$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/99244E94FE0211EEB1F40344C4F9AE02.roa File: 99244E94FE0211EEB1F40344C4F9AE02.roa (raw, json) Hash identifier: ryfpBDCWcmiRZYqeao/rsVyXOOOGDWQajzrZGBcgq+0= Subject key identifier: 49:56:34:DB:AD:F9:F3:18:A7:75:A4:0F:9F:D7:7B:69:35:03:9C:21 Certificate issuer: /CN=A91CE959/serialNumber=D6EC22A73A59D2AA955997470279C662D11088F2 Certificate serial: B7 Authority key identifier: D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/99244E94FE0211EEB1F40344C4F9AE02.roa Signing time: Fri 07 Mar 2025 05:21:42 +0000 ROA not before: Fri 07 Mar 2025 05:21:42 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 151622 IP address blocks: 103.47.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE959 Validity Not Before: Mar 7 05:21:42 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca8265-b69d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:fc:6e:30:5a:34:7c:47:94:dd:21:da:d6: 4f:1e:9d:67:e5:58:2b:f1:60:dc:e1:f9:89:2d:59: 71:b2:f1:41:51:96:5e:ea:03:0b:bf:34:e9:d4:e4: a9:0f:f3:98:05:3a:73:62:81:3e:96:2c:0c:21:1f: 90:fa:d5:d5:3f:c7:c7:25:a9:2f:71:4a:ea:78:a9: fc:52:79:7b:86:a2:a4:fe:92:d0:1b:c2:4a:98:6f: 66:10:c8:d1:09:2b:83:e3:16:58:40:70:0b:7f:1b: a2:bd:c7:b0:16:d1:f9:94:cb:2d:f8:f7:b0:9f:71: 11:bc:1b:58:d0:2c:82:f5:0a:9b:ac:5d:62:e4:5b: 7e:19:c9:ae:91:ec:0c:d5:47:10:5d:e5:5c:ee:16: 03:2e:bd:63:5f:58:f6:5f:23:3c:6b:74:0f:ae:07: 44:03:61:6a:9d:b9:ea:57:e7:d2:ec:6d:97:f1:1a: 3a:90:13:71:e4:02:7e:b7:24:06:ed:12:e0:7a:04: 9c:9d:12:9c:b3:d8:c9:21:3a:24:23:a9:0e:4b:81: b8:92:75:fc:45:b6:68:03:1d:a0:60:f8:cf:cd:38: 1a:21:f7:20:72:32:a4:11:2c:3c:62:ab:b3:c7:75: 33:8d:be:37:0e:f6:cf:2f:c0:76:e8:3f:f9:c5:73: 18:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:56:34:DB:AD:F9:F3:18:A7:75:A4:0F:9F:D7:7B:69:35:03:9C:21 X509v3 Authority Key Identifier: keyid:D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/99244E94FE0211EEB1F40344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.176.0/22 Signature Algorithm: sha256WithRSAEncryption 01:64:a7:31:e3:0a:78:d1:c3:62:b1:18:36:54:d9:31:49:20: cb:65:42:37:31:68:f4:8c:34:f2:9b:22:94:77:f5:2a:3c:af: 3a:19:39:e6:3e:b9:51:f6:be:ae:16:ca:b3:22:aa:f8:b2:77: 87:13:e4:e0:3b:f9:25:bb:20:5e:0b:18:4e:77:dd:ed:b0:8c: c3:52:18:59:26:14:c3:fd:f0:e4:74:9d:14:5c:d3:a7:dd:42: 4d:6c:74:78:a6:9d:5e:dc:b1:84:00:3a:cd:82:67:38:00:01: ce:f3:15:a2:61:3b:24:f4:5e:e5:10:d9:2f:d9:3b:8d:a2:29: e3:d6:81:4e:d6:48:2c:03:b5:27:bd:e1:7b:df:1b:f5:59:7c: c2:76:bf:38:f6:2f:03:34:66:7d:a0:1b:f7:e3:31:83:7c:ef: 59:f8:60:7f:47:88:4c:e6:96:21:d1:50:60:f6:54:84:b2:73: 9e:91:ff:2e:c1:fc:a0:05:a0:27:52:3d:8c:52:62:a1:52:60: fc:14:3c:27:c8:21:dd:61:1d:b4:cc:b1:13:09:fd:49:3c:8c: 06:f4:56:06:be:10:11:ad:0a:e9:be:7e:d7:ae:3d:e8:5b:0b: 98:e1:e5:24:cb:a0:a4:85:51:34:29:96:eb:1c:fc:00:5a:d5: 87:dd:a2:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NTkxMTAvBgNVBAUTKEQ2RUMyMkE3M0E1OUQyQUE5NTU5OTc0NzAyNzlDNjYy RDExMDg4RjIwHhcNMjUwMzA3MDUyMTQyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhODI2NS1iNjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGb8bjBaNHxHlN0h2tZPHp1n5Vgr8WDc4fmJLVlxsvFBUZZe6gMLvzTp1OSp D/OYBTpzYoE+liwMIR+Q+tXVP8fHJakvcUrqeKn8Unl7hqKk/pLQG8JKmG9mEMjR CSuD4xZYQHALfxuivcewFtH5lMst+Pewn3ERvBtY0CyC9QqbrF1i5Ft+GcmukewM 1UcQXeVc7hYDLr1jX1j2XyM8a3QPrgdEA2FqnbnqV+fS7G2X8Ro6kBNx5AJ+tyQG 7RLgegScnRKcs9jJITokI6kOS4G4knX8RbZoAx2gYPjPzTgaIfcgcjKkESw8Yquz x3Uzjb43DvbPL8B26D/5xXMYUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFElWNNut +fMYp3WkD5/Xe2k1A5whMB8GA1UdIwQYMBaAFNbsIqc6WdKqlVmXRwJ5xmLREIjy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk1OS9BQTRDNzdFQ0VE NzYxMUVFQUQ4NzFBMTFDNEY5QUUwMi8xdXdpcHpwWjBxcVZXWmRIQW5uR1l0RVFp UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF1d2lwenBaMHFxVldaZEhBbm5HWXRFUWlQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5NTkvQUE0Qzc3RUNFRDc2MTFFRUFEODcxQTExQzRGOUFFMDIvOTkyNDRFOTRG RTAyMTFFRUIxRjQwMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnL7AwDQYJKoZIhvcNAQELBQADggEBAAFkpzHjCnjRw2Kx GDZU2TFJIMtlQjcxaPSMNPKbIpR39So8rzoZOeY+uVH2vq4WyrMiqviyd4cT5OA7 +SW7IF4LGE533e2wjMNSGFkmFMP98OR0nRRc06fdQk1sdHimnV7csYQAOs2CZzgA Ac7zFaJhOyT0XuUQ2S/ZO42iKePWgU7WSCwDtSe94XvfG/VZfMJ2vzj2LwM0Zn2g G/fjMYN871n4YH9HiEzmliHRUGD2VISyc56R/y7B/KAFoCdSPYxSYqFSYPwUPCfI Id1hHbTMsRMJ/Uk8jAb0Vga+EBGtCum+fteuPehbC5jh5STLoKSFUTQplusc/ABa 1Yfdogs= -----END CERTIFICATE-----Generated at Fri Apr 4 23:56:40 2025 by rpki-client