$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/CA86B0DEFC4D11ECA947C41FC4F9AE02.roa File: CA86B0DEFC4D11ECA947C41FC4F9AE02.roa (raw, json) Hash identifier: 7xciMo3J+VNsgFFLuMkHkTBtENDIOVeIGX2kn05njJA= Subject key identifier: 6D:09:C4:8D:AC:88:15:81:86:BB:37:84:0E:AE:0C:29:5A:D4:4D:17 Certificate issuer: /CN=A91C0C0C/serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Certificate serial: 038A Authority key identifier: B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/CA86B0DEFC4D11ECA947C41FC4F9AE02.roa Signing time: Sat 05 Apr 2025 01:06:28 +0000 ROA not before: Sat 05 Apr 2025 01:06:28 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 142403 IP address blocks: 103.146.140.0/24 maxlen: 24 103.146.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 906 (0x38a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0C, serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Validity Not Before: Apr 5 01:06:28 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67f08214-ac53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ce:41:ab:ea:82:19:59:b4:1d:72:67:14:ad: 2b:1e:83:ee:b9:bd:7b:82:33:42:01:ba:d1:52:35: 55:6d:63:c0:05:b5:d7:45:21:46:33:f6:b3:3f:aa: 88:c8:ca:46:1f:02:68:1a:69:38:ca:11:38:37:6a: ab:f3:30:c6:45:4c:cc:d8:74:20:65:bc:36:60:52: 46:d3:d6:ce:55:c0:f4:6d:cd:0a:da:2f:04:8f:62: 7d:b2:4c:5f:05:b1:81:d3:b2:28:1f:30:9b:3c:c2: 7d:ec:15:fe:0a:ed:98:3f:44:3e:66:5d:ed:9c:18: 1e:43:53:8f:0d:67:71:3c:3b:3f:0b:48:7e:82:39: 28:fc:5e:5b:4c:0b:23:4c:64:f5:92:09:60:e3:88: 63:62:02:11:f5:80:6a:94:fc:3b:d4:65:d9:df:59: 95:91:2f:d9:2b:9a:9b:3c:dc:b9:b0:7a:b0:8d:74: b5:c1:32:32:e1:ae:97:80:22:28:d0:31:ca:44:0a: cb:93:0b:18:b9:45:1f:64:35:45:b2:b2:20:4d:71: a6:19:2d:b2:14:16:c9:1c:4e:be:a1:66:6b:6b:9f: c2:b8:d4:6a:48:52:e5:59:9e:9e:bf:a5:41:9e:92: c7:fa:50:9c:0a:73:9e:f0:74:d5:f8:44:97:f2:3f: 25:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:09:C4:8D:AC:88:15:81:86:BB:37:84:0E:AE:0C:29:5A:D4:4D:17 X509v3 Authority Key Identifier: keyid:B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/CA86B0DEFC4D11ECA947C41FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.140.0/23 Signature Algorithm: sha256WithRSAEncryption ab:7e:4a:09:dd:2f:78:9a:5a:86:9b:cd:ff:52:87:18:b4:c6: 6e:7c:c2:95:d3:15:6c:da:56:77:ee:0c:c0:8b:b9:e0:c5:65: 36:2f:35:8b:46:b8:4f:bb:31:24:41:88:e6:83:a3:eb:ab:38: 3d:92:4a:38:5d:ca:76:a7:77:8a:01:65:b8:e1:ff:d4:9e:a9: be:3d:68:6d:ab:32:d7:02:75:cd:a6:89:87:66:e6:6a:6e:28: a2:f8:ff:c5:a1:36:76:79:cb:64:15:2f:29:76:c6:84:34:34: 4e:96:7f:ba:2f:44:c5:2d:5f:60:31:5a:00:86:6a:a2:d7:68: 11:39:48:eb:be:b5:2d:ab:cd:d3:5b:56:b7:d1:ba:36:19:a8: 1b:7e:33:f4:a1:2e:e5:cc:bf:6f:1e:70:9d:e5:fb:86:48:26: 18:85:df:5e:94:74:22:e4:31:07:d3:25:9a:91:2d:7f:bf:e2: 51:12:3c:4f:5c:53:2a:6b:77:83:2f:e1:0f:1c:1e:54:dc:f2: 2a:bc:d6:1c:85:5e:2c:34:c9:fb:1f:a2:94:18:31:16:ee:96: b7:e8:8a:e8:c2:4b:2c:b3:ef:31:6d:44:55:e1:e5:4e:8a:57: 31:83:e5:7e:46:4c:33:64:17:e3:4a:22:94:49:d9:33:aa:91: 76:4c:a8:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEMxMTAvBgNVBAUTKEI5RENFN0E5OEJDRTdDMEUyODMyOEIxM0NCRUFCNTQz MUQwRjY2QkQwHhcNMjUwNDA1MDEwNjI4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODIxNC1hYzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxs5Bq+qCGVm0HXJnFK0rHoPuub17gjNCAbrRUjVVbWPABbXXRSFGM/azP6qI yMpGHwJoGmk4yhE4N2qr8zDGRUzM2HQgZbw2YFJG09bOVcD0bc0K2i8Ej2J9skxf BbGB07IoHzCbPMJ97BX+Cu2YP0Q+Zl3tnBgeQ1OPDWdxPDs/C0h+gjko/F5bTAsj TGT1kglg44hjYgIR9YBqlPw71GXZ31mVkS/ZK5qbPNy5sHqwjXS1wTIy4a6XgCIo 0DHKRArLkwsYuUUfZDVFsrIgTXGmGS2yFBbJHE6+oWZra5/CuNRqSFLlWZ6ev6VB npLH+lCcCnOe8HTV+ESX8j8lZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG0JxI2s iBWBhrs3hA6uDCla1E0XMB8GA1UdIwQYMBaAFLnc56mLznwOKDKLE8vqtUMdD2a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQy8zNTlCOEQzRTlE RkYxMUVDQTRBNTg4NDhDNEY5QUUwMi91ZHpucVl2T2ZBNG9Nb3NUeS1xMVF4MFBa cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vkem5xWXZPZkE0b01vc1R5LXExUXgwUFpyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDMEMvMzU5QjhEM0U5REZGMTFFQ0E0QTU4ODQ4QzRGOUFFMDIvQ0E4NkIwREVG QzREMTFFQ0E5NDdDNDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkowwDQYJKoZIhvcNAQELBQADggEBAKt+SgndL3iaWoab zf9Shxi0xm58wpXTFWzaVnfuDMCLueDFZTYvNYtGuE+7MSRBiOaDo+urOD2SSjhd ynand4oBZbjh/9Seqb49aG2rMtcCdc2miYdm5mpuKKL4/8WhNnZ5y2QVLyl2xoQ0 NE6Wf7ovRMUtX2AxWgCGaqLXaBE5SOu+tS2rzdNbVrfRujYZqBt+M/ShLuXMv28e cJ3l+4ZIJhiF316UdCLkMQfTJZqRLX+/4lESPE9cUyprd4Mv4Q8cHlTc8iq81hyF Xiw0yfsfopQYMRbulrfoiujCSyyz7zFtRFXh5U6KVzGD5X5GTDNkF+NKIpRJ2TOq kXZMqC4= -----END CERTIFICATE-----Generated at Sat Apr 26 07:36:03 2025 by rpki-client