$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/64237DC06C3611EBB6BA1A24C4F9AE02.roa File: 64237DC06C3611EBB6BA1A24C4F9AE02.roa (raw, json) Hash identifier: 52JrCnBm7L06RLcpZu8B4A+YSslnAZRmYTLK9Jex7Yg= Subject key identifier: 13:10:30:47:D9:B6:90:F3:59:8D:E9:FC:69:EE:F8:A7:33:A6:68:84 Certificate issuer: /CN=A91F1605/serialNumber=F04690BB03E0D3962B4808E4D06CB26A3490E516 Certificate serial: 0673 Authority key identifier: F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/64237DC06C3611EBB6BA1A24C4F9AE02.roa Signing time: Tue 04 Mar 2025 23:41:35 +0000 ROA not before: Tue 04 Mar 2025 23:41:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135140 IP address blocks: 103.210.220.0/24 maxlen: 24 103.211.198.0/24 maxlen: 24 103.211.236.0/24 maxlen: 24 146.196.84.0/24 maxlen: 24 146.196.85.0/24 maxlen: 24 146.196.86.0/24 maxlen: 24 146.196.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.crl rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1605, serialNumber=F04690BB03E0D3962B4808E4D06CB26A3490E516 Validity Not Before: Mar 4 23:41:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c78fae-233e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3e:0e:92:88:ce:31:4b:9d:c8:f6:8d:58:a0: 2f:ed:8e:40:b7:af:fd:76:45:3d:9e:88:35:96:0c: 42:cc:a5:f1:7d:bf:26:48:22:86:ba:60:f5:7c:16: 25:60:c8:4c:f5:c8:01:6c:d9:af:e3:12:aa:1e:07: 10:b2:b5:66:01:10:54:61:73:43:d8:18:cb:0c:da: fb:26:7a:45:8b:f5:55:5a:3d:3f:fd:b1:51:1c:64: d8:ee:d9:e6:a0:7e:b5:62:6b:b8:26:c0:f7:9d:1a: 16:44:fa:c5:51:99:ed:cf:db:15:8f:90:f8:eb:0b: 08:c3:b1:6d:31:f4:26:a5:af:7a:bc:a2:77:21:d9: 54:9d:af:9f:51:ce:68:b5:86:c9:e6:66:fa:01:c0: 5a:70:a5:4f:f4:c6:f9:6e:6a:ba:27:cf:1a:b8:ce: c9:f0:6d:29:c5:24:25:a3:e7:65:a2:f5:4e:b3:b2: 55:8e:3b:09:e6:e0:58:60:d7:7d:c0:6e:9c:aa:34: ac:37:63:91:73:c8:67:97:8c:29:d9:b7:ec:e5:d9: 01:7a:76:b2:37:f3:71:01:19:5a:cb:46:3d:c8:55: 39:4e:1a:8f:b1:8e:7e:f3:42:a3:bc:d7:be:56:76: 15:33:00:e7:ed:8a:2f:8f:b5:3f:92:ae:b8:f6:b4: 24:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:10:30:47:D9:B6:90:F3:59:8D:E9:FC:69:EE:F8:A7:33:A6:68:84 X509v3 Authority Key Identifier: keyid:F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/64237DC06C3611EBB6BA1A24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.220.0/24 103.211.198.0/24 103.211.236.0/24 146.196.84.0/22 Signature Algorithm: sha256WithRSAEncryption 24:58:aa:c1:8f:54:d5:4e:fd:00:73:b0:cf:a6:3c:ad:dc:4a: 