$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa File: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (raw, json) Hash identifier: zMUCXonIy5tOWaMiCq30fCZFtIY4G0iHQ+o2rUhkbic= Subject key identifier: 43:4E:50:4F:C3:4B:35:F9:44:7D:B0:96:3A:AE:64:E5:28:06:61:0B Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 029B Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa Signing time: Tue 28 Jan 2025 04:52:19 +0000 ROA not before: Tue 28 Jan 2025 04:52:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132335 IP address blocks: 45.252.190.0/24 maxlen: 24 103.205.140.0/24 maxlen: 24 103.205.141.0/24 maxlen: 24 103.205.142.0/24 maxlen: 24 103.205.143.0/24 maxlen: 24 103.217.220.0/24 maxlen: 24 103.217.221.0/24 maxlen: 24 103.217.222.0/24 maxlen: 24 103.217.223.0/24 maxlen: 24 103.227.1.0/24 maxlen: 24 103.247.19.0/24 maxlen: 24 202.94.172.0/24 maxlen: 24 202.94.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587 Validity Not Before: Jan 28 04:52:19 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67986282-bea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cc:30:53:fa:ee:3a:d1:e3:53:56:e5:ba:45: 82:53:ae:ff:66:35:d4:76:fe:6e:62:39:13:ec:b3: b7:c7:2c:27:9a:3f:a0:43:da:af:70:03:c7:ce:38: b4:e3:a5:71:60:1a:7a:ae:cb:39:c1:6e:90:59:3a: d6:02:d0:2f:a8:da:c3:c0:a4:c2:d5:41:de:3a:d6: 61:b4:98:8d:3d:54:32:89:04:b0:2d:bc:76:0f:e6: c7:95:12:0d:dc:da:80:8a:73:fb:94:7b:e6:6d:74: ef:c3:96:5d:f3:14:44:b7:77:50:e7:01:7a:b4:bc: a8:8b:f9:13:75:4e:95:61:9a:83:35:be:ad:03:42: c6:57:a1:fd:66:3d:d1:40:7e:22:c6:9e:f7:ea:36: 45:e8:52:86:5e:bb:3f:71:1f:c8:ab:60:a4:f7:dd: 68:99:ef:c5:a2:f2:c5:c5:7f:7b:e4:a3:69:04:7a: ff:7b:af:c5:e9:e6:0c:a8:12:fb:ee:54:e0:95:bc: 21:db:ae:07:bf:b0:c3:4d:6e:2a:3b:76:7d:15:6f: 78:9a:ec:70:6f:05:95:ff:98:6b:cb:81:7b:b7:39: 99:60:6b:ac:2c:76:12:a5:07:7a:a3:6c:ed:ce:37: a2:f9:d9:59:b5:9f:05:37:96:97:e0:93:bb:4b:6c: e3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4E:50:4F:C3:4B:35:F9:44:7D:B0:96:3A:AE:64:E5:28:06:61:0B X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.252.190.0/24 103.205.140.0/22 103.217.220.0/22 103.227.1.0/24 103.247.19.0/24 202.94.172.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:2d:32:ed:63:a2:6e:b7:8c:c3:3d:e6:70:6f:3b:14:ec:86: b3:bf:95:97:1d:13:b6:20:e6:e3:0e:59:61:53:86:81:fd:10: 76:8e:e7:69:9c:33:cf:4d:f5:7a:a9:0f:8e:c7:a0:ce:9f:a3: bb:28:3d:19:3d:d3:f8:a5:e9:3b:37:05:f9:0a:4b:fe:80:de: eb:76:b8:57:3b:d7:a5:5a:ed:6a:7a:d0:c1:77:65:27:7c:17: fa:c7:85:7e:3d:ee:65:25:02:c6:9d:ce:52:86:cb:03:ac:c7: c1:c7:3f:00:ee:c4:1f:7e:02:26:ce:cd:80:36:c0:d4:54:e4: 4f:df:25:5b:f7:70:c6:15:f5:b4:9c:27:9b:3e:d9:6e:c4:00: 2f:01:17:ef:98:75:66:d5:2b:9a:28:4d:a0:df:49:9f:a5:5d: 51:0e:19:59:44:12:d5:87:72:be:95:d1:c1:91:60:a7:d6:a3: e0:ad:80:3a:76:e6:34:5e:f1:aa:a3:03:17:99:ca:06:6c:38: e2:3c:78:6b:c1:f2:a0:aa:ff:0d:cd:0d:9e:82:18:16:d5:14: 61:e1:5a:d6:79:1c:62:ed:c6:2d:75:52:8f:12:c0:04:18:3d: 7c:d5:36:d9:58:28:58:29:d0:b7:f1:74:93:5a:18:7c:d4:ea: 10:27:2a:df -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwMTI4MDQ1MjE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk4NjI4Mi1iZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxswwU/ruOtHjU1blukWCU67/ZjXUdv5uYjkT7LO3xywnmj+gQ9qvcAPHzji0 46VxYBp6rss5wW6QWTrWAtAvqNrDwKTC1UHeOtZhtJiNPVQyiQSwLbx2D+bHlRIN 3NqAinP7lHvmbXTvw5Zd8xREt3dQ5wF6tLyoi/kTdU6VYZqDNb6tA0LGV6H9Zj3R QH4ixp736jZF6FKGXrs/cR/Iq2Ck991ome/FovLFxX975KNpBHr/e6/F6eYMqBL7 7lTglbwh264Hv7DDTW4qO3Z9FW94muxwbwWV/5hry4F7tzmZYGusLHYSpQd6o2zt zjei+dlZtZ8FN5aX4JO7S2zjDwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFENOUE/D SzX5RH2wljquZOUoBmELMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTA2NDdGMkVB MTRBMTFFRDhGRkJBNjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAAt/L4DBAJnzYwDBAJn2dwDBABn4wEDBABn9xMDBAHKXqww DQYJKoZIhvcNAQELBQADggEBAG8tMu1jom63jMM95nBvOxTshrO/lZcdE7Yg5uMO WWFThoH9EHaO52mcM89N9XqpD47HoM6fo7soPRk90/il6Ts3BfkKS/6A3ut2uFc7 16Va7Wp60MF3ZSd8F/rHhX497mUlAsadzlKGywOsx8HHPwDuxB9+AibOzYA2wNRU 5E/fJVv3cMYV9bScJ5s+2W7EAC8BF++YdWbVK5ooTaDfSZ+lXVEOGVlEEtWHcr6V 0cGRYKfWo+CtgDp25jRe8aqjAxeZygZsOOI8eGvB8qCq/w3NDZ6CGBbVFGHhWtZ5 HGLtxi11Uo8SwAQYPXzVNtlYKFgp0LfxdJNaGHzU6hAnKt8= -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:02 2025 by rpki-client