$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/A86EF6C8C9AF11EAA26C015FC4F9AE02.roa File: A86EF6C8C9AF11EAA26C015FC4F9AE02.roa (raw, json) Hash identifier: zTAfwveIPTRwXSl7hQHDO93OE6PzSAULcilI97W7uGU= Subject key identifier: AE:D5:25:28:B6:D4:C4:18:85:2A:C6:18:52:56:AB:86:5B:7D:E4:33 Certificate issuer: /CN=A91E0C24/serialNumber=6F267E4566083FEB236A2C3923B7039600BDE794 Certificate serial: 0AEA Authority key identifier: 6F:26:7E:45:66:08:3F:EB:23:6A:2C:39:23:B7:03:96:00:BD:E7:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byZ-RWYIP-sjaiw5I7cDlgC955Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/A86EF6C8C9AF11EAA26C015FC4F9AE02.roa Signing time: Wed 12 Feb 2025 20:08:23 +0000 ROA not before: Wed 12 Feb 2025 20:08:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140068 IP address blocks: 103.148.14.0/24 maxlen: 24 103.148.15.0/24 maxlen: 24 2001:df2:b780::/48 maxlen: 48 2001:df2:b781::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/byZ-RWYIP-sjaiw5I7cDlgC955Q.crl rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/byZ-RWYIP-sjaiw5I7cDlgC955Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byZ-RWYIP-sjaiw5I7cDlgC955Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2794 (0xaea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C24, serialNumber=6F267E4566083FEB236A2C3923B7039600BDE794 Validity Not Before: Feb 12 20:08:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67acffb6-236b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b2:33:0f:38:a0:a4:2c:e8:62:a9:0d:70:c8: 2d:79:9b:07:63:8b:3d:b5:96:ed:71:7e:27:fb:14: 30:e5:a6:55:f8:cf:70:49:57:2f:d3:81:9a:be:67: de:ff:06:15:4f:20:b3:ce:ec:f9:e6:52:e6:3f:52: 1a:b7:ef:7b:57:dc:f5:75:da:e6:52:ad:f2:82:92: 25:29:be:14:ba:be:23:ad:08:b8:77:a2:d1:5b:1a: d1:74:82:ca:f2:a1:26:b2:89:d8:ec:62:e1:70:d3: 89:81:0f:24:16:9f:1a:4b:42:a3:d5:40:b9:0d:59: 04:fb:df:f9:13:39:06:aa:70:18:d2:c3:b3:98:80: 3e:a0:04:5c:9b:2c:73:80:b6:f5:af:39:be:0b:ea: 0e:03:42:24:a1:d6:2b:5f:1b:4f:b6:de:a2:81:b8: 97:fd:d8:1c:b7:a9:c4:97:58:fe:13:bc:c6:5d:45: e6:36:aa:20:86:f4:22:0c:95:a5:e4:6a:85:ab:e6: fc:82:b0:24:66:ba:73:20:fc:cd:31:c1:23:00:b7: 18:0b:39:d3:a0:87:cc:40:f0:c3:82:ab:57:9b:1f: ea:63:bc:b4:b3:ff:04:40:f9:f3:1a:2a:bf:0d:91: d5:a0:ad:ab:a8:fe:4a:a6:da:32:cd:5c:99:63:98: 55:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D5:25:28:B6:D4:C4:18:85:2A:C6:18:52:56:AB:86:5B:7D:E4:33 X509v3 Authority Key Identifier: keyid:6F:26:7E:45:66:08:3F:EB:23:6A:2C:39:23:B7:03:96:00:BD:E7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/byZ-RWYIP-sjaiw5I7cDlgC955Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byZ-RWYIP-sjaiw5I7cDlgC955Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/A86EF6C8C9AF11EAA26C015FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.14.0/23 