$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C6AA9D48E5DC11EE867C6F21C4F9AE02.roa File: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (raw, json) Hash identifier: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y= Subject key identifier: 11:63:BA:0B:BC:C8:81:01:DF:BA:BD:EC:46:B3:C9:9B:E9:94:D9:4E Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 0168 Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C6AA9D48E5DC11EE867C6F21C4F9AE02.roa Signing time: Tue 15 Apr 2025 03:08:42 +0000 ROA not before: Tue 15 Apr 2025 03:08:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139871 IP address blocks: 103.119.80.0/23 maxlen: 24 2400:ef20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Apr 15 03:08:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fdcdba-e009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b7:4d:01:4a:71:d7:e0:32:6e:04:dc:37:6d: 44:57:b4:08:e7:4a:97:70:32:58:c3:ac:53:9c:56: 83:15:31:1e:99:33:f1:21:cc:39:84:2e:9f:f3:30: 65:28:13:f8:cf:1e:5e:a4:f2:b5:f2:eb:4a:07:96: 6c:5d:c1:73:04:74:2e:1f:9c:c4:f2:b0:27:a6:98: c7:72:38:a7:69:b1:f7:fa:91:ea:bb:cc:73:61:01: 45:57:40:78:fc:aa:2b:20:28:c4:4a:a6:30:39:e0: bf:15:92:bf:48:29:90:b1:f8:00:84:fc:a2:94:f3: cb:b6:d0:ce:cc:4b:25:e6:4b:15:79:e0:7c:c9:d4: 2e:53:d4:df:74:24:51:25:47:69:08:8b:d5:3c:e8: de:a7:f0:a8:cf:14:e2:0b:bb:e7:54:98:43:1e:44: 87:17:ab:ac:6a:dc:44:a4:44:8d:ae:3d:f2:6f:f2: f0:17:5f:ae:3c:82:f4:d0:b5:c8:d3:93:ab:03:7a: 0f:2c:ca:60:0a:14:72:4c:91:70:08:08:63:44:c7: ba:4e:ba:eb:69:1b:bf:4a:a5:c3:01:bc:a8:34:cf: a4:31:51:d3:0c:0f:bc:7b:47:a1:75:93:48:c9:08: 84:1f:48:a0:75:a9:02:b6:34:39:90:8e:a1:52:60: 56:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:63:BA:0B:BC:C8:81:01:DF:BA:BD:EC:46:B3:C9:9B:E9:94:D9:4E X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C6AA9D48E5DC11EE867C6F21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.80.0/23 IPv6: 2400:ef20::/32 Signature Algorithm: sha256WithRSAEncryption a8:90:cd:43:83:20:48:d8:5b:c5:84:f0:90:fc:82:58:8f:b9: f0:b7:51:cf:a3:e3:7b:2b:28:12:98:f7:5e:0b:32:6a:99:d4: 95:cd:2f:52:12:b1:e2:54:9a:06:6d:6d:66:5d:1a:a6:be:ce: 5f:a5:97:59:04:03:a8:a4:e8:49:5a:dc:0d:ce:03:1c:f0:b3: e1:22:1e:a7:d9:c5:b9:e5:33:ee:6d:46:b4:b8:c0:b4:82:df: 04:31:23:cd:76:f3:e3:df:eb:09:3e:da:ea:c4:b5:3e:0e:92: 76:8b:88:59:63:32:0a:d7:ef:3c:28:2e:19:da:f1:a8:81:44: 49:b0:c7:52:56:96:5b:68:07:92:b9:c9:7f:22:a8:72:88:8f: 00:47:ca:a9:9a:af:07:1f:96:41:c6:b1:96:de:ac:73:03:98: bd:4f:99:c7:4f:27:b4:5f:aa:c2:ca:b6:85:43:a4:b0:78:8e: 7a:88:33:09:97:cd:62:ba:8e:0b:08:36:9f:04:17:76:69:66: a7:15:58:5d:e7:44:67:bc:69:77:41:87:e7:a1:18:5d:b1:7b: c9:7f:33:42:f1:c6:38:1b:d4:de:33:61:14:a0:da:da:4a:9d: 3b:be:a5:89:44:c7:b7:14:41:40:38:30:86:fd:74:c6:5d:87: 74:64:8c:ea -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwNDE1MDMwODQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkY2RiYS1lMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rdNAUpx1+AybgTcN21EV7QI50qXcDJYw6xTnFaDFTEemTPxIcw5hC6f8zBl KBP4zx5epPK18utKB5ZsXcFzBHQuH5zE8rAnppjHcjinabH3+pHqu8xzYQFFV0B4 /KorICjESqYwOeC/FZK/SCmQsfgAhPyilPPLttDOzEsl5ksVeeB8ydQuU9TfdCRR JUdpCIvVPOjep/CozxTiC7vnVJhDHkSHF6usatxEpESNrj3yb/LwF1+uPIL00LXI 05OrA3oPLMpgChRyTJFwCAhjRMe6TrrraRu/SqXDAbyoNM+kMVHTDA+8e0ehdZNI yQiEH0igdakCtjQ5kI6hUmBWjQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBFjugu8 yIEB37q97EazyZvplNlOMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM5RkUvNTNDQjY5MENGREUyMTFFRDlEMkQxRjY4QzRGOUFFMDIvQzZBQTlENDhF NURDMTFFRTg2N0M2RjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnd1AwDQQCAAIwBwMFACQA7yAwDQYJKoZIhvcNAQELBQAD ggEBAKiQzUODIEjYW8WE8JD8gliPufC3Uc+j43srKBKY914LMmqZ1JXNL1ISseJU mgZtbWZdGqa+zl+ll1kEA6ik6Ela3A3OAxzws+EiHqfZxbnlM+5tRrS4wLSC3wQx I8128+Pf6wk+2urEtT4OknaLiFljMgrX7zwoLhna8aiBREmwx1JWlltoB5K5yX8i qHKIjwBHyqmarwcflkHGsZberHMDmL1PmcdPJ7RfqsLKtoVDpLB4jnqIMwmXzWK6 jgsINp8EF3ZpZqcVWF3nRGe8aXdBh+ehGF2xe8l/M0Lxxjgb1N4zYRSg2tpKnTu+ pYlEx7cUQUA4MIb9dMZdh3RkjOo= -----END CERTIFICATE-----Generated at Sat Apr 26 14:05:38 2025 by rpki-client