$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/E9573898390E11EBAC72036BC4F9AE02.roa File: E9573898390E11EBAC72036BC4F9AE02.roa (raw, json) Hash identifier: 4/D7OWEWvpNqKmmHeJpyUpKKKiBuiIw+IrPZ5+9nq6A= Subject key identifier: EA:5E:4D:A3:1C:B9:D4:7C:2A:96:8E:F0:CA:6F:BC:75:07:9E:42:49 Certificate issuer: /CN=A91EF590/serialNumber=4D71A7A18A82ADD044BC28EF5DF2196B0FD21D5C Certificate serial: 0710 Authority key identifier: 4D:71:A7:A1:8A:82:AD:D0:44:BC:28:EF:5D:F2:19:6B:0F:D2:1D:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXGnoYqCrdBEvCjvXfIZaw_SHVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/E9573898390E11EBAC72036BC4F9AE02.roa Signing time: Mon 14 Apr 2025 22:02:55 +0000 ROA not before: Mon 14 Apr 2025 22:02:55 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137466 IP address blocks: 103.109.232.0/24 maxlen: 24 103.109.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/TXGnoYqCrdBEvCjvXfIZaw_SHVw.crl rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/TXGnoYqCrdBEvCjvXfIZaw_SHVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXGnoYqCrdBEvCjvXfIZaw_SHVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF590, serialNumber=4D71A7A18A82ADD044BC28EF5DF2196B0FD21D5C Validity Not Before: Apr 14 22:02:55 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67fd860f-0a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:0b:e6:e5:cf:66:90:e7:d7:1b:5c:d0:1d: 9b:b6:1b:e4:da:00:df:f1:6a:8b:cf:fe:6e:51:a6: e9:78:1e:f6:4e:ef:4e:7a:79:64:69:df:00:ff:50: 42:77:02:db:28:96:f4:9e:c8:fe:52:26:53:fa:4d: c3:d8:c3:50:3f:ee:29:6b:c0:b7:d0:c8:c4:32:48: 9a:95:34:1f:b2:07:e1:b1:6a:1c:fc:b3:3f:39:67: 03:b4:5f:b1:96:4b:3c:9e:57:f7:e5:9b:09:1d:c8: 65:ac:56:7d:8f:fa:c9:a1:d1:74:56:6d:50:01:20: e0:94:c9:33:94:db:1a:3a:29:09:c1:34:88:35:8e: 85:38:27:22:94:aa:0e:80:a9:3e:06:3e:f7:50:0c: d2:94:57:61:46:96:9d:58:15:00:a1:35:b2:84:21: 3e:e6:de:74:c3:48:df:dc:a6:25:6d:9c:63:5b:57: e8:ba:74:57:22:ea:7b:6f:28:3b:f9:d5:cc:4c:b7: 72:b9:d8:40:a6:a6:f4:8e:15:fb:1c:3f:52:59:70: 1e:7c:ec:f1:81:cb:f7:d2:11:eb:b8:29:ac:6f:b1: 58:8e:7a:1c:e6:bd:d3:27:05:65:14:49:52:db:95: 1c:62:56:14:7b:2a:20:c4:c0:13:a2:21:d1:16:8e: b9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:5E:4D:A3:1C:B9:D4:7C:2A:96:8E:F0:CA:6F:BC:75:07:9E:42:49 X509v3 Authority Key Identifier: keyid:4D:71:A7:A1:8A:82:AD:D0:44:BC:28:EF:5D:F2:19:6B:0F:D2:1D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/TXGnoYqCrdBEvCjvXfIZaw_SHVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXGnoYqCrdBEvCjvXfIZaw_SHVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/E9573898390E11EBAC72036BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.232.0/24 