$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa File: D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa (raw, json) Hash identifier: jKjjt2VMX2OyaKrGVueLOjhPSZoYcuGJoWMyYUxs8bM= Subject key identifier: 33:25:DE:F0:84:51:51:E4:F7:FB:91:B0:CD:60:7B:E3:F9:75:A9:CF Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 0FB0 Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa Signing time: Fri 02 May 2025 17:57:38 +0000 ROA not before: Fri 02 May 2025 17:57:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 6939 IP address blocks: 103.138.32.0/24 maxlen: 24 103.139.90.0/24 maxlen: 24 2404:bb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 17:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4016 (0xfb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8, serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: May 2 17:57:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68150791-af02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:74:70:bd:bf:90:db:1a:06:ac:50:e4:f6:4b: 78:8b:12:43:9a:c4:26:6c:cd:01:92:62:6d:a7:90: ec:d8:e6:3c:ce:49:7d:67:f6:37:e9:1e:3a:f0:50: 84:25:cc:a9:7c:9c:cd:da:6c:35:84:50:89:91:0b: 88:5a:56:75:86:f2:cc:51:af:f0:81:8a:20:9f:57: 7b:65:10:7e:bf:f3:ab:2b:16:d6:44:55:e4:d7:af: ce:c3:ac:45:c6:1c:76:d8:bb:4a:5c:2e:0f:7a:73: 9e:e2:62:c6:8c:ac:63:ae:6c:6e:45:7a:e3:d7:a2: 45:57:3b:65:fe:4d:76:d5:a3:a1:3e:41:0c:4a:e7: 99:30:29:31:a6:fe:8b:ba:47:eb:1f:7f:93:32:d4: 4c:d3:dc:58:58:2b:e2:7e:86:21:b3:f5:67:36:e8: 5c:51:48:8e:93:a9:46:9c:62:62:63:de:e0:9f:8a: 47:5a:48:fa:cd:64:90:5d:a4:d7:c7:73:f1:24:4f: 87:8b:f0:63:6a:a9:7a:67:3d:71:17:93:66:6d:50: 9e:a9:55:3b:e0:96:0f:7f:19:64:74:f7:42:d6:26: 55:f2:35:f5:8a:1e:fa:5c:da:54:fb:4f:f6:2d:14: 55:6d:ac:dd:f8:09:43:32:16:57:c2:94:7d:06:e0: e6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:25:DE:F0:84:51:51:E4:F7:FB:91:B0:CD:60:7B:E3:F9:75:A9:CF X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.32.0/24 103.139.90.0/24 IPv6: 2404:bb40::/32 Signature Algorithm: sha256WithRSAEncryption 8e:a0:d7:99:c3:d7:fe:28:bf:07:d7:90:08:74:54:20:a0:45: de:00:cb:ae:cf:f2:aa:d5:a7:b8:c5:71:60:6f:61:1f:87:c0: a7:af:3e:b6:ec:04:90:5c:08:5b:81:a9:bb:00:6f:ae:b0:8c: 46:a2:1b:fa:51:ce:80:f7:44:c3:b0:0d:c8:c7:cc:26:0f:f9: fe:7c:df:a7:1b:5e:a1:c9:0a:b8:63:9d:b3:9c:e5:2b:95:3f: 3c:dc:fa:fe:e8:a1:ca:c6:aa:47:f5:16:37:be:7f:5a:cb:55: 54:2e:a6:20:e1:24:35:09:da:45:02:19:4a:0e:52:86:47:67: 30:a4:91:7e:43:64:05:fb:02:7d:6c:f1:c4:8d:0c:c6:d4:48: dd:c8:0d:98:3a:47:be:17:da:17:a1:ce:5a:c7:8d:d8:ef:d0: cc:1c:7c:22:32:b9:7b:46:ca:b5:73:81:ce:cc:f2:2e:cf:fc: b9:68:97:4c:1c:07:4c:cb:89:f7:f8:20:a6:f3:93:fd:41:45: 03:27:43:0b:a2:40:00:4e:a5:b7:a2:63:c2:1d:1b:66:67:d7: 0e:ef:89:17:3c:e6:dd:8a:b9:b8:2e:a1:d7:29:02:87:97:70: 52:dc:f0:9f:4b:81:14:8d:ee:08:67:e0:d5:72:69:ec:6f:53: be:0a:f2:60 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICD7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjUwNTAyMTc1NzM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDc5MS1hZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HRwvb+Q2xoGrFDk9kt4ixJDmsQmbM0BkmJtp5Ds2OY8zkl9Z/Y36R468FCE JcypfJzN2mw1hFCJkQuIWlZ1hvLMUa/wgYogn1d7ZRB+v/OrKxbWRFXk16/Ow6xF xhx22LtKXC4PenOe4mLGjKxjrmxuRXrj16JFVztl/k121aOhPkEMSueZMCkxpv6L ukfrH3+TMtRM09xYWCvifoYhs/VnNuhcUUiOk6lGnGJiY97gn4pHWkj6zWSQXaTX x3PxJE+Hi/Bjaql6Zz1xF5NmbVCeqVU74JYPfxlkdPdC1iZV8jX1ih76XNpU+0/2 LRRVbazd+AlDMhZXwpR9BuDm2wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDMl3vCE UVHk9/uRsM1ge+P5danPMB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE3RTgvRjE2RTE4NTY1QzUzMTFFOTlBQjVDRjY4QzRGOUFFMDIvRDhDNjlFMkE1 QzU1MTFFOThDNEI2RDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABniiADBABni1owDQQCAAIwBwMFACQEu0AwDQYJKoZIhvcN AQELBQADggEBAI6g15nD1/4ovwfXkAh0VCCgRd4Ay67P8qrVp7jFcWBvYR+HwKev PrbsBJBcCFuBqbsAb66wjEaiG/pRzoD3RMOwDcjHzCYP+f5836cbXqHJCrhjnbOc 5SuVPzzc+v7oocrGqkf1Fje+f1rLVVQupiDhJDUJ2kUCGUoOUoZHZzCkkX5DZAX7 An1s8cSNDMbUSN3IDZg6R74X2hehzlrHjdjv0MwcfCIyuXtGyrVzgc7M8i7P/Llo l0wcB0zLiff4IKbzk/1BRQMnQwuiQABOpbeiY8IdG2Zn1w7viRc85t2Kubguodcp AoeXcFLc8J9LgRSN7ghn4NVyaexvU74K8mA= -----END CERTIFICATE-----Generated at Sat May 3 13:58:03 2025 by rpki-client