$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/2A0F594C07B911F0B93D3034C4F9AE02.roa File: 2A0F594C07B911F0B93D3034C4F9AE02.roa (raw, json) Hash identifier: r5ruoCtRcYnEcHexWC9aJqjiLOW/BTPK5UGFj2P9wTI= Subject key identifier: 84:79:56:13:2F:EE:2C:01:D2:24:19:D6:18:F5:76:A3:10:9C:94:BA Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 04 Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/2A0F594C07B911F0B93D3034C4F9AE02.roa Signing time: Mon 24 Mar 2025 12:21:14 +0000 ROA not before: Mon 24 Mar 2025 12:21:14 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45150 IP address blocks: 103.246.48.0/23 maxlen: 23 103.246.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 07:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8 Validity Not Before: Mar 24 12:21:14 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67e14e3a-24ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d9:ab:1b:de:62:5d:f6:8b:a1:1c:47:67:2a: c5:41:d8:c8:1d:43:fe:5e:58:ab:e6:a8:40:39:b6: af:9d:ae:7f:7a:c7:78:41:65:af:04:43:f6:ea:1a: 68:75:b6:54:06:a3:83:fd:14:c7:d9:48:a7:d5:e8: e9:d4:7b:ef:77:e0:71:c3:1f:ec:8a:fd:5e:68:e5: 52:a3:96:fc:54:65:35:76:78:dd:a3:8c:42:42:90: bc:3a:f8:e5:9c:79:53:ab:7f:bf:6f:c6:ff:d9:13: d7:13:ae:6b:f3:d5:ed:92:dd:1d:13:1c:b5:8a:e2: 8d:cc:ce:0f:bc:13:2f:01:87:03:56:0b:5e:ac:de: 64:01:15:7b:5f:38:dd:77:70:60:9f:57:69:3d:80: b2:6c:e6:f1:31:ff:87:69:5d:49:86:48:e0:1e:7b: a5:0f:a1:3b:78:7f:a5:44:80:f3:11:6e:67:a0:ed: 3f:16:49:95:84:bd:98:8b:e6:b1:1b:81:00:07:0d: 7b:86:40:73:65:93:66:94:69:91:20:3a:68:77:c5: 3d:63:2f:9f:06:92:45:65:26:43:34:d6:b6:aa:4e: 2e:9e:a7:ea:2f:73:ed:68:44:36:23:ad:32:eb:f7: 7e:0f:cd:1e:8e:fe:34:a0:9e:7f:c6:5f:fc:4c:d6: a7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:79:56:13:2F:EE:2C:01:D2:24:19:D6:18:F5:76:A3:10:9C:94:BA X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/2A0F594C07B911F0B93D3034C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.48.0/23 Signature Algorithm: sha256WithRSAEncryption 20:79:89:21:78:5d:c5:cf:97:8f:e4:02:c8:19:11:f3:7d:f6: 70:0d:de:6f:05:5a:61:84:ee:9e:f7:5c:05:c2:8b:5b:0a:23: 91:c9:32:3a:93:50:e2:e5:0b:e6:54:dd:8b:cf:74:e0:e0:08: 11:63:03:1b:1c:50:ae:32:1d:4a:8d:5f:55:81:65:13:d7:ff: 18:02:98:82:70:f0:86:78:e3:3f:79:e8:15:00:72:e0:3c:63: 5b:d1:71:29:de:b1:91:82:5d:33:17:9a:3f:38:c5:30:4a:ac: 04:8f:80:8e:fb:97:87:b5:8c:1c:02:a0:87:ec:9a:05:c5:76: c3:bb:00:28:37:6a:63:03:7b:6d:9d:00:e5:a4:f1:64:5f:9b: 54:45:ac:e6:d9:2c:22:3b:5e:16:df:e4:f1:c3:04:ea:c9:9b: 94:04:42:c1:de:68:84:fd:9e:a4:99:f9:22:7b:ce:9b:8e:c4: db:e2:8c:cb:28:35:da:36:60:0b:ac:51:b8:ff:19:d9:3f:a2: 4a:42:f9:fc:cb:52:62:f0:b5:fb:78:75:bc:1d:b6:bf:bb:f4: 70:7f:a7:7b:85:f8:17:26:62:4d:0e:67:cc:2e:98:b2:6b:1d: 63:ac:0a:2a:b1:51:8f:88:44:a9:66:74:ad:29:c6:6f:90:21: ca:28:78:fd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTAzMjQxMjIxMTRaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTE0ZTNhLTI0ZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDY2asb3mJd9ouhHEdnKsVB2MgdQ/5eWKvmqEA5tq+drn96x3hBZa8EQ/bqGmh1 tlQGo4P9FMfZSKfV6OnUe+934HHDH+yK/V5o5VKjlvxUZTV2eN2jjEJCkLw6+OWc eVOrf79vxv/ZE9cTrmvz1e2S3R0THLWK4o3Mzg+8Ey8BhwNWC16s3mQBFXtfON13 cGCfV2k9gLJs5vEx/4dpXUmGSOAee6UPoTt4f6VEgPMRbmeg7T8WSZWEvZiL5rEb gQAHDXuGQHNlk2aUaZEgOmh3xT1jL58GkkVlJkM01raqTi6ep+ovc+1oRDYjrTLr 934PzR6O/jSgnn/GX/xM1qetAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhHlWEy/u LAHSJBnWGPV2oxCclLowHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZEOC8zMkRBQjI5MjA3QUYxMUYwOTYwNkU1MzRDNEY5QUUwMi8yQTBGNTk0QzA3 QjkxMUYwQjkzRDMwMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf2MDANBgkqhkiG9w0BAQsFAAOCAQEAIHmJIXhdxc+Xj+QC yBkR8332cA3ebwVaYYTunvdcBcKLWwojkckyOpNQ4uUL5lTdi8904OAIEWMDGxxQ rjIdSo1fVYFlE9f/GAKYgnDwhnjjP3noFQBy4DxjW9FxKd6xkYJdMxeaPzjFMEqs BI+AjvuXh7WMHAKgh+yaBcV2w7sAKDdqYwN7bZ0A5aTxZF+bVEWs5tksIjteFt/k 8cME6smblARCwd5ohP2epJn5InvOm47E2+KMyyg12jZgC6xRuP8Z2T+iSkL5/MtS YvC1+3h1vB22v7v0cH+ne4X4FyZiTQ5nzC6YsmsdY6wKKrFRj4hEqWZ0rSnGb5Ah yih4/Q== -----END CERTIFICATE-----Generated at Mon Apr 7 11:27:54 2025 by rpki-client