$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/B4A14106974911EEBAFA257BC4F9AE02.roa File: B4A14106974911EEBAFA257BC4F9AE02.roa (raw, json) Hash identifier: Fb7LVlJG+JVdijAn+Ys69+wkABJKfcULX5Fgfk+/L5A= Subject key identifier: 57:3B:32:68:60:6C:1B:92:69:BC:67:0F:78:84:95:25:8B:F9:31:4E Certificate issuer: /CN=A91C6BF0/serialNumber=7D23E75C10DF6571BEAC17F3555E1B9983814225 Certificate serial: 0179 Authority key identifier: 7D:23:E7:5C:10:DF:65:71:BE:AC:17:F3:55:5E:1B:99:83:81:42:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSPnXBDfZXG-rBfzVV4bmYOBQiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/B4A14106974911EEBAFA257BC4F9AE02.roa Signing time: Thu 20 Mar 2025 17:56:41 +0000 ROA not before: Thu 20 Mar 2025 17:56:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139901 IP address blocks: 103.134.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/fSPnXBDfZXG-rBfzVV4bmYOBQiU.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/fSPnXBDfZXG-rBfzVV4bmYOBQiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSPnXBDfZXG-rBfzVV4bmYOBQiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0 Validity Not Before: Mar 20 17:56:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67dc56d9-e835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fa:7e:fd:c6:11:7c:70:6f:20:a3:a8:3d:14: 9c:b1:61:a4:6d:7f:43:23:96:98:fc:7f:38:91:da: 53:bc:1a:e5:04:96:70:c1:54:36:a7:52:cd:fd:f6: 8d:00:ee:ab:ee:ac:20:7d:f1:6c:39:9a:1a:92:07: 78:e2:9c:24:ca:e2:8b:f8:ca:d6:fe:9f:5b:fb:75: a9:c1:b2:47:0b:2b:b5:6b:e2:b1:0c:76:70:57:9b: e3:32:63:0d:26:2b:4d:d3:94:12:cc:b7:25:02:ae: 22:5a:fb:69:67:34:06:f7:46:12:bc:ce:ae:d0:e0: 21:47:a6:e4:7f:9a:65:98:de:a3:ff:bb:a8:3d:8f: 53:b1:56:ac:0f:43:47:84:4b:90:c6:8b:5d:62:2e: 47:57:cc:72:53:57:a0:08:45:c7:4b:5d:1b:93:e4: 79:bf:77:7a:53:b0:59:20:e7:43:f5:a0:5f:5d:5f: 5e:cf:72:20:09:c5:df:ff:6b:66:b3:99:3a:42:55: 4f:63:72:b5:f0:8f:d0:e5:02:33:2e:7d:90:be:db: f9:19:4d:67:48:e2:12:77:49:62:56:a3:0c:c5:ea: ae:a3:1f:92:f2:85:28:03:2c:59:77:76:85:d4:df: 65:36:3b:ec:e4:e5:29:a8:ac:54:02:a3:55:5f:15: 72:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3B:32:68:60:6C:1B:92:69:BC:67:0F:78:84:95:25:8B:F9:31:4E X509v3 Authority Key Identifier: keyid:7D:23:E7:5C:10:DF:65:71:BE:AC:17:F3:55:5E:1B:99:83:81:42:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/fSPnXBDfZXG-rBfzVV4bmYOBQiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSPnXBDfZXG-rBfzVV4bmYOBQiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/B4A14106974911EEBAFA257BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.24.0/23 