$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa File: 5AFFB9E48C2211EDAE44DD87C4F9AE02.roa (raw, json) Hash identifier: i5f17u0APuwWVrNQJwRvrSbhYIzk4h0SdlZzDluJdHE= Subject key identifier: EB:A4:DC:B6:4C:84:89:82:56:E1:0A:2A:19:93:A6:BD:03:E4:4C:A7 Certificate issuer: /CN=A91E8903/serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Certificate serial: 01C8 Authority key identifier: 45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa Signing time: Wed 23 Apr 2025 02:28:10 +0000 ROA not before: Wed 23 Apr 2025 02:28:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 131471 IP address blocks: 103.221.246.0/24 maxlen: 24 103.221.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8903, serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Validity Not Before: Apr 23 02:28:10 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6808503a-664a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:25:e0:e1:3b:0c:bc:ca:7e:a9:4f:a7:45:b0: 41:41:00:9d:ad:b4:b1:ec:87:0d:71:3d:c3:a5:b0: 44:22:36:b9:3c:d3:95:0b:36:88:b8:14:d3:f4:83: 29:cb:eb:87:43:6a:47:de:4b:c7:a7:90:07:c6:bb: 32:b9:68:1d:ee:83:db:57:c6:bb:77:44:32:42:44: 68:86:05:9c:dd:a9:48:b3:60:f5:9e:19:79:72:32: 5a:de:7d:a3:49:03:92:13:08:80:4c:38:60:5a:94: d9:1d:99:31:cb:ae:64:f8:a6:d5:7b:16:8a:c5:eb: 63:52:2d:c3:1e:b8:e3:ea:15:d8:6c:fa:c6:41:c4: 01:8b:49:a1:66:26:d4:ad:a6:22:f1:36:87:a5:31: c2:87:e8:a3:40:b5:93:2c:e0:43:8c:21:20:5c:fc: 80:e9:43:57:88:7f:82:be:a3:cd:f6:77:38:0e:80: 06:19:da:cd:45:7a:c7:32:56:bd:bc:29:35:c3:43: 8a:f4:93:be:42:20:84:b2:b0:96:6a:d6:91:9d:a7: 3a:a9:e2:99:b1:c7:01:d8:c9:69:d0:e7:1d:ce:9d: 74:cc:04:32:21:bb:d6:62:4e:9f:55:6c:9a:71:78: d2:d7:94:fb:f9:62:36:57:ae:e1:15:77:d8:1d:20: 26:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A4:DC:B6:4C:84:89:82:56:E1:0A:2A:19:93:A6:BD:03:E4:4C:A7 X509v3 Authority Key Identifier: keyid:45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.221.246.0/23 Signature Algorithm: sha256WithRSAEncryption 90:2c:c5:a7:70:04:33:c1:ab:47:1f:b8:b8:97:52:fa:40:f7: 9e:04:39:b1:2a:a5:e8:29:6f:a8:7a:ce:f8:aa:c8:ce:78:b1: 78:0a:f0:9a:52:68:e5:8b:81:3b:c5:da:0c:63:2d:0f:a1:19: 55:ff:b6:16:fc:55:85:15:9b:98:df:54:73:07:65:63:56:2e: b9:fd:2e:2e:6d:94:5a:99:e5:b3:c8:e8:71:f1:27:7b:9b:79: 9e:d9:25:7d:91:17:98:79:1a:45:df:f1:06:2d:f7:8d:4f:23: f6:2a:a4:67:8d:34:ca:98:c0:ab:d8:6c:c8:f0:76:df:0a:ef: 4e:41:a1:81:6e:00:1b:e7:19:5f:e3:92:15:09:88:90:f2:18: c5:27:02:bb:a0:65:32:b2:31:c2:9a:5f:d5:bf:a7:48:01:dc: e2:4b:75:fd:46:45:9a:55:7a:0d:19:22:39:df:53:28:e6:82: cc:da:46:63:62:73:0f:2d:95:cd:6f:ae:46:6d:27:e3:b3:52: 6a:46:13:3c:7a:76:51:aa:a7:d4:8a:fc:01:32:7c:9a:b2:00: c5:76:ba:78:35:e9:07:ef:b6:72:b7:e3:1c:3b:a4:b6:cf:e2: 89:58:d9:26:8c:ec:e0:12:0e:6d:45:4c:8b:3e:62:17:4c:4f: a8:ba:36:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MDMxMTAvBgNVBAUTKDQ1NkFGNUU1NjY3REUyNDhBOUNGMENFQjkwQzZEMUIz RDNFRDZGQTgwHhcNMjUwNDIzMDIyODEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA4NTAzYS02NjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCXg4TsMvMp+qU+nRbBBQQCdrbSx7IcNcT3DpbBEIja5PNOVCzaIuBTT9IMp y+uHQ2pH3kvHp5AHxrsyuWgd7oPbV8a7d0QyQkRohgWc3alIs2D1nhl5cjJa3n2j SQOSEwiATDhgWpTZHZkxy65k+KbVexaKxetjUi3DHrjj6hXYbPrGQcQBi0mhZibU raYi8TaHpTHCh+ijQLWTLOBDjCEgXPyA6UNXiH+CvqPN9nc4DoAGGdrNRXrHMla9 vCk1w0OK9JO+QiCEsrCWataRnac6qeKZsccB2Mlp0Ocdzp10zAQyIbvWYk6fVWya cXjS15T7+WI2V67hFXfYHSAmnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOuk3LZM hImCVuEKKhmTpr0D5EynMB8GA1UdIwQYMBaAFEVq9eVmfeJIqc8M65DG0bPT7W+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkwMy9EODk4MjY1QThD MUYxMUVEQUU0NDFEODdDNEY5QUUwMi9SV3IxNVdaOTRraXB6d3pya01iUnM5UHRi NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXcjE1V1o5NGtpcHp3enJrTWJSczlQdGI2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MDMvRDg5ODI2NUE4QzFGMTFFREFFNDQxRDg3QzRGOUFFMDIvNUFGRkI5RTQ4 QzIyMTFFREFFNDRERDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn3fYwDQYJKoZIhvcNAQELBQADggEBAJAsxadwBDPBq0cf uLiXUvpA954EObEqpegpb6h6zviqyM54sXgK8JpSaOWLgTvF2gxjLQ+hGVX/thb8 VYUVm5jfVHMHZWNWLrn9Li5tlFqZ5bPI6HHxJ3ubeZ7ZJX2RF5h5GkXf8QYt941P I/YqpGeNNMqYwKvYbMjwdt8K705BoYFuABvnGV/jkhUJiJDyGMUnArugZTKyMcKa X9W/p0gB3OJLdf1GRZpVeg0ZIjnfUyjmgszaRmNicw8tlc1vrkZtJ+OzUmpGEzx6 dlGqp9SK/AEyfJqyAMV2ung16QfvtnK34xw7pLbP4olY2SaM7OASDm1FTIs+YhdM T6i6Nq4= -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:42 2025 by rpki-client