$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/EB9F5762EE8F11EF98C58C75C4F9AE02.roa File: EB9F5762EE8F11EF98C58C75C4F9AE02.roa (raw, json) Hash identifier: ScqtXrKQFBst0F27eHzdcS8cxxg6r7Zs+kEeCrfoHcE= Subject key identifier: 16:EF:88:1F:84:1C:2A:51:26:4A:79:B9:75:9E:4C:44:F9:CC:8A:77 Certificate issuer: /CN=A91B7691/serialNumber=EC0C9A58CB0ACD4273B45E1B91813BFFFFD08140 Certificate serial: 01A6 Authority key identifier: EC:0C:9A:58:CB:0A:CD:42:73:B4:5E:1B:91:81:3B:FF:FF:D0:81:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AyaWMsKzUJztF4bkYE7___QgUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/EB9F5762EE8F11EF98C58C75C4F9AE02.roa Signing time: Wed 19 Feb 2025 07:06:42 +0000 ROA not before: Wed 19 Feb 2025 07:06:42 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 135772 IP address blocks: 14.192.52.0/22 maxlen: 24 103.54.230.0/23 maxlen: 24 103.68.216.0/22 maxlen: 24 2001:df6:6b00::/48 maxlen: 48 2400:cc60::/32 maxlen: 36 2407:a8c0::/32 maxlen: 36 2407:a8c0::/33 maxlen: 39 2407:a8c0::/34 maxlen: 40 2407:a8c0:4000::/36 maxlen: 40 2407:a8c0:5000::/39 maxlen: 40 2407:a8c0:5300::/40 maxlen: 40 2407:a8c0:5400::/38 maxlen: 40 2407:a8c0:5800::/37 maxlen: 40 2407:a8c0:6000::/35 maxlen: 40 2407:a8c0:8000::/34 maxlen: 40 2407:a8c0:c000::/35 maxlen: 40 2407:a8c0:e000::/36 maxlen: 40 2407:a8c0:f000::/37 maxlen: 37 2407:a8c0:f000::/38 maxlen: 38 2407:a8c0:f000::/39 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.crl rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AyaWMsKzUJztF4bkYE7___QgUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7691 Validity Not Before: Feb 19 07:06:42 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b58302-8d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6c:1f:de:8a:9c:99:5c:b5:7a:0a:10:d6:5a: 2b:06:1d:33:3b:82:61:ed:d2:4b:c7:ff:11:e2:de: 29:53:1b:aa:e7:08:30:aa:cc:54:45:50:79:89:08: 1c:25:81:c3:15:5c:51:22:01:de:d4:eb:e4:39:ef: a9:dd:d6:66:12:76:e7:8e:c5:1b:71:ab:2f:79:7b: 0f:b8:f5:f6:e3:c5:fb:4c:ab:a8:a3:c5:17:97:bb: 9a:a5:ee:f7:fb:d0:a0:57:a6:35:84:4d:45:63:eb: 37:04:af:3f:f8:90:f9:2f:7f:8c:c8:b7:6f:30:91: 9b:8b:cd:7a:26:24:d4:62:3a:4a:a4:f8:51:97:77: bb:41:73:91:9c:11:14:5c:15:fc:9b:fd:a1:96:8f: 4b:2d:73:ee:c2:5a:7e:53:44:48:8c:0f:be:10:24: c3:04:ba:bc:da:b9:c9:7a:a6:fb:ed:90:68:f5:5e: cb:22:05:4f:a1:d0:e5:62:14:92:94:2b:e4:dd:37: ac:4f:7c:bb:a3:96:b4:b6:f9:4a:c2:cc:31:27:55: 80:92:3f:4e:41:0c:f9:2c:0b:6b:e1:a8:70:15:cc: 88:b1:63:15:8f:b8:01:e3:a0:83:13:9f:03:3b:d6: 6f:0d:7f:13:dc:dc:6a:24:36:99:e3:e7:9e:1f:81: 67:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:EF:88:1F:84:1C:2A:51:26:4A:79:B9:75:9E:4C:44:F9:CC:8A:77 X509v3 Authority Key Identifier: