mctpAOZi4D/P31lfbh+QN1MMVHMZEB306ISz7T6YBDgQdrKxauUR2G/juSp1 Cq43FSFp0miTNar9rJdtR46HKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDrpj88t rjdpA05vucm2IYN04+sGMB8GA1UdIwQYMBaAFLnc56mLznwOKDKLE8vqtUMdD2a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQy8zNTlCOEQzRTlE RkYxMUVDQTRBNTg4NDhDNEY5QUUwMi91ZHpucVl2T2ZBNG9Nb3NUeS1xMVF4MFBa cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vkem5xWXZPZkE0b01vc1R5LXExUXgwUFpyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDMEMvMzU5QjhEM0U5REZGMTFFQ0E0QTU4ODQ4QzRGOUFFMDIvNUZENkJCRjI3 Q0VCMTFFREEzRDEwMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkowwDQYJKoZIhvcNAQELBQADggEBADEcrrgqUnsK+3H7 s2X5gxzCPZxfCyXjfbvqCGfJaOxtE5kEdlqf6UWE0ElmNEpROWqJzRqpbvk0dCRG EobpGaL/KoKSnYdXCW1Ol++xK+wO/z8kkHcwwcY5IWbZzp6F2rWDbIDaNW1wLsqw lz7kc7wiYWd02WCQyge4O9uYlXUgaY6SFJyH4KqjLwSTZhFRs2kD6IHVppIzG+C2 ScHJF4JZT6BMY9Q5WtKR6FQawcRRZ9vOI8V+SV56zO7NKgF48VToLcRJ30CPhIuv RhxOcr58XnLyHHGXBh4/BQ6EIwllEjxDVUg6NSMNB8/Pngx+ZlayTgWJxcDx1UnY 0cyyxFU= -----END CERTIFICATE-----Generated at Sat Apr 26 07:35:55 2025 by rpki-client