$ rpki-client -vvf rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/EFE689283FDE11EE8EC3E546C4F9AE02.roa File: EFE689283FDE11EE8EC3E546C4F9AE02.roa (raw, json) Hash identifier: ggS/okJOXO20WJl9u64hoMFD/RxIwy0K1iG0hR/vSB4= Subject key identifier: 11:AB:4C:92:CF:15:5E:6D:BD:EC:F1:84:70:9F:B7:BF:14:A5:0D:7C Certificate issuer: /CN=A91169FB/serialNumber=A9F7B93E9524FC4F1681A892C47322155422B18E Certificate serial: 0875 Authority key identifier: A9:F7:B9:3E:95:24:FC:4F:16:81:A8:92:C4:73:22:15:54:22:B1:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/EFE689283FDE11EE8EC3E546C4F9AE02.roa Signing time: Sun 02 Mar 2025 21:39:20 +0000 ROA not before: Sun 02 Mar 2025 21:39:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9919 IP address blocks: 103.6.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/qfe5PpUk_E8WgaiSxHMiFVQisY4.crl rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/qfe5PpUk_E8WgaiSxHMiFVQisY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2165 (0x875) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91169FB Validity Not Before: Mar 2 21:39:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c4d008-20a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:73:68:b1:33:41:35:27:0d:31:08:f4:59:b6: be:27:b3:ab:d6:8a:ae:b5:85:69:e3:77:91:11:8b: 19:27:b6:84:04:97:6b:17:dc:c1:4e:a0:e8:15:19: 8e:60:13:9e:0e:b4:7d:ed:13:46:77:6c:24:20:fd: 3a:83:c5:99:ee:0c:22:af:4c:74:75:18:6b:b6:bc: 0d:af:19:76:50:ce:15:94:bb:4a:20:47:9b:74:08: 22:ce:fb:08:c7:03:e1:76:48:1e:06:5f:49:82:36: e8:55:77:1f:15:51:a2:a6:30:7d:23:a8:74:9f:d9: 77:06:00:4d:63:6b:82:1c:38:a1:22:68:6b:fc:22: 24:f8:c0:b0:a0:9d:22:bf:27:8d:2f:36:b9:2b:4c: 8a:fa:30:71:c4:fa:c6:b2:02:49:2d:51:d2:70:58: 7b:d2:74:3d:a5:e6:3b:ad:8a:da:b9:44:65:da:10: b1:3d:b4:23:f0:7e:e6:43:07:f2:37:06:66:2d:51: a3:d7:c2:c1:2a:82:3e:ed:3b:9d:95:21:30:68:cc: a6:a1:ab:60:52:b7:f1:28:52:3f:27:84:c7:2a:6e: df:56:7d:df:b4:61:20:7b:3c:25:71:5d:0c:f7:f5: a2:6c:8d:c9:a9:1b:3c:0c:82:8c:fc:93:ae:8c:e9: a5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AB:4C:92:CF:15:5E:6D:BD:EC:F1:84:70:9F:B7:BF:14:A5:0D:7C X509v3 Authority Key Identifier: keyid:A9:F7:B9:3E:95:24:FC:4F:16:81:A8:92:C4:73:22:15:54:22:B1:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/qfe5PpUk_E8WgaiSxHMiFVQisY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/EFE689283FDE11EE8EC3E546C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.60.