$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/24E9EF3C9C0B11EFABD74439C4F9AE02.roa File: 24E9EF3C9C0B11EFABD74439C4F9AE02.roa (raw, json) Hash identifier: UxagGWZX5GRBTZt0jQYki52H3QWf9jW1QGZTQhh7RfI= Subject key identifier: 28:0E:EC:01:91:90:D3:6F:1B:71:FD:F0:99:9E:DE:4B:F8:56:51:2C Certificate issuer: /CN=A91DAC6A/serialNumber=449D07DA920DA026342BF6E2689CC7E0F0A3CAFC Certificate serial: 59 Authority key identifier: 44:9D:07:DA:92:0D:A0:26:34:2B:F6:E2:68:9C:C7:E0:F0:A3:CA:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RJ0H2pINoCY0K_biaJzH4PCjyvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/24E9EF3C9C0B11EFABD74439C4F9AE02.roa Signing time: Sat 19 Apr 2025 06:32:45 +0000 ROA not before: Sat 19 Apr 2025 06:32:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132890 IP address blocks: 103.52.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/RJ0H2pINoCY0K_biaJzH4PCjyvw.crl rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/RJ0H2pINoCY0K_biaJzH4PCjyvw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RJ0H2pINoCY0K_biaJzH4PCjyvw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAC6A, serialNumber=449D07DA920DA026342BF6E2689CC7E0F0A3CAFC Validity Not Before: Apr 19 06:32:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6803438d-0ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2b:fb:04:98:e6:94:bf:5e:45:f2:8d:2c:7c: 34:72:34:eb:26:6b:ca:bc:6b:ab:e8:c6:12:b8:1e: 7f:72:01:6d:fc:4e:2e:2f:6f:a3:07:d9:c8:f5:3a: ee:2a:0b:4b:15:8c:b2:20:c8:19:57:b2:24:ce:f6: 9c:b4:82:8e:85:9f:85:83:8b:7e:12:ce:69:f8:5a: b2:d6:81:30:71:4b:05:7d:c0:04:85:ee:b8:a2:26: 70:ec:53:bb:ca:38:17:c5:a1:13:02:2c:3a:78:e9: d0:99:2c:f9:9b:b9:47:95:88:32:fa:fb:15:f9:51: 07:c3:63:5a:54:0e:cc:a6:83:70:c9:ea:6f:37:d2: 34:c0:48:d5:1f:2d:36:46:53:a2:af:64:b1:da:fb: e5:c8:7d:96:b5:d7:44:98:b4:d9:98:3f:b8:79:97: 8d:93:28:80:37:50:07:37:ba:3c:71:d9:0e:ea:0d: 50:d1:30:5f:ab:02:0b:e4:c5:b4:2e:1d:b4:4c:e8: 22:1f:bf:f6:79:44:97:46:6c:21:9a:72:0e:64:35: 8a:0e:1d:26:70:16:ba:de:97:91:b6:7a:da:8a:c2: fb:87:ff:f5:5b:a7:02:60:db:03:38:ca:ae:83:39: d0:09:16:2f:62:3b:b5:dc:eb:57:db:e1:fc:e8:e1: bc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0E:EC:01:91:90:D3:6F:1B:71:FD:F0:99:9E:DE:4B:F8:56:51:2C X509v3 Authority Key Identifier: keyid:44:9D:07:DA:92:0D:A0:26:34:2B:F6:E2:68:9C:C7:E0:F0:A3:CA:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/RJ0H2pINoCY0K_biaJzH4PCjyvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RJ0H2pINoCY0K_biaJzH4PCjyvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/24E9EF3C9C0B11EFABD74439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.192.0/24 