21:7e:00:c2:47:60:4a:37:a2:a8:cc:5e:8a:dd:f8:ff:b5:00: 2e:6f:e7:69:29:50:2e:d9:f9:be:28:4c:b8:79:6c:0c:35:05: 68:ff:d4:36:30:dc:d9:2f:45:27:13:7d:97:f6:2d:ee:53:25: ea:8c:00:ff:19:af:3d:ab:ec:f7:8c:a2:fc:92:0b:fb:18:b1: 27:d1:73:01:41:71:bd:22:78:8f:7f:47:ce:3e:55:8a:8f:fd: c2:dd:24:62:a7:60:60:3c:c5:9b:7d:c1:b7:0f:09:95:d8:80: 46:63:cc:d3:1c:96:9f:cf:d2:13:49:44:ca:f1:3b:56:7e:70: 44:3a:58:ff:c4:c1:50:bf:ad:e2:bd:7b:f4:2e:59:b4:bb:4e: b1:2a:ea:aa:bf:c8:b9:50:af:e9:27:a8:67:24:3f:95:4b:e5: 7c:94:a2:b1:4a:7e:f9:32:f7:53:85:e8:bb:cc:45:3a:0a:ba: 9a:c6:c7:51:11:14:cb:c1:72:28:0d:81:1c:81:d2:2c:a9:d9: 20:e8:9a:c2:1f:7a:54:aa:0f:ee:66:78:0d:a3:74:64:4b:15: 7d:6e:01:f9:86:63:76:c3:a1:46:86:cf:16:ee:35:74:b0:d5: 00:21:08:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE2MDUxMTAvBgNVBAUTKEYwNDY5MEJCMDNFMEQzOTYyQjQ4MDhFNEQwNkNCMjZB MzQ5MEU1MTYwHhcNMjUwMzA0MjM0MTM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3OGZhZS0yMzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnz4OkojOMUudyPaNWKAv7Y5At6/9dkU9nog1lgxCzKXxfb8mSCKGumD1fBYl YMhM9cgBbNmv4xKqHgcQsrVmARBUYXND2BjLDNr7JnpFi/VVWj0//bFRHGTY7tnm oH61Ymu4JsD3nRoWRPrFUZntz9sVj5D46wsIw7FtMfQmpa96vKJ3IdlUna+fUc5o tYbJ5mb6AcBacKVP9Mb5bmq6J88auM7J8G0pxSQlo+dlovVOs7JVjjsJ5uBYYNd9 wG6cqjSsN2ORc8hnl4wp2bfs5dkBenayN/NxARlay0Y9yFU5ThqPsY5+80KjvNe+ VnYVMwDn7Yovj7U/kq649rQk4QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBMQMEfZ tpDzWY3p/Gnu+KczpmiEMB8GA1UdIwQYMBaAFPBGkLsD4NOWK0gI5NBssmo0kOUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTYwNS83MjUwQ0E0NDZD MzQxMUVCOUUzN0FBMjFDNEY5QUUwMi84RWFRdXdQZzA1WXJTQWprMEd5eWFqU1E1 UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFYVF1d1BnMDVZclNBamswR3l5YWpTUTVSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE2MDUvNzI1MENBNDQ2QzM0MTFFQjlFMzdBQTIxQzRGOUFFMDIvNjQyMzdEQzA2 QzM2MTFFQkI2QkExQTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABn0twDBABn08YDBABn0+wDBAKSxFQwDQYJKoZIhvcNAQEL BQADggEBACRYqsGPVNVO/QBzsM+mPK3cSiF+AMJHYEo3oqjMXord+P+1AC5v52kp UC7Z+b4oTLh5bAw1BWj/1DYw3NkvRScTfZf2Le5TJeqMAP8Zrz2r7PeMovySC/sY sSfRcwFBcb0ieI9/R84+VYqP/cLdJGKnYGA8xZt9wbcPCZXYgEZjzNMclp/P0hNJ RMrxO1Z+cEQ6WP/EwVC/reK9e/QuWbS7TrEq6qq/yLlQr+knqGckP5VL5XyUorFK fvky91OF6LvMRToKuprGx1ERFMvBcigNgRyB0iyp2SDomsIfelSqD+5meA2jdGRL FX1uAfmGY3bDoUaGzxbuNXSw1QAhCBk= -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:45 2025 by rpki-client