103.109.234.0/24 Signature Algorithm: sha256WithRSAEncryption a1:49:72:44:a4:2b:45:ff:0d:4f:39:4f:20:d2:fc:57:fb:91: f2:29:35:f5:2f:58:e6:61:31:33:27:22:74:06:24:cc:8f:2e: 00:af:53:91:ea:0b:c1:34:c5:6a:ee:39:09:e1:15:1f:d2:e1: 4e:ed:59:6b:4d:b9:bf:87:00:17:fb:4d:9f:8b:2b:65:65:02: be:b8:4e:48:1e:9d:b8:bc:5d:4f:e6:16:4d:f4:9f:06:24:f5: fd:4e:02:f6:41:80:0d:56:0b:6e:44:dc:a2:eb:7b:66:e8:37: d6:30:eb:eb:9c:85:cb:17:48:95:81:ac:60:a9:15:7f:b4:fd: 1a:aa:41:12:8e:35:ae:14:2c:24:e4:a5:f2:8d:2f:00:1f:2f: ee:da:d3:d9:cc:ce:ae:d3:44:de:18:be:3c:62:34:ce:1b:14: 80:df:b7:4b:ef:71:2e:1f:5e:79:cd:5e:e1:ef:a5:d2:ec:6f: 18:26:7a:de:1a:43:38:18:47:db:d0:80:8e:b1:44:b4:93:ca: 05:b2:a6:af:60:01:9a:82:55:be:ff:45:45:2a:33:ef:a5:99: f7:d5:3d:9e:28:62:38:40:13:4a:92:8e:ac:3b:e8:1a:c2:a5: 66:95:df:2a:32:c9:fa:d4:5f:be:ad:2c:53:5a:3f:14:4d:3d: 6e:22:9a:86 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1OTAxMTAvBgNVBAUTKDRENzFBN0ExOEE4MkFERDA0NEJDMjhFRjVERjIxOTZC MEZEMjFENUMwHhcNMjUwNDE0MjIwMjU1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkODYwZi0wYTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTkL5uXPZpDn1xtc0B2bthvk2gDf8WqLz/5uUabpeB72Tu9Oenlkad8A/1BC dwLbKJb0nsj+UiZT+k3D2MNQP+4pa8C30MjEMkialTQfsgfhsWoc/LM/OWcDtF+x lks8nlf35ZsJHchlrFZ9j/rJodF0Vm1QASDglMkzlNsaOikJwTSINY6FOCcilKoO gKk+Bj73UAzSlFdhRpadWBUAoTWyhCE+5t50w0jf3KYlbZxjW1founRXIup7byg7 +dXMTLdyudhApqb0jhX7HD9SWXAefOzxgcv30hHruCmsb7FYjnoc5r3TJwVlFElS 25UcYlYUeyogxMAToiHRFo65QQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOpeTaMc udR8KpaO8MpvvHUHnkJJMB8GA1UdIwQYMBaAFE1xp6GKgq3QRLwo713yGWsP0h1c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjU5MC8yRjdCMTdDNDM5 MEQxMUVCODhCQzYxNjVDNEY5QUUwMi9UWEdub1lxQ3JkQkV2Q2p2WGZJWmF3X1NI VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYR25vWXFDcmRCRXZDanZYZklaYXdfU0hWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUY1OTAvMkY3QjE3QzQzOTBEMTFFQjg4QkM2MTY1QzRGOUFFMDIvRTk1NzM4OTgz OTBFMTFFQkFDNzIwMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnbegDBABnbeowDQYJKoZIhvcNAQELBQADggEBAKFJckSk K0X/DU85TyDS/Ff7kfIpNfUvWOZhMTMnInQGJMyPLgCvU5HqC8E0xWruOQnhFR/S 4U7tWWtNub+HABf7TZ+LK2VlAr64Tkgenbi8XU/mFk30nwYk9f1OAvZBgA1WC25E 3KLre2boN9Yw6+uchcsXSJWBrGCpFX+0/RqqQRKONa4ULCTkpfKNLwAfL+7a09nM zq7TRN4YvjxiNM4bFIDft0vvcS4fXnnNXuHvpdLsbxgmet4aQzgYR9vQgI6xRLST ygWypq9gAZqCVb7/RUUqM++lmffVPZ4oYjhAE0qSjqw76BrCpWaV3yoyyfrUX76t LFNaPxRNPW4imoY= -----END CERTIFICATE-----Generated at Sat Apr 26 09:06:42 2025 by rpki-client