$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa File: 4AE6CFF8B25211EBA977EE09C4F9AE02.roa (raw, json) Hash identifier: ZdFF8YkXhtC1AoahmW58AQqkSN0T37GBdkW2/eDce6s= Subject key identifier: D3:FE:AE:73:C0:8A:92:77:6C:00:3C:F9:4C:11:C4:00:B0:41:04:1F Certificate issuer: /CN=A91F8336/serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Certificate serial: 1191 Authority key identifier: D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa Signing time: Thu 20 Mar 2025 17:26:12 +0000 ROA not before: Thu 20 Mar 2025 17:26:12 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138495 IP address blocks: 103.126.244.0/22 maxlen: 24 2404:1540::/32 maxlen: 32 2404:1540:1000::/36 maxlen: 36 2404:1540:1000::/48 maxlen: 48 2404:1540:1001::/48 maxlen: 48 2404:1540:1002::/48 maxlen: 48 2404:1540:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4497 (0x1191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8336, serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Validity Not Before: Mar 20 17:26:12 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67dc4fb4-6c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f8:ee:47:26:74:04:84:11:55:a6:19:ce:b7: 5b:9e:41:bd:bc:60:04:d8:a0:c3:46:f9:18:19:4f: 5e:71:0f:90:64:94:15:72:3e:c0:c1:79:fe:47:c4: 26:2e:25:4a:a1:19:03:12:97:bb:f0:18:6c:5c:47: 6d:d5:e3:5c:7b:9a:14:3c:28:66:e1:24:fe:13:f3: 1b:da:4c:50:a3:99:c2:6a:b4:fd:1e:55:bc:0c:6e: 89:04:12:08:13:38:52:a7:8a:7b:c2:1b:55:fd:1e: 18:e6:9a:3a:ff:1f:82:8d:4f:a1:a4:40:61:d7:44: d7:4a:42:b9:5f:e0:2b:13:fc:a6:c3:85:91:20:c1: d4:b1:dd:c3:69:59:6f:6a:39:f1:63:6e:66:03:58: de:b9:b5:57:9a:48:8b:01:f5:2e:03:4d:80:5c:72: 9c:ae:5a:32:58:99:9e:20:a5:a8:2b:70:aa:4b:9d: fa:88:da:05:04:f1:4d:10:00:e1:86:29:45:b2:87: 09:10:f3:fc:f6:53:f1:4e:b5:32:e0:16:08:d0:3e: bf:19:43:c8:4b:1e:c1:b3:26:81:b8:1c:fc:8c:1e: 04:27:75:51:a1:b2:d0:6c:86:76:bb:1a:9c:f8:2c: 25:f4:85:70:f6:6c:96:d2:af:1b:03:df:b7:b7:e1: 5a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FE:AE:73:C0:8A:92:77:6C:00:3C:F9:4C:11:C4:00:B0:41:04:1F X509v3 Authority Key Identifier: keyid:D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.244.0/22 IPv6: 2404:1540::/32 Signature Algorithm: sha256WithRSAEncryption a0:f4:44:76:58:3f:c1:45:69:f0:d5:57:0b:18:76:05:99:99: 51:f4:b7:8d:de:90:41:e9:30:52:95:9d:28:4f:49:92:41:ba: d9:02:9e:8a:c1:34:d9:6b:61:72:e5:78:76:90:a4:47:e3:69: da:23:4f:af:1e:4b:2e:1d:18:c9:6a:86:a8:e0:03:52:80:c9: ee:9f:3b:37:69:ec:3e:65:a5:53:21:c8:c2:00:a7:22:6f:0b: 76:cd:c9:63:f1:54:56:4b:a3:9e:07:1a:1d:d2:8b:9f:c4:33: 13:d5:eb:05:58:ae:57:82:0d:e6:d5:31:0c:53:62:a0:6a:93: 50:1a:65:22:c4:44:eb:31:b6:1e:84:73:03:45:88:f1:ba:39: 36:6e:1f:e3:1c:2d:dd:c0:c2:fb:47:8c:6b:8c:a7:86:4e:14: 3b:4f:7a:5f:4d:33:32:9b:a9:05:02:02:a7:f7:35:00:9d:ef: d1:a8:45:b6:8a:62:b0:a7:94:e9:61:9b:31:ba:e7:f9:4a:bd: 90:c1:14:ca:4d:98:bd:6c:e9:15:6b:a0:45:5d:c8:14:4c:4d: 01:00:96:94:68:a5:af:1b:46:89:cb:11:cc:e3:5e:5e:74:72: 29:f6:30:99:6d:01:06:d7:f1:18:da:f5:a1:d1:4a:5f:7a:9e: eb:5d:d5:10 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzMzYxMTAvBgNVBAUTKEQ3N0YzNzk3NTIzNUFCREU1RjQ5ODlGQkYzRkU5MzhE NTI3QzE5NDgwHhcNMjUwMzIwMTcyNjEyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjNGZiNC02YzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/juRyZ0BIQRVaYZzrdbnkG9vGAE2KDDRvkYGU9ecQ+QZJQVcj7AwXn+R8Qm LiVKoRkDEpe78BhsXEdt1eNce5oUPChm4ST+E/Mb2kxQo5nCarT9HlW8DG6JBBII EzhSp4p7whtV/R4Y5po6/x+CjU+hpEBh10TXSkK5X+ArE/ymw4WRIMHUsd3DaVlv ajnxY25mA1jeubVXmkiLAfUuA02AXHKcrloyWJmeIKWoK3CqS536iNoFBPFNEADh hilFsocJEPP89lPxTrUy4BYI0D6/GUPISx7BsyaBuBz8jB4EJ3VRobLQbIZ2uxqc +Cwl9IVw9myW0q8bA9+3t+FaSQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNP+rnPA ipJ3bAA8+UwRxACwQQQfMB8GA1UdIwQYMBaAFNd/N5dSNaveX0mJ+/P+k41SfBlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODMzNi8zN0UxNjczRUZE MUQxMUU4QjNFMzZFNTdDNEY5QUUwMi8xMzgzbDFJMXE5NWZTWW43OF82VGpWSjhH VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzODNsMUkxcTk1ZlNZbjc4XzZUalZKOEdVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgzMzYvMzdFMTY3M0VGRDFEMTFFOEIzRTM2RTU3QzRGOUFFMDIvNEFFNkNGRjhC MjUyMTFFQkE5NzdFRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfvQwDQQCAAIwBwMFACQEFUAwDQYJKoZIhvcNAQELBQAD ggEBAKD0RHZYP8FFafDVVwsYdgWZmVH0t43ekEHpMFKVnShPSZJButkCnorBNNlr YXLleHaQpEfjadojT68eSy4dGMlqhqjgA1KAye6fOzdp7D5lpVMhyMIApyJvC3bN yWPxVFZLo54HGh3Si5/EMxPV6wVYrleCDebVMQxTYqBqk1AaZSLEROsxth6EcwNF iPG6OTZuH+McLd3AwvtHjGuMp4ZOFDtPel9NMzKbqQUCAqf3NQCd79GoRbaKYrCn lOlhmzG65/lKvZDBFMpNmL1s6RVroEVdyBRMTQEAlpRopa8bRonLEczjXl50cin2 MJltAQbX8Rja9aHRSl96nutd1RA= -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:33 2025 by rpki-client