$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/9D8E0AF4E18C11ECB1697F55C4F9AE02.roa File: 9D8E0AF4E18C11ECB1697F55C4F9AE02.roa (raw, json) Hash identifier: AhG5EQmnKsHYz3IRggOMcJqSh+00kQLALDjFL//vrE8= Subject key identifier: EB:4E:42:5D:01:11:8B:37:5A:1D:B1:FA:22:CE:62:06:4F:5A:F0:31 Certificate issuer: /CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Certificate serial: 0BC4 Authority key identifier: 65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/9D8E0AF4E18C11ECB1697F55C4F9AE02.roa Signing time: Tue 22 Apr 2025 19:17:59 +0000 ROA not before: Tue 22 Apr 2025 19:17:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137543 IP address blocks: 103.112.156.0/22 maxlen: 24 2402:abc0::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3869, serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Validity Not Before: Apr 22 19:17:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6807eb66-465e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ca:94:64:e1:02:0e:a4:86:c1:1b:9d:58:94: c3:89:56:cc:0e:85:47:88:5c:14:d8:e5:2a:0e:aa: 3c:4e:30:82:1c:e1:b4:52:80:0f:05:4c:03:3c:4b: 2e:59:1a:c8:84:c9:47:85:51:02:b2:73:26:6b:1f: db:83:db:fd:f7:3e:a1:1f:4c:0d:c8:1d:c9:02:0f: f0:e8:e2:59:03:22:93:50:75:e3:f4:9a:8d:15:89: f2:38:e2:9b:07:12:49:6b:69:c4:9a:fd:de:79:1b: 11:09:30:fc:f4:24:de:2c:a2:12:29:b9:82:3a:19: 26:9c:eb:07:eb:13:90:ac:5f:a0:22:1c:24:2f:8a: 33:46:93:c8:70:ec:9d:34:74:80:03:c6:7e:6c:2c: 9e:d4:a0:2b:5c:16:6f:c6:48:39:89:3e:67:04:22: 3c:33:0c:37:ac:6e:d2:0a:0a:2c:9b:6a:84:8d:5b: 28:a2:33:eb:f0:34:cc:1c:f9:83:78:de:83:36:4f: 7a:b6:b1:a0:1a:18:3c:2b:ab:90:81:50:4c:4d:85: 1f:50:54:86:77:ba:24:1b:65:e4:6b:1f:58:50:9a: 2b:3f:75:02:c5:1d:e0:c8:61:05:f2:6e:8b:de:cf: af:6a:66:9b:c9:82:f6:6a:81:79:17:21:24:ef:75: db:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:4E:42:5D:01:11:8B:37:5A:1D:B1:FA:22:CE:62:06:4F:5A:F0:31 X509v3 Authority Key Identifier: keyid:65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/9D8E0AF4E18C11ECB1697F55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.156.0/22 IPv6: 2402:abc0::/32 Signature Algorithm: sha256WithRSAEncryption 69:05:e1:1a:47:e1:65:01:32:c7:1f:d7:15:54:a3:ba:0a:27: c5:a1:8f:c5:57:d5:bd:6e:64:8b:0b:f6:d3:44:d3:17:dc:9f: a9:88:15:15:88:07:cc:2f:d9:5a:30:db:21:64:04:9e:b9:3a: 51:6b:1d:90:55:5d:a8:8e:94:cd:ad:14:0f:69:ba:ab:aa:53: b9:b2:0c:62:e5:d6:df:fd:37:a3:2b:82:a2:5a:da:f6:3c:0e: 11:9c:8f:fd:c2:94:51:0c:d6:32:2f:7e:98:e2:f5:57:1e:7c: 37:32:aa:a9:31:3f:63:72:68:e0:66:67:22:f8:b3:54:9b:f6: 5f:e0:6e:12:60:74:46:2f:de:f9:86:0f:72:55:91:bc:14:4d: 0b:45:38:ab:82:a1:5b:96:10:17:3a:9b:61:66:8d:d2:e0:c1: 64:89:f0:3b:46:ba:42:5b:59:c3:0b:d5:3a:8b:7c:9d:28:ba: b6:4d:16:ca:83:ed:20:2e:45:93:ce:20:7a:fc:e8:b6:6c:1f: 66:39:e8:72:7a:c4:ed:89:5b:cf:33:2e:57:f0:0c:be:84:5c: 9d:89:e0:78:02:cf:d4:d2:cc:84:e3:be:aa:b7:6b:9c:c4:a7: 0f:0b:40:cf:97:bb:34:ca:41:8d:43:c8:a5:75:7e:09:c6:9f: 3b:2d:70:58 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4NjkxMTAvBgNVBAUTKDY1MDU5N0MzN0M2RDRENDc2RjQ5OTU0NDBCMzYwNEE2 NzFCQkZEQjAwHhcNMjUwNDIyMTkxNzU5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3ZWI2Ni00NjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMqUZOECDqSGwRudWJTDiVbMDoVHiFwU2OUqDqo8TjCCHOG0UoAPBUwDPEsu WRrIhMlHhVECsnMmax/bg9v99z6hH0wNyB3JAg/w6OJZAyKTUHXj9JqNFYnyOOKb BxJJa2nEmv3eeRsRCTD89CTeLKISKbmCOhkmnOsH6xOQrF+gIhwkL4ozRpPIcOyd NHSAA8Z+bCye1KArXBZvxkg5iT5nBCI8Mww3rG7SCgosm2qEjVsoojPr8DTMHPmD eN6DNk96trGgGhg8K6uQgVBMTYUfUFSGd7okG2Xkax9YUJorP3UCxR3gyGEF8m6L 3s+vamabyYL2aoF5FyEk73XbfwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOtOQl0B EYs3Wh2x+iLOYgZPWvAxMB8GA1UdIwQYMBaAFGUFl8N8bU1Hb0mVRAs2BKZxu/2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzg2OS83NURBNDQ3QzFG NEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRVZHZTWlZFQ3pZRXBuRzdf YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRV1h3M3h0VFVkdlNaVkVDellFcG5HN19iQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzM4NjkvNzVEQTQ0N0MxRjREMTFFQTkwNTA1NzYyQzRGOUFFMDIvOUQ4RTBBRjRF MThDMTFFQ0IxNjk3RjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncJwwDQQCAAIwBwMFACQCq8AwDQYJKoZIhvcNAQELBQAD ggEBAGkF4RpH4WUBMscf1xVUo7oKJ8Whj8VX1b1uZIsL9tNE0xfcn6mIFRWIB8wv 2Vow2yFkBJ65OlFrHZBVXaiOlM2tFA9puquqU7myDGLl1t/9N6MrgqJa2vY8DhGc j/3ClFEM1jIvfpji9VcefDcyqqkxP2NyaOBmZyL4s1Sb9l/gbhJgdEYv3vmGD3JV kbwUTQtFOKuCoVuWEBc6m2FmjdLgwWSJ8DtGukJbWcML1TqLfJ0ourZNFsqD7SAu RZPOIHr86LZsH2Y56HJ6xO2JW88zLlfwDL6EXJ2J4HgCz9TSzITjvqq3a5zEpw8L QM+XuzTKQY1DyKV1fgnGnzstcFg= -----END CERTIFICATE-----Generated at Sat Apr 26 08:21:20 2025 by rpki-client