$ rpki-client -vvf rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/A699CC5408C711F0A36DEF53C4F9AE02.roa File: A699CC5408C711F0A36DEF53C4F9AE02.roa (raw, json) Hash identifier: 4Gb0oGZj79v5ouAdIBzDqoRNpL7kau5pEssgVRcrgRI= Subject key identifier: 82:E8:E4:21:1A:A5:15:7C:9A:BD:21:7B:09:73:BB:6A:65:71:D4:94 Certificate issuer: /CN=A91B98F0/serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25 Certificate serial: 0A4F Authority key identifier: 9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/A699CC5408C711F0A36DEF53C4F9AE02.roa Signing time: Mon 24 Mar 2025 15:50:03 +0000 ROA not before: Mon 24 Mar 2025 15:50:03 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152918 IP address blocks: 103.149.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2639 (0xa4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B98F0 Validity Not Before: Mar 24 15:50:03 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67e17f2b-6ce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:36:2c:a5:8a:75:91:8e:45:d8:3e:79:ae:47: 1f:84:9d:42:4b:d2:a0:ac:ae:fa:b8:38:5c:25:cd: 5f:d1:ce:44:a2:5f:d5:68:3f:fc:6e:36:5a:68:75: 31:8e:95:49:07:a6:b5:df:03:eb:6b:0f:46:61:da: 97:4d:a0:8d:ee:0a:14:b5:25:7c:4e:d5:1e:d8:d1: 5a:34:45:ac:f1:85:50:68:23:33:c8:09:eb:59:1a: 52:bd:86:3e:58:15:2b:d1:95:3f:e4:22:c1:3b:ac: 8f:fd:a7:85:1b:3c:d6:59:2c:bf:4e:d0:87:dc:ee: e7:73:58:81:e8:98:2f:ac:1e:0a:89:a4:e2:35:97: 24:f1:72:26:29:bb:8e:48:b8:eb:d6:d2:01:6f:8e: da:e9:ac:0f:bf:10:4f:67:79:0d:99:e4:bb:a0:ab: bd:f7:bd:2d:c1:45:9d:5b:68:72:6e:12:7a:c2:e3: a7:ef:66:59:f0:15:81:cf:fa:14:c2:5f:91:39:53: db:9e:8b:17:6f:50:bb:8a:3d:08:e3:24:cf:01:b4: 99:6f:fc:0d:88:4a:71:90:de:63:69:52:1c:a6:29: f3:75:42:25:64:ab:de:b1:26:d5:46:73:ad:b6:71: a7:db:8b:61:2f:f8:ae:b9:7a:06:01:eb:ef:af:97: d3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E8:E4:21:1A:A5:15:7C:9A:BD:21:7B:09:73:BB:6A:65:71:D4:94 X509v3 Authority Key Identifier: keyid:9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/A699CC5408C711F0A36DEF53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.144.0/24 Signature Algorithm: sha256WithRSAEncryption 71:72:80:cb:40:2c:20:32:35:0c:8b:52:ad:7a:f4:00:44:a5: 06:f2:a9:34:ad:31:97:98:15:61:90:a2:38:b2:10:dc:ea:15: 34:1f:00:6d:78:b8:67:d5:ee:52:46:f1:af:05:d5:79:29:99: be:71:2b:cd:db:35:9f:f6:f0:c0:2b:35:5d:42:c3:53:68:fd: ae:76:81:83:05:ec:da:2c:15:e1:52:76:1a:6a:b1:56:6f:27: 15:3d:69:0c:3d:43:c3:74:b6:82:58:0f:a4:c8:99:6d:25:83: f9:91:86:8d:0c:60:09:fd:20:e1:e4:44:8a:ba:33:88:35:c4: 06:23:46:9c:6b:c3:8f:b6:24:fb:b7:b9:64:40:7e:d9:cf:d0: 84:bf:b5:ce:67:f3:00:8a:58:35:c5:96:e9:73:f5:61:ff:f0: 87:99:62:b0:9a:91:45:e7:d6:b8:e9:6d:46:0e:40:ff:f7:07: c2:a7:3e:25:2d:af:03:8f:35:b3:64:ab:9b:9a:08:18:8f:b8: 97:23:1a:a1:9b:8e:a0:10:83:43:49:be:b8:85:6f:68:1d:f2: 58:62:ec:0b:57:3b:51:cc:93:dd:cb:55:25:93:2b:35:f6:5e: ed:a4:86:01:88:dc:39:79:a8:0a:5d:9a:5e:70:28:34:96:e6: 91:44:c8:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk4RjAxMTAvBgNVBAUTKDlFRDJFMUEyNDA1Qzk5RUU3NUU3QzM5MDNERjcyNDBD QUFBQkZCMjUwHhcNMjUwMzI0MTU1MDAzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxN2YyYi02Y2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDYspYp1kY5F2D55rkcfhJ1CS9KgrK76uDhcJc1f0c5Eol/VaD/8bjZaaHUx jpVJB6a13wPraw9GYdqXTaCN7goUtSV8TtUe2NFaNEWs8YVQaCMzyAnrWRpSvYY+ WBUr0ZU/5CLBO6yP/aeFGzzWWSy/TtCH3O7nc1iB6JgvrB4KiaTiNZck8XImKbuO SLjr1tIBb47a6awPvxBPZ3kNmeS7oKu9970twUWdW2hybhJ6wuOn72ZZ8BWBz/oU wl+ROVPbnosXb1C7ij0I4yTPAbSZb/wNiEpxkN5jaVIcpinzdUIlZKvesSbVRnOt tnGn24thL/iuuXoGAevvr5fTmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFILo5CEa pRV8mr0hewlzu2plcdSUMB8GA1UdIwQYMBaAFJ7S4aJAXJnudefDkD33JAyqq/sl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOThGMC84QTFBRTFGNDY3 MkMxMUVBODM5M0RGMjVDNEY5QUUwMi9udExob2tCY21lNTE1OE9RUGZja0RLcXIt eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250TGhva0JjbWU1MTU4T1FQZmNrREtxci15VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjk4RjAvOEExQUUxRjQ2NzJDMTFFQTgzOTNERjI1QzRGOUFFMDIvQTY5OUNDNTQw OEM3MTFGMEEzNkRFRjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlZAwDQYJKoZIhvcNAQELBQADggEBAHFygMtALCAyNQyL Uq169ABEpQbyqTStMZeYFWGQojiyENzqFTQfAG14uGfV7lJG8a8F1Xkpmb5xK83b NZ/28MArNV1Cw1No/a52gYMF7NosFeFSdhpqsVZvJxU9aQw9Q8N0toJYD6TImW0l g/mRho0MYAn9IOHkRIq6M4g1xAYjRpxrw4+2JPu3uWRAftnP0IS/tc5n8wCKWDXF lulz9WH/8IeZYrCakUXn1rjpbUYOQP/3B8KnPiUtrwOPNbNkq5uaCBiPuJcjGqGb jqAQg0NJvriFb2gd8lhi7AtXO1HMk93LVSWTKzX2Xu2khgGI3Dl5qApdml5wKDSW 5pFEyNM= -----END CERTIFICATE-----Generated at Sun Apr 6 12:58:40 2025 by rpki-client