$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa File: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (raw, json) Hash identifier: eYkm574zXfPZBssf+KqgdlPvB8riPVJCVgCP7O8B6S0= Subject key identifier: 98:74:11:37:58:1D:DC:86:BC:9C:5F:07:EB:5F:96:CF:41:20:9C:DC Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 0374 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa Signing time: Tue 01 Apr 2025 01:27:10 +0000 ROA not before: Tue 01 Apr 2025 01:27:09 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141732 IP address blocks: 103.162.234.0/23 maxlen: 24 2407:1e40::/32 maxlen: 32 2407:1e40:5::/48 maxlen: 48 2407:1e40:200::/48 maxlen: 48 2407:1e40:300::/48 maxlen: 48 2407:1e40:400::/48 maxlen: 48 2407:1e40:500::/48 maxlen: 48 2407:1e40:600::/48 maxlen: 48 2407:1e40:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 00:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Apr 1 01:27:09 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb40ed-ea4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2e:cc:2d:a4:82:b4:f8:ee:5b:bc:c8:41:8c: e6:f8:ea:54:a9:cc:ed:b0:14:df:4b:1e:e6:fb:fc: 54:89:8e:a4:44:6b:90:3a:97:fa:7a:0b:ee:81:cb: eb:dc:98:a0:ad:79:6b:15:0a:c8:04:fe:e4:5a:85: ef:f3:26:2d:70:29:e0:08:1a:56:e5:de:4d:e9:47: bc:d0:60:b0:b0:7c:47:aa:09:c7:3e:d9:e5:03:10: bb:69:2b:f5:7e:96:8f:fb:cb:52:65:93:7f:a6:db: c4:c3:55:c2:6b:73:46:62:44:d8:0d:01:ef:1a:7f: e7:4d:b9:e5:3a:5b:41:7f:fb:93:0e:ed:22:c2:78: 64:3b:e4:10:c9:b8:49:d4:43:d6:8b:f0:91:f8:b0: a9:e0:ef:91:15:21:6b:76:88:d8:55:d7:2b:85:69: bd:dd:f6:c0:c0:0a:e7:d3:fe:3e:30:6b:ee:24:e3: e4:f5:3f:be:0b:28:54:c5:79:5e:33:09:08:df:96: 21:c0:fc:f0:85:f5:a7:14:a7:43:b6:b5:54:58:82: 6a:3b:fd:95:6d:cd:71:26:e7:80:18:77:22:11:71: b2:ad:6f:b7:15:85:73:bd:97:81:8e:1a:6c:12:95: 0f:56:05:b8:2e:ea:0f:80:97:c5:55:ff:c1:60:8b: 65:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:74:11:37:58:1D:DC:86:BC:9C:5F:07:EB:5F:96:CF:41:20:9C:DC X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.234.0/23 IPv6: 2407:1e40::/32 Signature Algorithm: sha256WithRSAEncryption 08:8b:b2:c4:d7:83:7a:9f:47:d5:49:a2:74:ec:33:77:e8:1c: fc:8c:b8:26:97:70:b5:87:72:f3:82:2d:34:a8:ee:25:b5:24: 2e:10:6a:2b:c0:0b:c4:32:f9:56:aa:15:c4:c7:a2:e9:e0:c1: 5c:7f:93:16:b6:e4:47:f8:5f:32:cf:3a:82:d0:2a:14:fd:5d: 4b:8e:f5:64:51:d5:f8:f2:7c:6a:04:0f:5e:59:5f:52:22:86: e0:d7:ce:1b:e7:26:b7:55:bd:58:15:be:e2:66:ba:c1:3a:cd: dc:3b:b4:b8:8d:ae:98:32:43:94:06:f2:ed:c3:30:7b:c1:91: 84:3c:d6:a3:ae:bf:5d:ad:e8:80:33:19:3c:15:8b:3b:79:5a: 5c:bf:d7:91:fd:9e:36:15:37:cf:44:22:1e:a2:3f:a5:e4:69: 80:b7:d1:20:da:11:78:b0:73:49:32:2a:a6:49:9c:e5:99:96: 4c:a8:5d:9b:68:3a:0c:a8:89:4e:da:f0:b1:75:df:9b:23:50: 42:88:51:79:fe:c0:ea:62:5e:2e:56:f6:fd:db:89:24:27:f8: ff:93:30:b9:eb:dc:4d:77:1f:ca:6a:6e:eb:6b:41:c7:ea:31: 09:02:9d:f1:4b:17:5c:ac:b5:87:e1:79:3c:db:ea:9f:9d:81: 32:43:65:39 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjUwNDAxMDEyNzA5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViNDBlZC1lYTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi7MLaSCtPjuW7zIQYzm+OpUqcztsBTfSx7m+/xUiY6kRGuQOpf6egvugcvr 3JigrXlrFQrIBP7kWoXv8yYtcCngCBpW5d5N6Ue80GCwsHxHqgnHPtnlAxC7aSv1 fpaP+8tSZZN/ptvEw1XCa3NGYkTYDQHvGn/nTbnlOltBf/uTDu0iwnhkO+QQybhJ 1EPWi/CR+LCp4O+RFSFrdojYVdcrhWm93fbAwArn0/4+MGvuJOPk9T++CyhUxXle MwkI35YhwPzwhfWnFKdDtrVUWIJqO/2Vbc1xJueAGHciEXGyrW+3FYVzvZeBjhps EpUPVgW4LuoPgJfFVf/BYItllQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJh0ETdY HdyGvJxfB+tfls9BIJzcMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEwQjkvRDEzQkVBQUFBMEZCMTFFQ0E1RDFERjVCQzRGOUFFMDIvQkNEMEY2QjBB MEZGMTFFQzkyNEQ0NDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnouowDQQCAAIwBwMFACQHHkAwDQYJKoZIhvcNAQELBQAD ggEBAAiLssTXg3qfR9VJonTsM3foHPyMuCaXcLWHcvOCLTSo7iW1JC4QaivAC8Qy +VaqFcTHoungwVx/kxa25Ef4XzLPOoLQKhT9XUuO9WRR1fjyfGoED15ZX1IihuDX zhvnJrdVvVgVvuJmusE6zdw7tLiNrpgyQ5QG8u3DMHvBkYQ81qOuv12t6IAzGTwV izt5Wly/15H9njYVN89EIh6iP6XkaYC30SDaEXiwc0kyKqZJnOWZlkyoXZtoOgyo iU7a8LF135sjUEKIUXn+wOpiXi5W9v3biSQn+P+TMLnr3E13H8pqbutrQcfqMQkC nfFLF1ystYfheTzb6p+dgTJDZTk= -----END CERTIFICATE-----Generated at Sat Apr 12 20:45:08 2025 by rpki-client