$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa File: 4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa (raw, json) Hash identifier: AnEWPP8X1N6dt7l7V3XsTmB0MKThvDc5dt35NbkXnzs= Subject key identifier: 72:9E:62:1B:12:FD:09:3B:1F:96:AC:70:00:C3:28:F8:5F:71:FE:03 Certificate issuer: /CN=A91B9008/serialNumber=6CBB6767F63A0CB9B7A74914B4A657417E4C578A Certificate serial: E7 Authority key identifier: 6C:BB:67:67:F6:3A:0C:B9:B7:A7:49:14:B4:A6:57:41:7E:4C:57:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa Signing time: Tue 25 Mar 2025 04:41:02 +0000 ROA not before: Tue 25 Mar 2025 04:41:02 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140089 IP address blocks: 103.148.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.crl rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9008 Validity Not Before: Mar 25 04:41:02 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e233de-6bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d2:1c:a4:50:71:13:86:9f:4a:56:f3:82:67: 0e:1d:a2:1c:2a:5c:ba:87:8e:6e:0d:29:24:e7:38: 67:6a:1e:ff:42:98:e5:a1:01:37:99:10:7e:63:58: 21:8b:b1:a2:37:3e:c1:60:2b:0f:61:1a:06:f2:af: e6:4a:b6:4c:eb:89:0c:b5:f5:ab:1e:44:c5:d2:16: d9:10:56:ce:35:eb:c3:b9:22:eb:ee:a5:3b:e4:33: 2c:84:a4:bc:89:e6:51:fc:1b:cb:2b:32:90:1f:60: 9e:71:60:90:58:e5:fb:cc:c8:f1:e2:be:5f:7f:3b: ca:a7:8d:ae:63:07:0e:5a:a3:a8:29:bf:86:74:79: 9e:d8:48:0f:74:d0:73:80:0a:90:b9:aa:f9:19:44: 48:81:fd:9d:45:f5:80:1c:35:e9:35:97:e3:ad:49: 38:45:00:c8:d5:bc:79:d3:9f:a4:3d:2d:7c:b3:e4: 05:5b:24:fb:3a:e8:b8:a3:74:d1:eb:56:80:4d:40: 7f:c7:d2:13:78:37:24:9c:15:22:38:b0:55:c0:e2: b1:a3:3c:96:50:ca:7d:b9:0e:72:f3:42:6e:56:26: 27:96:bb:60:85:67:f7:25:15:b6:6c:47:41:4c:31: 05:75:c2:0e:6c:26:40:66:72:7a:1a:d8:56:db:7d: da:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:9E:62:1B:12:FD:09:3B:1F:96:AC:70:00:C3:28:F8:5F:71:FE:03 X509v3 Authority Key Identifier: keyid:6C:BB:67:67:F6:3A:0C:B9:B7:A7:49:14:B4:A6:57:41:7E:4C:57:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.90.0/24 Signature Algorithm: sha256WithRSAEncryption 87:83:e5:a8:ea:14:57:05:94:37:08:37:56:c9:eb:38:16:e4: 63:6d:db:31:ac:64:3e:c1:a9:77:81:7c:2d:2e:6a:1b:e1:6b: 5e:b1:bd:63:7e:0c:15:60:a9:e2:3a:87:4a:01:fc:5d:df:21: a9:36:0e:b9:ca:53:27:c4:fc:56:f8:af:f9:9e:ac:d9:b0:36: e9:53:f7:4b:f7:31:72:04:6d:5c:f9:0a:7f:fc:77:43:86:cd: 21:45:05:fa:2c:7e:c9:47:c7:59:db:99:6a:53:f0:6b:1a:43: 62:a9:e3:61:43:99:53:8b:b6:cb:35:49:78:14:29:cc:d3:d6: f4:ce:06:08:5e:22:c5:c7:67:ec:8c:26:9a:4f:7b:8f:66:64: 51:0c:79:09:57:b0:80:3b:da:1f:7d:1d:6a:f9:7b:80:92:87: 75:fc:6b:68:aa:20:ea:1e:8a:4f:62:b5:2b:d3:9c:93:f2:89: 8b:e0:41:a1:7c:15:16:37:c2:b7:e1:dc:3a:7f:f7:1d:ba:90: a8:e2:4f:ca:7f:29:0f:5c:cc:ae:03:db:a3:9c:99:72:a6:69: 60:aa:c5:28:70:79:ef:19:bf:98:19:c7:be:2d:0d:bf:21:87: db:67:a8:94:0f:a3:bf:91:7f:f2:2f:06:c0:71:9f:35:23:78: df:45:1a:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMDgxMTAvBgNVBAUTKDZDQkI2NzY3RjYzQTBDQjlCN0E3NDkxNEI0QTY1NzQx N0U0QzU3OEEwHhcNMjUwMzI1MDQ0MTAyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyMzNkZS02YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39IcpFBxE4afSlbzgmcOHaIcKly6h45uDSkk5zhnah7/QpjloQE3mRB+Y1gh i7GiNz7BYCsPYRoG8q/mSrZM64kMtfWrHkTF0hbZEFbONevDuSLr7qU75DMshKS8 ieZR/BvLKzKQH2CecWCQWOX7zMjx4r5ffzvKp42uYwcOWqOoKb+GdHme2EgPdNBz gAqQuar5GURIgf2dRfWAHDXpNZfjrUk4RQDI1bx505+kPS18s+QFWyT7Oui4o3TR 61aATUB/x9ITeDcknBUiOLBVwOKxozyWUMp9uQ5y80JuViYnlrtghWf3JRW2bEdB TDEFdcIObCZAZnJ6GthW233aAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHKeYhsS /Qk7H5ascADDKPhfcf4DMB8GA1UdIwQYMBaAFGy7Z2f2Ogy5t6dJFLSmV0F+TFeK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAwOC8wQThGQkIxQUI0 MzIxMUVFQTI2NDQ0MENDNEY5QUUwMi9iTHRuWl9ZNkRMbTNwMGtVdEtaWFFYNU1W NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMdG5aX1k2RExtM3Awa1V0S1pYUVg1TVY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkwMDgvMEE4RkJCMUFCNDMyMTFFRUEyNjQ0NDBDQzRGOUFFMDIvNENGREYwM0FC NERCMTFFRTlGRjZGQjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlFowDQYJKoZIhvcNAQELBQADggEBAIeD5ajqFFcFlDcI N1bJ6zgW5GNt2zGsZD7BqXeBfC0uahvha16xvWN+DBVgqeI6h0oB/F3fIak2DrnK UyfE/Fb4r/merNmwNulT90v3MXIEbVz5Cn/8d0OGzSFFBfosfslHx1nbmWpT8Gsa Q2Kp42FDmVOLtss1SXgUKczT1vTOBgheIsXHZ+yMJppPe49mZFEMeQlXsIA72h99 HWr5e4CSh3X8a2iqIOoeik9itSvTnJPyiYvgQaF8FRY3wrfh3Dp/9x26kKjiT8p/ KQ9czK4D26OcmXKmaWCqxShwee8Zv5gZx74tDb8hh9tnqJQPo7+Rf/IvBsBxnzUj eN9FGss= -----END CERTIFICATE-----Generated at Sat Apr 5 21:42:06 2025 by rpki-client