$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/0D53ED80D2BA11ED8E06CC13C4F9AE02.roa File: 0D53ED80D2BA11ED8E06CC13C4F9AE02.roa (raw, json) Hash identifier: 8W11lhJNXDI/B18v0915hoFQti7BAopL/ni44iL17Lo= Subject key identifier: 1C:3D:B8:AA:1C:73:FE:DD:1B:7D:04:B2:8D:E1:35:C4:38:BA:69:FA Certificate issuer: /CN=A91A0C5F/serialNumber=C06FF005DE1D5EF13BA8F0C260E963034A5A22CA Certificate serial: 0184 Authority key identifier: C0:6F:F0:05:DE:1D:5E:F1:3B:A8:F0:C2:60:E9:63:03:4A:5A:22:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wG_wBd4dXvE7qPDCYOljA0paIso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/0D53ED80D2BA11ED8E06CC13C4F9AE02.roa Signing time: Mon 21 Apr 2025 02:59:00 +0000 ROA not before: Mon 21 Apr 2025 02:59:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151060 IP address blocks: 103.124.30.0/23 maxlen: 23 103.124.30.0/24 maxlen: 24 103.124.31.0/24 maxlen: 24 2001:df2:3540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/wG_wBd4dXvE7qPDCYOljA0paIso.crl rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/wG_wBd4dXvE7qPDCYOljA0paIso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wG_wBd4dXvE7qPDCYOljA0paIso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:59:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0C5F, serialNumber=C06FF005DE1D5EF13BA8F0C260E963034A5A22CA Validity Not Before: Apr 21 02:59:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6805b473-f629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:90:a0:63:91:6a:b4:71:9b:4f:c4:fb:d1:28: dd:f1:19:b6:cd:7f:56:c0:42:be:94:6e:c5:f8:7a: 15:c3:86:b5:46:fb:82:b5:24:30:09:d3:29:91:0e: 1a:a6:9e:76:44:1d:9e:5e:64:67:00:c5:8d:3c:df: 90:af:56:04:4f:7a:4e:61:e9:06:b5:50:82:52:04: 91:a5:d8:6d:b5:33:93:e0:97:f3:4c:0f:b6:b1:11: 6d:ee:ba:6d:6b:a4:ad:9a:58:60:ec:9d:b7:61:64: d8:84:ea:25:0f:09:a7:22:f7:d1:ac:76:f0:e9:ac: bd:6d:25:21:79:a6:4a:db:51:4c:20:3f:79:3b:9a: 41:1d:fc:20:61:df:73:6f:80:45:48:9c:08:18:42: 6c:4f:ba:e0:1d:ce:81:29:d2:1d:58:0e:2b:94:20: 7f:51:14:b5:82:30:36:c4:a5:88:f6:dc:f6:2e:bd: 7a:cb:1a:73:bd:8a:23:e7:5f:93:b5:5e:8e:22:b2: 69:96:df:9f:ff:9b:a4:a2:6a:42:92:2d:da:1b:84: 4d:b2:96:fd:60:53:b8:19:a7:d2:6a:49:0c:67:02: 76:eb:cd:d8:c3:08:09:88:c9:45:e0:6a:1a:7a:95: e1:4d:ef:20:24:9e:7f:ea:ca:48:1a:d3:6f:46:fe: a3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3D:B8:AA:1C:73:FE:DD:1B:7D:04:B2:8D:E1:35:C4:38:BA:69:FA X509v3 Authority Key Identifier: keyid:C0:6F:F0:05:DE:1D:5E:F1:3B:A8:F0:C2:60:E9:63:03:4A:5A:22:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/wG_wBd4dXvE7qPDCYOljA0paIso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wG_wBd4dXvE7qPDCYOljA0paIso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/0D53ED80D2BA11ED8E06CC13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.30.0/23 