$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa File: 5AF669B4FFC811E9B70CA176C4F9AE02.roa (raw, json) Hash identifier: uuWn9T24f2Om0t7b8gCBcBAECx+g28MfpKjTQARLOK8= Subject key identifier: 52:2D:80:7F:E1:86:DF:D8:26:5D:7E:87:95:DA:F0:91:60:C1:8B:22 Certificate issuer: /CN=A91B4D1F/serialNumber=24F8CA0BE08E1C61EC8F7B7A8A9C5CC53DD14534 Certificate serial: 0C1F Authority key identifier: 24:F8:CA:0B:E0:8E:1C:61:EC:8F:7B:7A:8A:9C:5C:C5:3D:D1:45:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa Signing time: Sat 18 Jan 2025 10:38:11 +0000 ROA not before: Sat 18 Jan 2025 10:38:11 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136514 IP address blocks: 103.91.128.0/22 maxlen: 24 123.253.36.0/22 maxlen: 24 2401:6c0::/32 maxlen: 32 2401:6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.crl rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4D1F Validity Not Before: Jan 18 10:38:11 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=678b8492-ab9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:68:7f:18:08:d4:01:e1:c3:ea:3d:88:0a:5f: 8d:ee:74:8b:eb:1e:03:6b:ec:8e:b0:90:45:75:3a: 44:b9:95:22:9b:83:ec:57:f3:17:92:2e:d2:ef:d1: 73:58:88:be:75:d7:85:a6:3a:65:f1:86:7d:3d:bc: 0f:7e:7d:45:e3:5a:98:99:49:67:a3:28:25:07:d8: 4e:50:7b:fe:7c:c5:b0:a4:4e:06:2c:76:bd:92:1d: b5:08:61:5d:7d:e6:9a:da:90:fa:45:05:f1:21:ad: 02:30:7d:dd:f5:c0:f1:58:d4:32:68:0a:9a:04:ea: f0:97:70:da:cb:8c:42:64:5f:ab:57:8a:93:28:12: 75:1a:2c:b9:bc:89:09:38:e3:b9:71:93:87:b4:9c: c9:1c:96:2f:87:b1:df:f1:b2:3d:78:6b:37:ac:58: 67:63:b9:42:94:0f:f5:72:dd:44:46:ab:de:d1:64: 90:93:f5:1d:c4:e2:5a:ca:fa:36:13:a1:ea:d2:28: e6:c0:0e:cb:d3:46:0a:76:39:22:1d:30:1e:d1:d8: da:2d:df:80:28:5d:cc:36:00:5f:d0:a4:57:4b:9d: 2e:49:be:bb:1a:74:ff:cd:95:5c:d3:1c:c5:a5:21: db:7b:0d:0e:7f:39:15:b3:c7:d9:f1:4a:e8:0e:8b: 10:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:2D:80:7F:E1:86:DF:D8:26:5D:7E:87:95:DA:F0:91:60:C1:8B:22 X509v3 Authority Key Identifier: keyid:24:F8:CA:0B:E0:8E:1C:61:EC:8F:7B:7A:8A:9C:5C:C5:3D:D1:45:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.128.0/22 123.253.36.0/22 IPv6: 2401:6c0::/32 Signature Algorithm: sha256WithRSAEncryption 2b:93:8b:ab:c4:8a:f8:ef:51:b7:ef:08:0a:30:d3:c3:c3:99: 2f:3d:9e:a6:bc:20:a0:14:62:cc:2a:b9:66:f3:de:16:10:40: 