$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/84121C245CE111E9824BCF76C4F9AE02.roa File: 84121C245CE111E9824BCF76C4F9AE02.roa (raw, json) Hash identifier: 8Zz4WZWTWE1rYGdesfrI4nbcmdLpScVAzXKOeHR6Hc0= Subject key identifier: EF:11:19:CF:97:8E:F3:50:08:53:32:20:77:41:E6:FB:3F:00:74:B2 Certificate issuer: /CN=A91EB7BD/serialNumber=66034D2136C43B14382157E12BB74B2CBA9D97A3 Certificate serial: 1169 Authority key identifier: 66:03:4D:21:36:C4:3B:14:38:21:57:E1:2B:B7:4B:2C:BA:9D:97:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/84121C245CE111E9824BCF76C4F9AE02.roa Signing time: Wed 02 Apr 2025 17:46:01 +0000 ROA not before: Wed 02 Apr 2025 17:46:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38447 IP address blocks: 103.134.64.0/24 maxlen: 24 203.84.132.0/24 maxlen: 24 2404:5f40::/48 maxlen: 48 2404:5f40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.crl rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4457 (0x1169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB7BD, serialNumber=66034D2136C43B14382157E12BB74B2CBA9D97A3 Validity Not Before: Apr 2 17:46:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed77d8-6d57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:47:23:6d:10:58:9f:df:9b:40:3e:e8:09:9f: d1:f0:f7:80:05:94:1d:eb:fa:cc:88:b1:f8:94:30: 93:7e:39:f1:c5:22:10:b0:a5:21:ef:7c:cc:42:7b: cf:02:6c:0d:9b:74:32:76:f1:71:12:6d:42:cf:04: 29:1e:32:7c:f3:c0:e1:68:a1:3b:4a:5a:62:bb:a8: 4e:5d:af:6f:8d:02:77:ab:b7:cf:f5:96:02:88:bf: bc:97:00:41:c7:47:a3:7b:76:83:d6:fc:9e:3d:c6: 3d:a9:bc:a2:d9:bd:e6:35:36:d9:2e:f2:5e:30:12: 3d:f1:88:da:37:0b:5c:26:87:8c:30:86:92:12:5c: 2d:01:07:c0:38:9f:d9:ca:dd:7d:7e:dc:82:ce:ea: cb:3a:aa:26:b0:e8:25:5c:d1:22:ac:6b:34:64:35: f1:ed:35:dd:1c:3b:12:0b:b6:2b:16:e3:76:d9:02: c0:73:71:64:3f:3f:6f:ef:a4:7d:f1:15:e0:ad:7d: 9b:cf:41:f1:83:f0:c8:e6:a5:b4:2b:7a:64:71:de: 3e:61:b1:f2:53:33:58:71:97:a0:ad:4d:0c:e7:27: 63:f0:63:b8:65:f3:5a:67:c3:4f:e4:21:a7:6c:4f: eb:2a:17:fa:bb:de:e3:d5:a8:7d:ab:ec:a3:be:ce: 3d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:11:19:CF:97:8E:F3:50:08:53:32:20:77:41:E6:FB:3F:00:74:B2 X509v3 Authority Key Identifier: keyid:66:03:4D:21:36:C4:3B:14:38:21:57:E1:2B:B7:4B:2C:BA:9D:97:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/84121C245CE111E9824BCF76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.64.0/24 203.84.132.0/24 IPv6: 2404:5f40::/48 2404:5f40:2::/48 Signature Algorithm: sha256WithRSAEncryption 