$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/206DDC4A77AF11EB8E972C66C4F9AE02.roa File: 206DDC4A77AF11EB8E972C66C4F9AE02.roa (raw, json) Hash identifier: zqG4bc06KvBhxn6QFTh7x4mtk1td0qh6Ee0/kRUb20s= Subject key identifier: 30:A4:1D:0C:98:04:39:55:D9:42:D2:F2:90:8C:66:30:A8:2E:BC:16 Certificate issuer: /CN=A91AD544/serialNumber=0165A9DCC02BC0E87687EE06705C0E6C992DE932 Certificate serial: 064C Authority key identifier: 01:65:A9:DC:C0:2B:C0:E8:76:87:EE:06:70:5C:0E:6C:99:2D:E9:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWWp3MArwOh2h-4GcFwObJkt6TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/206DDC4A77AF11EB8E972C66C4F9AE02.roa Signing time: Tue 04 Feb 2025 22:12:00 +0000 ROA not before: Tue 04 Feb 2025 22:12:00 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 131464 IP address blocks: 103.109.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.crl rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWWp3MArwOh2h-4GcFwObJkt6TI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1612 (0x64c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD544 Validity Not Before: Feb 4 22:12:00 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a290af-fbc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:84:ab:88:44:38:4c:a3:ab:b9:6e:a3:c0:8f: f1:c9:ab:0e:37:27:4c:a2:cd:a6:b5:7d:81:dd:58: 40:82:65:9a:1f:e4:c2:24:32:a8:a8:32:52:e7:f7: dd:84:a8:ea:ce:74:95:e7:1f:af:9f:86:91:42:9f: 8d:ad:87:76:dd:c3:bc:6b:d2:b2:ad:4b:c5:99:fb: 21:69:33:03:b0:a2:43:b2:d5:95:7b:65:49:03:ae: 82:31:2c:fc:0b:f5:d5:a7:c3:46:95:04:44:c6:1f: e7:ae:c9:9d:87:5d:23:1d:0d:29:26:1a:14:03:aa: c2:33:29:cf:df:19:09:58:a4:f0:99:c9:c2:c2:84: 2f:1d:ae:7a:db:1f:8f:06:a6:78:7f:92:c6:28:ff: b9:53:ff:f4:a7:41:b4:ef:ef:bb:66:39:03:b8:bb: 3d:29:59:56:5a:03:5c:3d:f6:b7:75:f8:af:3c:13: a1:0a:02:82:18:8d:d0:47:ec:03:7e:f6:a4:ee:b0: bc:59:ac:58:5d:a7:e2:24:00:6c:45:e7:1a:5e:1d: 84:da:33:21:01:a7:f9:cf:21:f8:93:6a:e4:57:4d: 25:4b:71:f0:df:aa:1b:13:1f:bd:27:34:f4:e7:71: a4:8d:45:c9:3c:fc:2e:4b:8f:12:a9:c9:57:4c:7d: ad:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A4:1D:0C:98:04:39:55:D9:42:D2:F2:90:8C:66:30:A8:2E:BC:16 X509v3 Authority Key Identifier: keyid:01:65:A9:DC:C0:2B:C0:E8:76:87:EE:06:70:5C:0E:6C:99:2D:E9:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/AWWp3MArwOh2h-4GcFwObJkt6TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWWp3MArwOh2h-4GcFwObJkt6TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD544/459C89E475F211EBA3ED3647C4F9AE02/206DDC4A77AF11EB8E972C66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.96.0/22 