$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/F6609DDAAD3C11EA95DFF369C4F9AE02.roa File: F6609DDAAD3C11EA95DFF369C4F9AE02.roa (raw, json) Hash identifier: RU5uDzdAkRAS9qZ8SwVPWAXrYZQRzn4OHSyBtdDYzzE= Subject key identifier: 26:23:1D:50:B9:86:5C:4A:88:4C:AF:F6:91:07:43:2F:37:E1:2E:91 Certificate issuer: /CN=A91C4FB5/serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Certificate serial: 112C Authority key identifier: CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/F6609DDAAD3C11EA95DFF369C4F9AE02.roa Signing time: Mon 06 Jan 2025 17:45:31 +0000 ROA not before: Mon 06 Jan 2025 17:45:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138527 IP address blocks: 103.127.248.0/22 maxlen: 22 103.127.248.0/23 maxlen: 23 103.127.250.0/23 maxlen: 23 103.127.250.0/24 maxlen: 24 103.127.251.0/24 maxlen: 24 2404:2b40::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4396 (0x112c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4FB5, serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Validity Not Before: Jan 6 17:45:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677c16ba-5b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:2a:78:9d:d5:1c:a5:69:71:2d:6d:0b:c3:0c: 18:29:c2:56:e3:15:5b:7f:6b:b4:71:2e:32:98:b4: eb:a3:38:e3:15:6c:33:94:bc:c5:f8:45:5a:ae:d9: 7e:26:7a:2f:f3:37:f8:e0:e1:60:f1:2b:fb:78:db: 96:b7:e0:55:59:f6:56:b1:06:9f:4a:20:e9:fc:3a: 92:31:d5:9e:32:95:a6:ae:f8:c2:8d:06:05:29:45: 3b:aa:6d:06:b5:01:7f:f6:ba:8c:e1:84:2d:06:f8: c3:f8:52:1b:42:eb:8e:1a:dd:35:15:63:81:91:42: 68:a8:56:66:f7:c7:36:fe:89:c8:a4:5f:90:1b:88: e6:78:fe:02:90:bc:a0:d8:7b:38:2f:3e:00:78:48: 00:e0:da:85:34:dd:d6:4d:8a:fd:34:57:cf:8f:1f: 1c:00:35:2d:1d:6f:3e:17:3a:e5:3c:bb:2a:9f:92: 3b:9d:6b:dc:84:f5:0c:41:27:73:5a:57:9b:91:1e: e3:7d:f8:3e:38:d3:88:66:84:62:6a:d7:5e:87:c3: 89:3b:6f:c5:bd:8c:6a:08:e4:86:a9:83:5b:ba:94: 94:e8:c3:73:6c:02:b6:9c:d6:d6:fe:ea:67:ae:78: 3e:c4:d1:97:0a:32:83:45:b3:0c:9d:9f:64:19:6e: aa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:23:1D:50:B9:86:5C:4A:88:4C:AF:F6:91:07:43:2F:37:E1:2E:91 X509v3 Authority Key Identifier: keyid:CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/F6609DDAAD3C11EA95DFF369C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.248.0/22 IPv6: 2404:2b40::/32 Signature Algorithm: sha256WithRSAEncryption 05:3d:c0:0a:0f:69:6f:2f:8a:0b:d8:b2:04:42:a2:b0:c6:fe: 9f:43:81:0e:21:7d:76:67:63:a4:14:1d:5a:53:99:d4:66:3c: 89:86:35:fa:37:6c:9a:e9:ab:ba:89:3b:0e:95:71:f1:98:b0: 92:c5:f1:ee:8e:12:43:43:71:90:45:5d:b1:21:1c:95:19:87: 1b:e3:3e:17:85:6b:90:9a:f9:85:06:46:59:51:75:ce:82:7f: db:db:d7:91:07:c9:5a:ec:8f:f8:68:b4:6f:7c:31:1c:93:05: 89:28:20:cc:11:68:4d:e3:bd:4f:a3:0e:56:d6:bd:79:15:10: 20:74:18:66:c1:15:df:e6:77:6a:a9:1a:b1:d1:17:02:db:c7: 26:13:4f:fb:98:1e:bc:c8:f7:d2:5d:2e:08:17:10:e6:4f:31: 1c:17:5c:27:f7:84:2d:4a:0e:e0:b4:d9:b3:00:10:93:99:55: fb:c4:09:49:65:ba:1c:48:46:f1:a7:c9:74:ea:9c:d8:74:1c: 7a:37:c7:96:5e:74:ce:e4:ad:23:e1:bf:cf:cd:99:42:05:4c: 19:56:f6:ba:51:11:3f:8b:df:96:58:1f:a9:72:f4:dc:13:47: 50:a5:38:58:94:fb:19:43:cf:1a:2e:9e:c0:e2:c0:43:3c:88: 01:78:4a:4c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICESwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGQjUxMTAvBgNVBAUTKENBRkEyMEE5MDE4MDk1RDIyOUYwQUM0MzkyMERDRDQz QTY2QkVCNTIwHhcNMjUwMTA2MTc0NTMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjMTZiYS01YjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ip4ndUcpWlxLW0LwwwYKcJW4xVbf2u0cS4ymLTrozjjFWwzlLzF+EVartl+ Jnov8zf44OFg8Sv7eNuWt+BVWfZWsQafSiDp/DqSMdWeMpWmrvjCjQYFKUU7qm0G tQF/9rqM4YQtBvjD+FIbQuuOGt01FWOBkUJoqFZm98c2/onIpF+QG4jmeP4CkLyg 2Hs4Lz4AeEgA4NqFNN3WTYr9NFfPjx8cADUtHW8+FzrlPLsqn5I7nWvchPUMQSdz WlebkR7jffg+ONOIZoRiatdeh8OJO2/FvYxqCOSGqYNbupSU6MNzbAK2nNbW/upn rng+xNGXCjKDRbMMnZ9kGW6qdQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCYjHVC5 hlxKiEyv9pEHQy834S6RMB8GA1UdIwQYMBaAFMr6IKkBgJXSKfCsQ5INzUOma+tS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEZCNS9FRjk4N0VFMjA5 RDExMUU5OTU2MDdCNTJDNEY5QUUwMi95dm9ncVFHQWxkSXA4S3hEa2czTlE2WnI2 MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l2b2dxUUdBbGRJcDhLeERrZzNOUTZacjYxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGQjUvRUY5ODdFRTIwOUQxMTFFOTk1NjA3QjUyQzRGOUFFMDIvRjY2MDlEREFB RDNDMTFFQTk1REZGMzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnf/gwDQQCAAIwBwMFACQEK0AwDQYJKoZIhvcNAQELBQAD ggEBAAU9wAoPaW8vigvYsgRCorDG/p9DgQ4hfXZnY6QUHVpTmdRmPImGNfo3bJrp q7qJOw6VcfGYsJLF8e6OEkNDcZBFXbEhHJUZhxvjPheFa5Ca+YUGRllRdc6Cf9vb 15EHyVrsj/hotG98MRyTBYkoIMwRaE3jvU+jDlbWvXkVECB0GGbBFd/md2qpGrHR FwLbxyYTT/uYHrzI99JdLggXEOZPMRwXXCf3hC1KDuC02bMAEJOZVfvECUlluhxI RvGnyXTqnNh0HHo3x5ZedM7krSPhv8/NmUIFTBlW9rpRET+L35ZYH6ly9NwTR1Cl OFiU+xlDzxounsDiwEM8iAF4Skw= -----END CERTIFICATE-----Generated at Sat Apr 26 08:06:44 2025 by rpki-client