$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/1979A7C0586111EA9FC98555C4F9AE02.roa File: 1979A7C0586111EA9FC98555C4F9AE02.roa (raw, json) Hash identifier: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU= Subject key identifier: 71:3F:56:8F:3B:5F:F4:95:8E:36:A8:31:56:FC:38:67:F8:66:3F:29 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0A79 Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/1979A7C0586111EA9FC98555C4F9AE02.roa Signing time: Tue 18 Mar 2025 19:39:47 +0000 ROA not before: Tue 18 Mar 2025 19:39:47 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138543 IP address blocks: 103.132.168.0/24 maxlen: 24 103.148.60.0/24 maxlen: 24 2001:df7:8100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2681 (0xa79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Mar 18 19:39:47 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d9cc03-dc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:e6:e0:d4:95:38:4b:91:c7:11:78:d6:cc: 8a:75:41:b8:bf:f4:8f:d7:21:84:39:e9:12:94:d2: 3a:9e:8e:be:eb:42:5d:ef:2a:45:19:5d:56:b5:ee: 46:95:90:91:8f:93:88:ec:bb:95:72:00:b5:96:7b: e0:63:00:1d:c6:9d:c7:3a:46:1e:bd:e7:00:55:fa: da:cf:76:f2:44:ca:d5:66:66:54:19:1d:39:e0:c6: 96:c2:b3:a3:d1:ba:9d:5d:b4:c7:71:8b:5d:80:b9: 77:fc:20:4e:62:0e:5e:5e:e4:91:c4:96:d8:a2:92: 4e:0b:fe:23:fe:26:26:f1:07:18:0e:c0:70:9c:c3: f6:50:2c:d6:45:46:e9:1a:cb:6b:52:76:c7:ea:c5: 4a:ee:d5:01:76:5c:d6:3f:93:d5:06:da:62:d5:89: 83:43:bf:34:b1:a3:6d:8a:40:41:eb:ae:91:06:d3: 6b:03:8a:f2:5d:db:d4:5d:4f:bc:a3:ab:a7:86:fa: e2:9e:08:cd:6a:5d:b8:ad:fa:fe:1b:ec:8c:fb:9a: f6:3a:a7:fe:a9:88:88:15:d7:23:40:04:e4:51:01: b1:7e:68:e3:29:25:f9:76:b3:cc:11:92:da:94:0f: a6:c3:f2:11:37:ca:4e:6c:46:97:01:19:07:3b:ff: c9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3F:56:8F:3B:5F:F4:95:8E:36:A8:31:56:FC:38:67:F8:66:3F:29 X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/1979A7C0586111EA9FC98555C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.168.0/24 103.148.60.0/24 IPv6: 2001:df7:8100::/48 Signature Algorithm: sha256WithRSAEncryption 82:78:a8:4e:1b:53:e3:2b:e7:24:94:e5:78:69:44:1f:80:77: f8:b0:7a:33:5c:2f:75:d4:1e:9a:52:c6:d1:37:22:47:ba:99: 89:71:25:b8:21:9c:b1:0c:ae:ac:3d:37:19:a0:a4:43:5f:76: d5:46:2e:79:46:2c:a0:e5:83:d5:bb:45:b2:7a:50:8d:43:9a: 38:6c:d9:a1:74:e8:de:d2:47:38:15:d7:bb:25:0f:b9:a8:76: a6:8f:bb:42:1f:47:8d:f2:b3:f5:26:7e:07:e7:c3:fc:08:2b: 46:4a:4f:0a:87:24:69:91:c1:b4:b6:53:bf:70:2f:74:65:8a: 52:20:f9:1c:18:c6:23:e2:6f:1c:c4:37:52:95:0e:21:70:07: b1:c0:fd:b0:42:b1:61:60:a1:2c:1f:91:14:a0:d3:9f:a7:df: ad:2b:c0:ec:45:18:2b:2c:69:cc:65:70:06:bd:b1:b8:00:48: 71:b4:19:ae:ab:69:74:4b:52:df:bb:d7:6a:0a:49:1c:a4:84: 34:c1:d7:e9:2b:52:6e:cb:f6:c1:b1:c6:30:8a:68:5f:45:eb: 82:44:6f:fb:37:00:e9:db:1b:ba:46:97:d7:e2:7f:d3:dc:28: b4:98:3e:90:26:6b:5e:c7:19:ce:8a:ed:d7:6a:72:38:51:cd: f1:ea:8e:fb -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUwMzE4MTkzOTQ3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5Y2MwMy1kYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0Lm4NSVOEuRxxF41syKdUG4v/SP1yGEOekSlNI6no6+60Jd7ypFGV1Wte5G lZCRj5OI7LuVcgC1lnvgYwAdxp3HOkYevecAVfraz3byRMrVZmZUGR054MaWwrOj 0bqdXbTHcYtdgLl3/CBOYg5eXuSRxJbYopJOC/4j/iYm8QcYDsBwnMP2UCzWRUbp GstrUnbH6sVK7tUBdlzWP5PVBtpi1YmDQ780saNtikBB666RBtNrA4ryXdvUXU+8 o6unhvringjNal24rfr+G+yM+5r2Oqf+qYiIFdcjQATkUQGxfmjjKSX5drPMEZLa lA+mw/IRN8pObEaXARkHO//JJQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHE/Vo87 X/SVjjaoMVb8OGf4Zj8pMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjEwNEQvMjFDMkEwOEM1ODVGMTFFQThBMUI4NzUzQzRGOUFFMDIvMTk3OUE3QzA1 ODYxMTFFQTlGQzk4NTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnhKgDBABnlDwwDwQCAAIwCQMHACABDfeBADANBgkqhkiG 9w0BAQsFAAOCAQEAgnioThtT4yvnJJTleGlEH4B3+LB6M1wvddQemlLG0TciR7qZ iXEluCGcsQyurD03GaCkQ1921UYueUYsoOWD1btFsnpQjUOaOGzZoXTo3tJHOBXX uyUPuah2po+7Qh9HjfKz9SZ+B+fD/AgrRkpPCockaZHBtLZTv3AvdGWKUiD5HBjG I+JvHMQ3UpUOIXAHscD9sEKxYWChLB+RFKDTn6ffrSvA7EUYKyxpzGVwBr2xuABI cbQZrqtpdEtS37vXagpJHKSENMHX6StSbsv2wbHGMIpoX0XrgkRv+zcA6dsbukaX 1+J/09wotJg+kCZrXscZzort12pyOFHN8eqO+w== -----END CERTIFICATE-----Generated at Sat Apr 26 08:18:01 2025 by rpki-client