$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/44D508E43C8311ECA86D031EC4F9AE02.roa File: 44D508E43C8311ECA86D031EC4F9AE02.roa (raw, json) Hash identifier: 3A9tL/jcYlpnzHxxWTOseLkNdsbJRJrgjlY1s6ebsbQ= Subject key identifier: 41:C5:0B:56:57:22:E5:E4:3F:C5:C5:16:03:6F:2D:A6:12:0B:43:2D Certificate issuer: /CN=A91CA559/serialNumber=21A76F3BB816CFFE7C466555C2B0BEBC9C7BC56E Certificate serial: 0489 Authority key identifier: 21:A7:6F:3B:B8:16:CF:FE:7C:46:65:55:C2:B0:BE:BC:9C:7B:C5:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IadvO7gWz_58RmVVwrC-vJx7xW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/44D508E43C8311ECA86D031EC4F9AE02.roa Signing time: Thu 27 Feb 2025 01:23:48 +0000 ROA not before: Thu 27 Feb 2025 01:23:48 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45753 IP address blocks: 103.147.224.0/23 maxlen: 24 103.231.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/IadvO7gWz_58RmVVwrC-vJx7xW4.crl rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/IadvO7gWz_58RmVVwrC-vJx7xW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IadvO7gWz_58RmVVwrC-vJx7xW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA559 Validity Not Before: Feb 27 01:23:48 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bfbea4-89e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6a:87:fa:b9:e2:c4:20:02:ef:8c:29:75:c1: 79:13:1c:27:65:7b:fd:6a:29:4f:35:0c:a6:f3:2b: 1f:b9:8f:fe:5d:88:e9:60:2a:f9:42:09:5b:ec:dc: b6:c0:09:ac:13:3d:5f:6b:37:48:5e:55:75:ed:fc: 27:44:76:6c:35:32:f0:d9:ae:dc:5d:41:53:3e:f3: af:44:99:1e:de:09:68:7b:07:b5:a0:c6:b9:4a:5f: c5:b8:b6:6c:2d:5e:d7:86:c4:55:96:26:70:b9:3d: de:c8:5c:6e:0e:00:56:b6:85:bb:d2:6a:db:4c:d9: 99:50:b7:c6:f0:10:dc:8c:c6:32:d1:64:42:b1:3b: 67:64:ec:eb:c1:70:33:5c:23:8f:66:b3:d3:f8:89: 52:23:3d:58:73:32:05:e6:de:99:aa:ed:eb:0b:83: 47:f5:a0:fd:bc:47:f4:45:b4:c4:a1:72:42:bb:fb: e3:d4:e5:ae:f4:72:d3:08:8b:55:7c:8c:6f:1d:ea: f9:a5:f0:60:42:bf:14:1f:e4:b1:93:ef:1e:bd:49: 0e:8a:63:c9:5d:6a:6d:2c:f0:b9:18:36:9e:04:09: f3:aa:9c:69:0a:03:77:ad:29:31:c0:f9:11:4f:0a: bf:db:f2:f7:34:ab:f6:a1:e8:60:44:39:2d:ca:8f: 0d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C5:0B:56:57:22:E5:E4:3F:C5:C5:16:03:6F:2D:A6:12:0B:43:2D X509v3 Authority Key Identifier: keyid:21:A7:6F:3B:B8:16:CF:FE:7C:46:65:55:C2:B0:BE:BC:9C:7B:C5:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/IadvO7gWz_58RmVVwrC-vJx7xW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IadvO7gWz_58RmVVwrC-vJx7xW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/44D508E43C8311ECA86D031EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.224.0/23 103.231.172.