35:10:15:c8:88:1a:19:ee:55:b6:d8:b8:a1:99:a0:c0:98:7b: fc:e5:3a:2d:0f:7b:ab:bd:1a:1b:ca:6f:23:d9:ba:c8:8a:5d: dd:e1:57:8c:28:a3:1e:d0:47:80:37:84:12:21:f6:fa:da:67: 84:54:6c:a6:a1:b4:c4:82:7a:f2:a3:e9:4e:97:70:5b:31:8f: ae:10:0c:b9:bb:de:cc:e3:7e:4f:37:15:67:95:b7:8c:8c:09: 57:c2:f3:86:4c:b7:7a:a6:0c:3b:06:85:e0:8f:72:b7:5d:04: a0:cc:46:02:c7:76:d5:54:d2:67:68:5e:5d:54:e3:4e:07:31: c8:aa:3a:b8:ff:69:f4:58:4f:98:54:3a:63:5f:38:fe:c1:54: 23:8b:aa:3a:54:60:ea:b4:6e:50:99:dc:2d:82:d6:50:8d:59: ad:1f:b3:48:a4:07:a4:aa:4c:96:fd:3c:51:e7:53:95:fd:e5: 1e:9a:18:85:02:48:f3:f6:72:11:9a:0b:4e:c6:c2:9d:7b:f8: 7e:78:d2:d1:46:6f:35:71:11:5a:0a:91:4a:9a:81:4b:2b:95: 9b:5b:cf:43 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjREMUYxMTAvBgNVBAUTKDI0RjhDQTBCRTA4RTFDNjFFQzhGN0I3QThBOUM1Q0M1 M0REMTQ1MzQwHhcNMjUwMTE4MTAzODExWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhiODQ5Mi1hYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2h/GAjUAeHD6j2ICl+N7nSL6x4Da+yOsJBFdTpEuZUim4PsV/MXki7S79Fz WIi+ddeFpjpl8YZ9PbwPfn1F41qYmUlnoyglB9hOUHv+fMWwpE4GLHa9kh21CGFd feaa2pD6RQXxIa0CMH3d9cDxWNQyaAqaBOrwl3Day4xCZF+rV4qTKBJ1Giy5vIkJ OOO5cZOHtJzJHJYvh7Hf8bI9eGs3rFhnY7lClA/1ct1ERqve0WSQk/UdxOJayvo2 E6Hq0ijmwA7L00YKdjkiHTAe0djaLd+AKF3MNgBf0KRXS50uSb67GnT/zZVc0xzF pSHbew0OfzkVs8fZ8UroDosQWwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFItgH/h ht/YJl1+h5Xa8JFgwYsiMB8GA1UdIwQYMBaAFCT4ygvgjhxh7I97eoqcXMU90UU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEQxRi9CMzM0MjkxNkZG QzUxMUU5QTk2Q0QwNzBDNEY5QUUwMi9KUGpLQy1DT0hHSHNqM3Q2aXB4Y3hUM1JS VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pQaktDLUNPSEdIc2ozdDZpcHhjeFQzUlJUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjREMUYvQjMzNDI5MTZGRkM1MTFFOUE5NkNEMDcwQzRGOUFFMDIvNUFGNjY5QjRG RkM4MTFFOUI3MENBMTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnW4ADBAJ7/SQwDQQCAAIwBwMFACQBBsAwDQYJKoZIhvcN AQELBQADggEBACuTi6vEivjvUbfvCAow08PDmS89nqa8IKAUYswquWbz3hYQQDUQ FciIGhnuVbbYuKGZoMCYe/zlOi0Pe6u9GhvKbyPZusiKXd3hV4woox7QR4A3hBIh 9vraZ4RUbKahtMSCevKj6U6XcFsxj64QDLm73szjfk83FWeVt4yMCVfC84ZMt3qm DDsGheCPcrddBKDMRgLHdtVU0mdoXl1U404HMciqOrj/afRYT5hUOmNfOP7BVCOL qjpUYOq0blCZ3C2C1lCNWa0fs0ikB6SqTJb9PFHnU5X95R6aGIUCSPP2chGaC07G wp17+H540tFGbzVxEVoKkUqagUsrlZtbz0M= -----END CERTIFICATE-----Generated at Sat Apr 5 19:34:05 2025 by rpki-client