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:44:8e:1c:36:ce:0e:f8:f7:87:5b:67:64:e5:c3:42:20:3a: 0c:0d:1c:e8:09:76:6c:80:82:cd:ac:ec:25:a9:ee:ce:64:32: 9b:76:1a:8f:95:82:0e:e2:9a:de:f5:87:20:b6:65:53:34:c9: 0b:e3:6d:ea:bb:f7:cc:20:da:90:0e:8a:fc:5d:08:20:30:c6: 14:c4:ae:5c:80:10:3c:8c:d1:4e:88:9d:e6:fe:aa:9b:61:52: d7:1a:b4:a2:27:d8:25:1e:7c:fc:2b:76:ff:d0:aa:d9:9f:21: 5d:71:c8:78:6e:f3:80:71:ba:23:2c:14:d6:b2:6b:ca:b8:74: 5c:bd:e5:d7:ee:32:4a:86:e5:77:82:56:3e:6f:73:42:b5:6f: 0d:9c:7a:ff:96:40:6b:aa:6b:b6:3d:84:40:c7:67:31:7c:02: 28:37:42:ba:b9:9f:88:f2:c6:35:97:0b:bf:12:e3:d4:f2:c9: 06:6f:2c:2b:5d:be:cb:8e:2d:74:f4:e6:de:1a:8e:e9:0a:5f: 5b:99:71:3d:9e:1e:bc:f1:e6:37:63:98:dd:2c:46:50:19:e2: c0:c3:10:11:d7:2c:6f:19:1e:c2:c3:4a:05:0d:05:cb:b0:09: 9e:93:fc:f4:a1:75:60:46:23:14:ab:43:b3:f1:5b:ab:eb:d7: 4d:8c:56:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY5RkIxMTAvBgNVBAUTKEE5RjdCOTNFOTUyNEZDNEYxNjgxQTg5MkM0NzMyMjE1 NTQyMkIxOEUwHhcNMjUwMzAyMjEzOTIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M0ZDAwOC0yMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlnNosTNBNScNMQj0Wba+J7Or1oqutYVp43eREYsZJ7aEBJdrF9zBTqDoFRmO YBOeDrR97RNGd2wkIP06g8WZ7gwir0x0dRhrtrwNrxl2UM4VlLtKIEebdAgizvsI xwPhdkgeBl9JgjboVXcfFVGipjB9I6h0n9l3BgBNY2uCHDihImhr/CIk+MCwoJ0i vyeNLza5K0yK+jBxxPrGsgJJLVHScFh70nQ9peY7rYrauURl2hCxPbQj8H7mQwfy NwZmLVGj18LBKoI+7TudlSEwaMymoatgUrfxKFI/J4THKm7fVn3ftGEgezwlcV0M 9/WibI3JqRs8DIKM/JOujOmlgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBGrTJLP FV5tvezxhHCft78UpQ18MB8GA1UdIwQYMBaAFKn3uT6VJPxPFoGoksRzIhVUIrGO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjlGQi8yMEFENDgzNEJG MzcxMUVBQTNFM0EzNkZDNEY5QUUwMi9xZmU1UHBVa19FOFdnYWlTeEhNaUZWUWlz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FmZTVQcFVrX0U4V2dhaVN4SE1pRlZRaXNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY5RkIvMjBBRDQ4MzRCRjM3MTFFQUEzRTNBMzZGQzRGOUFFMDIvRUZFNjg5Mjgz RkRFMTFFRThFQzNFNTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBjwwDQYJKoZIhvcNAQELBQADggEBAIxEjhw2zg7494db Z2Tlw0IgOgwNHOgJdmyAgs2s7CWp7s5kMpt2Go+Vgg7imt71hyC2ZVM0yQvjbeq7 98wg2pAOivxdCCAwxhTErlyAEDyM0U6Ineb+qpthUtcatKIn2CUefPwrdv/Qqtmf IV1xyHhu84BxuiMsFNaya8q4dFy95dfuMkqG5XeCVj5vc0K1bw2cev+WQGuqa7Y9 hEDHZzF8Aig3Qrq5n4jyxjWXC78S49TyyQZvLCtdvsuOLXT05t4ajukKX1uZcT2e Hrzx5jdjmN0sRlAZ4sDDEBHXLG8ZHsLDSgUNBcuwCZ6T/PShdWBGIxSrQ7PxW6vr 102MVqI= -----END CERTIFICATE-----Generated at Sat Apr 5 19:12:58 2025 by rpki-client