$ rpki-client -vvf rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/55BC5674573F11EAA8901D3EC4F9AE02.roa File: 55BC5674573F11EAA8901D3EC4F9AE02.roa (raw, json) Hash identifier: GpKaeFCXgLqKWUd4/mw0J3pe4Cuty7kr/IEGoWg6an0= Subject key identifier: 97:C2:9C:E6:63:50:9E:23:B3:96:27:57:3C:02:E1:86:E9:28:A5:CF Certificate issuer: /CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Certificate serial: 0A87 Authority key identifier: A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/55BC5674573F11EAA8901D3EC4F9AE02.roa Signing time: Sat 22 Mar 2025 19:39:23 +0000 ROA not before: Sat 22 Mar 2025 19:39:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4049 IP address blocks: 103.16.20.0/22 maxlen: 24 2405:e840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2695 (0xa87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190B4 Validity Not Before: Mar 22 19:39:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67df11eb-0977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:44:31:e7:a5:1e:71:ae:a0:c4:77:ef:8c: b6:08:9f:2a:36:f8:1f:10:6f:4f:7e:8e:f1:ff:37: a2:c6:75:91:cc:ac:0b:64:b0:8e:6d:9b:61:6e:c1: 7e:ef:e2:47:c7:46:2e:62:65:43:09:85:0d:bc:ff: 42:e3:e8:3a:3e:56:9c:22:cd:93:46:d1:c2:3b:43: b8:53:ce:96:52:94:2c:bd:5f:54:43:e1:25:fb:6b: 19:b2:e5:ec:22:76:a5:06:b0:b2:2a:2c:e4:ba:d8: f6:6d:83:8e:5d:7a:51:50:f8:ff:a5:47:bd:e0:8d: 1c:0b:9d:33:75:4d:73:ce:fd:37:12:2d:2f:23:32: 5e:36:37:37:90:9e:32:68:3f:82:4c:92:92:85:67: 49:cd:75:ad:48:14:36:dd:42:67:29:72:7e:79:a5: d3:c9:c9:be:b1:e1:60:50:65:bf:54:6d:43:59:2d: 4f:34:12:50:76:dd:4e:a2:3f:8b:c5:e3:3b:05:86: 0d:08:b4:57:03:99:f4:3e:7d:14:c5:06:50:54:43: 92:60:66:73:f4:95:b6:1e:f2:fe:54:f3:23:8e:fd: 5e:d2:65:87:38:78:80:64:68:54:82:a7:b2:8f:91: e2:4c:bc:d2:fa:80:56:f4:af:8a:0f:e7:b4:ae:b4: 3c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C2:9C:E6:63:50:9E:23:B3:96:27:57:3C:02:E1:86:E9:28:A5:CF X509v3 Authority Key Identifier: keyid:A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/55BC5674573F11EAA8901D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.20.0/22 IPv6: 2405:e840::/32 Signature Algorithm: sha256WithRSAEncryption 4c:5b:0d:b9:96:30:d3:c6:be:30:1f:b7:db:4f:2a:8f:15:08: 17:8b:80:b6:8e:c6:51:cc:44:ae:75:bf:2c:dc:34:e3:cf:5e: f3:62:3b:20:69:0d:42:a7:c4:54:08:b1:a3:0b:b7:ff:ad:85: b4:c9:40:a6:3b:7d:18:18:03:c4:f8:bf:6b:94:5e:30:da:c5: 5d:4b:84:b8:62:fd:f8:c8:09:d2:22:2d:33:c2:0c:49:e3:72: 21:48:c5:d9:f1:1a:5c:90:50:ef:97:c0:39:51:e9:0c:f8:dc: 27:1a:82:83:22:56:3d:ae:9c:ce:22:be:77:d5:1b:fd:40:aa: 5c:2a:47:5d:ca:6d:0f:8c:d5:3a:79:41:68:f0:f0:e7:63:98: b9:68:0b:8a:f4:22:62:c4:44:74:94:49:63:9a:87:49:d7:96: 5d:0a:dc:ce:19:98:d6:22:6d:27:ba:57:fc:f0:77:f9:60:02: 0d:4b:17:11:1d:2e:e3:04:1d:87:51:cb:24:0b:70:9f:3b:10: b2:a7:46:3d:57:58:80:df:2c:6d:97:e8:16:84:f8:4d:c0:f5: 19:81:ed:32:2a:86:c1:8f:c0:3c:d8:b1:58:90:94:06:ba:d3: 91:8d:7e:a6:f9:d4:da:56:93:0b:9c:78:1a:1e:58:c0:91:e5: d3:49:5d:c2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQjQxMTAvBgNVBAUTKEE1RTY5REEzQkJGQjhFNUREMzk2NDhFNkE0M0UwMEZB NzIzREU2NTgwHhcNMjUwMzIyMTkzOTIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RmMTFlYi0wOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwJEMeelHnGuoMR374y2CJ8qNvgfEG9Pfo7x/zeixnWRzKwLZLCObZthbsF+ 7+JHx0YuYmVDCYUNvP9C4+g6PlacIs2TRtHCO0O4U86WUpQsvV9UQ+El+2sZsuXs InalBrCyKizkutj2bYOOXXpRUPj/pUe94I0cC50zdU1zzv03Ei0vIzJeNjc3kJ4y aD+CTJKShWdJzXWtSBQ23UJnKXJ+eaXTycm+seFgUGW/VG1DWS1PNBJQdt1Ooj+L xeM7BYYNCLRXA5n0Pn0UxQZQVEOSYGZz9JW2HvL+VPMjjv1e0mWHOHiAZGhUgqey j5HiTLzS+oBW9K+KD+e0rrQ8BwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJfCnOZj UJ4js5YnVzwC4YbpKKXPMB8GA1UdIwQYMBaAFKXmnaO7+45d05ZI5qQ+APpyPeZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBCNC9CQzhDMTBBRTU3 M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2psM1Rsa2ptcEQ0QS1uSTk1 bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BlYWRvN3Y3amwzVGxram1wRDRBLW5JOTVsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkwQjQvQkM4QzEwQUU1NzNDMTFFQUIwQTRFMzM1QzRGOUFFMDIvNTVCQzU2NzQ1 NzNGMTFFQUE4OTAxRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnEBQwDQQCAAIwBwMFACQF6EAwDQYJKoZIhvcNAQELBQAD ggEBAExbDbmWMNPGvjAft9tPKo8VCBeLgLaOxlHMRK51vyzcNOPPXvNiOyBpDUKn xFQIsaMLt/+thbTJQKY7fRgYA8T4v2uUXjDaxV1LhLhi/fjICdIiLTPCDEnjciFI xdnxGlyQUO+XwDlR6Qz43CcagoMiVj2unM4ivnfVG/1AqlwqR13KbQ+M1Tp5QWjw 8OdjmLloC4r0ImLERHSUSWOah0nXll0K3M4ZmNYibSe6V/zwd/lgAg1LFxEdLuME HYdRyyQLcJ87ELKnRj1XWIDfLG2X6BaE+E3A9RmB7TIqhsGPwDzYsViQlAa605GN fqb51NpWkwuceBoeWMCR5dNJXcI= -----END CERTIFICATE-----Generated at Sat Apr 5 07:16:55 2025 by rpki-client