$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa File: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (raw, json) Hash identifier: egrPthjaxF/A13xbTq0oU0ubbDy9CZyZ7qj/Ab6JSEg= Subject key identifier: 92:E5:CA:B7:E8:3D:3E:5B:40:E1:25:49:44:B6:4E:22:65:0C:70:FD Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: E5 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa Signing time: Mon 14 Apr 2025 18:36:50 +0000 ROA not before: Mon 14 Apr 2025 18:36:50 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 14618 IP address blocks: 167.103.90.0/24 maxlen: 24 167.103.91.0/24 maxlen: 24 167.103.92.0/24 maxlen: 24 167.103.93.0/24 maxlen: 24 167.103.94.0/24 maxlen: 24 167.103.95.0/24 maxlen: 24 167.103.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 22:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Apr 14 18:36:50 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67fd55c2-d66b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d3:eb:04:42:10:5f:cf:90:8a:3d:12:b5:98: 73:b4:d7:c6:4b:4f:e6:11:c0:1c:4c:f0:3f:11:91: ac:a3:d3:53:ee:34:7a:21:7b:60:c4:ec:be:5e:a5: f6:8b:6c:fb:74:5d:6d:ac:bd:49:c5:3b:ed:f5:17: 44:cb:cc:45:e5:25:e8:7d:f8:7e:47:a7:7c:12:25: 1a:ff:f8:eb:70:0b:0a:1e:36:55:3a:63:2e:73:e1: 55:04:fd:8e:23:f7:f8:26:93:ba:7b:af:be:5b:b1: ac:49:d3:1a:b8:3a:a5:0d:ae:4c:1e:d8:e5:20:d2: 73:0a:b9:6f:08:0f:56:f6:0b:82:70:99:57:cd:d8: 29:8d:fb:1f:87:70:08:db:e6:7e:3e:ee:ba:7c:24: d3:db:4b:24:b4:1e:8c:bf:5c:10:cb:63:4e:8f:7d: 5b:d1:17:e2:c1:5f:a9:63:76:67:44:1e:e3:f6:76: fd:0a:41:79:d5:a6:a5:b6:e4:5e:f7:2e:d9:bb:e0: 24:ab:1e:fd:d8:f3:d6:a0:4d:fc:2a:93:15:f2:95: 25:c4:f6:70:57:03:a7:87:1b:ae:b9:c7:b3:3d:49: a7:86:0e:3f:dc:f5:cd:21:ce:99:5f:e2:fc:9c:15: 7f:e8:7b:6a:a0:d2:fc:1c:fa:43:35:8a:95:00:1f: 80:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E5:CA:B7:E8:3D:3E:5B:40:E1:25:49:44:B6:4E:22:65:0C:70:FD X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.90.0-167.103.95.255 167.103.170.0/24 Signature Algorithm: sha256WithRSAEncryption 12:32:3f:15:b1:0f:19:b7:b2:d4:83:cf:43:40:47:02:15:7d: 38:c1:11:36:d0:63:f9:34:0e:23:4b:04:e1:31:6c:e2:5f:8b: c6:62:e2:d7:56:28:61:e1:a4:12:54:95:95:f7:db:2f:19:0a: dd:40:3a:09:c5:0c:90:56:4e:64:7b:ac:fd:79:a0:dc:72:fb: 4f:91:82:91:00:b2:ea:89:d6:24:57:f0:47:1c:64:87:f1:36: e6:74:8f:1c:7c:a1:24:b3:41:e2:5c:b2:1c:bd:b4:20:f0:2b: 27:fa:a7:62:61:39:ca:3c:16:2f:c3:15:48:a0:54:13:62:34: b6:51:c1:d7:6c:13:0a:1f:8e:71:08:ba:dd:99:f0:c0:f8:04: 74:cd:9b:3f:22:16:96:eb:ef:08:6a:fd:1f:31:59:bb:00:1d: 8c:75:f5:a9:0f:b4:b0:45:28:47:c5:20:4b:d0:61:cd:25:1b: 58:64:ca:be:d7:5d:f1:77:90:c8:2b:ce:79:cd:83:64:72:b1: 5e:7e:80:62:8e:dd:ea:1f:78:22:44:68:8b:45:79:06:44:0b: b3:8d:ed:3e:09:17:66:f7:d4:54:46:00:83:4c:a8:bc:ec:4b: de:f6:e3:73:9b:35:70:19:52:d6:5f:bf:1d:40:2b:0f:8b:b1: 95:a6:be:5a -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNDE0MTgzNjUwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkNTVjMi1kNjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtPrBEIQX8+Qij0StZhztNfGS0/mEcAcTPA/EZGso9NT7jR6IXtgxOy+XqX2 i2z7dF1trL1JxTvt9RdEy8xF5SXoffh+R6d8EiUa//jrcAsKHjZVOmMuc+FVBP2O I/f4JpO6e6++W7GsSdMauDqlDa5MHtjlINJzCrlvCA9W9guCcJlXzdgpjfsfh3AI 2+Z+Pu66fCTT20sktB6Mv1wQy2NOj31b0RfiwV+pY3ZnRB7j9nb9CkF51aaltuRe 9y7Zu+Akqx792PPWoE38KpMV8pUlxPZwVwOnhxuuucezPUmnhg4/3PXNIc6ZX+L8 nBV/6HtqoNL8HPpDNYqVAB+A1QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFJLlyrfo PT5bQOElSUS2TiJlDHD9MB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvM0Q5MzdBMzBF QkIyMTFFRUE5M0Q5QjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAadnWgMEBadnQAMEAKdnqjANBgkqhkiG9w0BAQsFAAOC AQEAEjI/FbEPGbey1IPPQ0BHAhV9OMERNtBj+TQOI0sE4TFs4l+LxmLi11YoYeGk ElSVlffbLxkK3UA6CcUMkFZOZHus/Xmg3HL7T5GCkQCy6onWJFfwRxxkh/E25nSP HHyhJLNB4lyyHL20IPArJ/qnYmE5yjwWL8MVSKBUE2I0tlHB12wTCh+OcQi63Znw wPgEdM2bPyIWluvvCGr9HzFZuwAdjHX1qQ+0sEUoR8UgS9BhzSUbWGTKvtdd8XeQ yCvOec2DZHKxXn6AYo7d6h94IkRoi0V5BkQLs43tPgkXZvfUVEYAg0yovOxL3vbj c5s1cBlS1l+/HUArD4uxlaa+Wg== -----END CERTIFICATE-----Generated at Sat Apr 19 05:34:57 2025 by rpki-client