IPv6: 2001:df2:3540::/48 Signature Algorithm: sha256WithRSAEncryption 15:a4:a0:cd:5b:75:75:1e:55:f8:a7:6d:fc:8b:0b:8e:ae:71: 9d:a6:23:83:c7:f7:d6:f7:ec:17:d1:ab:e0:1f:df:42:24:e6: 3c:a2:29:fe:21:ee:e4:41:2a:c8:ed:e8:81:4e:60:fc:66:51: 27:e0:43:61:82:65:08:be:33:29:5c:e7:07:9b:14:48:af:43: 14:42:0e:cf:f6:cd:17:84:70:c9:2f:bd:29:80:f1:01:75:33: 3a:db:be:9d:1e:53:8d:3e:bc:d8:39:e7:98:db:29:f1:97:5b: 68:57:99:96:92:29:29:f7:22:06:6e:c5:a3:b9:fd:fc:25:b6: c1:1d:1a:bb:0f:69:99:28:e7:af:28:c3:93:ae:49:d9:a1:a0: 14:6a:34:05:db:ea:af:ec:1e:c8:ee:4c:b1:5d:19:bf:95:59: 3c:6f:55:1d:82:a4:d8:7b:d6:8d:3c:c3:5b:e7:be:ba:f4:16: 39:ae:7d:bf:b6:6b:a9:0e:e2:6e:20:93:87:a4:35:4b:24:94: 33:f8:17:19:de:e8:64:59:ac:2b:d5:ec:a8:12:76:97:6a:15: f7:19:29:2f:2d:20:bc:e8:17:5a:bc:77:cb:b5:9a:6a:57:9a: 9f:ce:a4:83:b6:aa:77:dc:4b:25:19:5f:8c:58:4d:e8:92:4d: 2f:38:9e:9a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBDNUYxMTAvBgNVBAUTKEMwNkZGMDA1REUxRDVFRjEzQkE4RjBDMjYwRTk2MzAz NEE1QTIyQ0EwHhcNMjUwNDIxMDI1OTAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA1YjQ3My1mNjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJCgY5FqtHGbT8T70Sjd8Rm2zX9WwEK+lG7F+HoVw4a1RvuCtSQwCdMpkQ4a pp52RB2eXmRnAMWNPN+Qr1YET3pOYekGtVCCUgSRpdhttTOT4JfzTA+2sRFt7rpt a6Stmlhg7J23YWTYhOolDwmnIvfRrHbw6ay9bSUheaZK21FMID95O5pBHfwgYd9z b4BFSJwIGEJsT7rgHc6BKdIdWA4rlCB/URS1gjA2xKWI9tz2Lr16yxpzvYoj51+T tV6OIrJplt+f/5ukompCki3aG4RNspb9YFO4GafSakkMZwJ2683YwwgJiMlF4Goa epXhTe8gJJ5/6spIGtNvRv6jTwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBw9uKoc c/7dG30Eso3hNcQ4umn6MB8GA1UdIwQYMBaAFMBv8AXeHV7xO6jwwmDpYwNKWiLK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEM1Ri9GNzQ1NUFBQUQy QjUxMUVEQUNDNzRBMUNDNEY5QUUwMi93R193QmQ0ZFh2RTdxUERDWU9sakEwcGFJ c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dHX3dCZDRkWHZFN3FQRENZT2xqQTBwYUlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBDNUYvRjc0NTVBQUFEMkI1MTFFREFDQzc0QTFDQzRGOUFFMDIvMEQ1M0VEODBE MkJBMTFFRDhFMDZDQzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnfB4wDwQCAAIwCQMHACABDfI1QDANBgkqhkiG9w0BAQsF AAOCAQEAFaSgzVt1dR5V+Kdt/IsLjq5xnaYjg8f31vfsF9Gr4B/fQiTmPKIp/iHu 5EEqyO3ogU5g/GZRJ+BDYYJlCL4zKVznB5sUSK9DFEIOz/bNF4RwyS+9KYDxAXUz Otu+nR5TjT682DnnmNsp8ZdbaFeZlpIpKfciBm7Fo7n9/CW2wR0auw9pmSjnryjD k65J2aGgFGo0Bdvqr+weyO5MsV0Zv5VZPG9VHYKk2HvWjTzDW+e+uvQWOa59v7Zr qQ7ibiCTh6Q1SySUM/gXGd7oZFmsK9XsqBJ2l2oV9xkpLy0gvOgXWrx3y7Waalea n86kg7aqd9xLJRlfjFhN6JJNLziemg== -----END CERTIFICATE-----Generated at Tue Apr 22 02:32:27 2025 by rpki-client