IPv6: 2001:df2:b780::/47 Signature Algorithm: sha256WithRSAEncryption 04:14:45:0c:ec:c6:64:bb:9e:b0:b3:8b:2b:00:d8:38:e2:5d: 9c:29:85:c9:fb:38:ef:e8:5a:f2:4c:77:f4:2d:01:6d:d8:ed: 57:1d:1c:c6:3b:ff:e6:be:c7:c1:5b:08:22:69:82:a5:f4:f6: d1:91:3c:a0:e0:91:98:9b:b5:db:6c:69:21:dd:2f:91:ae:4f: af:e0:52:7f:96:9a:c5:5b:88:6f:b7:80:aa:f3:fe:2d:84:66: 20:6b:02:a7:45:6a:fc:d2:b4:b4:c4:35:1f:70:33:29:54:67: 46:96:c6:c7:53:1b:88:f4:63:80:b4:6e:52:10:a0:96:7e:74: f0:41:80:ce:6a:1e:80:61:73:30:c7:bf:3f:ec:70:46:9b:40: 6a:44:9d:b4:27:5d:64:e3:2f:c0:94:f3:69:fe:71:82:d1:9d: 59:63:e2:a0:57:07:3b:b0:a4:17:d3:eb:ac:82:e6:da:69:23: 97:b7:26:61:0e:77:7d:ed:cd:d0:51:58:e6:b4:13:96:c2:cb: cd:da:b0:ac:d8:a0:b6:c0:3b:25:65:0e:cb:c2:03:13:a5:6a: 63:03:47:1a:54:39:7a:11:93:a0:07:bb:50:87:98:1d:15:c4: 32:8a:06:0b:02:da:e2:bf:c6:23:3d:ee:57:2a:72:0d:c0:f5: 17:7a:a6:0a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMjQxMTAvBgNVBAUTKDZGMjY3RTQ1NjYwODNGRUIyMzZBMkMzOTIzQjcwMzk2 MDBCREU3OTQwHhcNMjUwMjEyMjAwODIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZmZiNi0yMzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLIzDzigpCzoYqkNcMgteZsHY4s9tZbtcX4n+xQw5aZV+M9wSVcv04Gavmfe /wYVTyCzzuz55lLmP1Iat+97V9z1ddrmUq3ygpIlKb4Uur4jrQi4d6LRWxrRdILK 8qEmsonY7GLhcNOJgQ8kFp8aS0Kj1UC5DVkE+9/5EzkGqnAY0sOzmIA+oARcmyxz gLb1rzm+C+oOA0IkodYrXxtPtt6igbiX/dgct6nEl1j+E7zGXUXmNqoghvQiDJWl 5GqFq+b8grAkZrpzIPzNMcEjALcYCznToIfMQPDDgqtXmx/qY7y0s/8EQPnzGiq/ DZHVoK2rqP5KptoyzVyZY5hVdQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK7VJSi2 1MQYhSrGGFJWq4ZbfeQzMB8GA1UdIwQYMBaAFG8mfkVmCD/rI2osOSO3A5YAveeU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyNC8xOEM4QjY5MjQ0 MzIxMUVBOUNBREZEMUNDNEY5QUUwMi9ieVotUldZSVAtc2phaXc1STdjRGxnQzk1 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Wi1SV1lJUC1zamFpdzVJN2NEbGdDOTU1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDMjQvMThDOEI2OTI0NDMyMTFFQTlDQURGRDFDQzRGOUFFMDIvQTg2RUY2QzhD OUFGMTFFQUEyNkMwMTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlA4wDwQCAAIwCQMHASABDfK3gDANBgkqhkiG9w0BAQsF AAOCAQEABBRFDOzGZLuesLOLKwDYOOJdnCmFyfs47+ha8kx39C0BbdjtVx0cxjv/ 5r7HwVsIImmCpfT20ZE8oOCRmJu122xpId0vka5Pr+BSf5aaxVuIb7eAqvP+LYRm IGsCp0Vq/NK0tMQ1H3AzKVRnRpbGx1MbiPRjgLRuUhCgln508EGAzmoegGFzMMe/ P+xwRptAakSdtCddZOMvwJTzaf5xgtGdWWPioFcHO7CkF9PrrILm2mkjl7cmYQ53 fe3N0FFY5rQTlsLLzdqwrNigtsA7JWUOy8IDE6VqYwNHGlQ5ehGToAe7UIeYHRXE MooGCwLa4r/GIz3uVypyDcD1F3qmCg== -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:38 2025 by rpki-client