$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/A606B22CA65211EDB3A5967CC4F9AE02.roa File: A606B22CA65211EDB3A5967CC4F9AE02.roa (raw, json) Hash identifier: OlmuxEBq0fJDq+ub9McrhDdVwDRZLRD2yDkFBtrKAKM= Subject key identifier: A6:8C:86:FB:36:CC:EC:48:F9:82:34:32:CA:DA:48:C4:62:BF:81:83 Certificate issuer: /CN=A91CBB1B/serialNumber=F69BB6F77607399FD342B124CAF8DE8DE47F730F Certificate serial: 018F Authority key identifier: F6:9B:B6:F7:76:07:39:9F:D3:42:B1:24:CA:F8:DE:8D:E4:7F:73:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/A606B22CA65211EDB3A5967CC4F9AE02.roa Signing time: Sat 01 Mar 2025 05:26:15 +0000 ROA not before: Sat 01 Mar 2025 05:26:15 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134663 IP address blocks: 103.72.138.0/24 maxlen: 24 103.72.139.0/24 maxlen: 24 2001:df2:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.crl rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB1B Validity Not Before: Mar 1 05:26:15 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67c29a76-da24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:82:e1:ef:7e:00:90:2b:d9:38:54:9c:f1:85: 29:cc:a4:1d:e9:03:0f:15:c6:11:49:4a:fa:9a:5e: 5c:dd:8b:57:93:08:47:a0:93:11:13:f7:76:bb:39: b0:e3:4b:47:99:c9:99:0b:fd:7b:68:ec:8a:35:34: 6a:9c:8f:6f:47:09:6a:d9:15:93:41:1d:cd:f9:90: 34:3a:b2:30:b9:9d:20:bc:dd:83:0f:ba:01:c4:88: f1:d7:3d:19:f7:9f:3d:f7:a0:b0:5b:3c:c9:90:c1: 44:bf:90:22:64:1a:94:e8:a3:b3:e6:aa:a9:3e:a4: 67:cd:63:04:22:25:59:4a:ff:af:71:d7:fa:ca:7f: 0f:9c:2a:6b:9d:72:44:1b:b4:48:db:ba:a0:dd:ab: f5:00:2a:fc:e0:c8:26:cf:41:24:6a:3a:18:fc:04: 73:89:f0:22:ee:78:04:e7:b6:7d:84:ed:48:83:f1: 45:af:6e:d4:08:9c:c8:ea:7f:e1:07:13:3b:35:ea: ab:63:cd:74:d3:b8:e4:cd:d6:bc:e4:27:69:0a:af: fd:19:92:34:36:2d:19:40:df:fd:e8:2e:37:ed:fc: 5b:b8:82:b6:87:63:dc:8b:7e:22:c7:a8:b0:e6:da: 3c:02:59:65:21:e3:3f:4f:9c:f3:6b:9e:df:d0:fe: 27:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8C:86:FB:36:CC:EC:48:F9:82:34:32:CA:DA:48:C4:62:BF:81:83 X509v3 Authority Key Identifier: keyid:F6:9B:B6:F7:76:07:39:9F:D3:42:B1:24:CA:F8:DE:8D:E4:7F:73:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/A606B22CA65211EDB3A5967CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.138.0/23 IPv6: 2001:df2:4440::/48 Signature Algorithm: sha256WithRSAEncryption 0a:d3:25:a8:79:e9:23:9e:e7:7d:a2:ee:9f:ec:33:10:9b:77: