$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa File: 243E2854305711ED9363AB84C4F9AE02.roa (raw, json) Hash identifier: fiROqg1WSP8rpYEY61BsBxC2EbNbVBwkq8ZLUihXqqM= Subject key identifier: 0E:D3:31:6F:33:1C:EE:45:85:49:C5:7F:B5:A9:E5:00:12:BE:76:48 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 49CA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa Signing time: Thu 20 Feb 2025 08:08:55 +0000 ROA not before: Thu 20 Feb 2025 08:08:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135912 IP address blocks: 103.90.223.0/24 maxlen: 24 103.162.93.0/24 maxlen: 24 103.183.109.0/24 maxlen: 24 2405:f540:9::/48 maxlen: 48 2405:f540:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18890 (0x49ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Feb 20 08:08:55 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67b6e317-4300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:94:7e:4b:3e:1c:3a:76:4e:c9:02:b5:41:57: 0f:b2:33:5d:32:90:84:6e:34:29:da:da:f5:2b:a7: 90:dd:c5:c2:be:1a:92:fa:d5:3c:69:0f:e8:cc:0e: 94:12:ae:81:3c:8a:df:7a:7d:97:f0:3a:f4:b4:5e: 34:21:02:8c:fd:e6:71:f1:34:e4:4d:85:48:ab:17: fc:39:01:a7:f5:b4:af:38:69:59:24:19:43:54:65: 31:84:3f:38:7e:d6:c5:84:f4:da:eb:46:9d:3b:2a: 26:93:7d:25:97:f1:ab:eb:7c:f0:97:56:27:2f:c5: 15:7d:68:9d:f4:42:45:ba:1c:b4:5c:d8:ca:bb:e8: 40:87:3a:13:15:f8:20:76:6e:66:46:94:27:cb:19: 29:98:e6:37:0b:50:92:6b:a9:e2:74:87:38:94:ff: d7:fa:e0:bf:d2:44:19:44:6f:a4:bf:7f:51:63:c4: 2f:f7:df:25:19:44:c5:de:94:61:00:a3:10:75:7e: f9:df:7a:b4:df:fe:1e:83:d6:97:96:c8:14:d5:58: 15:d9:22:86:86:31:bb:73:ee:64:e6:2e:e8:dc:98: 8d:3a:62:d6:12:d3:7c:5b:6c:56:27:f6:78:b6:df: 28:46:57:ce:c3:fa:eb:45:e6:20:ba:01:9b:0f:a0: 17:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D3:31:6F:33:1C:EE:45:85:49:C5:7F:B5:A9:E5:00:12:BE:76:48 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.223.0/24 103.162.93.0/24 103.183.109.0/24 IPv6: 2405:f540:9::-2405:f540:a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9a:c4:82:c6:b2:25:ec:28:5c:38:77:e1:42:7e:1a:96:9d:0e: 9f:ff:a4:7a:49:6e:da:2f:d9:6a:6a:ea:ff:a4:7a:77:7a:b4: b9:a8:ee:92:23:b5:c6:4f:50:64:99:38:41:de:a1:de:3b:5f: b4:6c:e6:af:33:ef:fc:6f:4a:c2:a0:5b:ab:c2:6d:f7:af:9d: 53:94:7f:09:ae:25:59:a6:5f:f2:dd:c2:c4:e6:9e:52:a4:93: 12:64:9b:fc:54:95:52:b4:93:54:f3:04:9f:75:27:aa:23:82: 0f:f8:0f:55:f6:82:70:18:2a:1c:89:c4:84:b5:bf:a6:e1:cb: ed:79:f0:c5:1c:77:cb:62:1a:d0:3a:dd:53:3c:10:08:c3:e1: e2:eb:03:64:9d:60:0e:6b:96:5e:ee:72:74:b4:b5:66:0b:91: 75:62:49:39:61:36:0b:b0:7e:9d:89:b2:67:a1:27:94:b8:85: 09:0f:af:da:93:af:40:a8:11:c8:8b:dd:6b:19:41:45:f7:27: 79:a3:4b:42:34:d9:1a:e9:32:61:ff:b0:91:ab:6e:b8:9e:a5: 22:e6:e6:f0:97:e0:d4:f3:a8:1d:79:a9:12:7c:87:6f:7c:b0: e4:ea:32:b1:4d:08:6b:2e:64:2b:ab:8d:ed:23:29:2a:bb:31: f9:41:97:e3 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICScowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwMjIwMDgwODU1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I2ZTMxNy00MzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkpR+Sz4cOnZOyQK1QVcPsjNdMpCEbjQp2tr1K6eQ3cXCvhqS+tU8aQ/ozA6U Eq6BPIrfen2X8Dr0tF40IQKM/eZx8TTkTYVIqxf8OQGn9bSvOGlZJBlDVGUxhD84 ftbFhPTa60adOyomk30ll/Gr63zwl1YnL8UVfWid9EJFuhy0XNjKu+hAhzoTFfgg dm5mRpQnyxkpmOY3C1CSa6nidIc4lP/X+uC/0kQZRG+kv39RY8Qv998lGUTF3pRh AKMQdX7533q03/4eg9aXlsgU1VgV2SKGhjG7c+5k5i7o3JiNOmLWEtN8W2xWJ/Z4 tt8oRlfOw/rrReYgugGbD6AXkQIDAQABo4ICvTCCArkwHQYDVR0OBBYEFA7TMW8z HO5FhUnFf7Wp5QASvnZIMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjQzRTI4NTQz MDU3MTFFRDkzNjNBQjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MBgEAgABMBIDBABnWt8DBABnol0DBABnt20wGgQCAAIwFDASAwcAJAX1QAAJ AwcAJAX1QAAKMA0GCSqGSIb3DQEBCwUAA4IBAQCaxILGsiXsKFw4d+FCfhqWnQ6f /6R6SW7aL9lqaur/pHp3erS5qO6SI7XGT1BkmThB3qHeO1+0bOavM+/8b0rCoFur wm33r51TlH8JriVZpl/y3cLE5p5SpJMSZJv8VJVStJNU8wSfdSeqI4IP+A9V9oJw GCocicSEtb+m4cvtefDFHHfLYhrQOt1TPBAIw+Hi6wNknWAOa5Ze7nJ0tLVmC5F1 Ykk5YTYLsH6dibJnoSeUuIUJD6/ak69AqBHIi91rGUFF9yd5o0tCNNka6TJh/7CR q264nqUi5ubwl+DU86gdeakSfIdvfLDk6jKxTQhrLmQrq43tIykquzH5QZfj -----END CERTIFICATE-----Generated at Sat Apr 5 14:41:15 2025 by rpki-client