$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/372E72941F7811F0AC4FFF82C4F9AE02.roa File: 372E72941F7811F0AC4FFF82C4F9AE02.roa (raw, json) Hash identifier: C+tnO/IvI2tXp1A5mKcYwdatQ4n9lRglk78sIbGLnJ4= Subject key identifier: 86:73:1A:EA:E0:EC:C2:24:E1:44:A5:A7:FE:D9:F1:89:33:98:ED:5A Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 09 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/372E72941F7811F0AC4FFF82C4F9AE02.roa Signing time: Tue 22 Apr 2025 12:49:23 +0000 ROA not before: Tue 22 Apr 2025 12:49:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137899 IP address blocks: 103.117.136.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:09:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: Apr 22 12:49:23 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=68079053-3632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e9:0a:eb:4b:aa:97:af:54:c4:f7:0a:c6:2d: 62:18:27:54:36:7d:dd:50:51:90:30:0d:20:7b:eb: dd:54:72:f7:38:cb:aa:80:6e:7b:37:79:7c:e5:a0: 04:9d:34:a6:cd:e5:9d:88:66:66:ae:3d:29:14:e7: b3:ae:a8:94:9a:aa:8b:cd:68:7b:1e:bd:f5:bc:64: 9c:84:c5:f9:bf:0f:0c:21:8f:bb:5f:79:dd:ff:bc: bc:93:d5:51:0b:9e:c8:60:e3:56:c9:a9:51:eb:17: 51:25:a7:cc:1b:3c:cf:94:ce:39:43:59:60:1f:da: 3f:c6:c9:bf:6f:d7:d7:14:c3:20:45:d9:0c:3d:55: d5:cc:3f:7b:b5:77:94:72:d2:17:0b:ee:8f:e4:2e: 5f:01:47:26:69:99:52:2c:d9:2e:66:03:99:ba:4a: 8e:b6:1f:e2:68:25:50:2d:c9:08:61:e0:97:59:10: 56:5f:23:09:5d:1f:64:57:d5:5b:89:fe:5c:c6:4e: 52:00:ee:b5:70:21:20:3b:39:be:fa:ae:e0:85:ae: 12:2c:95:44:08:dc:4e:32:58:8b:da:04:db:a0:87: 31:05:aa:64:f0:c3:85:58:00:f3:d3:e0:18:4c:70: b3:15:20:2d:a6:de:af:8d:8c:96:8f:43:ac:d1:04: 8a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:73:1A:EA:E0:EC:C2:24:E1:44:A5:A7:FE:D9:F1:89:33:98:ED:5A X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/372E72941F7811F0AC4FFF82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 74:1b:5d:26:52:19:6c:e9:16:97:af:f7:18:15:ba:e3:d2:43: 72:01:d1:ab:1f:80:b9:1c:65:97:b6:0c:5c:0c:bf:63:6d:67: cb:e7:60:78:ac:47:ea:74:6a:98:51:4e:b8:1b:b1:1a:e4:cb: 1b:37:5c:36:cb:d4:9d:74:fe:49:50:65:3e:18:23:8e:2d:d0: 3c:6e:62:41:5c:85:87:71:e7:2b:05:7c:51:6d:dd:4c:ab:bc: 36:5f:39:fa:62:0e:9e:b9:9d:36:34:dd:70:9a:b0:2a:73:7e: 88:bc:83:33:87:c4:81:ea:f0:a8:b6:3c:a4:fb:85:6e:38:c3: ee:7f:d6:34:c4:05:76:5f:eb:91:cb:cd:ea:b0:46:f9:db:fc: 3f:1a:58:89:15:86:46:8e:bd:4e:90:f9:19:98:8b:d7:d7:a5: 23:ce:82:4d:f3:10:07:15:61:21:9d:bd:9e:06:7d:3a:b9:1d: cd:d4:e1:8b:87:4d:76:56:cb:3e:c1:7d:b3:ae:19:b2:b0:1d: 06:18:9b:d8:49:ab:da:90:51:45:c3:67:05:53:d9:42:4a:e4: fd:8e:a2:25:29:4a:70:1b:43:8d:73:75:cb:f5:d0:13:fd:ec: f0:0e:66:cc:13:09:3a:25:94:d1:7e:6d:00:c3:bb:f4:ab:87: ae:00:83:92 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA0MjIxMjQ5MjNaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDc5MDUzLTM2MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG6QrrS6qXr1TE9wrGLWIYJ1Q2fd1QUZAwDSB7691Ucvc4y6qAbns3eXzloASd NKbN5Z2IZmauPSkU57OuqJSaqovNaHsevfW8ZJyExfm/Dwwhj7tfed3/vLyT1VEL nshg41bJqVHrF1Elp8wbPM+UzjlDWWAf2j/Gyb9v19cUwyBF2Qw9VdXMP3u1d5Ry 0hcL7o/kLl8BRyZpmVIs2S5mA5m6So62H+JoJVAtyQhh4JdZEFZfIwldH2RX1VuJ /lzGTlIA7rVwISA7Ob76ruCFrhIslUQI3E4yWIvaBNughzEFqmTww4VYAPPT4BhM cLMVIC2m3q+NjJaPQ6zRBIoRAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUhnMa6uDs wiThRKWn/tnxiTOY7VowHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8zNzJFNzI5NDFG NzgxMUYwQUM0RkZGODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmd1iAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEAdBtdJlIZ bOkWl6/3GBW649JDcgHRqx+AuRxll7YMXAy/Y21ny+dgeKxH6nRqmFFOuBuxGuTL GzdcNsvUnXT+SVBlPhgjji3QPG5iQVyFh3HnKwV8UW3dTKu8Nl85+mIOnrmdNjTd cJqwKnN+iLyDM4fEgerwqLY8pPuFbjjD7n/WNMQFdl/rkcvN6rBG+dv8PxpYiRWG Ro69TpD5GZiL19elI86CTfMQBxVhIZ29ngZ9OrkdzdThi4dNdlbLPsF9s64ZsrAd Bhib2Emr2pBRRcNnBVPZQkrk/Y6iJSlKcBtDjXN1y/XQE/3s8A5mzBMJOiWU0X5t AMO79KuHrgCDkg== -----END CERTIFICATE-----Generated at Sat Apr 26 08:03:16 2025 by rpki-client