Signature Algorithm: sha256WithRSAEncryption 32:0b:da:0d:75:8b:d6:b8:4f:e6:59:2a:30:58:14:8c:d6:db: 1c:0b:ea:f1:df:a5:7b:2a:ba:9f:d8:33:60:8b:5c:12:aa:d9: a9:65:3c:31:94:03:b6:da:86:d8:fb:00:59:c7:ca:3d:99:79: db:c7:e8:63:ed:40:7f:b2:92:65:7d:46:2c:78:76:22:68:3d: 4b:bc:02:e3:42:66:7e:41:98:c9:5d:69:45:08:51:9b:fc:08: fb:90:89:9c:3b:e1:6e:85:ab:e2:7c:96:20:2f:8e:39:df:8e: 14:bc:2a:6f:e0:ee:7a:79:11:02:c9:98:29:ee:61:7d:89:4e: 0e:9a:0b:4f:a0:8e:70:52:2b:17:d6:3f:03:73:6f:32:38:81: 40:b6:16:0a:b1:3b:39:2a:5c:31:94:30:76:a6:57:10:35:10: 5e:ca:ab:fc:7b:c2:91:f6:6b:dc:42:92:2c:1f:35:d8:95:89: 46:1b:af:0a:15:0d:52:7c:68:21:67:79:40:69:9f:d1:10:07: 51:cb:a3:5b:68:ae:45:fd:3f:c8:6e:b4:cc:1b:ec:f4:ea:16: 92:7f:1a:71:31:f1:17:ce:cc:4e:99:87:27:d7:95:48:99:f9: 70:ea:2d:9c:b0:8d:69:f4:14:29:34:87:76:82:de:d4:f3:70: 2d:6c:7d:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKDdEMjNFNzVDMTBERjY1NzFCRUFDMTdGMzU1NUUxQjk5 ODM4MTQyMjUwHhcNMjUwMzIwMTc1NjQxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjNTZkOS1lODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPp+/cYRfHBvIKOoPRScsWGkbX9DI5aY/H84kdpTvBrlBJZwwVQ2p1LN/faN AO6r7qwgffFsOZoakgd44pwkyuKL+MrW/p9b+3WpwbJHCyu1a+KxDHZwV5vjMmMN JitN05QSzLclAq4iWvtpZzQG90YSvM6u0OAhR6bkf5plmN6j/7uoPY9TsVasD0NH hEuQxotdYi5HV8xyU1egCEXHS10bk+R5v3d6U7BZIOdD9aBfXV9ez3IgCcXf/2tm s5k6QlVPY3K18I/Q5QIzLn2Qvtv5GU1nSOISd0liVqMMxequox+S8oUoAyxZd3aF 1N9lNjvs5OUpqKxUAqNVXxVyGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFc7Mmhg bBuSabxnD3iElSWL+TFOMB8GA1UdIwQYMBaAFH0j51wQ32VxvqwX81VeG5mDgUIl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi9mU1BuWEJEZlpYRy1yQmZ6VlY0Ym1ZT0JR aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZTUG5YQkRmWlhHLXJCZnpWVjRibVlPQlFpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCRjAvMTQ5MTk3NEFBRUJCMTFFOThBMzkwQjU5QzRGOUFFMDIvQjRBMTQxMDY5 NzQ5MTFFRUJBRkEyNTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnhhgwDQYJKoZIhvcNAQELBQADggEBADIL2g11i9a4T+ZZ KjBYFIzW2xwL6vHfpXsqup/YM2CLXBKq2allPDGUA7bahtj7AFnHyj2ZedvH6GPt QH+ykmV9Rix4diJoPUu8AuNCZn5BmMldaUUIUZv8CPuQiZw74W6Fq+J8liAvjjnf jhS8Km/g7np5EQLJmCnuYX2JTg6aC0+gjnBSKxfWPwNzbzI4gUC2FgqxOzkqXDGU MHamVxA1EF7Kq/x7wpH2a9xCkiwfNdiViUYbrwoVDVJ8aCFneUBpn9EQB1HLo1to rkX9P8hutMwb7PTqFpJ/GnEx8RfOzE6ZhyfXlUiZ+XDqLZywjWn0FCk0h3aC3tTz cC1sfW4= -----END CERTIFICATE-----Generated at Sat Apr 5 06:06:55 2025 by rpki-client