$ rpki-client -vvf rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/E67EF1B25F0311ECBB273637C4F9AE02.roa File: E67EF1B25F0311ECBB273637C4F9AE02.roa (raw, json) Hash identifier: nVx5Y0jzC9bHhMI0JsTAXXHXSiIymADxDx7MlszHZYI= Subject key identifier: 6D:40:B6:14:8A:3F:39:47:82:34:93:5A:86:50:96:AC:B6:1E:2A:B3 Certificate issuer: /CN=A91C90F3/serialNumber=B0B4007652FB3D14328813B3E57EEFF17759CFF2 Certificate serial: 0826 Authority key identifier: B0:B4:00:76:52:FB:3D:14:32:88:13:B3:E5:7E:EF:F1:77:59:CF:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLQAdlL7PRQyiBOz5X7v8XdZz_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/E67EF1B25F0311ECBB273637C4F9AE02.roa Signing time: Sat 04 Jan 2025 20:29:31 +0000 ROA not before: Sat 04 Jan 2025 20:29:31 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138472 IP address blocks: 103.126.96.0/22 maxlen: 24 2001:df7:4300::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/sLQAdlL7PRQyiBOz5X7v8XdZz_I.crl rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/sLQAdlL7PRQyiBOz5X7v8XdZz_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLQAdlL7PRQyiBOz5X7v8XdZz_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2086 (0x826) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C90F3, serialNumber=B0B4007652FB3D14328813B3E57EEFF17759CFF2 Validity Not Before: Jan 4 20:29:31 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67799a2b-f921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a2:24:fd:ab:aa:b1:12:88:c5:4c:92:6b:81: 5a:31:bc:b4:0e:40:b1:2d:82:fd:4e:b2:c9:bf:77: 18:f4:f9:00:6b:8c:63:dc:30:68:e2:42:c1:97:50: e0:9c:79:44:1b:44:32:91:13:2a:ae:0f:2d:12:18: 97:0e:a5:1a:b0:57:6a:30:3e:bb:9e:3a:c9:92:12: 06:59:62:60:18:91:56:af:f1:d5:2c:c6:6f:2b:95: ab:89:9e:47:8a:13:64:59:68:11:0c:69:e6:0c:a2: 0f:84:00:5d:75:01:d2:c7:45:d2:5c:8a:fc:5e:19: c4:76:bc:43:c5:d7:56:b5:86:5a:51:ac:fb:0a:2d: 34:f9:18:d0:f3:27:1b:e5:38:3a:27:6e:d4:83:60: a2:b6:b0:c5:4e:02:94:b7:1b:fe:ac:a5:63:ce:e9: 95:f3:4e:56:bc:3a:5c:cd:6f:a6:3d:50:cc:1d:2c: ba:17:fe:a7:c4:68:4a:b0:67:48:f9:ef:55:98:82: d2:26:43:75:3c:5e:11:2b:87:07:60:4b:93:d9:93: 63:82:0d:93:09:96:1d:7b:29:48:01:db:35:5a:35: b2:d5:de:69:8b:46:24:07:3f:50:de:62:41:92:cc: 9f:91:09:7e:94:45:bb:14:80:39:a3:45:d9:a2:bb: 89:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:40:B6:14:8A:3F:39:47:82:34:93:5A:86:50:96:AC:B6:1E:2A:B3 X509v3 Authority Key Identifier: keyid:B0:B4:00:76:52:FB:3D:14:32:88:13:B3:E5:7E:EF:F1:77:59:CF:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/sLQAdlL7PRQyiBOz5X7v8XdZz_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLQAdlL7PRQyiBOz5X7v8XdZz_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C90F3/8E1C1E76C55A11EAA9231F67C4F9AE02/E67EF1B25F0311ECBB273637C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.96.0/22 