$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/9B3244E038A411EDB5C86A28C4F9AE02.roa File: 9B3244E038A411EDB5C86A28C4F9AE02.roa (raw, json) Hash identifier: z3vMrh+MfifC7nf/d8HWXEmLlkM4nBll9m3BXQVcSyk= Subject key identifier: 7E:04:F7:89:A0:DE:7C:CF:FC:60:76:8C:0C:6B:33:70:23:C0:AC:04 Certificate issuer: /CN=A91BF8F4/serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Certificate serial: 01E9 Authority key identifier: 14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/9B3244E038A411EDB5C86A28C4F9AE02.roa Signing time: Tue 11 Mar 2025 02:18:28 +0000 ROA not before: Tue 11 Mar 2025 02:18:28 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149630 IP address blocks: 103.183.38.0/23 maxlen: 23 103.183.38.0/24 maxlen: 24 103.183.39.0/24 maxlen: 24 2001:df0:83c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 01:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8F4 Validity Not Before: Mar 11 02:18:28 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67cf9d73-63f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:69:83:ec:bd:4f:1a:5d:6c:05:72:62:a4: b8:c0:98:62:51:76:b0:a4:80:9a:b3:a5:12:c0:eb: 84:c3:e7:4a:39:c4:29:3c:62:ee:64:07:f5:11:7e: e7:75:e5:3d:21:7f:fb:f1:eb:c4:34:6c:5a:76:69: 0b:b7:99:44:18:25:31:03:49:1e:6f:54:96:22:1d: 6a:6c:b4:89:38:ff:b5:a8:2a:42:5f:22:ce:ed:49: 3e:55:d2:5b:02:a3:d8:24:28:81:de:8d:c6:5c:f3: aa:37:70:a0:ad:48:6d:27:f3:38:8d:1d:9d:9a:d1: 2d:b7:aa:d0:c1:dc:4a:14:7b:38:99:52:79:3e:d8: 81:9e:37:80:f4:00:cc:12:c5:6d:48:6f:83:70:1e: 9f:8a:d0:d9:8f:59:72:d6:1c:15:b2:33:9e:39:af: 1b:41:23:20:df:c5:af:75:ff:92:3a:ce:8b:06:f5: 1e:78:84:1a:7c:7c:84:40:25:69:89:4f:16:21:9d: c8:30:f5:7d:d7:39:10:67:b2:87:1d:12:da:8c:e1: ad:16:78:00:f1:5b:af:a5:7c:df:69:4f:42:6a:88: 89:d3:77:b3:37:58:62:c4:f2:a3:cf:8d:0f:e8:2b: 98:bd:73:74:ca:42:4e:2c:f6:2a:1c:61:ef:20:98: f0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:04:F7:89:A0:DE:7C:CF:FC:60:76:8C:0C:6B:33:70:23:C0:AC:04 X509v3 Authority Key Identifier: keyid:14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/9B3244E038A411EDB5C86A28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.38.0/23 IPv6: 2001:df0:83c0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:a6:14:c6:2f:e3:6a:b7:a0:86:d8:d8:2f:0b:b2:72:bc:78: 40:01:98:a8:c0:6d:81:97:6c:01:6a:07:8e:3c:33:ff:19:f2: 40:d2:6f:be:91:95:a3:ac:73:a6:3c:31:23:a6:d5:81:16:7c: fa:3e:b9:a5:5c:f4:a9:98:79:7c:92:b5:88:b0:eb:39:b4:b8: f3:7a:18:78:fc:ca:b6:b9:40:90:eb:4b:56:25:fd:fd:2f:b2: 6d:00:0c:cb:81:81:96:8d:91:bf:1b:9b:5e:56:5e:22:2d:13: 8f:3f:3c:14:d6:b5:f1:77:d7:91:17:45:17:51:1a:db:e9:e2: fb:8c:0e:16:04:73:47:e4:cc:a9:47:60:b9:de:9d:16:6c:fb: 23:e0:81:b3:49:71:1a:c6:ef:20:34:05:47:43:e3:94:4e:3f: cf:c5:21:f1:11:8a:e8:84:9f:06:cf:4e:bb:38:0d:36:13:b6: 3f:c5:77:8e:1f:f8:e1:b7:09:9b:c1:dc:3d:d5:3c:7f:95:b8: d8:a2:ff:db:7d:cd:1b:3c:d5:26:60:89:97:6d:eb:80:3f:d8: 1e:d8:a8:2b:ad:7c:be:9f:1b:17:d5:9d:e4:0b:95:2e:1a:02: 1b:69:b5:90:f0:36:ba:97:19:9f:1a:f2:58:19:f8:f4:40:da: 5c:03:7f:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RjQxMTAvBgNVBAUTKDE0RjlGRjRBMjNBNzIwQjczQkFGRTYwMzM1M0YxMUVC OTczOTI3MTkwHhcNMjUwMzExMDIxODI4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmOWQ3My02M2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDZpg+y9TxpdbAVyYqS4wJhiUXawpICas6USwOuEw+dKOcQpPGLuZAf1EX7n deU9IX/78evENGxadmkLt5lEGCUxA0keb1SWIh1qbLSJOP+1qCpCXyLO7Uk+VdJb AqPYJCiB3o3GXPOqN3CgrUhtJ/M4jR2dmtEtt6rQwdxKFHs4mVJ5PtiBnjeA9ADM EsVtSG+DcB6fitDZj1ly1hwVsjOeOa8bQSMg38Wvdf+SOs6LBvUeeIQafHyEQCVp iU8WIZ3IMPV91zkQZ7KHHRLajOGtFngA8VuvpXzfaU9CaoiJ03ezN1hixPKjz40P 6CuYvXN0ykJOLPYqHGHvIJjw4wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH4E94mg 3nzP/GB2jAxrM3AjwKwEMB8GA1UdIwQYMBaAFBT5/0ojpyC3O6/mAzU/EeuXOScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhGNC83MDc3NjVBODM4 QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklMYzdyLVlETlQ4UjY1YzVK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZQbl9TaU9uSUxjN3ItWUROVDhSNjVjNUp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY4RjQvNzA3NzY1QTgzOEExMTFFRDlGM0MwQzgyQzRGOUFFMDIvOUIzMjQ0RTAz OEE0MTFFREI1Qzg2QTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntyYwDwQCAAIwCQMHACABDfCDwDANBgkqhkiG9w0BAQsF AAOCAQEAO6YUxi/jareghtjYLwuycrx4QAGYqMBtgZdsAWoHjjwz/xnyQNJvvpGV o6xzpjwxI6bVgRZ8+j65pVz0qZh5fJK1iLDrObS483oYePzKtrlAkOtLViX9/S+y bQAMy4GBlo2RvxubXlZeIi0Tjz88FNa18XfXkRdFF1Ea2+ni+4wOFgRzR+TMqUdg ud6dFmz7I+CBs0lxGsbvIDQFR0PjlE4/z8Uh8RGK6ISfBs9OuzgNNhO2P8V3jh/4 4bcJm8HcPdU8f5W42KL/233NGzzVJmCJl23rgD/YHtioK618vp8bF9Wd5AuVLhoC G2m1kPA2upcZnxryWBn49EDaXAN/tA== -----END CERTIFICATE-----Generated at Fri Apr 11 12:09:57 2025 by rpki-client