$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/53B6E5D212CF11EBA8D2C037C4F9AE02.roa File: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (raw, json) Hash identifier: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c= Subject key identifier: DB:7B:F2:27:2F:F2:A3:D5:D6:5B:EB:4A:19:8B:5A:B7:AE:1D:2D:A1 Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 076D Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/53B6E5D212CF11EBA8D2C037C4F9AE02.roa Signing time: Wed 02 Apr 2025 21:53:17 +0000 ROA not before: Wed 02 Apr 2025 21:53:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132269 IP address blocks: 103.148.234.0/24 maxlen: 24 103.149.217.0/24 maxlen: 24 2001:df2:f680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:18:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1901 (0x76d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Apr 2 21:53:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edb1cc-afa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:28:05:1a:b3:71:05:17:5e:47:d0:3e:85:e3: 71:c3:2a:02:eb:93:83:6f:16:ae:c3:a4:f7:8d:c9: 48:d9:c3:e9:c9:2f:24:09:04:70:f6:5e:a4:80:38: af:ee:9a:75:e5:19:16:82:c5:e1:72:34:de:55:a8: 21:f4:83:5a:9e:30:8d:5d:81:de:57:4e:0a:89:fd: f3:35:e6:ac:47:90:8e:17:c0:ff:19:ce:d4:9f:eb: e5:27:89:e2:97:18:54:72:56:ca:40:f6:99:c9:ef: 41:fa:da:75:eb:7f:4e:bd:cc:60:88:a0:76:b5:b6: fa:0f:d3:76:2c:c6:eb:92:52:bd:d1:0c:97:97:af: 55:09:1d:34:17:3a:fd:a8:a6:d2:93:7a:c8:ad:db: 08:b1:f8:12:bc:74:37:1f:4c:cc:f4:88:23:2d:03: 49:96:80:09:7a:a9:1b:07:52:93:b9:97:b5:ed:56: 62:7b:76:7e:3d:d0:18:ea:7b:2b:c9:3e:1e:d3:81: e1:29:3b:e6:e6:11:13:0d:bd:10:b2:5d:9b:6b:3a: e3:e3:cb:64:e4:bf:a9:a0:b6:0e:d7:36:b4:0f:17: be:58:ce:6f:fb:22:29:8e:64:b5:c5:12:8d:06:32: af:4d:e0:99:b9:21:9e:e4:e6:10:4c:76:aa:10:75: a2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:7B:F2:27:2F:F2:A3:D5:D6:5B:EB:4A:19:8B:5A:B7:AE:1D:2D:A1 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/53B6E5D212CF11EBA8D2C037C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.234.0/24 103.149.217.0/24 IPv6: 2001:df2:f680::/48 Signature Algorithm: sha256WithRSAEncryption 13:10:47:50:5d:97:aa:f3:e8:67:bf:20:7a:9a:1d:8d:5c:2d: de:d2:87:cf:19:19:9d:dd:b5:b0:ad:6c:eb:61:ff:59:1b:44: 6f:ee:18:6a:eb:4f:4f:de:19:b5:13:fd:93:dc:ac:d2:3a:1c: 02:d7:61:86:9d:31:00:99:0d:55:27:20:88:37:73:3c:fe:5a: 37:01:c5:9b:33:dd:73:6a:59:25:bf:fd:67:d2:0d:a6:bb:db: 64:40:7b:8c:c4:bc:f8:4c:d0:d5:30:0d:02:b3:0d:39:99:5a: 9a:28:e2:25:d7:8c:c0:fa:75:fd:e0:0d:d9:34:02:03:07:88: ad:7d:e9:cb:b3:e4:a0:d5:39:3d:2a:bf:bb:fb:c5:b3:10:1b: c8:30:c0:1d:01:8d:44:ca:0c:4f:1a:9f:87:8d:57:aa:40:45: 1a:f9:f3:db:87:ae:96:dd:ba:56:09:96:a9:d3:c3:1d:02:3f: 08:19:87:41:0e:b7:03:77:57:e0:12:8c:82:c1:91:a6:92:14: b2:08:22:57:35:77:d8:f5:cb:21:98:55:8c:81:58:dd:19:a6: 5d:60:16:f2:a1:5e:08:d5:49:97:fe:d9:b9:b5:50:c8:17:45: c0:bc:17:13:7a:da:58:92:59:cf:71:ac:dd:f0:51:ef:60:65: 24:d8:3a:e1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICB20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUwNDAyMjE1MzE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYjFjYy1hZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4igFGrNxBRdeR9A+heNxwyoC65ODbxauw6T3jclI2cPpyS8kCQRw9l6kgDiv 7pp15RkWgsXhcjTeVagh9INanjCNXYHeV04Kif3zNeasR5COF8D/Gc7Un+vlJ4ni lxhUclbKQPaZye9B+tp1639OvcxgiKB2tbb6D9N2LMbrklK90QyXl69VCR00Fzr9 qKbSk3rIrdsIsfgSvHQ3H0zM9IgjLQNJloAJeqkbB1KTuZe17VZie3Z+PdAY6nsr yT4e04HhKTvm5hETDb0Qsl2bazrj48tk5L+poLYO1za0Dxe+WM5v+yIpjmS1xRKN BjKvTeCZuSGe5OYQTHaqEHWiMQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNt78icv 8qPV1lvrShmLWreuHS2hMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlCODUvNDJEN0MwMEMxMkNFMTFFQjk1MzMxOTM3QzRGOUFFMDIvNTNCNkU1RDIx MkNGMTFFQkE4RDJDMDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnlOoDBABnldkwDwQCAAIwCQMHACABDfL2gDANBgkqhkiG 9w0BAQsFAAOCAQEAExBHUF2XqvPoZ78gepodjVwt3tKHzxkZnd21sK1s62H/WRtE b+4YautPT94ZtRP9k9ys0jocAtdhhp0xAJkNVScgiDdzPP5aNwHFmzPdc2pZJb/9 Z9INprvbZEB7jMS8+EzQ1TANArMNOZlamijiJdeMwPp1/eAN2TQCAweIrX3py7Pk oNU5PSq/u/vFsxAbyDDAHQGNRMoMTxqfh41XqkBFGvnz24eult26VgmWqdPDHQI/ CBmHQQ63A3dX4BKMgsGRppIUsggiVzV32PXLIZhVjIFY3RmmXWAW8qFeCNVJl/7Z ubVQyBdFwLwXE3raWJJZz3Gs3fBR72BlJNg64Q== -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:06 2025 by rpki-client