$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/C488A080FB5911EFA827FD17C4F9AE02.roa File: C488A080FB5911EFA827FD17C4F9AE02.roa (raw, json) Hash identifier: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U= Subject key identifier: DD:1E:24:5D:7D:19:41:EA:5F:12:42:DB:41:CD:FC:F9:4D:3C:CC:18 Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 02 Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/C488A080FB5911EFA827FD17C4F9AE02.roa Signing time: Fri 07 Mar 2025 13:40:44 +0000 ROA not before: Fri 07 Mar 2025 13:40:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135357 IP address blocks: 103.24.92.0/22 maxlen: 22 103.24.92.0/24 maxlen: 24 103.24.93.0/24 maxlen: 24 103.24.94.0/24 maxlen: 24 103.24.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF Validity Not Before: Mar 7 13:40:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67caf75c-0fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:68:f1:e7:5d:1d:46:14:3a:a0:80:e0:7a:d8: ca:3d:3c:d8:79:00:fc:68:0e:1c:03:8a:af:a6:fb: 08:d0:4e:b8:e4:b7:86:0b:76:5e:da:06:76:a0:23: b4:1d:b1:44:f7:79:1c:3e:89:21:d4:ad:95:bd:e7: 73:e1:81:d8:d0:d1:db:f6:83:32:e8:96:09:82:cd: 03:1f:de:5e:35:d8:c7:57:58:06:03:21:0a:d9:f2: 34:3b:92:78:7d:a4:5a:89:64:e8:f0:c1:9f:14:04: cb:7f:cc:92:ee:f6:43:01:24:37:51:e7:5a:e0:6a: 4c:93:88:a4:ca:26:35:a7:09:d5:b6:45:ce:96:81: 7c:93:4e:58:2b:61:4d:d8:ff:57:73:53:f6:d5:38: 32:05:50:be:69:d8:90:d8:fc:1e:8a:69:39:8e:89: 83:7f:56:e4:05:e5:b5:12:bd:1e:48:b7:7a:9c:fe: c9:a5:9e:fe:09:ec:1e:9c:38:fc:24:15:73:e9:49: 0b:92:f7:86:bd:77:3c:f1:1b:f8:6b:20:56:db:75: b0:53:0b:48:55:6b:73:8c:00:0b:ca:a1:ec:8d:b0: 16:57:9f:bc:d0:62:3d:62:39:b7:bd:29:31:b0:61: b7:83:b1:db:15:73:cf:4e:f0:58:7c:76:bc:8d:e2: bc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1E:24:5D:7D:19:41:EA:5F:12:42:DB:41:CD:FC:F9:4D:3C:CC:18 X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/C488A080FB5911EFA827FD17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.92.0/22 Signature Algorithm: sha256WithRSAEncryption 00:ac:53:f7:bb:99:03:e9:71:93:9a:eb:14:de:37:c9:62:63: 66:46:f0:6e:bd:c3:66:7c:2d:90:9e:9b:40:73:64:bd:22:78: 11:00:65:7b:e9:c6:eb:66:c9:03:6b:65:5e:48:b4:3d:61:4c: 18:06:cd:2d:e0:b3:66:be:0a:f3:a2:5e:9f:e0:e0:69:52:8e: ed:ab:40:46:5d:1b:e7:4e:29:67:9c:76:bf:c5:fd:2a:f0:31: 32:13:e9:de:70:c8:2e:8b:90:b6:ae:2d:9b:ec:16:4d:5e:9f: 8e:73:2d:a6:9b:f5:37:1d:5d:a7:96:1b:98:97:7b:24:d5:48: 90:42:2b:a9:ea:bb:dc:8f:69:10:ee:10:d1:ff:34:6a:c5:91: 43:49:1d:1a:22:d3:52:fa:da:9d:83:62:ca:13:a3:14:b5:8e: ae:94:38:f4:b1:6b:80:12:bc:d0:16:aa:db:05:be:17:0a:d7: cb:84:f6:6e:4d:1b:f6:07:cb:1b:33:7a:f0:0f:14:4a:96:ce: b5:fb:5f:d1:cc:a3:4a:76:93:c8:ec:82:7d:a1:4a:3e:9b:8a: c5:2a:f9:d0:09:54:95:5d:36:fb:9f:b2:6c:e5:a7:c3:a2:fe: 30:41:fa:69:9b:2e:cc:54:a8:42:ea:a5:40:7c:91:92:dd:d8: 52:b0:ea:d1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzlDRjExMC8GA1UEBRMoMEU2QzRBQjY3N0JERTFBRDQ0NjAzRkQ3MzdEQTI1QzA2 MDFDNDU5QzAeFw0yNTAzMDcxMzQwNDRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Y2FmNzVjLTBmYmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTaPHnXR1GFDqggOB62Mo9PNh5APxoDhwDiq+m+wjQTrjkt4YLdl7aBnagI7Qd sUT3eRw+iSHUrZW953PhgdjQ0dv2gzLolgmCzQMf3l412MdXWAYDIQrZ8jQ7knh9 pFqJZOjwwZ8UBMt/zJLu9kMBJDdR51rgakyTiKTKJjWnCdW2Rc6WgXyTTlgrYU3Y /1dzU/bVODIFUL5p2JDY/B6KaTmOiYN/VuQF5bUSvR5It3qc/smlnv4J7B6cOPwk FXPpSQuS94a9dzzxG/hrIFbbdbBTC0hVa3OMAAvKoeyNsBZXn7zQYj1iObe9KTGw YbeDsdsVc89O8Fh8dryN4rzhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3R4kXX0Z QepfEkLbQc38+U08zBgwHwYDVR0jBBgwFoAUDmxKtne94a1EYD/XN9olwGAcRZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzOUNGLzU2RjMxRkI0RkI1 OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Ja dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG14S3RuZTk0YTFFWURfWE45b2x3R0FjUlp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzlDRi81NkYzMUZCNEZCNTkxMUVGODY1MDI3MTdDNEY5QUUwMi9DNDg4QTA4MEZC NTkxMUVGQTgyN0ZEMTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmcYXDANBgkqhkiG9w0BAQsFAAOCAQEAAKxT97uZA+lxk5rr FN43yWJjZkbwbr3DZnwtkJ6bQHNkvSJ4EQBle+nG62bJA2tlXki0PWFMGAbNLeCz Zr4K86Jen+DgaVKO7atARl0b504pZ5x2v8X9KvAxMhPp3nDILouQtq4tm+wWTV6f jnMtppv1Nx1dp5YbmJd7JNVIkEIrqeq73I9pEO4Q0f80asWRQ0kdGiLTUvranYNi yhOjFLWOrpQ49LFrgBK80Baq2wW+FwrXy4T2bk0b9gfLGzN68A8USpbOtftf0cyj SnaTyOyCfaFKPpuKxSr50AlUlV02+5+ybOWnw6L+MEH6aZsuzFSoQuqlQHyRkt3Y UrDq0Q== -----END CERTIFICATE-----Generated at Fri Apr 11 18:44:56 2025 by rpki-client