$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/296C190484AD11EC9C3F837CC4F9AE02.roa File: 296C190484AD11EC9C3F837CC4F9AE02.roa (raw, json) Hash identifier: /RxOlV3ierU9U8XUpOrcDZ1BfZBiiZXrWx/RXW8pGyY= Subject key identifier: A1:B8:AA:A6:57:ED:40:1C:99:C7:89:2E:DF:C5:6F:40:ED:A8:82:B0 Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 03A9 Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/296C190484AD11EC9C3F837CC4F9AE02.roa Signing time: Fri 21 Feb 2025 02:14:32 +0000 ROA not before: Fri 21 Feb 2025 02:14:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138041 IP address blocks: 103.161.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: Feb 21 02:14:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b7e188-9e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7b:ef:55:33:1e:c3:e1:b9:9f:58:d0:12:34: 21:9f:f4:1b:1a:0b:1b:6b:7a:75:c5:ef:8c:ff:3c: c5:9a:67:19:fb:15:d4:04:d6:6c:60:49:79:70:e4: 96:68:81:a1:12:9e:03:65:59:d9:76:4e:f5:ae:f9: 87:f7:a8:9a:03:75:5b:cc:f4:d1:c8:7d:3c:d8:c5: 30:d6:38:84:05:58:52:c5:44:11:b8:24:28:9c:5f: 82:2c:4e:8e:82:69:ed:a9:27:74:2a:4c:84:dc:38: 7f:27:aa:ae:cd:78:c2:0a:f4:e5:5e:e3:f3:0b:48: 2f:32:89:16:da:92:ec:b2:9c:67:77:04:2a:bc:f1: 17:64:5b:7c:d3:94:af:e9:dd:bb:15:65:61:26:a3: 45:cd:56:85:1c:62:cd:2f:30:ab:80:d8:81:8a:97: e8:90:d2:02:b6:4e:54:e2:19:71:5f:b5:6c:53:7d: 89:8b:06:9c:1a:87:c8:35:e4:eb:d9:98:c7:b6:7d: 31:f4:34:a3:a8:ac:63:b5:75:6c:7a:9c:1a:f5:de: 87:52:05:2d:0f:98:c4:75:0f:1a:67:5c:d5:9a:17: 76:54:02:01:cc:c7:01:d1:a6:f9:9a:75:4e:03:cc: 9b:eb:89:df:5c:82:73:76:22:bc:0f:0c:02:6b:30: 83:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B8:AA:A6:57:ED:40:1C:99:C7:89:2E:DF:C5:6F:40:ED:A8:82:B0 X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/296C190484AD11EC9C3F837CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.136.0/23 Signature Algorithm: sha256WithRSAEncryption 05:fd:a4:94:43:3f:63:a8:f1:e8:f9:dd:7a:44:41:0c:61:09: a3:eb:f8:90:5f:bd:aa:fb:38:ff:90:8c:40:2b:ff:f4:40:f1: 89:67:1a:39:40:40:48:9f:d1:c7:5f:a4:68:03:e3:1e:4e:b3: 1c:14:31:63:bb:15:73:c5:47:e3:6b:ed:07:0f:38:d4:0d:83: bb:b3:2c:77:3b:3b:28:26:37:5b:e3:11:97:1b:bf:a4:01:d9: de:42:d4:19:7e:83:b5:36:01:0f:f6:fa:e0:b8:80:2f:37:d8: eb:e3:ac:70:a6:e7:4a:b1:fc:2b:e0:76:f3:30:51:19:77:61: fc:e6:11:39:71:41:a3:b9:36:2e:8e:d5:3a:fd:40:dd:ff:7e: d2:59:e3:5e:af:ec:92:7d:07:45:8c:da:d3:e1:14:ec:2d:a5: a5:d3:2d:bb:4c:90:5a:a4:48:3f:9a:f1:fc:a5:73:04:d4:c6: 38:e6:1e:7a:86:1d:41:c5:33:f3:53:17:9d:c4:94:c8:a3:e7: 0b:f1:d7:8d:82:78:0a:f9:be:15:f3:b1:c5:28:d8:d0:ed:67: 49:c7:90:2a:ef:d5:c5:ea:e4:4b:c0:23:6d:59:3a:0a:08:b3: e2:08:ac:75:2e:f2:df:03:53:62:51:7f:1c:6c:c1:cd:ac:31: 00:03:07:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjUwMjIxMDIxNDMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I3ZTE4OC05ZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunvvVTMew+G5n1jQEjQhn/QbGgsba3p1xe+M/zzFmmcZ+xXUBNZsYEl5cOSW aIGhEp4DZVnZdk71rvmH96iaA3VbzPTRyH082MUw1jiEBVhSxUQRuCQonF+CLE6O gmntqSd0KkyE3Dh/J6quzXjCCvTlXuPzC0gvMokW2pLsspxndwQqvPEXZFt805Sv 6d27FWVhJqNFzVaFHGLNLzCrgNiBipfokNICtk5U4hlxX7VsU32JiwacGofINeTr 2ZjHtn0x9DSjqKxjtXVsepwa9d6HUgUtD5jEdQ8aZ1zVmhd2VAIBzMcB0ab5mnVO A8yb64nfXIJzdiK8DwwCazCDuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKG4qqZX 7UAcmceJLt/Fb0DtqIKwMB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U2MTYvQTdFNDI5MTY4NEE4MTFFQ0IyNTAwODcxQzRGOUFFMDIvMjk2QzE5MDQ4 NEFEMTFFQzlDM0Y4MzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoYgwDQYJKoZIhvcNAQELBQADggEBAAX9pJRDP2Oo8ej5 3XpEQQxhCaPr+JBfvar7OP+QjEAr//RA8YlnGjlAQEif0cdfpGgD4x5OsxwUMWO7 FXPFR+Nr7QcPONQNg7uzLHc7OygmN1vjEZcbv6QB2d5C1Bl+g7U2AQ/2+uC4gC83 2OvjrHCm50qx/CvgdvMwURl3YfzmETlxQaO5Ni6O1Tr9QN3/ftJZ416v7JJ9B0WM 2tPhFOwtpaXTLbtMkFqkSD+a8fylcwTUxjjmHnqGHUHFM/NTF53ElMij5wvx142C eAr5vhXzscUo2NDtZ0nHkCrv1cXq5EvAI21ZOgoIs+IIrHUu8t8DU2JRfxxswc2s MQADB0U= -----END CERTIFICATE-----Generated at Sat Apr 26 07:40:09 2025 by rpki-client