Signature Algorithm: sha256WithRSAEncryption 27:48:2b:0b:a9:94:f3:6a:72:71:a0:f5:de:0a:3e:d6:4a:d9: 48:97:f5:c3:ca:91:fa:50:c6:5b:9a:61:70:d0:be:66:9e:9e: 12:fe:d8:f6:74:36:fe:18:cc:e1:49:dd:86:c2:e6:48:10:c6: ab:ea:17:83:0c:13:74:0a:ea:c4:3a:57:92:c5:47:10:b7:bd: 1a:d7:b3:cc:b8:e3:21:f1:e6:e8:d0:dc:3b:fa:b7:4f:b2:14: a9:e5:ed:63:6c:01:1f:3f:b7:77:dd:07:18:bc:df:31:c3:89: dd:65:88:15:b5:4b:33:03:bd:0c:43:3a:04:f8:62:5b:c2:8c: c7:2a:e0:84:71:9b:77:a6:2d:51:61:2a:ce:21:67:c3:48:f1: 9c:93:c7:27:60:66:ab:3d:0b:18:a2:6f:22:25:bc:9d:61:bd: 89:37:40:ae:43:7a:bd:b5:26:6d:27:a4:0d:02:62:27:87:36: 40:47:41:4d:8a:b4:ec:21:a2:2e:b9:28:db:7e:f4:aa:12:85: 64:f4:e5:c2:4b:8a:78:ed:fb:28:fc:22:ed:36:ab:a6:ea:4b: 64:0c:c7:df:ea:70:9e:80:7b:a4:dc:bf:89:07:07:df:81:6d: d6:b5:6a:d5:f8:12:74:02:37:e1:89:31:ec:97:05:f1:c2:8b: 9b:9b:ea:d7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QUM2QTExMC8GA1UEBRMoNDQ5RDA3REE5MjBEQTAyNjM0MkJGNkUyNjg5Q0M3RTBG MEEzQ0FGQzAeFw0yNTA0MTkwNjMyNDVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDM0MzhkLTBlZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTK/sEmOaUv15F8o0sfDRyNOsma8q8a6voxhK4Hn9yAW38Ti4vb6MH2cj1Ou4q C0sVjLIgyBlXsiTO9py0go6Fn4WDi34Szmn4WrLWgTBxSwV9wASF7riiJnDsU7vK OBfFoRMCLDp46dCZLPmbuUeViDL6+xX5UQfDY1pUDsymg3DJ6m830jTASNUfLTZG U6KvZLHa++XIfZa110SYtNmYP7h5l42TKIA3UAc3ujxx2Q7qDVDRMF+rAgvkxbQu HbRM6CIfv/Z5RJdGbCGacg5kNYoOHSZwFrrel5G2etqKwvuH//VbpwJg2wM4yq6D OdAJFi9iO7Xc61fb4fzo4bxxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKA7sAZGQ 028bcf3wmZ7eS/hWUSwwHwYDVR0jBBgwFoAURJ0H2pINoCY0K/biaJzH4PCjyvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBQzZBLzkwNjYyRUI2OUMw QTExRUZBRUQ2NTczOEM0RjlBRTAyL1JKMEgycElOb0NZMEtfYmlhSnpINFBDanl2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUkowSDJwSU5vQ1kwS19iaWFKekg0UENqeXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUM2QS85MDY2MkVCNjlDMEExMUVGQUVENjU3MzhDNEY5QUUwMi8yNEU5RUYzQzlD MEIxMUVGQUJENzQ0MzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGc0wDANBgkqhkiG9w0BAQsFAAOCAQEAJ0grC6mU82pycaD1 3go+1krZSJf1w8qR+lDGW5phcNC+Zp6eEv7Y9nQ2/hjM4UndhsLmSBDGq+oXgwwT dArqxDpXksVHELe9GtezzLjjIfHm6NDcO/q3T7IUqeXtY2wBHz+3d90HGLzfMcOJ 3WWIFbVLMwO9DEM6BPhiW8KMxyrghHGbd6YtUWEqziFnw0jxnJPHJ2Bmqz0LGKJv IiW8nWG9iTdArkN6vbUmbSekDQJiJ4c2QEdBTYq07CGiLrko2370qhKFZPTlwkuK eO37KPwi7TarpupLZAzH3+pwnoB7pNy/iQcH34Ft1rVq1fgSdAI34Ykx7JcF8cKL m5vq1w== -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:15 2025 by rpki-client