$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa File: A6389578DAD111ECA6DEA174C4F9AE02.roa (raw, json) Hash identifier: jwHoQgOY9fRB3Dqb7u0CR2POMqXltdonHQARnzrE8nE= Subject key identifier: B5:22:7C:9C:50:D8:3C:C1:4E:97:7D:E4:6E:5A:6B:8A:E0:7F:F9:19 Certificate issuer: /CN=A91F9ADA/serialNumber=2CB616102977D4C90B23F3AF03B891E89B805CC3 Certificate serial: 02E0 Authority key identifier: 2C:B6:16:10:29:77:D4:C9:0B:23:F3:AF:03:B8:91:E8:9B:80:5C:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa Signing time: Sat 05 Apr 2025 01:36:42 +0000 ROA not before: Sat 05 Apr 2025 01:36:42 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133106 IP address blocks: 103.230.72.0/22 maxlen: 24 2001:df5:5800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.crl rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9ADA, serialNumber=2CB616102977D4C90B23F3AF03B891E89B805CC3 Validity Not Before: Apr 5 01:36:42 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f08929-33a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:19:c8:d2:f4:7a:c2:28:9a:1b:10:d6:5f:43: cf:c1:4e:b5:25:8d:42:13:39:51:ed:82:90:88:fd: 23:13:63:3f:97:63:65:f8:b5:17:8a:2a:32:9d:47: fb:53:26:79:89:dc:f0:d9:2d:a3:f7:ce:2a:f0:25: af:35:db:a1:d4:4f:3d:5b:45:c6:0c:32:16:b1:cb: 91:b8:23:d6:10:e9:16:91:06:d5:12:90:7a:7d:6b: ad:66:96:25:2c:bf:64:91:ce:34:44:eb:df:5c:a8: 86:5d:5a:5f:5a:17:07:f5:22:d9:65:e9:12:30:53: 22:f1:0f:06:6d:5a:d2:bb:62:44:56:63:49:b2:ab: 4d:cc:4f:c0:95:a0:7b:87:54:6b:34:ac:ae:b2:0c: 0e:a6:c8:46:11:01:49:3a:36:2c:ad:58:8c:57:3c: 65:b0:f5:c6:b8:6a:1f:39:df:e6:28:ac:b8:db:bb: ca:65:3c:a1:95:42:6b:3d:d4:12:9b:49:af:ad:d0: 58:51:05:8e:cb:56:83:d5:b6:34:4d:c7:d7:c5:9c: 74:64:0b:32:fb:e6:29:7e:f3:10:8c:9d:15:65:da: af:5d:6a:1d:84:59:63:f0:e0:c0:16:b1:5c:a6:01: c0:c6:d9:8a:84:dd:52:70:ef:1b:0d:cd:cf:f8:ea: 61:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:22:7C:9C:50:D8:3C:C1:4E:97:7D:E4:6E:5A:6B:8A:E0:7F:F9:19 X509v3 Authority Key Identifier: keyid:2C:B6:16:10:29:77:D4:C9:0B:23:F3:AF:03:B8:91:E8:9B:80:5C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.72.0/22 IPv6: 2001:df5:5800::/48 Signature Algorithm: sha256WithRSAEncryption 59:06:3c:23:1f:84:ae:dc:d8:58:15:c5:eb:98:e1:f8:1e:c1: 40:66:0a:9c:c1:47:bf:2e:7f:75:a3:2b:79:99:90:82:d8:14: 80:1d:a3:bc:48:4f:8b:83:b1:1b:05:24:37:73:f5:3f:c7:92: 69:35:50:49:80:1d:8f:25:d2:d4:d1:fb:cd:95:8f:93:17:89: 9b:36:1b:64:49:02:5a:af:02:f3:ce:ba:5a:85:d6:ec:71:6b: eb:f7:ae:f4:1f:1c:08:fa:28:f6:28:59:0a:48:c6:89:44:aa: cf:ce:fd:c8:89:97:a9:f3:28:da:d7:1e:a6:e4:f0:d8:a6:29: 32:fa:a3:20:c7:67:97:0f:f4:53:0a:ea:ff:a1:67:d1:98:c9: 0b:d4:04:04:1c:e4:c5:82:a0:b1:70:d6:a4:7d:99:42:e4:bd: 39:f5:35:61:50:8b:62:91:59:7c:39:a0:91:fb:94:f3:6a:2e: 94:db:6f:e8:1e:c2:86:eb:af:5c:28:d9:1c:aa:43:5c:20:17: 6e:09:ed:5a:53:0d:f3:59:ef:88:94:bb:9f:d6:1b:78:d0:1b: 6d:10:46:0e:93:28:86:f2:16:68:ed:03:25:75:6e:26:f6:d8: 94:ba:0f:4e:e3:15:8d:4b:12:ec:0f:6c:2b:12:70:93:80:31: 0e:42:52:c4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlBREExMTAvBgNVBAUTKDJDQjYxNjEwMjk3N0Q0QzkwQjIzRjNBRjAzQjg5MUU4 OUI4MDVDQzMwHhcNMjUwNDA1MDEzNjQyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODkyOS0zM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhnI0vR6wiiaGxDWX0PPwU61JY1CEzlR7YKQiP0jE2M/l2Nl+LUXiioynUf7 UyZ5idzw2S2j984q8CWvNduh1E89W0XGDDIWscuRuCPWEOkWkQbVEpB6fWutZpYl LL9kkc40ROvfXKiGXVpfWhcH9SLZZekSMFMi8Q8GbVrSu2JEVmNJsqtNzE/AlaB7 h1RrNKyusgwOpshGEQFJOjYsrViMVzxlsPXGuGofOd/mKKy427vKZTyhlUJrPdQS m0mvrdBYUQWOy1aD1bY0TcfXxZx0ZAsy++YpfvMQjJ0VZdqvXWodhFlj8ODAFrFc pgHAxtmKhN1ScO8bDc3P+OphRQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLUifJxQ 2DzBTpd95G5aa4rgf/kZMB8GA1UdIwQYMBaAFCy2FhApd9TJCyPzrwO4keibgFzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUFEQS8wRTlDN0M3MkRB QzUxMUVDOTE5QTRDNUFDNEY5QUUwMi9MTFlXRUNsMzFNa0xJX092QTdpUjZKdUFY TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xMWVdFQ2wzMU1rTElfT3ZBN2lSNkp1QVhNTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlBREEvMEU5QzdDNzJEQUM1MTFFQzkxOUE0QzVBQzRGOUFFMDIvQTYzODk1NzhE QUQxMTFFQ0E2REVBMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJn5kgwDwQCAAIwCQMHACABDfVYADANBgkqhkiG9w0BAQsF AAOCAQEAWQY8Ix+ErtzYWBXF65jh+B7BQGYKnMFHvy5/daMreZmQgtgUgB2jvEhP i4OxGwUkN3P1P8eSaTVQSYAdjyXS1NH7zZWPkxeJmzYbZEkCWq8C8866WoXW7HFr 6/eu9B8cCPoo9ihZCkjGiUSqz879yImXqfMo2tcepuTw2KYpMvqjIMdnlw/0Uwrq /6Fn0ZjJC9QEBBzkxYKgsXDWpH2ZQuS9OfU1YVCLYpFZfDmgkfuU82oulNtv6B7C huuvXCjZHKpDXCAXbgntWlMN81nviJS7n9YbeNAbbRBGDpMohvIWaO0DJXVuJvbY lLoPTuMVjUsS7A9sKxJwk4AxDkJSxA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:31 2025 by rpki-client