$ rpki-client -vvf rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa File: E7DBE2945B6A11EE8C05CA59C4F9AE02.roa (raw, json) Hash identifier: PHAPD39R0/+5V+WCmlH3xcXfFFqLnGp5Euy8i5sqtnc= Subject key identifier: FF:CB:73:79:85:F7:3F:B2:C4:E8:BD:71:AA:2F:78:E8:A7:DF:74:EB Certificate issuer: /CN=A91374BB/serialNumber=B312C22F3D0B97BAAF3273E5C66B8F140203E2F9 Certificate serial: 0114 Authority key identifier: B3:12:C2:2F:3D:0B:97:BA:AF:32:73:E5:C6:6B:8F:14:02:03:E2:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa Signing time: Mon 03 Mar 2025 06:30:20 +0000 ROA not before: Mon 03 Mar 2025 06:30:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132170 IP address blocks: 103.6.163.0/24 maxlen: 24 103.26.44.0/24 maxlen: 24 103.26.45.0/24 maxlen: 24 103.26.46.0/24 maxlen: 24 2001:df0:2a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.crl rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91374BB Validity Not Before: Mar 3 06:30:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c54c7b-bf59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:03:d6:30:5b:24:b9:ec:53:4e:91:c3:a9:ec: a3:90:c6:d7:6f:ac:5c:d0:a8:78:58:6e:2d:d6:b0: 81:46:ec:ff:10:3c:f2:da:87:ac:44:70:1b:dd:66: e5:f7:f0:5e:c3:94:f5:da:60:14:aa:aa:00:8f:b0: e7:b4:7d:2b:b1:fa:fe:83:89:e9:e9:d2:07:8b:e9: 8e:00:bf:fb:e5:c9:00:c9:c4:72:9a:87:4c:26:43: bc:87:c3:d4:5a:fe:d4:c1:af:c9:6b:3a:12:c1:7e: 0f:a5:fb:f6:59:e9:3e:6a:09:cc:54:c7:19:92:a3: 16:4a:14:11:9c:75:9f:f9:5f:5d:6c:cd:31:28:ea: b9:de:c8:53:b1:12:62:fd:3d:26:e7:a1:51:35:66: 89:34:01:bd:77:d7:f3:cc:d6:c7:f8:87:63:b8:14: 9e:7f:3b:9f:53:8d:af:cb:74:a0:ad:3d:16:15:f1: e4:f2:38:60:79:92:00:11:96:75:88:25:48:f7:be: f0:3d:d4:c7:26:e4:6f:29:e2:03:d6:e1:a4:cd:68: a5:55:a6:d1:15:c1:e6:4e:a5:8c:f6:ac:e2:ff:5c: 9a:de:60:17:3d:b8:50:40:51:87:28:c7:ba:42:26: 42:de:43:98:c9:f7:57:6e:b5:f3:e3:62:3b:e3:d5: 0c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CB:73:79:85:F7:3F:B2:C4:E8:BD:71:AA:2F:78:E8:A7:DF:74:EB X509v3 Authority Key Identifier: keyid:B3:12:C2:2F:3D:0B:97:BA:AF:32:73:E5:C6:6B:8F:14:02:03:E2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.163.0/24 103.26.44.0-103.26.46.255 IPv6: 2001:df0:2a0::/48 Signature Algorithm: sha256WithRSAEncryption 94:41:ad:52:1b:19:4c:62:3d:08:79:36:7d:01:30:8c:e0:fd: 20:59:42:21:d9:2f:9b:79:79:84:37:ba:28:0d:76:fe:28:45: 