$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa File: 6DEA717805F811F0833EAC2FC4F9AE02.roa (raw, json) Hash identifier: eHhYDx0TTrbl06qNq4Uwz8JzG4h29k3aeCeTeHUoPnc= Subject key identifier: D0:90:9D:4F:BE:1A:39:88:36:22:FC:8B:97:88:85:1E:78:82:10:4A Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0AF9 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa Signing time: Fri 21 Mar 2025 02:01:40 +0000 ROA not before: Fri 21 Mar 2025 02:01:40 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9311 IP address blocks: 103.231.37.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Mar 21 02:01:40 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67dcc884-8ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c3:d9:ac:b7:a3:bc:0d:a6:fe:07:41:21:34: 22:ea:5c:61:e1:57:f8:98:a5:4b:5c:08:84:28:15: c7:97:fd:37:ad:22:ab:1b:e7:02:16:a2:7f:33:d5: 25:9c:b0:80:f1:e7:41:c9:ed:d3:b4:dc:54:34:2e: 06:d2:b9:21:81:f8:ae:d8:a4:c2:ba:ca:24:a7:e4: b2:2d:cc:9f:e6:58:4a:c2:9c:29:bf:d9:cb:22:4a: 21:9e:bf:34:f9:d1:50:fe:ea:19:e9:be:84:14:96: 9b:88:df:ce:7f:0e:e8:ef:b0:83:bb:29:1b:69:7e: e1:c4:12:dc:c4:40:cb:35:93:c3:26:fd:5d:e1:1e: 33:e3:f2:90:3b:94:a5:9c:1d:40:93:25:b2:d1:7f: fc:72:09:36:02:f1:91:2a:00:76:16:1e:bf:3d:84: 87:a8:9e:8e:5d:9f:fa:fb:4f:b6:f3:a8:bd:ca:ef: 9e:b4:fe:1c:d2:d2:44:17:1e:7b:5b:cc:af:22:5c: e9:ae:ed:cd:a4:2e:6e:a8:85:ab:f7:cd:fb:a4:2a: 07:74:cd:20:18:b2:f8:b8:9f:ef:ac:60:6b:61:5a: 80:0f:a4:a8:c3:66:7e:f3:2d:5e:5a:f2:03:5d:40: bc:01:67:ca:56:a7:fd:43:ef:18:a2:91:37:84:61: 10:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:90:9D:4F:BE:1A:39:88:36:22:FC:8B:97:88:85:1E:78:82:10:4A X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.37.0/24 103.231.39.0/24 Signature Algorithm: sha256WithRSAEncryption 73:50:89:93:de:73:e2:b1:29:77:20:08:81:9f:bf:20:e3:09: a7:c9:1d:86:6c:d8:7f:3c:07:3f:c7:44:5e:34:b7:d0:6c:bf: ef:97:e4:93:08:41:4f:90:e6:10:50:27:93:c6:dd:1a:98:5a: c0:5a:b1:b4:db:60:a2:78:bb:26:7f:54:cd:60:de:35:64:ab: b7:b6:0e:02:9a:ab:02:06:98:2d:ef:c3:f6:ac:4a:43:7c:ed: be:54:ff:29:a1:f2:10:78:ab:32:9b:ef:7a:30:37:fa:26:16: e2:a1:3f:d1:c3:e3:f5:a3:25:1a:a1:a2:58:7d:83:24:97:d0: a5:d9:0f:e0:cc:fb:25:ee:50:ee:f1:43:19:88:25:8d:74:c2: 23:39:38:11:c5:f4:46:b0:6f:13:3d:99:b4:0e:23:74:ec:5a: 19:83:16:23:0e:33:c9:00:c2:57:4c:e0:3c:1b:e2:dc:94:23: 7f:5c:bd:41:4a:7f:6b:27:15:87:6e:70:d8:bf:f5:49:86:2d: a3:2f:55:57:63:94:d3:46:86:a7:78:a7:f2:07:70:62:37:9e: ec:6b:8b:f3:47:cf:1f:30:76:d0:55:6f:b5:ef:e7:41:4f:8d: 3f:1f:29:3d:d7:11:83:6a:cb:1d:72:cf:75:59:1c:df:ec:d8: 33:6c:7b:65 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwMzIxMDIwMTQwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjYzg4NC04YWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsPZrLejvA2m/gdBITQi6lxh4Vf4mKVLXAiEKBXHl/03rSKrG+cCFqJ/M9Ul nLCA8edBye3TtNxUNC4G0rkhgfiu2KTCusokp+SyLcyf5lhKwpwpv9nLIkohnr80 +dFQ/uoZ6b6EFJabiN/Ofw7o77CDuykbaX7hxBLcxEDLNZPDJv1d4R4z4/KQO5Sl nB1AkyWy0X/8cgk2AvGRKgB2Fh6/PYSHqJ6OXZ/6+0+286i9yu+etP4c0tJEFx57 W8yvIlzpru3NpC5uqIWr9837pCoHdM0gGLL4uJ/vrGBrYVqAD6Sow2Z+8y1eWvID XUC8AWfKVqf9Q+8YopE3hGEQCwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNCQnU++ GjmINiL8i5eIhR54ghBKMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvNkRFQTcxNzgw NUY4MTFGMDgzM0VBQzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn5yUDBABn5ycwDQYJKoZIhvcNAQELBQADggEBAHNQiZPe c+KxKXcgCIGfvyDjCafJHYZs2H88Bz/HRF40t9Bsv++X5JMIQU+Q5hBQJ5PG3RqY WsBasbTbYKJ4uyZ/VM1g3jVkq7e2DgKaqwIGmC3vw/asSkN87b5U/ymh8hB4qzKb 73owN/omFuKhP9HD4/WjJRqholh9gySX0KXZD+DM+yXuUO7xQxmIJY10wiM5OBHF 9EawbxM9mbQOI3TsWhmDFiMOM8kAwldM4Dwb4tyUI39cvUFKf2snFYducNi/9UmG LaMvVVdjlNNGhqd4p/IHcGI3nuxri/NHzx8wdtBVb7Xv50FPjT8fKT3XEYNqyx1y z3VZHN/s2DNse2U= -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:26 2025 by rpki-client