$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/0B3B85D63A1B11EDAE662B14C4F9AE02.roa File: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (raw, json) Hash identifier: NR8OS1L1YDEOVGgB6cb2fttAqoXgsKVRMpQfg5GvzjQ= Subject key identifier: B2:4D:D0:04:5A:90:D8:5B:31:21:A3:9D:C3:36:E1:4B:F9:E6:37:D2 Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 01F4 Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/0B3B85D63A1B11EDAE662B14C4F9AE02.roa Signing time: Tue 01 Apr 2025 02:28:48 +0000 ROA not before: Tue 01 Apr 2025 02:28:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18119 IP address blocks: 103.5.156.0/22 maxlen: 22 202.49.144.0/24 maxlen: 24 202.126.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A, serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: Apr 1 02:28:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb4f5f-d5e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2a:dd:ca:1b:67:a2:49:b2:e0:02:07:5c:9c: bc:5d:5d:c2:cb:be:00:94:51:b0:e7:b4:a0:33:67: bf:51:89:66:82:e9:97:ef:d5:cd:0b:6e:32:4c:4e: f0:20:2d:46:8d:72:f0:a7:77:91:96:99:3a:d7:de: ba:41:58:57:57:6f:e4:be:08:dd:3d:5a:f7:82:f3: 3f:83:94:e9:a5:3b:a4:f3:cf:c4:c2:a8:ed:13:76: d3:84:e3:25:0f:d5:eb:9e:a0:7b:6c:f5:74:84:93: 09:2b:ef:67:d1:d1:ba:df:0f:52:a0:4f:c1:bf:bd: 81:f3:0b:c6:b1:86:cd:a6:7d:11:5b:de:c7:14:40: 3e:b7:ed:25:a2:0d:73:95:a1:2b:aa:18:97:81:31: 35:d2:f2:94:bf:41:2e:8e:7f:ea:b5:00:41:62:cf: 48:b6:80:30:ee:bc:37:46:72:78:65:33:60:d0:e5: bc:ac:0f:8f:a6:70:eb:d7:e4:ff:8b:60:9a:37:56: 13:a9:fe:bf:68:be:24:c7:92:d1:78:da:d9:bf:08: 5e:96:67:ea:d3:96:85:cc:b6:67:2c:66:4d:88:29: 58:67:4a:fc:79:69:66:e7:c9:e1:27:37:53:8b:8d: 83:99:55:1d:13:cf:4b:48:51:c6:7b:6f:1c:0e:87: 4b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4D:D0:04:5A:90:D8:5B:31:21:A3:9D:C3:36:E1:4B:F9:E6:37:D2 X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/0B3B85D63A1B11EDAE662B14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.156.0/22 202.49.144.0/24 202.126.80.0/21 Signature Algorithm: sha256WithRSAEncryption bb:4d:b5:1e:de:7a:2d:f2:0c:3f:46:fb:88:d8:6a:39:ea:6d: 0d:64:a9:58:af:b5:cc:4c:9e:44:33:2f:e0:9b:45:31:75:c9: be:4b:e1:e0:19:cc:35:59:e0:60:96:49:39:1a:15:67:5d:9a: 11:94:86:72:e6:43:1a:df:6a:a1:a6:92:9a:50:bf:fe:e6:f9: 9a:ab:3d:9d:30:39:a4:9f:ee:e5:0b:ea:ac:2f:c5:d7:9d:d7: a3:e2:03:96:01:20:b9:8d:35:b4:00:0a:61:42:44:c2:cd:e6: 9e:99:5b:c9:90:9a:cb:89:2b:a9:a4:a5:40:48:c5:ff:d2:05: 64:fc:98:6a:d3:c7:55:7d:5a:8b:e9:97:c3:6d:7b:df:c5:11: d6:46:69:02:1b:0a:2f:2c:06:1b:85:b2:c5:3a:dc:5a:64:62: b4:57:3f:10:22:26:6d:6f:c2:f5:5a:03:e5:bd:22:27:df:ee: 58:03:86:d5:fd:2a:0b:f4:cb:4e:31:46:59:6c:ca:03:a9:42: 6f:87:bb:fa:32:a5:2b:11:5e:c3:e5:19:de:45:4d:9d:e5:4b: d8:eb:a6:31:7e:c6:81:38:bf:b8:72:34:90:b5:57:af:e8:72: 20:47:89:49:d9:0a:79:62:ba:bb:08:37:71:a0:4b:7b:82:aa: 8f:02:91:e1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjUwNDAxMDIyODQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViNGY1Zi1kNWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Crdyhtnokmy4AIHXJy8XV3Cy74AlFGw57SgM2e/UYlmgumX79XNC24yTE7w IC1GjXLwp3eRlpk61966QVhXV2/kvgjdPVr3gvM/g5TppTuk88/EwqjtE3bThOMl D9XrnqB7bPV0hJMJK+9n0dG63w9SoE/Bv72B8wvGsYbNpn0RW97HFEA+t+0log1z laErqhiXgTE10vKUv0Eujn/qtQBBYs9ItoAw7rw3RnJ4ZTNg0OW8rA+PpnDr1+T/ i2CaN1YTqf6/aL4kx5LReNrZvwhelmfq05aFzLZnLGZNiClYZ0r8eWlm58nhJzdT i42DmVUdE89LSFHGe28cDodLxwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLJN0ARa kNhbMSGjncM24Uv55jfSMB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkIwM0EvREZDNjhENjQzQTE2MTFFRDkxNTJCRjBFQzRGOUFFMDIvMEIzQjg1RDYz QTFCMTFFREFFNjYyQjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnBZwDBADKMZADBAPKflAwDQYJKoZIhvcNAQELBQADggEB ALtNtR7eei3yDD9G+4jYajnqbQ1kqVivtcxMnkQzL+CbRTF1yb5L4eAZzDVZ4GCW STkaFWddmhGUhnLmQxrfaqGmkppQv/7m+ZqrPZ0wOaSf7uUL6qwvxded16PiA5YB ILmNNbQACmFCRMLN5p6ZW8mQmsuJK6mkpUBIxf/SBWT8mGrTx1V9Wovpl8Nte9/F EdZGaQIbCi8sBhuFssU63FpkYrRXPxAiJm1vwvVaA+W9Iiff7lgDhtX9Kgv0y04x RllsygOpQm+Hu/oypSsRXsPlGd5FTZ3lS9jrpjF+xoE4v7hyNJC1V6/ociBHiUnZ CnliursIN3GgS3uCqo8CkeE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:46 2025 by rpki-client