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:e2:9f:b2:bf:d8:b3:50:5d:45:ce:84:18:54:cd:53:c9:3f: fa:7a:3d:e2:05:19:2e:6d:12:b0:e9:87:7c:f7:4a:4a:88:a0: f6:17:9f:11:73:8f:93:c1:97:fb:b1:a5:71:9e:f1:45:24:08: be:4b:2c:a1:62:aa:f2:6e:75:d4:b0:29:b0:b9:29:dd:cc:14: 4a:4d:90:72:47:3f:cf:f9:84:45:dd:d9:24:a0:93:9e:2f:a9: 46:4e:98:79:50:83:56:3e:9e:50:67:54:e2:73:89:b8:9d:f1: 30:0f:4e:55:96:d0:95:a2:ef:9e:18:e5:d3:9c:24:8a:b3:8f: 9f:c8:ca:c5:37:77:26:b6:6a:7c:15:a6:e7:34:55:32:8e:9d: 35:25:82:1f:12:93:6f:3b:73:52:a0:36:56:e4:fd:16:83:a9: c4:22:80:e5:18:11:5a:d9:4a:02:d7:75:7b:66:c9:0d:76:98: 62:07:16:28:d1:ed:ec:16:8c:ad:a4:3d:55:3c:3b:ab:76:aa: 7e:ab:49:51:32:0d:7c:85:8a:4f:c7:a3:86:c7:49:c9:13:48: 09:56:c4:71:27:4a:99:c3:f4:c1:6e:24:20:86:17:fd:dd:a0: b6:50:52:c7:a9:1a:d6:17:7b:92:bb:9d:cc:e4:64:b3:37:6f: 80:9b:dd:9e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E1NTkxMTAvBgNVBAUTKDIxQTc2RjNCQjgxNkNGRkU3QzQ2NjU1NUMyQjBCRUJD OUM3QkM1NkUwHhcNMjUwMjI3MDEyMzQ4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmYmVhNC04OWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32qH+rnixCAC74wpdcF5ExwnZXv9ailPNQym8ysfuY/+XYjpYCr5Qglb7Ny2 wAmsEz1fazdIXlV17fwnRHZsNTLw2a7cXUFTPvOvRJke3gloewe1oMa5Sl/FuLZs LV7XhsRVliZwuT3eyFxuDgBWtoW70mrbTNmZULfG8BDcjMYy0WRCsTtnZOzrwXAz XCOPZrPT+IlSIz1YczIF5t6Zqu3rC4NH9aD9vEf0RbTEoXJCu/vj1OWu9HLTCItV fIxvHer5pfBgQr8UH+Sxk+8evUkOimPJXWptLPC5GDaeBAnzqpxpCgN3rSkxwPkR Twq/2/L3NKv2oehgRDktyo8NxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEHFC1ZX IuXkP8XFFgNvLaYSC0MtMB8GA1UdIwQYMBaAFCGnbzu4Fs/+fEZlVcKwvryce8Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTU1OS9BQUMzNEY0NjMw QzQxMUVDOTlGMkY2NkNDNEY5QUUwMi9JYWR2TzdnV3pfNThSbVZWd3JDLXZKeDd4 VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhZHZPN2dXel81OFJtVlZ3ckMtdkp4N3hXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E1NTkvQUFDMzRGNDYzMEM0MTFFQzk5RjJGNjZDQzRGOUFFMDIvNDRENTA4RTQz QzgzMTFFQ0E4NkQwMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnk+ADBAJn56wwDQYJKoZIhvcNAQELBQADggEBAJ3in7K/ 2LNQXUXOhBhUzVPJP/p6PeIFGS5tErDph3z3SkqIoPYXnxFzj5PBl/uxpXGe8UUk CL5LLKFiqvJuddSwKbC5Kd3MFEpNkHJHP8/5hEXd2SSgk54vqUZOmHlQg1Y+nlBn VOJzibid8TAPTlWW0JWi754Y5dOcJIqzj5/IysU3dya2anwVpuc0VTKOnTUlgh8S k287c1KgNlbk/RaDqcQigOUYEVrZSgLXdXtmyQ12mGIHFijR7ewWjK2kPVU8O6t2 qn6rSVEyDXyFik/Ho4bHSckTSAlWxHEnSpnD9MFuJCCGF/3doLZQUsepGtYXe5K7 nczkZLM3b4Cb3Z4= -----END CERTIFICATE-----Generated at Sun Apr 6 23:41:15 2025 by rpki-client