$ rpki-client -vvf rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/6EA6EB5A355011EBAAB1E56EC4F9AE02.roa File: 6EA6EB5A355011EBAAB1E56EC4F9AE02.roa (raw, json) Hash identifier: Th3Fm0yjUG5Nl/BatZiPSivvwDfuH9VTwBhqmmWBVXU= Subject key identifier: C9:6D:5B:A5:9E:CC:2B:3A:C2:78:EE:F4:29:69:B9:0C:F8:59:4F:1E Certificate issuer: /CN=A91100B2/serialNumber=93A7D835E13858BB59951C399A5F9EAB0E2EB931 Certificate serial: 06BE Authority key identifier: 93:A7:D8:35:E1:38:58:BB:59:95:1C:39:9A:5F:9E:AB:0E:2E:B9:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k6fYNeE4WLtZlRw5ml-eqw4uuTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/6EA6EB5A355011EBAAB1E56EC4F9AE02.roa Signing time: Fri 18 Oct 2024 19:58:41 +0000 ROA not before: Fri 18 Oct 2024 19:58:41 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137551 IP address blocks: 103.121.188.0/24 maxlen: 24 103.121.189.0/24 maxlen: 24 103.121.190.0/24 maxlen: 24 103.121.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/k6fYNeE4WLtZlRw5ml-eqw4uuTE.crl rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/k6fYNeE4WLtZlRw5ml-eqw4uuTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k6fYNeE4WLtZlRw5ml-eqw4uuTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91100B2, serialNumber=93A7D835E13858BB59951C399A5F9EAB0E2EB931 Validity Not Before: Oct 18 19:58:41 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6712bdf1-77a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:13:ef:e6:a0:83:90:f6:f3:02:96:e5:9b:49: 0d:99:47:c6:88:4f:7f:9c:fa:8a:50:ce:3c:65:1a: 4d:1f:55:8e:9f:b0:57:0f:39:76:48:c1:ee:f5:f3: ce:69:ed:bc:4c:5c:a0:4b:e1:40:10:1b:be:89:50: 35:85:18:2d:3d:f7:31:19:7e:2e:a8:0c:dd:fd:c5: d3:eb:a9:5b:43:3d:ee:d3:82:83:50:33:69:64:67: b7:4b:14:31:e3:65:0f:8a:2e:ff:80:0e:e7:dd:3d: e1:23:fc:f7:70:0b:7a:41:7e:1b:03:1e:8c:26:66: 2a:43:35:88:ff:2a:8f:52:60:cd:b5:e9:25:d8:2a: 90:a9:de:f1:d8:6e:f3:32:8f:4b:01:80:91:b4:50: 0d:d0:14:cb:e1:a3:54:45:fe:86:35:55:c2:6a:f0: bc:ad:86:44:cb:89:c3:50:74:99:cb:c2:49:34:50: 7e:66:b8:31:d8:9d:79:47:04:48:73:71:b3:73:4b: d4:44:9b:c8:04:45:6b:b4:e3:8a:fc:80:1f:52:c7: 93:16:d1:10:81:0c:ce:fd:01:91:3c:9e:8d:ff:d0: cf:1e:ce:11:14:eb:80:1f:73:58:87:60:3a:3a:5a: c3:bb:01:da:ac:7a:00:ae:aa:45:50:d6:59:7e:dd: 13:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6D:5B:A5:9E:CC:2B:3A:C2:78:EE:F4:29:69:B9:0C:F8:59:4F:1E X509v3 Authority Key Identifier: keyid:93:A7:D8:35:E1:38:58:BB:59:95:1C:39:9A:5F:9E:AB:0E:2E:B9:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/k6fYNeE4WLtZlRw5ml-eqw4uuTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k6fYNeE4WLtZlRw5ml-eqw4uuTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/6EA6EB5A355011EBAAB1E56EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.188.