ac:48:d8:ab:b0:3c:d3:a6:d0:33:3d:cf:47:6a:93:8a:a3:bb: 47:65:3b:f0:03:fe:d1:a3:c1:be:e5:79:e3:e3:5c:d7:0d:a3: f4:0d:b4:2e:a0:7b:e1:b4:88:21:6c:55:9d:43:f7:8f:78:2c: db:80:12:02:58:12:c4:0a:80:f9:87:d5:14:f6:c9:74:22:25: 87:7f:23:da:13:82:c9:32:90:22:ac:d8:77:31:91:bc:74:1b: f2:7e:e6:36:eb:fa:82:30:98:8b:53:c6:1d:84:6f:1a:c0:1a: ca:f7:25:0b:bf:cd:46:6c:8a:80:65:66:e3:dd:5a:a7:b7:1c: 2d:6e:5c:0c:ca:58:ad:70:72:f3:f5:75:87:72:de:20:a4:73: c2:f6:31:37:8d:18:1a:64:b3:7c:7e:60:a0:e1:14:b3:49:49: 5f:0e:18:77:03:af:14:f3:05:a0:6b:fc:08:39:44:c2:e9:ef: e5:00:c9:f4:02:70:da:2e:01:63:d0:99:50:a2:b8:9d:0a:44: c1:10:bb:11:44:35:8f:01:4c:21:86:b6:f0:5c:13:65:98:d1: 0e:40:8c:37:54:f6:1c:9a:1b:e1:cf:e4:8c:a8:6e:0e:75:81: 5b:62:fb:a0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMUIxMTAvBgNVBAUTKEY2OUJCNkY3NzYwNzM5OUZEMzQyQjEyNENBRjhERThE RTQ3RjczMEYwHhcNMjUwMzAxMDUyNjE1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyOWE3Ni1kYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14Lh734AkCvZOFSc8YUpzKQd6QMPFcYRSUr6ml5c3YtXkwhHoJMRE/d2uzmw 40tHmcmZC/17aOyKNTRqnI9vRwlq2RWTQR3N+ZA0OrIwuZ0gvN2DD7oBxIjx1z0Z 958996CwWzzJkMFEv5AiZBqU6KOz5qqpPqRnzWMEIiVZSv+vcdf6yn8PnCprnXJE G7RI27qg3av1ACr84Mgmz0EkajoY/ARzifAi7ngE57Z9hO1Ig/FFr27UCJzI6n/h BxM7NeqrY81007jkzda85CdpCq/9GZI0Ni0ZQN/96C437fxbuIK2h2Pci34ix6iw 5to8AlllIeM/T5zza57f0P4nXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKaMhvs2 zOxI+YI0MsraSMRiv4GDMB8GA1UdIwQYMBaAFPabtvd2Bzmf00KxJMr43o3kf3MP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIxQi8yQUQxMzk4NkE2 NEYxMUVEOTgwMkNBNzZDNEY5QUUwMi85cHUyOTNZSE9aX1RRckVreXZqZWplUl9j dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwdTI5M1lIT1pfVFFyRWt5dmplamVSX2N3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JCMUIvMkFEMTM5ODZBNjRGMTFFRDk4MDJDQTc2QzRGOUFFMDIvQTYwNkIyMkNB NjUyMTFFREIzQTU5NjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSIowDwQCAAIwCQMHACABDfJEQDANBgkqhkiG9w0BAQsF AAOCAQEACtMlqHnpI57nfaLun+wzEJt3rEjYq7A806bQMz3PR2qTiqO7R2U78AP+ 0aPBvuV54+Nc1w2j9A20LqB74bSIIWxVnUP3j3gs24ASAlgSxAqA+YfVFPbJdCIl h38j2hOCyTKQIqzYdzGRvHQb8n7mNuv6gjCYi1PGHYRvGsAayvclC7/NRmyKgGVm 491ap7ccLW5cDMpYrXBy8/V1h3LeIKRzwvYxN40YGmSzfH5goOEUs0lJXw4YdwOv FPMFoGv8CDlEwunv5QDJ9AJw2i4BY9CZUKK4nQpEwRC7EUQ1jwFMIYa28FwTZZjR DkCMN1T2HJob4c/kjKhuDnWBW2L7oA== -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:51 2025 by rpki-client