$ rpki-client -vvf rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/463C9F0C025611F0A2421B35C4F9AE02.roa File: 463C9F0C025611F0A2421B35C4F9AE02.roa (raw, json) Hash identifier: yAuPj+57M0XrwOdB+8UFUTPpS+ROuj1x9AgSYokTDwo= Subject key identifier: 1F:53:F9:4F:83:2C:8F:D8:69:7F:FF:DF:B5:79:76:25:A5:C5:47:76 Certificate issuer: /CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Certificate serial: 18C2 Authority key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/463C9F0C025611F0A2421B35C4F9AE02.roa Signing time: Sun 16 Mar 2025 11:03:22 +0000 ROA not before: Sun 16 Mar 2025 11:03:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137703 IP address blocks: 103.99.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6338 (0x18c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91590E3 Validity Not Before: Mar 16 11:03:22 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67d6aff9-2e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:e3:db:c9:b0:87:01:4d:67:1a:f5:a4:df:4b: 7a:da:dd:57:77:dd:34:35:58:76:62:81:c7:41:ed: 09:07:22:ad:67:f4:95:f0:9a:45:2e:d1:88:1e:ea: 69:52:fc:b4:95:07:30:36:14:fd:80:df:f2:5c:68: 6c:76:af:2e:d3:1c:bb:82:b0:65:61:a2:d8:44:2b: a1:96:b2:45:f8:b7:14:c7:a0:73:84:33:7b:ce:bd: 21:48:70:ec:58:14:fd:26:01:b3:8c:06:c8:a3:c8: e4:6d:ed:41:45:4e:68:51:86:3f:b0:0d:b6:85:c4: 5c:da:ab:86:ae:24:bf:03:07:4e:a4:3e:ea:4f:66: 5c:32:ed:86:3a:f8:14:82:e4:23:7d:86:a0:d0:14: 57:0b:65:65:7a:40:e6:b9:06:97:08:92:c0:97:27: f3:fe:58:0b:c0:22:f9:e2:eb:c2:a0:cb:96:a3:37: 07:11:69:97:0a:a4:fc:7a:40:ce:c7:31:45:8b:a9: 2f:89:b8:0c:17:84:8d:50:a1:a0:e1:80:72:55:81: 7f:2f:b7:c7:c2:26:b7:5f:b8:01:d9:52:b0:5f:3c: 52:e6:bc:33:6a:46:4d:fe:37:73:9c:ff:64:85:16: 06:05:35:89:59:aa:50:a4:d6:2a:34:f6:b1:50:eb: a8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:53:F9:4F:83:2C:8F:D8:69:7F:FF:DF:B5:79:76:25:A5:C5:47:76 X509v3 Authority Key Identifier: keyid:BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/463C9F0C025611F0A2421B35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.249.0/24 Signature Algorithm: sha256WithRSAEncryption 60:e5:8e:f2:d3:89:41:a4:e1:e3:2e:5b:33:d6:5c:d3:86:10: 07:f1:e8:db:7f:11:16:d7:0c:16:3a:fa:b1:83:fc:44:e7:0b: 57:7d:93:41:fe:bc:e9:fa:50:ac:4a:44:15:57:a3:9c:43:27: b5:9f:fc:b7:40:b8:b9:64:31:a4:9f:fc:e3:2f:be:2c:e7:d4: 78:78:96:c9:4b:8d:74:bf:ac:20:80:52:71:1f:cb:ff:43:d8: ea:dc:72:0f:46:64:11:b0:44:37:5e:ad:80:f8:e8:b0:4f:8d: de:e7:bd:bd:ed:44:15:13:6e:1a:6d:4f:2c:00:cc:c9:f3:0c: db:76:75:88:ac:59:b4:06:fc:66:e4:69:50:a7:16:6a:9f:e6: d5:a9:64:d7:f3:a9:93:60:9f:f4:5d:8f:af:a8:31:34:0a:4c: 18:53:f3:9f:7d:87:07:dc:f3:83:c4:a9:5b:df:df:67:23:41: f2:d7:cb:eb:ca:c4:87:35:05:db:e5:94:a7:2c:41:99:42:3b: 61:3a:43:8f:d0:4c:50:53:c0:8c:1f:5a:b0:5a:83:83:65:af: 5e:72:d2:d5:94:a0:57:cd:f2:b8:eb:03:b5:0d:64:bb:f1:4a: 80:eb:aa:e9:ad:45:55:f5:09:fa:84:7c:27:28:28:6b:0a:5f: e2:a2:bf:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkwRTMxMTAvBgNVBAUTKEJCOTc2QTU5OEU1RUNCMDVFMzdGQUMwMEE1Qjc4ODhF NTdGNTFDNTIwHhcNMjUwMzE2MTEwMzIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q2YWZmOS0yZTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+uPbybCHAU1nGvWk30t62t1Xd900NVh2YoHHQe0JByKtZ/SV8JpFLtGIHupp Uvy0lQcwNhT9gN/yXGhsdq8u0xy7grBlYaLYRCuhlrJF+LcUx6BzhDN7zr0hSHDs WBT9JgGzjAbIo8jkbe1BRU5oUYY/sA22hcRc2quGriS/AwdOpD7qT2ZcMu2GOvgU guQjfYag0BRXC2VlekDmuQaXCJLAlyfz/lgLwCL54uvCoMuWozcHEWmXCqT8ekDO xzFFi6kvibgMF4SNUKGg4YByVYF/L7fHwia3X7gB2VKwXzxS5rwzakZN/jdznP9k hRYGBTWJWapQpNYqNPaxUOuoowIDAQABo4IClTCCApEwHQYDVR0OBBYEFB9T+U+D LI/YaX//37V5diWlxUd2MB8GA1UdIwQYMBaAFLuXalmOXssF43+sAKW3iI5X9RxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTBFMy9EQTE4QjE4NDlB NDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3WGpmNndBcGJlSWpsZjFI RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1ZHFXWTVleXdYamY2d0FwYmVJamxmMUhGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkwRTMvREExOEIxODQ5QTQ5MTFFNzlBOUYzMDMwQzRGOUFFMDIvNDYzQzlGMEMw MjU2MTFGMEEyNDIxQjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnY/kwDQYJKoZIhvcNAQELBQADggEBAGDljvLTiUGk4eMu WzPWXNOGEAfx6Nt/ERbXDBY6+rGD/ETnC1d9k0H+vOn6UKxKRBVXo5xDJ7Wf/LdA uLlkMaSf/OMvvizn1Hh4lslLjXS/rCCAUnEfy/9D2Orccg9GZBGwRDderYD46LBP jd7nvb3tRBUTbhptTywAzMnzDNt2dYisWbQG/GbkaVCnFmqf5tWpZNfzqZNgn/Rd j6+oMTQKTBhT8599hwfc84PEqVvf32cjQfLXy+vKxIc1BdvllKcsQZlCO2E6Q4/Q TFBTwIwfWrBag4Nlr15y0tWUoFfN8rjrA7UNZLvxSoDrqumtRVX1CfqEfCcoKGsK X+Kiv04= -----END CERTIFICATE-----Generated at Sat Apr 5 01:52:46 2025 by rpki-client