$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/E8DA2D1C5F5211EABFCF4128C4F9AE02.roa File: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (raw, json) Hash identifier: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g= Subject key identifier: 16:4D:4E:02:1B:E5:A1:0F:D6:BF:DB:22:7D:A9:54:F5:D0:84:B0:1E Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0A53 Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/E8DA2D1C5F5211EABFCF4128C4F9AE02.roa Signing time: Fri 14 Mar 2025 19:52:29 +0000 ROA not before: Fri 14 Mar 2025 19:52:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136929 IP address blocks: 103.149.36.0/23 maxlen: 23 103.149.36.0/24 maxlen: 24 103.149.37.0/24 maxlen: 24 2405:e140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2643 (0xa53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Mar 14 19:52:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d488fd-a14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:ad:06:a4:1f:7e:66:3e:80:f5:b5:9b:a6: ef:e1:ba:ab:7c:da:f3:c7:42:9e:1c:f4:54:3d:6b: 02:96:99:11:48:e7:fe:2d:c7:d9:d0:4a:48:1c:bc: e7:10:bf:b9:64:77:46:c6:ab:3a:e2:f6:dc:57:c5: 69:f3:aa:a5:dd:86:95:7d:51:dc:5c:8b:85:37:cc: 42:7c:15:75:db:f3:50:8b:3f:ad:c7:a8:9f:53:1d: 50:af:c3:4e:82:ee:7d:3d:7a:1b:1c:2e:70:37:62: ab:98:19:bc:f4:4f:f0:34:e2:94:45:4f:85:d1:29: dd:17:1e:a8:dd:d0:a3:c0:0c:13:de:6e:40:68:40: cd:7d:35:07:fe:80:22:29:24:31:e3:90:8a:ff:01: 5a:2a:b4:fd:fd:25:7f:42:40:74:b4:73:c2:46:60: 7c:6e:cb:42:0c:52:39:8c:77:83:18:5b:15:8e:bc: 0f:a4:b8:ff:7a:49:08:2b:1a:ed:54:d8:7c:ec:db: 82:c5:a6:b7:a5:45:e6:8d:c6:78:db:7f:f1:32:63: 4e:24:a8:10:6e:82:79:29:12:5f:fc:79:94:5c:59: cf:47:0b:86:a1:7b:6f:44:ed:40:b0:91:3d:05:59: 94:38:db:38:68:e2:d8:d4:8f:99:35:33:b0:52:71: ce:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4D:4E:02:1B:E5:A1:0F:D6:BF:DB:22:7D:A9:54:F5:D0:84:B0:1E X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/E8DA2D1C5F5211EABFCF4128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.36.0/23 IPv6: 2405:e140::/32 Signature Algorithm: sha256WithRSAEncryption 64:9a:41:fa:56:22:79:10:29:7e:04:50:b3:0d:20:61:9f:b1: ec:3e:4f:bd:16:f3:bb:d0:09:a4:6c:41:9e:f7:1a:9d:12:66: 86:85:6f:26:34:d0:51:5e:79:28:5c:23:51:04:3b:28:1e:19: a9:62:fd:3d:42:b7:23:8e:f8:48:e9:08:49:ab:2f:29:b4:37: 9f:30:bf:f4:42:2e:96:5b:19:36:69:33:9e:a0:cc:6b:d3:b6: fc:b3:36:0d:bd:6a:66:9c:5d:30:ae:87:cf:ea:ec:e5:8e:76: a8:69:b7:91:ff:ca:0b:59:d2:a2:37:93:bd:f7:ab:c6:37:ba: 38:de:e6:b8:7b:bf:ee:84:9e:fe:bc:c5:e4:f8:aa:99:d3:0d: f8:52:33:90:b6:d6:8b:fd:e2:28:91:5c:10:38:74:1d:d2:bc: 7f:c2:a1:ed:e6:7a:90:87:66:3a:66:ae:37:35:7d:7a:33:ae: 8f:01:a7:ca:48:dc:d4:5d:d7:b1:a6:7a:e3:61:3c:bf:29:d6: 9d:bd:4d:37:49:0c:60:8d:3b:42:7f:b8:36:c3:e2:70:09:3c: a2:ad:4f:3a:e9:65:36:23:5d:2f:42:56:08:89:df:29:30:00: dc:eb:7e:23:85:96:65:64:01:11:2b:27:42:4c:4c:a1:82:cb: 2f:62:80:7f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICClMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjUwMzE0MTk1MjI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q0ODhmZC1hMTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/6tBqQffmY+gPW1m6bv4bqrfNrzx0KeHPRUPWsClpkRSOf+LcfZ0EpIHLzn EL+5ZHdGxqs64vbcV8Vp86ql3YaVfVHcXIuFN8xCfBV12/NQiz+tx6ifUx1Qr8NO gu59PXobHC5wN2KrmBm89E/wNOKURU+F0SndFx6o3dCjwAwT3m5AaEDNfTUH/oAi KSQx45CK/wFaKrT9/SV/QkB0tHPCRmB8bstCDFI5jHeDGFsVjrwPpLj/ekkIKxrt VNh87NuCxaa3pUXmjcZ423/xMmNOJKgQboJ5KRJf/HmUXFnPRwuGoXtvRO1AsJE9 BVmUONs4aOLY1I+ZNTOwUnHOCwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBZNTgIb 5aEP1r/bIn2pVPXQhLAeMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REIwQzIvRkQ4ODM4MjI1RjUxMTFFQTg5OTkzRDI3QzRGOUFFMDIvRThEQTJEMUM1 RjUyMTFFQUJGQ0Y0MTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnlSQwDQQCAAIwBwMFACQF4UAwDQYJKoZIhvcNAQELBQAD ggEBAGSaQfpWInkQKX4EULMNIGGfsew+T70W87vQCaRsQZ73Gp0SZoaFbyY00FFe eShcI1EEOygeGali/T1CtyOO+EjpCEmrLym0N58wv/RCLpZbGTZpM56gzGvTtvyz Ng29amacXTCuh8/q7OWOdqhpt5H/ygtZ0qI3k733q8Y3ujje5rh7v+6Env68xeT4 qpnTDfhSM5C21ov94iiRXBA4dB3SvH/Coe3mepCHZjpmrjc1fXozro8Bp8pI3NRd 17GmeuNhPL8p1p29TTdJDGCNO0J/uDbD4nAJPKKtTzrpZTYjXS9CVgiJ3ykwANzr fiOFlmVkARErJ0JMTKGCyy9igH8= -----END CERTIFICATE-----Generated at Sat Apr 26 07:42:44 2025 by rpki-client