$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa File: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (raw, json) Hash identifier: pC04v+mNv7zR9Y+4n59q7qozKs19qd8Pl1ty97dV8dI= Subject key identifier: D5:93:F6:B5:21:45:89:36:DA:FF:C4:E0:95:D9:55:37:B0:75:E0:BC Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 07B2 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa Signing time: Wed 23 Apr 2025 07:59:53 +0000 ROA not before: Wed 23 Apr 2025 07:59:53 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150172 IP address blocks: 103.2.80.0/24 maxlen: 24 103.10.78.0/24 maxlen: 24 103.27.72.0/23 maxlen: 24 103.27.75.0/24 maxlen: 24 220.158.202.0/24 maxlen: 24 2407:5d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1970 (0x7b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Apr 23 07:59:53 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68089df9-a5c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8a:54:74:96:ec:f4:0c:ab:bd:e8:62:ff:88: f2:23:4c:25:8c:a3:d2:e6:d7:1c:f6:61:6f:f9:03: a5:8a:43:14:04:7c:2f:68:31:9e:16:cc:2c:72:0a: 80:08:a2:42:c0:fb:58:04:09:ab:81:af:b8:b4:3c: e5:e0:bd:aa:9e:b3:c8:77:fc:80:66:64:8a:c8:a3: 1c:fc:f0:6c:89:49:54:8a:37:e9:30:81:db:24:c9: b7:13:84:42:9a:4a:9b:8e:26:8b:38:a2:59:61:f9: fb:55:3e:c3:f0:78:97:62:fd:4a:04:94:6d:8f:b3: db:5b:eb:7a:33:55:0e:0b:ec:a7:e6:31:58:b6:d3: 12:80:23:08:70:bb:fd:50:c1:32:a9:6e:b5:b2:34: 5a:9d:47:56:ba:ab:de:b0:21:f6:8e:9e:ee:5d:f1: 60:01:4a:82:41:2e:64:ff:4e:08:65:ea:aa:71:c7: 6b:d9:ce:e0:97:ce:25:94:6e:d5:6d:d2:48:27:57: 4a:06:f6:8f:99:19:9c:81:f3:0d:95:04:c2:5a:00: 9f:89:42:6a:a2:7c:df:2d:19:f9:61:1d:ba:18:32: 76:a7:41:30:ab:92:dd:dc:35:f4:d4:39:c9:62:fd: 8c:56:b9:ad:6b:72:91:1c:17:ce:94:fd:0d:ae:62: 7e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:93:F6:B5:21:45:89:36:DA:FF:C4:E0:95:D9:55:37:B0:75:E0:BC X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.80.0/24 103.10.78.0/24 103.27.72.0/23 103.27.75.0/24 220.158.202.0/24 IPv6: 2407:5d00::/48 Signature Algorithm: sha256WithRSAEncryption 9f:11:81:4e:d1:d1:20:24:e6:ed:be:e1:97:ab:56:cd:7c:52: b9:06:c7:28:b5:d2:12:2f:3f:a8:58:41:9b:b9:a0:05:22:04: 1f:03:04:d1:5c:1b:14:4b:c3:2b:f0:56:02:83:f2:63:a4:b4: 9c:c3:f9:a0:93:58:74:b0:e7:d8:b4:33:71:07:a2:b4:87:44: 09:56:a0:9b:41:3c:a6:71:c9:93:9d:26:f2:e0:25:29:23:a8: 90:3d:e1:39:c6:54:1c:a2:a9:38:bc:6f:f6:21:8a:17:7e:0a: 08:dd:31:d4:87:91:eb:08:ff:68:01:71:6d:cb:36:35:d8:91: aa:d7:0e:f6:ea:3d:42:f9:7d:23:28:8c:db:5a:11:58:ff:be: 2a:75:2a:86:3f:d9:50:c4:5c:dc:c7:78:81:3b:e4:90:2a:b3: 6d:67:1b:98:ad:58:63:dd:bd:92:55:da:3a:a9:2e:c7:9e:71: e9:b8:c9:ae:dc:08:eb:d6:95:04:3e:77:af:ab:74:63:fc:7c: 28:3a:5d:05:68:a0:7c:f3:43:c0:bd:46:11:33:d4:2f:46:93: 26:0f:42:f5:d5:81:7a:1b:d8:69:00:75:9a:91:24:4f:61:97: 10:66:e1:12:39:a5:8b:ca:7a:b5:91:62:5c:18:7e:39:8d:5a: 00:bb:5a:48 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICB7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwNDIzMDc1OTUzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA4OWRmOS1hNWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYpUdJbs9Ayrvehi/4jyI0wljKPS5tcc9mFv+QOlikMUBHwvaDGeFswscgqA CKJCwPtYBAmrga+4tDzl4L2qnrPId/yAZmSKyKMc/PBsiUlUijfpMIHbJMm3E4RC mkqbjiaLOKJZYfn7VT7D8HiXYv1KBJRtj7PbW+t6M1UOC+yn5jFYttMSgCMIcLv9 UMEyqW61sjRanUdWuqvesCH2jp7uXfFgAUqCQS5k/04IZeqqccdr2c7gl84llG7V bdJIJ1dKBvaPmRmcgfMNlQTCWgCfiUJqonzfLRn5YR26GDJ2p0Ewq5Ld3DX01DnJ Yv2MVrmta3KRHBfOlP0NrmJ++QIDAQABo4ICvjCCArowHQYDVR0OBBYEFNWT9rUh RYk22v/E4JXZVTewdeC8MB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExM0UvNTRENkE1MEUwNkI1MTFFQjkzNzJEMzJCQzRGOUFFMDIvQjlBNTFCMUFG QTRGMTFFREI4MkZDQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBABnAlADBABnCk4DBAFnG0gDBABnG0sDBADcnsowDwQCAAIw CQMHACQHXQAAADANBgkqhkiG9w0BAQsFAAOCAQEAnxGBTtHRICTm7b7hl6tWzXxS uQbHKLXSEi8/qFhBm7mgBSIEHwME0VwbFEvDK/BWAoPyY6S0nMP5oJNYdLDn2LQz cQeitIdECVagm0E8pnHJk50m8uAlKSOokD3hOcZUHKKpOLxv9iGKF34KCN0x1IeR 6wj/aAFxbcs2NdiRqtcO9uo9Qvl9IyiM21oRWP++KnUqhj/ZUMRc3Md4gTvkkCqz bWcbmK1YY929klXaOqkux55x6bjJrtwI69aVBD53r6t0Y/x8KDpdBWigfPNDwL1G ETPUL0aTJg9C9dWBehvYaQB1mpEkT2GXEGbhEjmli8p6tZFiXBh+OY1aALtaSA== -----END CERTIFICATE-----Generated at Sat Apr 26 09:06:01 2025 by rpki-client