03:05:cc:c0:cc:6c:85:91:1a:de:fb:aa:d6:eb:b3:7e:dd:fa: 93:55:3f:d7:f1:8b:96:31:f8:2b:40:d2:a7:b4:e1:e6:62:ad: e4:c9:a8:ed:8c:28:ef:db:d2:fd:ce:ff:da:85:cf:79:bb:23: 5a:3b:cc:d5:e2:b5:67:47:17:f1:3a:2f:ee:dd:2c:04:fd:b5: b6:68:cd:2a:ec:54:77:c3:a2:4d:e6:af:74:97:76:02:b0:30: 1a:99:4d:68:cb:c6:61:96:82:f0:27:10:93:f2:90:51:4c:4a: ec:8c:99:99:e0:bc:1b:88:ab:de:11:a7:b2:1d:2d:e7:a1:92: 6c:32:8c:14:27:02:12:91:5f:94:22:19:f6:ee:9a:cd:fd:09: 12:0f:aa:02:31:6d:4d:be:8f:ba:a9:32:81:52:71:7f:ae:1a: 83:97:ed:0c:c9:36:6e:4b:b9:b8:9d:9d:c9:b5:da:4d:06:b3: 4e:7b:76:df:3c:bc:d6:0a:d8:80:e3:42:dd:f9:d5:74:e2:ba: aa:ae:9e:02:79:fd:b6:3b:7e:55:d0:a0:56:86:55:e7:a8:8b: d0:ac:81:a3:fb:6d:3f:cd:c9:14:4f:22:d0:cc:95:b6:9a:e4: 82:1d:43:6c:a4:9a:d2:11:55:ac:1c:01:30:43:27:43:56:73: 95:33:61:16 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICEWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI3QkQxMTAvBgNVBAUTKDY2MDM0RDIxMzZDNDNCMTQzODIxNTdFMTJCQjc0QjJD QkE5RDk3QTMwHhcNMjUwNDAyMTc0NjAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNzdkOC02ZDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0cjbRBYn9+bQD7oCZ/R8PeABZQd6/rMiLH4lDCTfjnxxSIQsKUh73zMQnvP AmwNm3QydvFxEm1CzwQpHjJ888DhaKE7Slpiu6hOXa9vjQJ3q7fP9ZYCiL+8lwBB x0eje3aD1vyePcY9qbyi2b3mNTbZLvJeMBI98YjaNwtcJoeMMIaSElwtAQfAOJ/Z yt19ftyCzurLOqomsOglXNEirGs0ZDXx7TXdHDsSC7YrFuN22QLAc3FkPz9v76R9 8RXgrX2bz0Hxg/DI5qW0K3pkcd4+YbHyUzNYcZegrU0M5ydj8GO4ZfNaZ8NP5CGn bE/rKhf6u97j1ah9q+yjvs49dwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFO8RGc+X jvNQCFMyIHdB5vs/AHSyMB8GA1UdIwQYMBaAFGYDTSE2xDsUOCFX4Su3Syy6nZej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjdCRC80MzE3Mjc4Q0ZF OTAxMUU4QkJCOTVBMTRDNEY5QUUwMi9aZ05OSVRiRU94UTRJVmZoSzdkTExMcWRs Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnTk5JVGJFT3hRNElWZmhLN2RMTExxZGw2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI3QkQvNDMxNzI3OENGRTkwMTFFOEJCQjk1QTE0QzRGOUFFMDIvODQxMjFDMjQ1 Q0UxMTFFOTgyNEJDRjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBABnhkADBADLVIQwGAQCAAIwEgMHACQEX0AAAAMHACQEX0AA AjANBgkqhkiG9w0BAQsFAAOCAQEAAwXMwMxshZEa3vuq1uuzft36k1U/1/GLljH4 K0DSp7Th5mKt5Mmo7Ywo79vS/c7/2oXPebsjWjvM1eK1Z0cX8Tov7t0sBP21tmjN KuxUd8OiTeavdJd2ArAwGplNaMvGYZaC8CcQk/KQUUxK7IyZmeC8G4ir3hGnsh0t 56GSbDKMFCcCEpFflCIZ9u6azf0JEg+qAjFtTb6PuqkygVJxf64ag5ftDMk2bku5 uJ2dybXaTQazTnt23zy81grYgONC3fnVdOK6qq6eAnn9tjt+VdCgVoZV56iL0KyB o/ttP83JFE8i0MyVtprkgh1DbKSa0hFVrBwBMEMnQ1ZzlTNhFg== -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:34 2025 by rpki-client