$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa File: EE7FBFECF5DA11EAA1976953C4F9AE02.roa (raw, json) Hash identifier: bzpB4F0T2MqsBH0+3JDYXD2F08B9kqYao9uCf8JDtL4= Subject key identifier: 43:00:4D:F1:D1:DA:EB:B6:1A:2C:DF:B5:19:31:CB:1D:62:98:17:B1 Certificate issuer: /CN=A91E82C4/serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Certificate serial: 07C7 Authority key identifier: 4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa Signing time: Tue 08 Apr 2025 21:01:14 +0000 ROA not before: Tue 08 Apr 2025 21:01:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136442 IP address blocks: 103.88.48.0/22 maxlen: 22 103.88.48.0/24 maxlen: 24 103.88.49.0/24 maxlen: 24 103.88.50.0/24 maxlen: 24 103.88.51.0/24 maxlen: 24 203.96.240.0/22 maxlen: 22 203.96.240.0/24 maxlen: 24 203.96.241.0/24 maxlen: 24 203.96.242.0/24 maxlen: 24 203.96.243.0/24 maxlen: 24 2400:de40::/32 maxlen: 32 2400:de40::/48 maxlen: 48 2400:de40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:58:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1991 (0x7c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82C4, serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Validity Not Before: Apr 8 21:01:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f58e9a-16cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6d:7a:22:9f:aa:17:55:8e:fa:81:f3:3a:49: c6:57:c4:03:f4:c1:f5:ae:c9:fa:7a:ad:a9:5a:5b: e2:f2:a8:ea:16:5b:ed:57:31:37:8a:80:52:f7:6f: 43:66:57:b1:11:b8:0b:8e:fb:47:40:7a:88:3c:79: d3:6a:ac:57:08:a4:45:45:c6:a2:09:0b:a2:e6:15: 9e:70:db:45:26:5f:27:15:7d:ea:ec:ec:93:40:2c: c2:2f:d3:b4:26:b5:a8:3e:dd:78:fd:d0:03:be:32: ac:e6:d6:74:f2:f2:3a:9c:21:1d:e0:2e:30:c1:4a: 35:7e:d4:a6:6f:67:c2:49:69:a0:c6:01:bf:2d:1f: 58:93:d3:12:75:76:02:02:79:11:22:a3:b9:f8:0b: d6:d3:8b:73:0a:f7:82:55:d7:a6:0d:24:22:b1:9e: 21:db:5b:39:41:ee:20:e4:9f:eb:28:c8:c8:95:39: f9:be:57:03:47:7f:a3:89:7c:72:26:cf:7c:f8:fb: b5:d8:dd:d2:7d:8e:82:74:35:95:81:4c:69:03:40: 87:dc:1a:38:b6:78:8b:6d:94:9c:f9:76:75:1e:98: 7d:d1:89:57:09:11:e6:ad:74:10:39:39:16:3f:fd: 38:00:58:2e:6e:8a:49:b0:b2:66:55:5c:51:c4:fd: e3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:00:4D:F1:D1:DA:EB:B6:1A:2C:DF:B5:19:31:CB:1D:62:98:17:B1 X509v3 Authority Key Identifier: keyid:4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.48.0/22 203.96.240.0/22 IPv6: 2400:de40::/32 Signature Algorithm: sha256WithRSAEncryption 