77:cc:df:96:49:26:6e:dd:08:68:84:dc:d9:77:44:60:c4:80: 18:b0:e1:a6:1c:4b:ee:4f:c8:f7:f0:1d:32:18:28:e4:19:22: cf:50:82:e4:b2:e6:91:a3:33:7a:c9:df:6d:0a:22:a6:88:b6: 32:ae:1d:a3:82:37:c8:6b:d5:37:c2:75:ce:13:ce:79:5f:87: 2f:6d:da:66:14:b9:4a:74:1e:72:fb:48:b6:fc:78:de:e6:49: 42:94:b8:1c:20:9e:b7:0f:23:b2:9e:1b:53:d1:49:b4:2f:ee: 5f:41:8a:75:8a:b2:7d:92:72:5f:ac:ae:ab:2f:18:d4:2b:4c: 51:50:0f:c1:12:1a:14:e3:59:c8:e9:b0:ca:8f:dd:20:3c:14: 5d:82:42:a9:f0:15:92:2f:0a:1f:bf:7e:2a:07:12:c9:66:2e: 6f:b6:e2:07:48:de:8c:d4:3b:b3:d0:f7:e7:02:0c:12:fd:7d: b1:d5:2e:31:40:cf:57:31:78:35:8b:4f:58:47:0a:23:f5:87: e3:74:d9:f4:b5:2c:1e:93:b7:bb:0c:67:3f:55:90:30:bc:09: 28:b9:50:3b -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc0QkIxMTAvBgNVBAUTKEIzMTJDMjJGM0QwQjk3QkFBRjMyNzNFNUM2NkI4RjE0 MDIwM0UyRjkwHhcNMjUwMzAzMDYzMDIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1NGM3Yi1iZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwPWMFskuexTTpHDqeyjkMbXb6xc0Kh4WG4t1rCBRuz/EDzy2oesRHAb3Wbl 9/Bew5T12mAUqqoAj7DntH0rsfr+g4np6dIHi+mOAL/75ckAycRymodMJkO8h8PU Wv7Uwa/JazoSwX4Ppfv2Wek+agnMVMcZkqMWShQRnHWf+V9dbM0xKOq53shTsRJi /T0m56FRNWaJNAG9d9fzzNbH+IdjuBSefzufU42vy3SgrT0WFfHk8jhgeZIAEZZ1 iCVI977wPdTHJuRvKeID1uGkzWilVabRFcHmTqWM9qzi/1ya3mAXPbhQQFGHKMe6 QiZC3kOYyfdXbrXz42I749UMawIDAQABo4ICtDCCArAwHQYDVR0OBBYEFP/Lc3mF 9z+yxOi9caoveOin33TrMB8GA1UdIwQYMBaAFLMSwi89C5e6rzJz5cZrjxQCA+L5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzRCQi82NDg1NDJDODVC NkExMUVFODBEMzZCNTRDNEY5QUUwMi9zeExDTHowTGw3cXZNblBseG11UEZBSUQ0 dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N4TENMejBMbDdxdk1uUGx4bXVQRkFJRDR2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc0QkIvNjQ4NTQyQzg1QjZBMTFFRTgwRDM2QjU0QzRGOUFFMDIvRTdEQkUyOTQ1 QjZBMTFFRThDMDVDQTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBABnBqMwDAMEAmcaLAMEAGcaLjAPBAIAAjAJAwcAIAEN8AKg MA0GCSqGSIb3DQEBCwUAA4IBAQCUQa1SGxlMYj0IeTZ9ATCM4P0gWUIh2S+beXmE N7ooDXb+KEV3zN+WSSZu3QhohNzZd0RgxIAYsOGmHEvuT8j38B0yGCjkGSLPUILk suaRozN6yd9tCiKmiLYyrh2jgjfIa9U3wnXOE855X4cvbdpmFLlKdB5y+0i2/Hje 5klClLgcIJ63DyOynhtT0Um0L+5fQYp1irJ9knJfrK6rLxjUK0xRUA/BEhoU41nI 6bDKj90gPBRdgkKp8BWSLwofv34qBxLJZi5vtuIHSN6M1Duz0PfnAgwS/X2x1S4x QM9XMXg1i09YRwoj9YfjdNn0tSwek7e7DGc/VZAwvAkouVA7 -----END CERTIFICATE-----Generated at Sun Apr 6 10:09:59 2025 by rpki-client