Signature Algorithm: sha256WithRSAEncryption 65:dd:ad:82:b9:e7:ae:07:b7:ea:f0:da:cc:f5:d2:5e:2f:96: 8e:b4:9e:84:b8:a2:d7:26:e8:79:cd:94:93:31:39:f3:bd:f2: d1:59:db:f9:de:2f:fd:a2:c0:8f:d2:1a:a4:39:09:99:96:9b: 67:fe:11:24:96:6c:c9:aa:74:89:53:0f:4b:7c:14:0b:7c:a8: 35:89:f0:2d:3a:00:ac:d8:03:27:e0:b0:f3:c1:4c:52:5f:23: 78:98:ea:e1:44:89:d3:c3:e9:d4:17:df:a1:98:27:b4:f9:d8: c7:f0:fa:73:a2:56:1b:e9:94:1a:14:1c:7a:ce:29:81:17:28: 01:1a:14:37:d8:10:e1:91:30:c3:b9:64:55:f6:d5:cd:c3:ef: 0e:73:96:ae:f5:59:2a:bd:07:e5:a0:ed:dd:05:12:83:85:a0: 49:2f:12:53:8d:42:6f:ba:f8:af:2f:51:45:bb:1a:85:9d:d8: db:99:af:bc:a7:ad:ff:5d:ea:2e:dd:81:2e:4a:0b:c8:08:f0: 76:d2:1d:aa:00:50:dd:40:69:55:ba:6a:53:03:93:a4:3d:9b: a9:9f:3f:96:e3:3c:d0:b5:78:f6:58:7e:85:d1:3f:ef:b4:86: f8:d5:22:68:e1:5d:90:93:39:c5:b1:47:f8:81:59:dd:e3:de: 99:e2:9b:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQ1NDQxMTAvBgNVBAUTKDAxNjVBOURDQzAyQkMwRTg3Njg3RUUwNjcwNUMwRTZD OTkyREU5MzIwHhcNMjUwMjA0MjIxMjAwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyOTBhZi1mYmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoSriEQ4TKOruW6jwI/xyasONydMos2mtX2B3VhAgmWaH+TCJDKoqDJS5/fd hKjqznSV5x+vn4aRQp+NrYd23cO8a9KyrUvFmfshaTMDsKJDstWVe2VJA66CMSz8 C/XVp8NGlQRExh/nrsmdh10jHQ0pJhoUA6rCMynP3xkJWKTwmcnCwoQvHa562x+P BqZ4f5LGKP+5U//0p0G07++7ZjkDuLs9KVlWWgNcPfa3dfivPBOhCgKCGI3QR+wD fvak7rC8WaxYXafiJABsRecaXh2E2jMhAaf5zyH4k2rkV00lS3Hw36obEx+9JzT0 53GkjUXJPPwuS48SqclXTH2tyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDCkHQyY BDlV2ULS8pCMZjCoLrwWMB8GA1UdIwQYMBaAFAFlqdzAK8DodofuBnBcDmyZLeky MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDU0NC80NTlDODlFNDc1 RjIxMUVCQTNFRDM2NDdDNEY5QUUwMi9BV1dwM01BcndPaDJoLTRHY0Z3T2JKa3Q2 VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXV3AzTUFyd09oMmgtNEdjRndPYkprdDZUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUQ1NDQvNDU5Qzg5RTQ3NUYyMTFFQkEzRUQzNjQ3QzRGOUFFMDIvMjA2RERDNEE3 N0FGMTFFQjhFOTcyQzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnbWAwDQYJKoZIhvcNAQELBQADggEBAGXdrYK5564Ht+rw 2sz10l4vlo60noS4otcm6HnNlJMxOfO98tFZ2/neL/2iwI/SGqQ5CZmWm2f+ESSW bMmqdIlTD0t8FAt8qDWJ8C06AKzYAyfgsPPBTFJfI3iY6uFEidPD6dQX36GYJ7T5 2Mfw+nOiVhvplBoUHHrOKYEXKAEaFDfYEOGRMMO5ZFX21c3D7w5zlq71WSq9B+Wg 7d0FEoOFoEkvElONQm+6+K8vUUW7GoWd2NuZr7ynrf9d6i7dgS5KC8gI8HbSHaoA UN1AaVW6alMDk6Q9m6mfP5bjPNC1ePZYfoXRP++0hvjVImjhXZCTOcWxR/iBWd3j 3pnim3M= -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:44 2025 by rpki-client