03:cc:3e:ef:43:2c:d8:e2:a0:25:6e:9b:4a:0c:88:3b:92:4d: 0c:0a:b7:44:4b:7d:7b:1f:4b:a2:20:0f:2c:2b:85:e8:1d:5e: 92:e0:16:f7:a4:81:c7:b0:59:73:4f:83:63:df:da:92:8a:26: 70:3d:59:c1:99:c4:8a:88:37:87:0d:de:be:81:bd:c3:d0:e9: dc:57:b8:a1:15:56:a0:8e:ff:47:1b:48:9d:86:2c:e6:89:25: 47:7f:f9:e2:9a:5f:90:49:bc:ba:a1:1e:ee:9d:af:3f:1d:ad: a0:e0:8f:03:ee:5e:ee:d6:df:01:33:69:03:45:3e:94:1c:88: ec:ea:bb:bf:61:ed:fd:60:62:19:52:4c:d4:ff:14:8b:1e:25: 34:b8:1a:bc:40:37:0e:9c:da:73:34:54:e4:52:95:a7:4a:9c: 38:20:78:4c:5c:9d:12:a1:06:6d:e9:d0:be:97:9f:30:25:6f: 68:4e:b5:0a:89:9c:75:06:9b:53:f0:bc:a5:24:67:af:64:c4: 7f:c4:43:5b:7a:67:8e:5b:f5:b1:76:d7:ab:d0:22:b0:5c:07: 7b:7d:aa:cb:68:f3:dc:1e:22:a1:32:7e:52:d2:b0:96:58:12: 84:54:1f:d8:c9:37:6d:d0:6c:1a:28:e4:fa:e2:b8:29:da:4d: 9e:0d:a0:80 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgyQzQxMTAvBgNVBAUTKDRFQUJENkUwNUNBMEU0QTZBODE1RjlCNjQ2OTRCM0NG ODkyQUY4RjQwHhcNMjUwNDA4MjEwMTE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1OGU5YS0xNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvm16Ip+qF1WO+oHzOknGV8QD9MH1rsn6eq2pWlvi8qjqFlvtVzE3ioBS929D ZlexEbgLjvtHQHqIPHnTaqxXCKRFRcaiCQui5hWecNtFJl8nFX3q7OyTQCzCL9O0 JrWoPt14/dADvjKs5tZ08vI6nCEd4C4wwUo1ftSmb2fCSWmgxgG/LR9Yk9MSdXYC AnkRIqO5+AvW04tzCveCVdemDSQisZ4h21s5Qe4g5J/rKMjIlTn5vlcDR3+jiXxy Js98+Pu12N3SfY6CdDWVgUxpA0CH3Bo4tniLbZSc+XZ1Hph90YlXCRHmrXQQOTkW P/04AFgubopJsLJmVVxRxP3jiQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEMATfHR 2uu2GizftRkxyx1imBexMB8GA1UdIwQYMBaAFE6r1uBcoOSmqBX5tkaUs8+JKvj0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODJDNC84MUYwRDU0Q0Y1 RDkxMUVBQUVGNjlENTFDNEY5QUUwMi9UcXZXNEZ5ZzVLYW9GZm0yUnBTeno0a3Et UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rxdlc0RnlnNUthb0ZmbTJScFN6ejRrcS1QUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgyQzQvODFGMEQ1NENGNUQ5MTFFQUFFRjY5RDUxQzRGOUFFMDIvRUU3RkJGRUNG NURBMTFFQUExOTc2OTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnWDADBALLYPAwDQQCAAIwBwMFACQA3kAwDQYJKoZIhvcN AQELBQADggEBAAPMPu9DLNjioCVum0oMiDuSTQwKt0RLfXsfS6IgDywrhegdXpLg FvekgcewWXNPg2Pf2pKKJnA9WcGZxIqIN4cN3r6BvcPQ6dxXuKEVVqCO/0cbSJ2G LOaJJUd/+eKaX5BJvLqhHu6drz8draDgjwPuXu7W3wEzaQNFPpQciOzqu79h7f1g YhlSTNT/FIseJTS4GrxANw6c2nM0VORSladKnDggeExcnRKhBm3p0L6XnzAlb2hO tQqJnHUGm1PwvKUkZ69kxH/EQ1t6Z45b9bF216vQIrBcB3t9qsto89weIqEyflLS sJZYEoRUH9jJN23QbBoo5PriuCnaTZ4NoIA= -----END CERTIFICATE-----Generated at Sat Apr 26 08:07:46 2025 by rpki-client