keyid:EC:0C:9A:58:CB:0A:CD:42:73:B4:5E:1B:91:81:3B:FF:FF:D0:81:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AyaWMsKzUJztF4bkYE7___QgUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/EB9F5762EE8F11EF98C58C75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.52.0/22 103.54.230.0/23 103.68.216.0/22 IPv6: 2001:df6:6b00::/48 2400:cc60::/32 2407:a8c0::/32 Signature Algorithm: sha256WithRSAEncryption 22:46:30:c6:72:f3:f7:58:2e:a1:42:1f:50:dd:8f:7a:d5:d1: d0:14:36:5a:1c:71:16:11:c2:b0:82:91:46:a5:95:57:3a:34: 11:16:e5:ea:9c:61:f2:39:d3:6e:44:55:d5:68:1e:6a:6e:73: 35:27:8e:61:8f:b8:39:02:82:c1:c6:ba:8e:97:76:a9:4c:e2: 05:0b:20:fe:4c:00:bd:52:fd:9e:01:23:6d:8e:24:29:07:49: ca:b4:6f:92:d8:d0:e4:e0:d8:2b:65:18:bf:e7:3b:42:98:1d: 2f:06:b7:b2:5e:51:e3:ef:cc:d9:c9:9f:e4:ca:7c:73:12:cf: 0e:b0:94:f4:75:60:43:3f:42:93:43:72:47:1d:3b:11:dd:9c: 56:e6:80:45:c9:9b:e6:d1:6e:78:81:03:78:ac:db:a1:0e:a4: ae:26:9a:3c:ae:45:2d:b7:a6:b5:6a:05:65:e7:57:78:07:07: 28:a5:f8:06:e6:11:20:27:f3:93:4f:1b:d5:f6:8b:66:9d:e6: 69:cf:f6:8e:2f:22:bc:a0:4c:3f:54:25:d0:2e:aa:fe:e1:bd: 10:33:b5:a9:20:d6:e5:f7:4d:74:ef:59:cd:66:24:e0:9c:ed: 7a:42:16:f6:f3:11:f0:ca:02:25:63:49:c8:28:e1:c7:f4:62: f7:d9:8a:9b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc2OTExMTAvBgNVBAUTKEVDMEM5QTU4Q0IwQUNENDI3M0I0NUUxQjkxODEzQkZG RkZEMDgxNDAwHhcNMjUwMjE5MDcwNjQyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I1ODMwMi04ZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Gwf3oqcmVy1egoQ1lorBh0zO4Jh7dJLx/8R4t4pUxuq5wgwqsxURVB5iQgc JYHDFVxRIgHe1OvkOe+p3dZmEnbnjsUbcasveXsPuPX248X7TKuoo8UXl7uape73 +9CgV6Y1hE1FY+s3BK8/+JD5L3+MyLdvMJGbi816JiTUYjpKpPhRl3e7QXORnBEU XBX8m/2hlo9LLXPuwlp+U0RIjA++ECTDBLq82rnJeqb77ZBo9V7LIgVPodDlYhSS lCvk3TesT3y7o5a0tvlKwswxJ1WAkj9OQQz5LAtr4ahwFcyIsWMVj7gB46CDE58D O9ZvDX8T3NxqJDaZ4+eeH4FnSwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFBbviB+E HCpRJkp5uXWeTET5zIp3MB8GA1UdIwQYMBaAFOwMmljLCs1Cc7ReG5GBO///0IFA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzY5MS84MjE2NEQwNDdE NTkxMUVEQkVCNTVEMEFDNEY5QUUwMi83QXlhV01zS3pVSnp0RjRia1lFN19fX1Fn VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdBeWFXTXNLelVKenRGNGJrWUU3X19fUWdVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc2OTEvODIxNjREMDQ3RDU5MTFFREJFQjU1RDBBQzRGOUFFMDIvRUI5RjU3NjJF RThGMTFFRjk4QzU4Qzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MBgEAgABMBIDBAIOwDQDBAFnNuYDBAJnRNgwHQQCAAIwFwMHACABDfZrAAMF ACQAzGADBQAkB6jAMA0GCSqGSIb3DQEBCwUAA4IBAQAiRjDGcvP3WC6hQh9Q3Y96 1dHQFDZaHHEWEcKwgpFGpZVXOjQRFuXqnGHyOdNuRFXVaB5qbnM1J45hj7g5AoLB xrqOl3apTOIFCyD+TAC9Uv2eASNtjiQpB0nKtG+S2NDk4NgrZRi/5ztCmB0vBrey XlHj78zZyZ/kynxzEs8OsJT0dWBDP0KTQ3JHHTsR3ZxW5oBFyZvm0W54gQN4rNuh DqSuJpo8rkUtt6a1agVl51d4BwcopfgG5hEgJ/OTTxvV9otmneZpz/aOLyK8oEw/ VCXQLqr+4b0QM7WpINbl901071nNZiTgnO16Qhb28xHwygIlY0nIKOHH9GL32Yqb -----END CERTIFICATE-----Generated at Sat Apr 5 10:32:05 2025 by rpki-client