$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/908E69B20D4311F0B83AB36BC4F9AE02.roa File: 908E69B20D4311F0B83AB36BC4F9AE02.roa (raw, json) Hash identifier: T3LJotaESWHFF09iX5g1WTlmIxWJcjLGAaC0q00LC9A= Subject key identifier: C1:63:8E:01:39:EE:8A:5B:40:16:1A:0A:1B:8A:AA:98:AC:33:31:25 Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 0133 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/908E69B20D4311F0B83AB36BC4F9AE02.roa Signing time: Sun 30 Mar 2025 08:47:09 +0000 ROA not before: Sun 30 Mar 2025 08:47:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 215384 IP address blocks: 103.79.76.0/22 maxlen: 22 103.79.76.0/24 maxlen: 24 103.79.77.0/24 maxlen: 24 103.79.78.0/24 maxlen: 24 103.79.79.0/24 maxlen: 24 103.79.118.0/24 maxlen: 24 103.91.144.0/24 maxlen: 24 103.91.145.0/24 maxlen: 24 202.91.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C Validity Not Before: Mar 30 08:47:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67e9050d-0926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:a8:84:0b:81:aa:4f:12:f6:91:27:1d:ce: 5c:5d:fd:a6:b8:16:3c:3c:ac:47:7f:d1:04:e3:1f: f2:ac:ce:07:88:e0:d1:42:04:93:59:8d:e6:dc:85: 67:8d:1d:e2:51:27:25:90:72:31:c1:19:e2:b5:c6: 92:76:34:4e:7a:44:7c:2f:ae:95:cb:84:3e:e2:3f: 61:2b:3a:96:9d:fe:62:41:f1:0e:4d:58:1b:08:82: e5:d0:4d:a8:82:36:ec:f5:5d:22:f0:3c:23:10:0c: d8:55:80:a3:25:2e:03:82:c0:36:1d:ee:9c:ab:12: 6f:de:5e:35:51:13:86:b0:b1:48:38:6d:c6:ee:4e: 79:64:c7:fe:bc:c5:d1:87:4f:d2:d0:94:21:4d:31: 96:4e:4b:d4:d7:d5:12:27:93:43:fd:eb:50:95:a1: 16:66:91:92:2e:86:10:7e:7e:ca:7f:da:e5:51:ec: a5:b3:b9:b6:5a:d3:db:ed:e5:96:20:cb:45:e4:41: a0:c5:67:e5:0c:1c:ab:2c:d0:35:7c:3f:9c:89:2a: 1b:68:b7:2a:bb:16:d7:3c:52:43:01:e2:96:f9:77: 28:a8:c3:a9:72:a3:b1:a1:61:f3:4b:81:5e:e5:04: b2:66:05:a1:a0:63:02:ab:d1:7f:e9:73:9a:4d:61: c6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:63:8E:01:39:EE:8A:5B:40:16:1A:0A:1B:8A:AA:98:AC:33:31:25 X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/908E69B20D4311F0B83AB36BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.76.0/22 103.79.118.0/24 103.91.144.0/23 202.91.32.0/24 Signature Algorithm: sha256WithRSAEncryption 80:07:74:9c:39:f0:2e:ac:d2:8c:ef:b6:32:41:0a:36:32:ed: 11:9c:c2:2c:44:41:4a:8d:f0:96:48:cb:30:12:c6:e7:60:9a: be:bd:70:94:52:64:7c:e2:c8:92:e7:cf:ea:03:3b:a7:bb:26: e3:9c:d5:8e:4a:79:90:de:8d:2d:ca:b8:ce:63:91:f5:da:7b: 4f:69:89:a3:17:de:09:12:9e:8e:7c:93:4f:32:09:39:ec:ef: d9:87:55:3e:e0:e3:28:82:fe:79:ea:03:23:0d:e7:4f:39:b6: 1c:ec:9c:50:28:3e:6c:5e:73:f5:a6:99:d7:02:77:61:f4:4f: de:8a:d4:06:fd:ca:8b:5b:94:f8:d1:96:e1:ed:26:54:11:e5: 71:12:76:1e:df:a2:03:8b:1a:04:6e:44:01:10:68:2e:df:1f: 65:bf:38:00:2f:b9:e6:4b:49:f0:85:4f:f1:89:5c:dd:be:67: c2:35:b6:c0:47:b6:19:33:63:d3:92:9c:89:ec:b6:d9:76:f3: 8b:96:cf:a9:58:b1:df:9b:1a:50:38:cb:42:ae:ab:72:73:be: 4a:64:7c:cb:9d:6b:78:ad:d5:24:b9:06:69:ac:0c:05:3f:73: cd:56:c0:e4:7d:ba:88:76:be:6e:f8:c5:fe:3e:16:89:0f:0b: 9a:4f:9e:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjUwMzMwMDg0NzA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5MDUwZC0wOTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXSohAuBqk8S9pEnHc5cXf2muBY8PKxHf9EE4x/yrM4HiODRQgSTWY3m3IVn jR3iUSclkHIxwRnitcaSdjROekR8L66Vy4Q+4j9hKzqWnf5iQfEOTVgbCILl0E2o gjbs9V0i8DwjEAzYVYCjJS4DgsA2He6cqxJv3l41UROGsLFIOG3G7k55ZMf+vMXR h0/S0JQhTTGWTkvU19USJ5ND/etQlaEWZpGSLoYQfn7Kf9rlUeyls7m2WtPb7eWW IMtF5EGgxWflDByrLNA1fD+ciSobaLcquxbXPFJDAeKW+XcoqMOpcqOxoWHzS4Fe 5QSyZgWhoGMCq9F/6XOaTWHGYwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFMFjjgE5 7opbQBYaChuKqpisMzElMB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVEMkMvMDAzNzNDNkM5QkJDMTFFRTg1MUFERDUwQzRGOUFFMDIvOTA4RTY5QjIw RDQzMTFGMEI4M0FCMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnT0wDBABnT3YDBAFnW5ADBADKWyAwDQYJKoZIhvcNAQEL BQADggEBAIAHdJw58C6s0ozvtjJBCjYy7RGcwixEQUqN8JZIyzASxudgmr69cJRS ZHziyJLnz+oDO6e7JuOc1Y5KeZDejS3KuM5jkfXae09piaMX3gkSno58k08yCTns 79mHVT7g4yiC/nnqAyMN5085thzsnFAoPmxec/WmmdcCd2H0T96K1Ab9yotblPjR luHtJlQR5XESdh7fogOLGgRuRAEQaC7fH2W/OAAvueZLSfCFT/GJXN2+Z8I1tsBH thkzY9OSnInsttl284uWz6lYsd+bGlA4y0Kuq3JzvkpkfMuda3it1SS5BmmsDAU/ c81WwOR9uoh2vm74xf4+FokPC5pPno8= -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:10 2025 by rpki-client