$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa File: A10812CA0CD511EB9433AE69C4F9AE02.roa (raw, json) Hash identifier: Pp8lb1nzqx7e9rT/EQLbTNVmmjg6MQa2RdSIFuurOeU= Subject key identifier: 41:D6:49:C1:65:D6:15:2A:4B:3E:D3:D8:24:49:FB:C6:18:F9:96:6E Certificate issuer: /CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Certificate serial: 0777 Authority key identifier: 43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa Signing time: Thu 06 Mar 2025 21:41:48 +0000 ROA not before: Thu 06 Mar 2025 21:41:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9290 IP address blocks: 103.11.144.0/22 maxlen: 22 110.34.52.0/22 maxlen: 22 121.127.35.0/24 maxlen: 24 202.47.95.0/24 maxlen: 24 203.83.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1911 (0x777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC50, serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Validity Not Before: Mar 6 21:41:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ca169c-c846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1f:6d:e7:9f:4c:0e:c2:e8:86:23:f4:ef:73: 9c:4a:7f:35:80:3c:92:8c:c1:29:bc:29:2c:a1:6b: 8b:10:67:c4:e5:3f:ec:4a:5e:2a:b8:4b:5b:b6:8d: a3:06:3d:82:c0:9f:4a:5a:d3:cf:b6:9a:5f:13:d2: 9a:86:90:a3:09:9b:59:23:8d:a1:2f:97:10:09:3f: 6c:e2:c1:cd:f5:e1:57:bc:de:c9:60:93:03:ea:07: c6:5d:c1:09:61:cc:cc:4b:90:87:ea:4c:f0:32:48: bc:e4:b5:b9:65:5c:24:d2:94:09:1c:8a:76:6b:a0: fd:46:d3:d1:92:17:86:77:14:27:11:59:08:78:0d: 72:7a:f7:c4:e7:d1:ef:31:02:62:46:7d:12:dc:01: 90:39:86:8d:2d:db:ce:d1:3d:c2:f2:0c:db:be:8f: 03:0c:52:1e:b3:e8:01:5f:a1:62:f0:ec:0c:1c:fb: 96:54:79:6a:76:00:02:b0:dc:7a:95:ef:bd:8d:57: 50:e2:b5:13:79:a9:9e:03:db:ab:32:6c:f6:92:0e: ba:aa:8e:66:95:b2:0d:24:4f:e7:39:3d:b6:4a:f6: 3c:77:95:17:61:b3:28:7c:2b:34:ba:03:71:46:1c: d5:ac:50:2c:74:48:df:82:e9:e0:d2:59:75:02:cd: 2b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D6:49:C1:65:D6:15:2A:4B:3E:D3:D8:24:49:FB:C6:18:F9:96:6E X509v3 Authority Key Identifier: keyid:43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.144.0/22 110.34.52.0/22 121.127.35.0/24 202.47.95.0/24 203.83.219.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:80:86:96:6d:55:0a:6c:2e:03:c1:ee:20:ed:89:bb:80:6f: 37:1f:f1:34:4a:d1:a1:08:28:0b:10:a3:e4:c4:52:87:f6:0b: 03:1c:99:a8:37:92:97:a9:68:91:08:c6:97:02:3e:a8:a2:f3: 95:b8:04:a5:a3:d6:33:42:9c:ca:2c:ca:aa:48:e7:99:da:86: a1:a3:c3:86:04:ae:06:c4:e7:a9:26:f1:19:79:f1:2c:78:55: 47:c1:3e:8d:73:a3:6f:01:33:c6:39:f8:5e:6a:94:e5:cd:78: 30:64:6a:6c:82:42:f6:f5:04:cd:82:f8:26:63:b0:4f:8e:8d: 81:85:7a:6d:be:da:66:59:e1:73:b4:84:4e:27:e6:8d:5d:6e: 35:ba:ee:dc:1f:2e:79:da:9e:d7:d7:e8:f9:0b:3a:01:a6:f6: de:9e:22:1d:c3:75:ee:b3:e1:90:16:61:83:13:ec:68:da:c7: 36:6c:ce:cf:0c:fe:a3:08:8e:4c:98:73:66:e9:10:f9:ef:96: 36:00:f7:bd:5b:64:29:ec:ee:49:e9:8b:55:ab:af:68:80:1b: ad:b1:ae:fc:0a:bc:da:d3:f2:eb:15:62:35:11:0e:0b:f8:a1: 69:41:b3:81:7b:3f:3e:66:40:e8:a4:e7:38:24:c8:69:6f:97: 5c:ff:f6:58 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICB3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNTAxMTAvBgNVBAUTKDQzNTRENUNGQTU2NEVFNzFCMzRFODg3NEVFQjFCOTg2 OEY4ODA3REQwHhcNMjUwMzA2MjE0MTQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhMTY5Yy1jODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlR9t559MDsLohiP073OcSn81gDySjMEpvCksoWuLEGfE5T/sSl4quEtbto2j Bj2CwJ9KWtPPtppfE9KahpCjCZtZI42hL5cQCT9s4sHN9eFXvN7JYJMD6gfGXcEJ YczMS5CH6kzwMki85LW5ZVwk0pQJHIp2a6D9RtPRkheGdxQnEVkIeA1yevfE59Hv MQJiRn0S3AGQOYaNLdvO0T3C8gzbvo8DDFIes+gBX6Fi8OwMHPuWVHlqdgACsNx6 le+9jVdQ4rUTeameA9urMmz2kg66qo5mlbINJE/nOT22SvY8d5UXYbMofCs0ugNx RhzVrFAsdEjfgung0ll1As0ruQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFEHWScFl 1hUqSz7T2CRJ+8YY+ZZuMB8GA1UdIwQYMBaAFENU1c+lZO5xs06IdO6xuYaPiAfd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM1MC9FNDg1OEFDNDBD RDQxMUVCQkNENzlDNjlDNEY5QUUwMi9RMVRWejZWazduR3pUb2gwN3JHNWhvLUlC OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExVFZ6NlZrN25HelRvaDA3ckc1aG8tSUI5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJDNTAvRTQ4NThBQzQwQ0Q0MTFFQkJDRDc5QzY5QzRGOUFFMDIvQTEwODEyQ0Ew Q0Q1MTFFQjk0MzNBRTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAJnC5ADBAJuIjQDBAB5fyMDBADKL18DBADLU9swDQYJKoZI hvcNAQELBQADggEBAG2AhpZtVQpsLgPB7iDtibuAbzcf8TRK0aEIKAsQo+TEUof2 CwMcmag3kpepaJEIxpcCPqii85W4BKWj1jNCnMosyqpI55nahqGjw4YErgbE56km 8Rl58Sx4VUfBPo1zo28BM8Y5+F5qlOXNeDBkamyCQvb1BM2C+CZjsE+OjYGFem2+ 2mZZ4XO0hE4n5o1dbjW67twfLnnantfX6PkLOgGm9t6eIh3Dde6z4ZAWYYMT7Gja xzZszs8M/qMIjkyYc2bpEPnvljYA971bZCns7knpi1Wrr2iAG62xrvwKvNrT8usV YjURDgv4oWlBs4F7Pz5mQOik5zgkyGlvl1z/9lg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:23 2025 by rpki-client