$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/B89D979A13F411EB8BF49553C4F9AE02.roa File: B89D979A13F411EB8BF49553C4F9AE02.roa (raw, json) Hash identifier: uA//4m9RZCjXQutR/xTMIccaTwt8NsdxBBjUfw2F3iI= Subject key identifier: D0:D3:A9:1E:AE:AF:F3:38:19:6A:35:8A:10:CA:DA:D9:60:D2:D2:27 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 0755 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/B89D979A13F411EB8BF49553C4F9AE02.roa Signing time: Thu 06 Mar 2025 21:42:01 +0000 ROA not before: Thu 06 Mar 2025 21:42:01 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.205.208.0/24 maxlen: 24 103.205.209.0/24 maxlen: 24 103.205.210.0/24 maxlen: 24 103.205.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1877 (0x755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF Validity Not Before: Mar 6 21:42:01 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca16a9-f055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:c0:85:f2:e7:f3:9d:c8:bc:f5:47:9e:e7:cc: 4a:30:92:c9:f1:6f:a7:29:88:50:7f:0f:eb:f2:3a: e3:dc:d8:be:44:84:ce:73:54:8c:48:e2:4b:aa:b8: 82:bc:64:f3:fa:f8:66:2a:48:13:7b:e0:1d:ad:c3: dd:29:12:53:1f:70:3c:2a:52:8e:b7:5e:e1:57:74: 2a:34:ba:a9:aa:ea:6e:98:67:fb:1b:d8:e2:38:b3: 41:26:93:e8:9b:24:33:ff:17:44:b5:a8:46:97:27: 7d:7c:b0:98:b6:bb:4e:d8:c0:6f:88:b6:e7:e9:7a: 14:f5:33:af:88:3f:bf:2c:ed:81:03:44:0d:23:13: 62:23:52:16:34:72:29:51:95:ef:64:2d:10:b3:0a: 9b:a0:40:a2:48:53:18:65:56:6b:fd:a1:73:27:8f: 2d:30:2e:25:42:15:51:43:66:1b:d2:18:ae:08:e1: d3:93:d0:c9:69:c1:69:b4:20:c9:23:d0:34:2e:2a: ce:30:78:88:bd:c3:f4:06:e1:54:1e:a6:55:12:43: 73:be:10:cb:ee:21:ba:d4:4a:77:6b:3e:b8:7d:5e: 20:0f:9e:03:18:02:d6:45:51:f4:14:1e:83:d4:0d: 29:46:bc:18:72:e0:d3:92:e6:fd:42:82:a4:6b:43: 44:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D3:A9:1E:AE:AF:F3:38:19:6A:35:8A:10:CA:DA:D9:60:D2:D2:27 X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/B89D979A13F411EB8BF49553C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.208.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:13:d8:50:69:59:4c:81:15:8d:0c:73:e8:a2:2f:63:2f:20: da:3d:ff:a1:db:88:6b:08:cd:e4:20:2a:1e:35:68:a9:2a:2c: 1e:a3:8b:9b:e7:36:38:b5:10:8e:ef:83:c1:6a:70:dd:37:c0: 5f:c3:9c:7e:62:6c:18:3b:84:80:53:bc:0a:7d:2a:3c:66:10: f0:3f:c8:ff:cd:d8:32:7e:11:1f:d3:16:14:7b:a5:a8:30:db: e3:16:b4:52:ac:41:53:05:06:14:69:98:a8:16:63:73:7d:67: 86:14:ae:4b:ff:c0:66:ad:f8:89:4a:79:a6:b4:c6:46:d3:cf: af:1d:f4:9c:68:e2:ab:5c:a2:f1:ef:21:cf:a3:e6:a3:65:b9: 1c:a1:cd:4d:f0:30:ca:4a:15:0c:8b:c2:12:7d:28:f0:c5:13: 8b:64:95:87:90:56:fc:fc:7e:59:af:7e:8e:27:e4:4a:b1:25: a4:8d:7d:8c:b2:86:aa:d3:bb:77:44:f2:85:c3:2a:e8:e1:af: 9a:0d:9f:9e:63:2e:23:33:80:97:55:c4:ba:d7:1b:c8:bf:8f: cc:18:b6:3a:08:2d:cb:3a:c7:fa:99:c9:d8:96:07:f0:a9:89: 6c:b3:74:bb:7d:1a:61:14:04:87:1d:1a:13:ef:6b:b7:c3:f1: 4b:c0:50:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjUwMzA2MjE0MjAxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhMTZhOS1mMDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/MCF8ufznci89Uee58xKMJLJ8W+nKYhQfw/r8jrj3Ni+RITOc1SMSOJLqriC vGTz+vhmKkgTe+AdrcPdKRJTH3A8KlKOt17hV3QqNLqpqupumGf7G9jiOLNBJpPo myQz/xdEtahGlyd9fLCYtrtO2MBviLbn6XoU9TOviD+/LO2BA0QNIxNiI1IWNHIp UZXvZC0QswqboECiSFMYZVZr/aFzJ48tMC4lQhVRQ2Yb0hiuCOHTk9DJacFptCDJ I9A0LirOMHiIvcP0BuFUHqZVEkNzvhDL7iG61Ep3az64fV4gD54DGALWRVH0FB6D 1A0pRrwYcuDTkub9QoKka0NEJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNDTqR6u r/M4GWo1ihDK2tlg0tInMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1QkYvRjEzM0JEQUMxM0YyMTFFQjlCRUZDRDUxQzRGOUFFMDIvQjg5RDk3OUEx M0Y0MTFFQjhCRjQ5NTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzdAwDQYJKoZIhvcNAQELBQADggEBAH0T2FBpWUyBFY0M c+iiL2MvINo9/6HbiGsIzeQgKh41aKkqLB6ji5vnNji1EI7vg8FqcN03wF/DnH5i bBg7hIBTvAp9KjxmEPA/yP/N2DJ+ER/TFhR7pagw2+MWtFKsQVMFBhRpmKgWY3N9 Z4YUrkv/wGat+IlKeaa0xkbTz68d9Jxo4qtcovHvIc+j5qNluRyhzU3wMMpKFQyL whJ9KPDFE4tklYeQVvz8flmvfo4n5EqxJaSNfYyyhqrTu3dE8oXDKujhr5oNn55j LiMzgJdVxLrXG8i/j8wYtjoILcs6x/qZydiWB/CpiWyzdLt9GmEUBIcdGhPva7fD 8UvAUMc= -----END CERTIFICATE-----Generated at Sat Apr 5 08:14:14 2025 by rpki-client