$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/6E603522F1AB11EA9F82A23DC4F9AE02.roa File: 6E603522F1AB11EA9F82A23DC4F9AE02.roa (raw, json) Hash identifier: T4mDZ210SpDVRfUxvUs173RpQ0D7OXBy/5JPPZDEJ78= Subject key identifier: 70:30:BC:17:37:44:67:6E:3B:F8:6F:7D:26:BA:A8:7C:2D:0D:8A:99 Certificate issuer: /CN=A91EF8D6/serialNumber=4B978415E167DB263EF2649A1C3B8BB2D43F61B7 Certificate serial: 07A0 Authority key identifier: 4B:97:84:15:E1:67:DB:26:3E:F2:64:9A:1C:3B:8B:B2:D4:3F:61:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/6E603522F1AB11EA9F82A23DC4F9AE02.roa Signing time: Tue 04 Feb 2025 21:10:24 +0000 ROA not before: Tue 04 Feb 2025 21:10:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 140045 IP address blocks: 103.147.86.0/24 maxlen: 24 103.147.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.crl rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1952 (0x7a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8D6, serialNumber=4B978415E167DB263EF2649A1C3B8BB2D43F61B7 Validity Not Before: Feb 4 21:10:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a28240-3d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a5:ce:5c:7f:ac:5f:22:6a:bc:1b:22:00:35: 7e:34:ac:1e:b6:f4:00:86:6c:5f:0a:a6:d3:f7:f8: 7e:bb:f3:81:53:b9:99:07:8d:10:90:2c:61:ba:68: 42:80:59:03:32:9e:1c:bb:65:51:d9:71:23:50:82: 75:8c:d4:9c:57:06:cc:d1:fc:b0:a8:62:dc:f6:64: 88:05:b1:a4:86:ac:79:43:07:36:87:04:5a:b4:08: 79:2f:6a:1b:be:dd:3d:27:16:7f:1e:cd:60:dd:fc: 29:56:9d:5c:ab:1d:16:1b:78:04:2b:85:d1:60:f5: 81:ff:5a:ab:ed:a3:5d:d9:a9:e5:23:60:bf:de:d4: b0:80:a7:cc:bf:fd:8b:b1:f6:30:35:4a:cd:ab:77: 7d:93:44:27:ee:21:3d:1a:91:e2:c4:2f:68:b9:6f: a2:d0:d8:f2:a4:5c:4d:71:06:a9:e6:fe:e0:7a:2f: ae:5f:1e:94:dd:43:09:2a:26:eb:27:59:5f:f3:ec: 37:a4:37:20:19:c4:3b:83:75:cf:58:f1:da:82:84: ab:04:58:f8:9d:64:fd:79:2a:66:41:57:8f:c0:08: 41:dd:f0:bb:e8:a7:e8:62:4d:77:95:92:e5:88:d1: 06:54:72:3c:69:db:94:7f:f7:1a:33:69:aa:f0:0e: aa:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:30:BC:17:37:44:67:6E:3B:F8:6F:7D:26:BA:A8:7C:2D:0D:8A:99 X509v3 Authority Key Identifier: keyid:4B:97:84:15:E1:67:DB:26:3E:F2:64:9A:1C:3B:8B:B2:D4:3F:61:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/6E603522F1AB11EA9F82A23DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.86.0/23 Signature Algorithm: sha256WithRSAEncryption 