IPv6: 2001:df7:4300::/48 Signature Algorithm: sha256WithRSAEncryption 49:c4:61:73:2a:da:e0:1f:d3:fc:b0:69:9a:99:e6:3d:00:6c: 3f:32:d0:c4:8f:30:60:bd:aa:d7:25:25:ce:0f:12:c0:4f:7f: 4b:55:04:d4:3c:4f:fd:3b:ce:20:0e:e9:a5:43:93:6f:0f:fa: 07:db:78:c8:84:63:0a:3f:65:d0:c0:df:19:c5:1a:02:1d:8f: 55:42:38:ed:fd:1b:f3:9e:12:6c:36:82:6a:d7:8b:5b:f0:36: e0:d4:75:cc:ee:07:cc:64:8c:be:dd:ae:49:5e:73:60:ef:7e: ae:3a:e5:af:b8:7f:9c:5f:75:76:24:19:4e:78:c6:8a:14:63: 4c:79:e5:e2:46:cc:60:c3:30:7d:4f:09:29:c5:68:47:57:2e: 71:fe:6a:f0:c1:eb:76:aa:e1:78:ca:bf:61:c0:71:4a:bd:61: f5:ae:68:4e:c4:27:b9:17:bc:51:a9:2f:04:ef:96:92:45:15: 01:f1:a5:ae:67:11:ef:0d:17:df:a5:88:8d:bd:a3:a6:9c:38: 64:44:6c:74:c6:ca:13:23:ee:4f:2a:16:a8:be:80:0d:5d:ba: cf:34:92:24:b0:aa:e0:a0:34:4e:50:36:7d:96:56:eb:94:b4: 08:eb:e5:23:e9:19:55:b2:0f:9e:3e:14:b3:c3:07:e2:00:c4: 24:2a:4e:1e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkwRjMxMTAvBgNVBAUTKEIwQjQwMDc2NTJGQjNEMTQzMjg4MTNCM0U1N0VFRkYx Nzc1OUNGRjIwHhcNMjUwMTA0MjAyOTMxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5OWEyYi1mOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKIk/auqsRKIxUySa4FaMby0DkCxLYL9TrLJv3cY9PkAa4xj3DBo4kLBl1Dg nHlEG0QykRMqrg8tEhiXDqUasFdqMD67njrJkhIGWWJgGJFWr/HVLMZvK5WriZ5H ihNkWWgRDGnmDKIPhABddQHSx0XSXIr8XhnEdrxDxddWtYZaUaz7Ci00+RjQ8ycb 5Tg6J27Ug2CitrDFTgKUtxv+rKVjzumV805WvDpczW+mPVDMHSy6F/6nxGhKsGdI +e9VmILSJkN1PF4RK4cHYEuT2ZNjgg2TCZYdeylIAds1WjWy1d5pi0YkBz9Q3mJB ksyfkQl+lEW7FIA5o0XZoruJswIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG1AthSK PzlHgjSTWoZQlqy2HiqzMB8GA1UdIwQYMBaAFLC0AHZS+z0UMogTs+V+7/F3Wc/y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTBGMy84RTFDMUU3NkM1 NUExMUVBQTkyMzFGNjdDNEY5QUUwMi9zTFFBZGxMN1BSUXlpQk96NVg3djhYZFp6 X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NMUUFkbEw3UFJReWlCT3o1WDd2OFhkWnpfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkwRjMvOEUxQzFFNzZDNTVBMTFFQUE5MjMxRjY3QzRGOUFFMDIvRTY3RUYxQjI1 RjAzMTFFQ0JCMjczNjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnfmAwDwQCAAIwCQMHACABDfdDADANBgkqhkiG9w0BAQsF AAOCAQEAScRhcyra4B/T/LBpmpnmPQBsPzLQxI8wYL2q1yUlzg8SwE9/S1UE1DxP /TvOIA7ppUOTbw/6B9t4yIRjCj9l0MDfGcUaAh2PVUI47f0b854SbDaCateLW/A2 4NR1zO4HzGSMvt2uSV5zYO9+rjrlr7h/nF91diQZTnjGihRjTHnl4kbMYMMwfU8J KcVoR1cucf5q8MHrdqrheMq/YcBxSr1h9a5oTsQnuRe8UakvBO+WkkUVAfGlrmcR 7w0X36WIjb2jppw4ZERsdMbKEyPuTyoWqL6ADV26zzSSJLCq4KA0TlA2fZZW65S0 COvlI+kZVbIPnj4Us8MH4gDEJCpOHg== -----END CERTIFICATE-----Generated at Sat Apr 26 09:40:35 2025 by rpki-client