$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/B76665B6AAC011EFBC479E79C4F9AE02.roa File: B76665B6AAC011EFBC479E79C4F9AE02.roa (raw, json) Hash identifier: ebFVZb24qzMOclquLEvNefeGPzln4MMRSWx20kkSl4I= Subject key identifier: 54:63:2E:29:5A:04:56:F2:6B:DE:9E:93:D7:49:65:3C:FD:74:08:8C Certificate issuer: /CN=A91DB6F8/serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F Certificate serial: 01A2 Authority key identifier: 23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/B76665B6AAC011EFBC479E79C4F9AE02.roa Signing time: Tue 07 Jan 2025 02:36:19 +0000 ROA not before: Tue 07 Jan 2025 02:36:19 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 140690 IP address blocks: 103.48.20.0/24 maxlen: 24 2001:df1:a0c0::/48 maxlen: 48 2001:df1:a0c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.crl rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB6F8, serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F Validity Not Before: Jan 7 02:36:19 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677c9322-3889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9d:9c:8c:d2:bd:a6:6c:b2:6c:ef:ef:f3:f3: 50:7d:68:2a:de:e6:15:13:db:10:a0:f9:17:bd:0f: 3b:14:57:21:41:11:8a:ff:68:6b:ef:14:38:74:8c: e3:2d:d7:46:ad:85:0e:6d:f9:36:4f:e9:95:a7:95: c3:47:dd:28:64:b0:ac:47:3b:76:e0:fd:bb:44:6a: 0e:56:6c:72:33:2f:83:f4:4f:40:ea:06:d7:1e:c5: e8:da:35:7d:51:a2:56:09:33:2c:61:74:2e:13:03: 88:ca:b3:ef:67:17:3e:6f:59:5e:25:f1:16:88:d8: de:f3:d6:a2:47:30:04:8a:ad:a3:92:50:41:9a:a9: be:f4:58:53:d4:00:2e:84:e2:3b:a6:f4:da:d6:c8: 34:20:38:46:f7:a6:ff:8b:86:f5:83:4c:2e:cc:60: b3:f1:59:10:dd:f9:d7:e0:4c:ec:35:e2:88:52:6f: ee:c1:12:c4:fb:dc:6e:79:28:b9:68:4c:bc:39:0c: 33:ab:a9:e9:a1:f5:2b:a0:36:34:c5:a8:f0:ea:dc: 88:52:3e:1f:68:48:cd:9c:f7:25:de:67:de:99:ba: 17:88:90:1b:1d:b2:c7:a9:70:38:b2:19:8a:64:a9: 78:af:fc:ec:3b:65:3d:d5:19:03:cf:55:b0:4f:b3: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:63:2E:29:5A:04:56:F2:6B:DE:9E:93:D7:49:65:3C:FD:74:08:8C X509v3 Authority Key Identifier: keyid:23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/B76665B6AAC011EFBC479E79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.20.0/24 IPv6: 2001:df1:a0c0::/47 Signature Algorithm: sha256WithRSAEncryption af:c2:5a:9a:43:ec:d3:0a:11:b0:d8:28:f3:01:0f:4e:db:98: 57:e6:55:76:ce:9d:db:5f:d9:8b:3e:b7:80:08:0b:fe:32:1e: 07:92:2b:4f:1a:99:c9:e6:c7:13:bb:d2:2d:06:72:f0:2c:dd: 66:54:ce:6b:06:3c:63:af:ad:15:ed:14:99:bc:85:63:42:ed: ed:25:e0:55:e6:a0:00:92:f1:94:70:d2:71:24:35:96:fa:30: 1d:c3:a8:7c:65:90:0c:05:62:89:dd:89:4b:b5:89:aa:ab:08: bd:5d:37:b4:b6:20:72:f0:e2:71:fb:ad:d0:ef:d7:7e:cb:63: 0c:7c:3c:a2:9b:4b:e9:22:99:5c:ef:46:69:03:01:b5:c5:e9: 01:38:a1:71:d1:3b:35:ee:c8:83:e5:0b:9d:7e:3e:b1:3f:a6: 93:46:2b:63:b7:7a:1b:84:08:5e:cd:2c:50:da:8a:d5:52:77: c1:9a:a8:9d:69:c0:45:89:51:e1:fc:75:84:d3:74:ff:a5:ea: 4d:77:e1:45:86:78:ec:c2:46:3a:b7:5c:26:68:fa:1f:0a:6d: 38:e3:79:7a:e2:2b:79:af:82:92:96:14:01:33:4c:d0:c4:96: d9:62:85:94:da:57:84:ba:e2:19:4b:b3:5c:d4:c0:bd:e4:39: e0:e8:5b:36 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI2RjgxMTAvBgNVBAUTKDIzN0I3RDRDQTg0QTI2RDVGQzQ5NThENDgxOTFGMzZB MTRCQzdBMkYwHhcNMjUwMTA3MDIzNjE5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjOTMyMi0zODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2p2cjNK9pmyybO/v8/NQfWgq3uYVE9sQoPkXvQ87FFchQRGK/2hr7xQ4dIzj LddGrYUObfk2T+mVp5XDR90oZLCsRzt24P27RGoOVmxyMy+D9E9A6gbXHsXo2jV9 UaJWCTMsYXQuEwOIyrPvZxc+b1leJfEWiNje89aiRzAEiq2jklBBmqm+9FhT1AAu hOI7pvTa1sg0IDhG96b/i4b1g0wuzGCz8VkQ3fnX4EzsNeKIUm/uwRLE+9xueSi5 aEy8OQwzq6npofUroDY0xajw6tyIUj4faEjNnPcl3mfemboXiJAbHbLHqXA4shmK ZKl4r/zsO2U91RkDz1WwT7OnowIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFRjLila BFbya96ek9dJZTz9dAiMMB8GA1UdIwQYMBaAFCN7fUyoSibV/ElY1IGR82oUvHov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjZGOC81NjJDM0NCNDcy NEUxMUVEOEUyMDY3M0VDNEY5QUUwMi9JM3Q5VEtoS0p0WDhTVmpVZ1pIemFoUzhl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzdDlUS2hLSnRYOFNWalVnWkh6YWhTOGVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI2RjgvNTYyQzNDQjQ3MjRFMTFFRDhFMjA2NzNFQzRGOUFFMDIvQjc2NjY1QjZB QUMwMTFFRkJDNDc5RTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnMBQwDwQCAAIwCQMHASABDfGgwDANBgkqhkiG9w0BAQsF AAOCAQEAr8JamkPs0woRsNgo8wEPTtuYV+ZVds6d21/Ziz63gAgL/jIeB5IrTxqZ yebHE7vSLQZy8CzdZlTOawY8Y6+tFe0UmbyFY0Lt7SXgVeagAJLxlHDScSQ1lvow HcOofGWQDAViid2JS7WJqqsIvV03tLYgcvDicfut0O/XfstjDHw8optL6SKZXO9G aQMBtcXpATihcdE7Ne7Ig+ULnX4+sT+mk0YrY7d6G4QIXs0sUNqK1VJ3wZqonWnA RYlR4fx1hNN0/6XqTXfhRYZ47MJGOrdcJmj6HwptOON5euIrea+CkpYUATNM0MSW 2WKFlNpXhLriGUuzXNTAveQ54OhbNg== -----END CERTIFICATE-----Generated at Sat Apr 26 08:14:16 2025 by rpki-client