$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/AD286018B29C11EDB216812EC4F9AE02.roa File: AD286018B29C11EDB216812EC4F9AE02.roa (raw, json) Hash identifier: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E= Subject key identifier: 9E:70:5D:C2:55:B0:37:91:52:72:70:28:45:D8:C5:86:AE:4A:F5:8F Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 018B Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/AD286018B29C11EDB216812EC4F9AE02.roa Signing time: Tue 11 Mar 2025 03:19:28 +0000 ROA not before: Tue 11 Mar 2025 03:19:28 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 147314 IP address blocks: 103.89.240.0/23 maxlen: 23 103.89.240.0/24 maxlen: 24 103.89.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C Validity Not Before: Mar 11 03:19:28 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67cfabc0-af4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:e5:27:ed:69:9f:92:12:a7:95:8b:3c:74: a3:99:4f:29:6c:b0:26:91:83:c1:e5:2c:45:93:5d: 45:98:80:f2:35:42:aa:ad:eb:e4:0c:2b:d7:3c:84: 30:86:93:01:7e:23:1d:3c:ec:e4:71:62:94:1c:bf: 0a:70:bb:c9:df:1d:07:87:17:28:ff:b2:56:be:01: a9:ee:9a:4c:fd:32:a2:bd:1c:0e:4f:f5:1e:33:c4: cb:7e:52:84:d9:67:42:22:24:8c:f2:97:07:dc:ac: c6:5e:da:3d:55:e5:29:58:15:74:05:9e:ce:f4:93: 6c:46:27:5d:85:6d:fa:f0:b6:3d:06:4f:fb:e5:bd: e4:72:8b:e1:87:a7:a0:f3:10:cb:1f:04:b2:9f:6a: f7:a1:27:c9:59:73:3b:19:0d:9f:7b:3b:2e:36:51: 56:ef:d7:b3:cb:a2:80:54:53:51:31:f3:74:c0:55: bb:2c:f8:e7:2a:72:fa:6e:90:87:f2:bd:c4:9c:be: 76:4e:73:0d:91:ca:48:85:ee:13:2a:13:39:bd:34: 02:9e:95:65:b4:0c:26:92:67:b8:6c:0c:3e:b1:94: da:8c:99:94:5f:a8:1e:8c:94:e4:bc:c4:63:bf:1f: 9a:85:b7:5f:1d:bb:0c:88:78:94:08:78:e1:f4:2e: a6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:70:5D:C2:55:B0:37:91:52:72:70:28:45:D8:C5:86:AE:4A:F5:8F X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/AD286018B29C11EDB216812EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.240.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:5d:a0:e6:95:ba:81:a4:38:5f:33:04:60:52:00:3e:66:16: 92:40:dd:4c:2f:1a:88:8d:a4:a2:92:3b:8e:60:c1:d2:2d:99: 32:47:71:ff:60:94:b1:9c:55:a6:1b:f7:e1:ce:f9:3e:ee:35: 37:1c:f9:43:d1:5d:5f:91:2b:00:78:62:cc:1d:84:c7:0f:f7: 47:6c:1b:95:94:40:c2:51:43:35:30:6f:6c:33:a7:49:33:05: 29:7a:0c:6f:30:dd:fb:25:28:c3:8d:07:d9:9f:1b:be:9d:19: e5:a7:c4:e0:20:92:39:b0:45:2e:16:b7:40:5f:c4:70:eb:61: 15:0f:b6:5d:56:63:6b:87:ba:32:45:7e:27:10:1b:a0:62:d4: d7:98:ea:21:d9:b5:23:30:59:d0:c1:70:bf:28:81:b9:cd:45: f9:14:2d:41:32:0d:29:7a:fb:d3:18:ed:00:19:46:96:d2:aa: 72:a8:08:86:9c:3f:ef:6a:bf:44:2e:56:b2:09:a0:4d:2e:4c: 39:e0:2f:bf:27:1d:15:8c:86:3a:3f:4a:7f:d1:26:78:6b:45: 8a:4f:0f:17:9e:30:1c:ab:1d:61:ff:6f:2c:5f:5a:fa:95:74: c2:fb:53:bb:51:96:8d:9b:97:5d:d5:c5:60:07:f4:11:65:3c: 39:e1:cb:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwMzExMDMxOTI4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmYWJjMC1hZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2zlJ+1pn5ISp5WLPHSjmU8pbLAmkYPB5SxFk11FmIDyNUKqrevkDCvXPIQw hpMBfiMdPOzkcWKUHL8KcLvJ3x0Hhxco/7JWvgGp7ppM/TKivRwOT/UeM8TLflKE 2WdCIiSM8pcH3KzGXto9VeUpWBV0BZ7O9JNsRiddhW368LY9Bk/75b3kcovhh6eg 8xDLHwSyn2r3oSfJWXM7GQ2fezsuNlFW79ezy6KAVFNRMfN0wFW7LPjnKnL6bpCH 8r3EnL52TnMNkcpIhe4TKhM5vTQCnpVltAwmkme4bAw+sZTajJmUX6gejJTkvMRj vx+ahbdfHbsMiHiUCHjh9C6mNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ5wXcJV sDeRUnJwKEXYxYauSvWPMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZCNEMvQzQ3MEIyMkFCMjk3MTFFRDk0RUYwOTI2QzRGOUFFMDIvQUQyODYwMThC MjlDMTFFREIyMTY4MTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnWfAwDQYJKoZIhvcNAQELBQADggEBAA1doOaVuoGkOF8z BGBSAD5mFpJA3UwvGoiNpKKSO45gwdItmTJHcf9glLGcVaYb9+HO+T7uNTcc+UPR XV+RKwB4YswdhMcP90dsG5WUQMJRQzUwb2wzp0kzBSl6DG8w3fslKMONB9mfG76d GeWnxOAgkjmwRS4Wt0BfxHDrYRUPtl1WY2uHujJFficQG6Bi1NeY6iHZtSMwWdDB cL8ogbnNRfkULUEyDSl6+9MY7QAZRpbSqnKoCIacP+9qv0QuVrIJoE0uTDngL78n HRWMhjo/Sn/RJnhrRYpPDxeeMByrHWH/byxfWvqVdML7U7tRlo2bl13VxWAH9BFl PDnhyzE= -----END CERTIFICATE-----Generated at Sat Apr 5 01:50:37 2025 by rpki-client