$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa File: 4231A1AA1B1711EEA5566A23C4F9AE02.roa (raw, json) Hash identifier: lTkc7C0RlmKbFSYdbjr+dPk/Bz3louAuGeeNLMUaa3U= Subject key identifier: D9:12:EF:52:45:B0:7A:05:C2:98:03:E4:5D:B8:42:8E:93:68:82:60 Certificate issuer: /CN=A91F4957/serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Certificate serial: 014E Authority key identifier: BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa Signing time: Tue 25 Mar 2025 03:39:40 +0000 ROA not before: Tue 25 Mar 2025 03:39:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138331 IP address blocks: 103.247.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4957, serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Validity Not Before: Mar 25 03:39:40 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e2257c-4145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b1:67:1c:17:76:db:3b:ae:07:be:49:8a:7b: 7d:0c:06:cd:d7:35:2c:fe:6c:1e:1a:7a:91:f9:b2: 6d:4d:01:ba:c0:b5:03:ea:7b:cc:ff:95:fc:37:0a: 7c:38:eb:da:59:74:ae:a5:3e:91:94:a2:8f:15:93: c5:e1:b7:3e:54:48:e0:b3:61:8e:aa:aa:cf:ef:f8: dc:b2:52:5e:54:3f:88:9e:75:c4:8a:b7:69:df:08: 4d:5f:29:fe:dd:54:72:1b:0e:9b:56:6f:e7:99:8e: 24:d7:ed:8b:31:8c:04:1c:65:f9:fb:df:d3:c2:75: f2:f0:e8:a6:11:90:b3:64:b2:13:5d:fd:fc:6c:20: 89:09:b8:47:d1:ce:c5:88:62:a9:54:f3:2b:c3:a3: c4:a0:5b:ce:86:08:1c:69:98:80:01:14:c3:11:16: c7:92:4c:ce:4a:b7:4e:ba:aa:c1:0f:be:7b:2d:42: bf:2b:14:9c:24:33:63:90:d4:37:d9:a4:5e:33:0e: 33:33:ee:1b:51:84:66:14:de:1c:7e:98:b6:dc:ab: 07:bd:05:66:40:a2:0d:f5:25:ad:ab:72:f7:f3:02: 95:3f:07:c6:ca:c8:f0:27:bc:c7:e6:5e:4b:b8:6f: 87:41:17:f0:03:92:4a:a7:dd:6f:67:91:10:00:a0: 81:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:12:EF:52:45:B0:7A:05:C2:98:03:E4:5D:B8:42:8E:93:68:82:60 X509v3 Authority Key Identifier: keyid:BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.136.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:d0:d9:5c:da:ca:cb:37:30:7f:9f:8c:e5:9c:f8:6e:6d:a0: 33:50:41:5f:c1:88:d0:1f:05:b4:0d:19:ec:dd:61:a3:a6:d0: 31:a4:3a:95:c9:10:65:2e:6c:3a:94:4b:e5:fc:fd:35:f4:0d: b0:2e:13:e9:aa:08:07:19:14:96:af:cd:b7:17:54:81:59:7d: 5a:c1:e6:df:79:32:06:42:8e:7b:a4:8a:58:71:09:8c:e6:b0: d4:9b:40:a0:cb:48:df:ef:f4:c4:88:e0:66:80:3a:a9:e1:c1: bc:22:84:0c:ca:ab:dc:b8:40:7b:72:c2:31:79:f4:d7:d4:2b: 5a:39:67:78:b1:c5:43:bf:94:ef:72:53:43:7b:55:77:2e:f9: 6f:dc:56:0d:f8:5a:24:24:76:8e:4d:8e:ad:02:1d:b8:36:53: 72:a0:15:5b:8e:34:71:65:9e:ea:fc:93:1b:11:58:3f:b5:50: 98:59:83:96:f9:fd:4b:1d:0a:56:64:06:67:da:bf:30:bd:28: ce:5f:d7:0c:91:56:a9:a4:14:7f:89:81:88:2e:2f:e6:54:b7: 4c:c4:5f:87:77:13:85:9f:a1:1e:3b:23:2b:a4:a0:0b:ee:5f: 1d:f8:c1:c7:bf:7a:d6:5a:84:9d:82:5b:c0:9b:92:7c:9a:73: 68:94:1f:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ5NTcxMTAvBgNVBAUTKEJGMkQxQjM5RDNDMkU5QUUwQUE4RkFCOTRCQUM1NDBD QzUyNjUyNEYwHhcNMjUwMzI1MDMzOTQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyMjU3Yy00MTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87FnHBd22zuuB75Jint9DAbN1zUs/mweGnqR+bJtTQG6wLUD6nvM/5X8Nwp8 OOvaWXSupT6RlKKPFZPF4bc+VEjgs2GOqqrP7/jcslJeVD+InnXEirdp3whNXyn+ 3VRyGw6bVm/nmY4k1+2LMYwEHGX5+9/TwnXy8OimEZCzZLITXf38bCCJCbhH0c7F iGKpVPMrw6PEoFvOhggcaZiAARTDERbHkkzOSrdOuqrBD757LUK/KxScJDNjkNQ3 2aReMw4zM+4bUYRmFN4cfpi23KsHvQVmQKIN9SWtq3L38wKVPwfGysjwJ7zH5l5L uG+HQRfwA5JKp91vZ5EQAKCBQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNkS71JF sHoFwpgD5F24Qo6TaIJgMB8GA1UdIwQYMBaAFL8tGznTwumuCqj6uUusVAzFJlJP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDk1Ny81NzFCMjIxMDFB RTcxMUVFOERENEI5NDlDNEY5QUUwMi92eTBiT2RQQzZhNEtxUHE1UzZ4VURNVW1V azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z5MGJPZFBDNmE0S3FQcTVTNnhVRE1VbVVrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ5NTcvNTcxQjIyMTAxQUU3MTFFRThERDRCOTQ5QzRGOUFFMDIvNDIzMUExQUEx QjE3MTFFRUE1NTY2QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn94gwDQYJKoZIhvcNAQELBQADggEBAJ/Q2Vzayss3MH+f jOWc+G5toDNQQV/BiNAfBbQNGezdYaOm0DGkOpXJEGUubDqUS+X8/TX0DbAuE+mq CAcZFJavzbcXVIFZfVrB5t95MgZCjnukilhxCYzmsNSbQKDLSN/v9MSI4GaAOqnh wbwihAzKq9y4QHtywjF59NfUK1o5Z3ixxUO/lO9yU0N7VXcu+W/cVg34WiQkdo5N jq0CHbg2U3KgFVuONHFlnur8kxsRWD+1UJhZg5b5/UsdClZkBmfavzC9KM5f1wyR VqmkFH+JgYguL+ZUt0zEX4d3E4WfoR47IyukoAvuXx34wce/etZahJ2CW8Cbknya c2iUHwI= -----END CERTIFICATE-----Generated at Sat Apr 26 05:58:30 2025 by rpki-client