$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/6B191E20F75811EB9C2B5D4DC4F9AE02.roa File: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (raw, json) Hash identifier: gIqEUytD692JqpeV91M06iKGJH68vEW3s4YtICieKE0= Subject key identifier: 82:09:1A:42:B5:13:3B:CE:2D:2A:33:AA:4F:10:6D:00:14:DA:1A:44 Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 04FD Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/6B191E20F75811EB9C2B5D4DC4F9AE02.roa Signing time: Wed 22 Jan 2025 23:22:23 +0000 ROA not before: Wed 22 Jan 2025 23:22:23 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 55479 IP address blocks: 103.246.106.0/24 maxlen: 24 202.3.77.0/24 maxlen: 24 2001:df0:92::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 23:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1277 (0x4fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83, serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: Jan 22 23:22:23 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67917daf-2383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fc:0e:33:03:10:9e:51:9b:81:7e:28:e3:80: 68:9e:2f:23:e6:d2:4e:d3:92:03:17:6d:bc:41:53: 90:6b:b8:24:67:a8:29:7a:18:ab:7f:22:bd:32:38: 8b:c8:ed:bd:5c:4b:cd:19:0a:4d:d6:05:12:a0:bd: 61:d8:ce:8e:ee:99:4e:b6:68:2c:04:bc:6f:a4:e9: 45:a6:23:45:7e:4d:71:16:5e:e6:01:64:a6:52:fc: 0c:0f:2c:46:f5:27:ff:1b:96:0c:70:d9:cb:7b:a7: e5:d2:f7:f4:14:8f:7d:92:b7:8f:e6:0f:5c:be:8f: a8:22:2b:51:f0:2e:fa:3f:a9:f4:2e:f9:ab:9c:19: ee:61:18:85:1b:86:83:41:b4:fb:c4:a3:0b:87:fd: c3:84:34:9d:70:64:f7:26:95:2b:2a:b5:14:aa:f9: fa:73:c4:2f:e4:91:3f:68:b0:90:6d:0d:19:40:f4: 05:43:d9:37:1b:23:00:88:84:48:2a:be:3f:55:8c: 81:f3:96:97:cb:27:a8:ef:a0:66:53:59:3e:9e:bc: 5b:33:b9:19:c4:81:ed:1e:2b:df:af:13:5f:d8:2f: 77:52:bb:57:97:39:b1:a8:3e:c7:62:34:fa:77:8a: fe:a4:b7:dc:b8:f0:0d:ef:80:b9:93:ec:ed:cd:51: 42:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:09:1A:42:B5:13:3B:CE:2D:2A:33:AA:4F:10:6D:00:14:DA:1A:44 X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/6B191E20F75811EB9C2B5D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.106.0/24 202.3.77.0/24 IPv6: 2001:df0:92::/48 Signature Algorithm: sha256WithRSAEncryption 9b:29:79:bb:c8:41:10:f5:0d:ef:1b:fc:d5:32:96:87:30:f8: 43:bd:36:2a:16:aa:b6:7a:b5:3d:8c:4f:7c:56:0c:a5:42:d8: d1:8d:68:6e:f1:15:d2:7d:16:95:2f:0d:b9:16:25:e6:f4:25: 8e:07:99:30:9d:73:ab:60:3a:a6:b9:0f:9a:a6:02:8d:e3:15: 25:d6:49:b3:1b:41:9e:13:a7:21:b6:8b:40:b7:c2:10:35:d2: 3a:cf:95:ca:6d:89:97:bb:39:32:66:0b:93:fa:49:3f:07:3e: 62:f3:ef:62:e3:69:ee:b0:93:1f:b0:5c:98:0d:9d:cd:84:9e: 2e:75:ff:10:56:0d:97:50:7b:59:72:67:52:5b:0c:8b:02:e9: 3f:85:2e:f6:cb:18:f1:a6:e8:12:06:a2:87:d6:21:62:d8:5a: fa:63:ae:61:aa:01:87:4e:e4:7c:dc:be:a5:43:6a:ab:f2:0e: 57:2e:bc:68:af:ce:e0:2c:5a:70:3d:6f:de:0c:d2:6e:53:a5: e7:d3:59:14:82:35:92:b3:a6:88:bc:91:aa:0a:ae:87:99:81: 2f:ed:b2:4b:2e:de:00:db:e6:15:42:44:cb:9f:5a:b9:2b:68: bd:f9:f7:11:ed:78:9d:60:3a:20:3d:f9:16:f5:ec:59:9e:e3: ac:bb:53:59 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjUwMTIyMjMyMjIzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxN2RhZi0yMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vwOMwMQnlGbgX4o44Boni8j5tJO05IDF228QVOQa7gkZ6gpehirfyK9MjiL yO29XEvNGQpN1gUSoL1h2M6O7plOtmgsBLxvpOlFpiNFfk1xFl7mAWSmUvwMDyxG 9Sf/G5YMcNnLe6fl0vf0FI99kreP5g9cvo+oIitR8C76P6n0LvmrnBnuYRiFG4aD QbT7xKMLh/3DhDSdcGT3JpUrKrUUqvn6c8Qv5JE/aLCQbQ0ZQPQFQ9k3GyMAiIRI Kr4/VYyB85aXyyeo76BmU1k+nrxbM7kZxIHtHivfrxNf2C93UrtXlzmxqD7HYjT6 d4r+pLfcuPAN74C5k+ztzVFCuQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIIJGkK1 EzvOLSozqk8QbQAU2hpEMB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFDODMvNEJBRkIxMThGNzU2MTFFQjk5RjkxMDRDQzRGOUFFMDIvNkIxOTFFMjBG NzU4MTFFQjlDMkI1RDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABn9moDBADKA00wDwQCAAIwCQMHACABDfAAkjANBgkqhkiG 9w0BAQsFAAOCAQEAmyl5u8hBEPUN7xv81TKWhzD4Q702Khaqtnq1PYxPfFYMpULY 0Y1obvEV0n0WlS8NuRYl5vQljgeZMJ1zq2A6prkPmqYCjeMVJdZJsxtBnhOnIbaL QLfCEDXSOs+Vym2Jl7s5MmYLk/pJPwc+YvPvYuNp7rCTH7BcmA2dzYSeLnX/EFYN l1B7WXJnUlsMiwLpP4Uu9ssY8aboEgaih9YhYtha+mOuYaoBh07kfNy+pUNqq/IO Vy68aK/O4CxacD1v3gzSblOl59NZFII1krOmiLyRqgquh5mBL+2ySy7eANvmFUJE y59auStovfn3Ee14nWA6ID35FvXsWZ7jrLtTWQ== -----END CERTIFICATE-----Generated at Tue Apr 22 05:08:36 2025 by rpki-client