$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/AAF361C0D18B11EF810E8B66C4F9AE02.roa File: AAF361C0D18B11EF810E8B66C4F9AE02.roa (raw, json) Hash identifier: w12orzg2QI/DnMwGWqRtnSkszoQETfTmbyGE/vvJi2w= Subject key identifier: 44:62:75:63:D0:66:CC:B7:D1:70:DC:D3:88:6D:46:DF:7E:FB:C0:59 Certificate issuer: /CN=A91FE7DF/serialNumber=E7F7DD40928298EC9ECA6446A184A359A3ED5DFE Certificate serial: 0206 Authority key identifier: E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/AAF361C0D18B11EF810E8B66C4F9AE02.roa Signing time: Mon 03 Feb 2025 02:05:18 +0000 ROA not before: Mon 03 Feb 2025 02:05:18 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 206888 IP address blocks: 103.205.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.crl rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DF, serialNumber=E7F7DD40928298EC9ECA6446A184A359A3ED5DFE Validity Not Before: Feb 3 02:05:18 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a0245e-0826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:8a:7d:da:9c:b7:76:33:6a:33:e5:99:7e: c4:e6:f6:d8:1b:9f:db:b2:8b:80:c7:b3:29:d7:1c: 57:ae:23:ef:f8:c2:e9:8d:99:2a:b2:69:c0:be:40: 4b:5f:c0:cb:01:81:a8:36:8a:a7:54:c9:52:7a:dc: b5:88:09:1b:52:61:e8:6e:a1:65:c2:f8:41:ba:55: 65:25:ad:2a:ec:0e:04:dc:98:03:e4:ab:db:10:7f: 3e:c8:e3:3f:44:b0:8f:3a:c9:d6:ca:9b:91:1d:56: 81:cc:04:46:5d:10:e2:ed:5b:6f:5c:ba:b0:97:30: 5a:35:fc:e7:8b:59:56:d2:c9:b2:ec:a8:73:6e:fd: 03:99:2c:1e:f5:e5:c0:9e:3b:6b:cb:f9:83:e2:42: a7:a5:cf:c3:4b:0a:fe:e7:94:a7:c0:bb:4d:5a:94: 8c:6e:e3:5c:a8:11:9f:08:54:dc:46:8e:0f:fd:94: 87:dc:fd:76:15:34:1b:76:87:a7:57:16:1a:b1:da: da:01:c6:56:d1:af:41:1c:00:a0:96:c9:4c:af:cd: df:31:37:46:fa:ac:da:b3:21:44:39:ee:2e:12:97: 67:6e:eb:cd:34:a7:17:a8:1d:0d:d3:7e:6b:f0:63: 91:1d:bb:22:8f:a7:1e:81:af:e3:dd:3d:ff:e8:ea: 72:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:62:75:63:D0:66:CC:B7:D1:70:DC:D3:88:6D:46:DF:7E:FB:C0:59 X509v3 Authority Key Identifier: keyid:E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/AAF361C0D18B11EF810E8B66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.240.0/22 Signature Algorithm: sha256WithRSAEncryption 10:51:39:a8:32:8a:e0:61:7d:52:38:20:d5:a6:ec:0b:b1:01: ff:5a:42:f1:33:fa:81:01:ba:47:5c:67:3d:d0:c7:3e:b5:f0: 08:12:b1:4b:da:00:8f:4d:c4:6b:cd:78:56:fa:c4:73:34:06: d3:73:a3:5f:3d:5e:41:f9:9e:ee:d5:73:55:06:c0:16:1c:d9: ef:75:92:0a:27:9d:ab:5a:08:2f:40:d8:c6:f9:a0:89:99:1b: 81:cf:78:b4:f8:e3:51:b4:26:ed:1f:da:9b:31:93:b5:dd:68: c3:50:f6:c0:4e:85:ea:b0:07:8c:08:8a:11:d1:c8:24:4a:be: 3a:7c:3d:30:1e:60:55:56:a6:12:39:26:d8:98:ff:d4:33:3f: c9:38:fd:31:78:0f:f7:91:8a:45:3e:b6:31:f3:31:69:47:8d: 4c:65:ed:39:7e:05:1d:98:7e:8f:a9:d3:cc:be:e7:87:0b:6f: e5:8d:54:b5:9c:22:18:80:2e:65:85:a7:0d:48:e3:79:87:4a: c3:bf:db:a6:0d:51:ed:6b:ba:c2:f9:2a:0e:f7:9d:a1:dd:81: 25:36:a6:9f:b1:e4:4e:40:8e:49:df:56:ad:ac:4a:eb:7b:0b: ce:0e:ad:c4:1a:ce:30:e8:57:67:0b:33:5e:0b:f1:4e:d8:06: c6:d1:bb:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REYxMTAvBgNVBAUTKEU3RjdERDQwOTI4Mjk4RUM5RUNBNjQ0NkExODRBMzU5 QTNFRDVERkUwHhcNMjUwMjAzMDIwNTE4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EwMjQ1ZS0wODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsyKfdqct3YzajPlmX7E5vbYG5/bsouAx7Mp1xxXriPv+MLpjZkqsmnAvkBL X8DLAYGoNoqnVMlSety1iAkbUmHobqFlwvhBulVlJa0q7A4E3JgD5KvbEH8+yOM/ RLCPOsnWypuRHVaBzARGXRDi7VtvXLqwlzBaNfzni1lW0smy7Khzbv0DmSwe9eXA njtry/mD4kKnpc/DSwr+55SnwLtNWpSMbuNcqBGfCFTcRo4P/ZSH3P12FTQbdoen VxYasdraAcZW0a9BHACglslMr83fMTdG+qzasyFEOe4uEpdnbuvNNKcXqB0N035r 8GORHbsij6cega/j3T3/6OpyqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFERidWPQ Zsy30XDc04htRt9++8BZMB8GA1UdIwQYMBaAFOf33UCSgpjsnspkRqGEo1mj7V3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdERi82RDU1MkQ3MDI3 N0ExMUVEQTZCMUE4MjZDNEY5QUUwMi81X2ZkUUpLQ21PeWV5bVJHb1lTaldhUHRY ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVfZmRRSktDbU95ZXltUkdvWVNqV2FQdFhmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU3REYvNkQ1NTJENzAyNzdBMTFFREE2QjFBODI2QzRGOUFFMDIvQUFGMzYxQzBE MThCMTFFRjgxMEU4QjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzfAwDQYJKoZIhvcNAQELBQADggEBABBROagyiuBhfVI4 INWm7AuxAf9aQvEz+oEBukdcZz3Qxz618AgSsUvaAI9NxGvNeFb6xHM0BtNzo189 XkH5nu7Vc1UGwBYc2e91kgonnataCC9A2Mb5oImZG4HPeLT441G0Ju0f2psxk7Xd aMNQ9sBOheqwB4wIihHRyCRKvjp8PTAeYFVWphI5JtiY/9QzP8k4/TF4D/eRikU+ tjHzMWlHjUxl7Tl+BR2Yfo+p08y+54cLb+WNVLWcIhiALmWFpw1I43mHSsO/26YN Ue1rusL5Kg73naHdgSU2pp+x5E5AjknfVq2sSut7C84OrcQazjDoV2cLM14L8U7Y BsbRuzY= -----END CERTIFICATE-----Generated at Sat Apr 26 12:29:22 2025 by rpki-client