68:82:9b:46:9f:47:7f:cc:b5:2d:79:31:0d:c5:96:c1:08:b1: 4e:a6:0f:78:3c:60:e3:b7:af:07:ba:1d:63:c4:19:fe:4f:ca: 12:56:40:d3:93:41:70:90:91:39:56:b5:f4:70:8d:e2:4a:1c: b5:0a:b6:0e:82:e8:17:a9:a6:16:bf:7b:fd:39:fa:79:85:56: 5a:6f:bc:68:ec:7b:19:21:05:fb:fd:73:30:f0:db:3e:d6:6b: 7a:67:de:cb:45:2e:cf:47:25:a5:93:ec:bd:f2:df:63:10:98: 68:c9:11:9b:20:ea:ff:8c:18:ce:ff:62:02:2d:73:1a:5e:29: 6b:36:af:1c:75:12:ca:5c:b2:8f:12:45:e2:9e:53:60:f3:cd: c0:16:28:55:d5:5d:7c:f8:1f:3a:b8:94:91:8c:25:0c:dc:c9: 15:9d:4f:96:af:23:3d:38:ee:1b:d5:8a:4e:17:15:f0:10:a3: af:34:81:8d:2a:c2:95:cf:fa:0e:dc:cf:86:0f:22:72:2c:af: a3:a4:8b:c9:64:57:c2:da:6e:38:8f:54:c3:b5:b6:a6:92:5d: 12:71:e3:2b:c0:eb:ee:55:e0:9e:4c:07:41:18:56:ba:e1:46: 90:88:c5:96:9a:9f:9a:84:6e:ea:ad:75:42:42:de:a9:72:95: a4:3f:f2:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4RDYxMTAvBgNVBAUTKDRCOTc4NDE1RTE2N0RCMjYzRUYyNjQ5QTFDM0I4QkIy RDQzRjYxQjcwHhcNMjUwMjA0MjExMDI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyODI0MC0zZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6XOXH+sXyJqvBsiADV+NKwetvQAhmxfCqbT9/h+u/OBU7mZB40QkCxhumhC gFkDMp4cu2VR2XEjUIJ1jNScVwbM0fywqGLc9mSIBbGkhqx5Qwc2hwRatAh5L2ob vt09JxZ/Hs1g3fwpVp1cqx0WG3gEK4XRYPWB/1qr7aNd2anlI2C/3tSwgKfMv/2L sfYwNUrNq3d9k0Qn7iE9GpHixC9ouW+i0NjypFxNcQap5v7gei+uXx6U3UMJKibr J1lf8+w3pDcgGcQ7g3XPWPHagoSrBFj4nWT9eSpmQVePwAhB3fC76KfoYk13lZLl iNEGVHI8aduUf/caM2mq8A6q2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHAwvBc3 RGduO/hvfSa6qHwtDYqZMB8GA1UdIwQYMBaAFEuXhBXhZ9smPvJkmhw7i7LUP2G3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhENi80RDQyRjU2Q0Yx QTMxMUVBQjVGRDk4MjRDNEY5QUUwMi9TNWVFRmVGbjJ5WS04bVNhSER1THN0UV9Z YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M1ZUVGZUZuMnlZLThtU2FIRHVMc3RRX1liYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUY4RDYvNEQ0MkY1NkNGMUEzMTFFQUI1RkQ5ODI0QzRGOUFFMDIvNkU2MDM1MjJG MUFCMTFFQTlGODJBMjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnk1YwDQYJKoZIhvcNAQELBQADggEBAGiCm0afR3/MtS15 MQ3FlsEIsU6mD3g8YOO3rwe6HWPEGf5PyhJWQNOTQXCQkTlWtfRwjeJKHLUKtg6C 6Beppha/e/05+nmFVlpvvGjsexkhBfv9czDw2z7Wa3pn3stFLs9HJaWT7L3y32MQ mGjJEZsg6v+MGM7/YgItcxpeKWs2rxx1Espcso8SReKeU2DzzcAWKFXVXXz4Hzq4 lJGMJQzcyRWdT5avIz047hvVik4XFfAQo680gY0qwpXP+g7cz4YPInIsr6Oki8lk V8LabjiPVMO1tqaSXRJx4yvA6+5V4J5MB0EYVrrhRpCIxZaan5qEbuqtdUJC3qly laQ/8i8= -----END CERTIFICATE-----Generated at Sat Apr 26 05:50:06 2025 by rpki-client