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:0b:fc:20:69:08:f3:24:31:88:d1:53:ea:81:6e:1b:6e:4d: 8f:9f:bb:a8:c7:31:02:86:f2:ea:d6:a2:81:fe:d2:e8:5b:3f: f3:73:1e:04:71:cc:23:ea:c8:d6:bb:ce:6d:e1:ec:0a:49:3f: 85:5c:4d:31:69:53:e3:97:50:48:f7:31:c6:7d:58:29:54:59: ea:b5:5e:a3:c1:f2:70:a8:eb:64:bd:71:77:b3:95:8b:06:2b: 7f:f6:0e:75:49:7d:11:dd:c1:5a:c9:25:c7:50:86:88:92:e5: 28:a5:6b:0f:04:c1:e9:70:fb:b1:80:0e:45:d0:7e:5e:f8:9e: 28:4d:5b:b2:7a:6c:da:32:21:f8:72:e2:5c:bc:91:bf:52:bb: 3c:dd:1f:85:ad:3b:39:1e:39:78:d1:be:68:b2:05:fb:b7:75: 9a:a8:d1:0c:bf:b8:2c:b4:63:c0:f6:eb:9d:e4:59:71:68:cc: 59:de:eb:f5:a6:3e:68:31:62:1f:0d:fa:9f:9f:c1:e1:da:26: a2:c5:c4:88:fb:35:87:c7:4a:cd:d1:67:eb:0a:54:05:88:85: 09:49:88:06:a7:c6:44:a7:af:75:be:15:ef:d7:ba:5c:60:1c: cc:83:da:84:59:06:c0:4e:16:05:46:10:9a:b0:3b:7c:80:8e: f9:11:68:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAwQjIxMTAvBgNVBAUTKDkzQTdEODM1RTEzODU4QkI1OTk1MUMzOTlBNUY5RUFC MEUyRUI5MzEwHhcNMjQxMDE4MTk1ODQxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyYmRmMS03N2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxPv5qCDkPbzApblm0kNmUfGiE9/nPqKUM48ZRpNH1WOn7BXDzl2SMHu9fPO ae28TFygS+FAEBu+iVA1hRgtPfcxGX4uqAzd/cXT66lbQz3u04KDUDNpZGe3SxQx 42UPii7/gA7n3T3hI/z3cAt6QX4bAx6MJmYqQzWI/yqPUmDNtekl2CqQqd7x2G7z Mo9LAYCRtFAN0BTL4aNURf6GNVXCavC8rYZEy4nDUHSZy8JJNFB+Zrgx2J15RwRI c3Gzc0vURJvIBEVrtOOK/IAfUseTFtEQgQzO/QGRPJ6N/9DPHs4RFOuAH3NYh2A6 OlrDuwHarHoArqpFUNZZft0TwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMltW6We zCs6wnju9ClpuQz4WU8eMB8GA1UdIwQYMBaAFJOn2DXhOFi7WZUcOZpfnqsOLrkx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDBCMi8wQUY2RUIyQTcz RTgxMUVBODg1MUY4N0NDNEY5QUUwMi9rNmZZTmVFNFdMdFpsUnc1bWwtZXF3NHV1 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s2ZllOZUU0V0x0WmxSdzVtbC1lcXc0dXVURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTAwQjIvMEFGNkVCMkE3M0U4MTFFQTg4NTFGODdDQzRGOUFFMDIvNkVBNkVCNUEz NTUwMTFFQkFBQjFFNTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnebwwDQYJKoZIhvcNAQELBQADggEBAJ8L/CBpCPMkMYjR U+qBbhtuTY+fu6jHMQKG8urWooH+0uhbP/NzHgRxzCPqyNa7zm3h7ApJP4VcTTFp U+OXUEj3McZ9WClUWeq1XqPB8nCo62S9cXezlYsGK3/2DnVJfRHdwVrJJcdQhoiS 5Silaw8Ewelw+7GADkXQfl74nihNW7J6bNoyIfhy4ly8kb9SuzzdH4WtOzkeOXjR vmiyBfu3dZqo0Qy/uCy0Y8D2653kWXFozFne6/WmPmgxYh8N+p+fweHaJqLFxIj7 NYfHSs3RZ+sKVAWIhQlJiAanxkSnr3W+Fe/XulxgHMyD2oRZBsBOFgVGEJqwO3yA jvkRaDw= -----END CERTIFICATE-----Generated at Mon Jul 21 05:56:57 2025 by rpki-client