$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/207C8A52AC7611EEB465AF75C4F9AE02.roa File: 207C8A52AC7611EEB465AF75C4F9AE02.roa (raw, json) Hash identifier: 1cQQOK0ed7AR7pXnZkKn7gGxMj9Q4EK17LvtfvZmkck= Subject key identifier: DA:F9:00:37:40:2D:D3:2E:A8:E3:95:77:C7:E4:C0:B2:09:B9:22:2B Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: 014A Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/207C8A52AC7611EEB465AF75C4F9AE02.roa Signing time: Wed 02 Apr 2025 19:04:28 +0000 ROA not before: Wed 02 Apr 2025 19:04:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151340 IP address blocks: 103.204.32.0/24 maxlen: 24 103.204.33.0/24 maxlen: 24 2001:df2:7840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2 Validity Not Before: Apr 2 19:04:28 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67ed8a3b-096b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7d:00:8e:53:a1:00:26:08:ef:32:e5:e3:74: f5:43:9f:df:7d:2d:bc:ef:64:aa:b0:0f:2c:c8:78: ca:4e:f6:75:1b:60:82:af:15:b0:60:9c:f1:de:54: 62:87:3f:b4:b4:2d:05:cb:d7:fe:5f:e2:83:cc:5b: f9:8e:08:37:c5:87:8f:4b:c5:62:98:dd:56:3d:f7: a9:6a:94:da:e4:3a:4e:68:d6:cf:d8:41:d3:c4:5b: ff:57:6e:b3:1e:67:8d:2b:27:d0:ae:1e:b7:48:8f: b5:2d:f7:1b:93:49:ad:fe:04:fd:75:95:70:27:40: 8c:ef:ba:36:32:18:61:73:aa:2e:90:12:e8:fc:f7: b5:14:e4:8c:f6:75:82:c7:29:35:b1:4f:5b:1d:7b: 72:6d:ff:eb:e9:14:2b:a5:a9:8a:23:e3:8d:44:df: f4:46:ab:12:a5:d4:b3:62:81:58:9b:19:c8:e5:70: 51:72:fb:90:c4:3b:96:d9:75:3e:83:ea:c6:05:f1: 54:c0:88:0a:4d:67:88:53:92:b7:52:f1:7b:a5:88: 26:12:da:f9:81:41:89:8b:26:e3:03:59:4d:ca:78: ae:58:db:4f:39:5f:90:6e:fb:d5:df:85:55:79:7a: 11:11:36:56:6c:c3:35:0c:08:44:3b:04:dd:46:39: 08:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F9:00:37:40:2D:D3:2E:A8:E3:95:77:C7:E4:C0:B2:09:B9:22:2B X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/207C8A52AC7611EEB465AF75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.32.0/23 IPv6: 2001:df2:7840::/48 Signature Algorithm: sha256WithRSAEncryption 13:1d:79:b1:f6:91:0d:15:1d:c3:f1:48:9d:14:7c:05:d3:98: 33:b3:9d:a9:c2:0f:3f:7e:dd:09:da:1c:50:d9:92:b7:78:d4: 85:80:00:9c:52:7c:1c:51:8a:95:70:94:10:47:6d:6b:fd:a1: e3:4b:ec:61:cc:ef:2a:de:51:5b:f2:10:c4:2a:7c:1f:61:3c: 13:76:37:8e:91:01:fe:78:66:ad:6f:fc:91:80:9e:20:09:05: 59:cf:5a:5a:44:30:c6:6c:25:54:19:de:ab:d9:4e:1e:18:1f: 8f:f3:13:a9:04:fb:80:eb:c5:fc:c8:7d:79:3c:83:ad:b2:35: b8:90:3f:44:10:83:08:2f:58:8f:15:87:35:25:34:80:b1:59: a2:f8:17:91:e5:d7:2f:89:ed:5d:ff:75:a8:6e:3e:2f:f1:cf: 8c:b4:d7:c4:3c:7c:b0:0a:7e:60:4a:38:e6:ff:f4:1a:2b:6b: 9a:82:67:ef:8b:aa:56:60:9b:50:8a:a9:1e:e2:63:77:82:14: 70:0a:27:ea:96:23:fd:5d:b7:07:8e:df:06:b8:fe:97:e6:f8: e8:b5:9d:56:16:a1:34:ba:91:fa:04:37:5d:ce:7b:db:c2:4b: 57:c8:c4:b2:7c:9a:96:00:0a:13:2a:8d:50:af:ce:55:3b:1f: 45:a2:2d:0e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjUwNDAyMTkwNDI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOGEzYi0wOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw30AjlOhACYI7zLl43T1Q5/ffS2872SqsA8syHjKTvZ1G2CCrxWwYJzx3lRi hz+0tC0Fy9f+X+KDzFv5jgg3xYePS8VimN1WPfepapTa5DpOaNbP2EHTxFv/V26z HmeNKyfQrh63SI+1Lfcbk0mt/gT9dZVwJ0CM77o2Mhhhc6oukBLo/Pe1FOSM9nWC xyk1sU9bHXtybf/r6RQrpamKI+ONRN/0RqsSpdSzYoFYmxnI5XBRcvuQxDuW2XU+ g+rGBfFUwIgKTWeIU5K3UvF7pYgmEtr5gUGJiybjA1lNyniuWNtPOV+QbvvV34VV eXoRETZWbMM1DAhEOwTdRjkIoQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNr5ADdA LdMuqOOVd8fkwLIJuSIrMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQzRDIvNDJDMUQ4RjgyQzg2MTFFRUE5Qjc0RjQzQzRGOUFFMDIvMjA3QzhBNTJB Qzc2MTFFRUI0NjVBRjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnzCAwDwQCAAIwCQMHACABDfJ4QDANBgkqhkiG9w0BAQsF AAOCAQEAEx15sfaRDRUdw/FInRR8BdOYM7OdqcIPP37dCdocUNmSt3jUhYAAnFJ8 HFGKlXCUEEdta/2h40vsYczvKt5RW/IQxCp8H2E8E3Y3jpEB/nhmrW/8kYCeIAkF Wc9aWkQwxmwlVBneq9lOHhgfj/MTqQT7gOvF/Mh9eTyDrbI1uJA/RBCDCC9YjxWH NSU0gLFZovgXkeXXL4ntXf91qG4+L/HPjLTXxDx8sAp+YEo45v/0GitrmoJn74uq VmCbUIqpHuJjd4IUcAon6pYj/V23B47fBrj+l+b46LWdVhahNLqR+gQ3Xc5728JL V8jEsnyalgAKEyqNUK/OVTsfRaItDg== -----END CERTIFICATE-----Generated at Sat Apr 5 03:30:05 2025 by rpki-client