$ rpki-client -vvf rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/6473BE24979811EB97001639C4F9AE02.roa File: 6473BE24979811EB97001639C4F9AE02.roa (raw, json) Hash identifier: 2h+gg3bjxIldHS97Lzce3I89lkJGy2giiZHmYtJCKjs= Subject key identifier: 9E:C9:45:43:DF:18:E7:D1:E4:AD:EB:D6:5D:8A:CE:6A:A9:4A:5F:1F Certificate issuer: /CN=A91F053E/serialNumber=38CE276C85B6D2D0EAFE9D3F8A5A508CDDBAB968 Certificate serial: 067E Authority key identifier: 38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/6473BE24979811EB97001639C4F9AE02.roa Signing time: Mon 10 Mar 2025 22:43:29 +0000 ROA not before: Mon 10 Mar 2025 22:43:29 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 141735 IP address blocks: 103.162.170.0/24 maxlen: 24 103.162.171.0/24 maxlen: 24 2001:df4:2ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.crl rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F053E, serialNumber=38CE276C85B6D2D0EAFE9D3F8A5A508CDDBAB968 Validity Not Before: Mar 10 22:43:29 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cf6b11-2648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:10:16:ec:91:0d:20:72:7c:9a:6e:c9:8a:e4: 5e:bd:f1:55:e6:9a:f4:db:63:5f:84:7b:45:93:fe: a6:10:53:da:c3:d7:cd:13:61:1d:18:4c:6e:a4:c4: bf:90:5b:41:98:65:13:09:eb:17:94:d7:fa:2c:09: 37:80:0b:0a:26:ac:18:30:35:02:f0:fc:47:9f:71: a1:d5:a0:50:a6:6d:17:83:4a:c3:93:b3:67:86:16: 9f:f6:23:f9:70:c2:f0:5e:f8:16:8f:9a:78:ff:88: bd:b3:ff:05:c3:66:49:a5:89:01:08:80:19:01:c2: 1e:59:de:f6:ae:82:a6:8e:bf:d5:16:bb:d7:f2:96: 74:fd:b8:2d:5c:f9:a6:2b:55:d4:76:11:07:36:39: f0:87:de:1d:9b:86:74:4a:87:84:bf:cf:d7:c3:ff: 1d:68:74:e0:a3:f1:29:97:f4:e9:11:bb:39:b2:e9: 91:db:d7:2b:84:c5:0d:ad:64:87:98:44:42:b7:27: 4a:5f:df:49:c8:a9:9b:57:1c:eb:9a:e6:99:d2:7f: 0e:2e:3d:e7:0d:ed:61:5b:d3:20:68:90:51:19:66: d4:0b:1f:c7:4e:ed:fb:c3:35:11:7e:98:f7:1d:d6: 68:24:33:4e:46:b2:b5:ad:4c:8c:85:b7:b4:4e:b7: cc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C9:45:43:DF:18:E7:D1:E4:AD:EB:D6:5D:8A:CE:6A:A9:4A:5F:1F X509v3 Authority Key Identifier: keyid:38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/6473BE24979811EB97001639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.170.0/23 IPv6: 2001:df4:2ac0::/48 Signature Algorithm: sha256WithRSAEncryption 26:71:01:15:92:fb:d1:cd:4f:c0:fa:e8:8a:6e:f2:56:4f:80: 0f:74:26:e3:7d:06:5a:3c:1e:9d:c9:d8:45:9d:a9:47:d1:b6: 9d:ce:6d:ab:a8:99:f2:81:70:43:97:f8:eb:30:a3:50:ff:26: 3d:5e:ec:0d:92:61:b6:07:5c:bf:e3:3d:42:7a:9d:14:32:b5: 75:0b:87:0c:e2:fe:1c:6a:eb:90:e9:a2:12:71:1f:fd:a1:bd: 9a:bd:8d:50:44:0e:9b:bb:d2:a0:a8:fb:ec:2f:1e:ca:ad:b3: 90:0c:80:a9:5e:b8:26:00:83:87:3c:6f:43:46:f7:e0:8a:4a: 64:a1:44:db:5a:65:21:45:0e:ad:f8:a4:90:74:8a:fe:cf:d0: 79:0e:2a:f1:3a:73:41:bc:46:5b:c3:5a:d5:89:35:9a:4f:2b: f6:07:8c:f9:7a:24:70:60:ae:b6:35:72:57:ff:d0:3e:9e:06: 19:f1:53:83:e8:4d:38:8d:eb:b0:83:51:97:05:d9:36:c2:42: 17:ed:4d:17:7a:78:b8:1e:e8:f3:94:70:41:35:81:06:04:cf: 8e:a6:db:c6:cf:1f:8f:db:33:6e:e8:34:40:a1:20:07:51:26: 55:ae:85:51:78:66:3c:5b:e5:93:d5:c8:f4:78:3b:57:3b:fe: 3d:6f:5c:f9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1M0UxMTAvBgNVBAUTKDM4Q0UyNzZDODVCNkQyRDBFQUZFOUQzRjhBNUE1MDhD RERCQUI5NjgwHhcNMjUwMzEwMjI0MzI5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmNmIxMS0yNjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRAW7JENIHJ8mm7JiuRevfFV5pr022NfhHtFk/6mEFPaw9fNE2EdGExupMS/ kFtBmGUTCesXlNf6LAk3gAsKJqwYMDUC8PxHn3Gh1aBQpm0Xg0rDk7Nnhhaf9iP5 cMLwXvgWj5p4/4i9s/8Fw2ZJpYkBCIAZAcIeWd72roKmjr/VFrvX8pZ0/bgtXPmm K1XUdhEHNjnwh94dm4Z0SoeEv8/Xw/8daHTgo/Epl/TpEbs5sumR29crhMUNrWSH mERCtydKX99JyKmbVxzrmuaZ0n8OLj3nDe1hW9MgaJBRGWbUCx/HTu37wzURfpj3 HdZoJDNORrK1rUyMhbe0TrfM4QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ7JRUPf GOfR5K3r1l2KzmqpSl8fMB8GA1UdIwQYMBaAFDjOJ2yFttLQ6v6dP4paUIzdurlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDUzRS80RUVCQzIwODZC NkIxMUVCODUxMjRCMkFDNEY5QUUwMi9PTTRuYklXMjB0RHFfcDBfaWxwUWpOMjZ1 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09NNG5iSVcyMHREcV9wMF9pbHBRak4yNnVXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA1M0UvNEVFQkMyMDg2QjZCMTFFQjg1MTI0QjJBQzRGOUFFMDIvNjQ3M0JFMjQ5 Nzk4MTFFQjk3MDAxNjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnoqowDwQCAAIwCQMHACABDfQqwDANBgkqhkiG9w0BAQsF AAOCAQEAJnEBFZL70c1PwProim7yVk+AD3Qm430GWjwencnYRZ2pR9G2nc5tq6iZ 8oFwQ5f46zCjUP8mPV7sDZJhtgdcv+M9QnqdFDK1dQuHDOL+HGrrkOmiEnEf/aG9 mr2NUEQOm7vSoKj77C8eyq2zkAyAqV64JgCDhzxvQ0b34IpKZKFE21plIUUOrfik kHSK/s/QeQ4q8TpzQbxGW8Na1Yk1mk8r9geM+XokcGCutjVyV//QPp4GGfFTg+hN OI3rsINRlwXZNsJCF+1NF3p4uB7o85RwQTWBBgTPjqbbxs8fj9szbug0QKEgB1Em Va6FUXhmPFvlk9XI9Hg7Vzv+PW9c+Q== -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:10 2025 by rpki-client