$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/F2022074272711EF91A40124C4F9AE02.roa File: F2022074272711EF91A40124C4F9AE02.roa (raw, json) Hash identifier: xhUsDiNlcxZBUBnV9JFR4AclyG5SZwCFLfalTWcGiyI= Subject key identifier: BB:4C:31:2A:99:12:D9:09:6C:08:A9:E7:66:0D:C7:AF:29:DD:A8:60 Certificate issuer: /CN=A91CEBCC/serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Certificate serial: 6E Authority key identifier: 6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/F2022074272711EF91A40124C4F9AE02.roa Signing time: Fri 03 Jan 2025 05:08:49 +0000 ROA not before: Fri 03 Jan 2025 05:08:49 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139864 IP address blocks: 103.146.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCC Validity Not Before: Jan 3 05:08:49 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677770e1-5d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:15:22:fb:09:5b:29:00:13:08:db:a4:59: 3a:78:b6:bd:f6:a0:65:50:30:dd:a5:a8:63:7e:0d: 99:a8:e0:f4:de:cb:91:2f:2d:de:99:73:52:f9:7d: 8d:35:8c:05:5c:67:f9:a1:d2:43:76:59:ef:97:34: f7:19:d7:40:c1:a0:19:47:5e:2b:1e:18:2b:2c:51: 3e:b8:b9:e8:6b:a2:17:e0:41:44:16:f7:59:20:99: 41:14:bf:c0:bd:ad:8f:6e:a5:0f:36:01:c8:3d:89: fe:59:84:45:8b:88:91:d0:89:50:11:61:80:97:9d: 31:5c:9a:fe:9a:25:2b:31:c8:79:1f:87:0b:2f:2f: 34:5e:a2:a8:e5:96:f7:e5:05:09:85:aa:01:56:41: 94:f2:37:23:2f:c9:96:19:2d:57:5f:18:18:4c:6f: a6:6a:d0:b9:7d:06:4c:16:d3:6a:75:9f:f8:50:94: 34:03:48:6c:a7:2d:6b:1f:19:46:4d:bc:00:f5:97: df:be:d2:ff:27:14:78:7a:34:0c:4f:1f:0c:e3:bf: f7:d8:a4:d6:f2:4f:06:53:28:49:f4:ac:65:c2:49: e1:7c:c5:4a:55:d0:0d:68:32:cd:7b:93:c8:ac:02: 0f:ea:82:d9:8e:70:32:c2:b9:ef:90:5a:f3:11:0f: 35:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4C:31:2A:99:12:D9:09:6C:08:A9:E7:66:0D:C7:AF:29:DD:A8:60 X509v3 Authority Key Identifier: keyid:6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/F2022074272711EF91A40124C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.86.0/24 Signature Algorithm: sha256WithRSAEncryption 51:00:bd:b9:a0:ad:ad:7b:60:6a:f2:a0:20:40:43:8c:be:f9: 8b:f0:77:56:80:24:bd:91:e9:7d:8f:64:fb:71:8a:80:dd:13: a7:72:70:f3:06:f5:c2:86:0a:15:9a:56:27:55:a3:bb:58:32: 72:ab:79:4a:32:76:00:29:7d:e9:18:1d:2a:5c:b5:f9:14:0a: 63:00:a9:b4:7e:2d:ef:f1:9c:b6:ba:cd:9a:cb:fd:85:17:ab: 37:8d:45:93:d7:eb:4d:94:77:47:99:ba:93:53:8c:01:03:f3: 8b:8a:84:ff:94:d6:f7:df:33:98:47:eb:0a:0b:fa:8b:89:24: 3d:4b:16:3b:29:de:b2:e2:ba:7a:53:4b:1e:a0:c1:9c:fb:8b: bc:7d:c9:f4:5b:34:56:07:11:6a:31:85:03:dd:15:df:f4:a8: 65:81:bb:d8:bb:1f:cd:50:49:eb:29:ad:49:ab:ee:b3:7f:23: 0c:6f:f1:0f:68:7a:23:c1:e3:bc:10:b9:ca:2f:bb:c2:6f:88: 1a:02:6d:d8:93:53:c1:56:4e:ad:53:45:2c:e6:a8:0c:3d:7c: 43:29:2e:f5:7c:54:db:74:bd:54:1b:a9:6a:a8:b4:fd:7f:1f: 08:a9:80:65:41:f6:ed:de:fe:9f:56:f5:2a:ad:82:9d:bd:fe: 65:10:35:6b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUJDQzExMC8GA1UEBRMoNkRBQjYxRDEyRTNGMTk2RjUxNjkzODcyM0M4MDI3NTk5 QzVENzU1MjAeFw0yNTAxMDMwNTA4NDlaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Nzc3MGUxLTVkMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6FxUi+wlbKQATCNukWTp4tr32oGVQMN2lqGN+DZmo4PTey5EvLd6Zc1L5fY01 jAVcZ/mh0kN2We+XNPcZ10DBoBlHXiseGCssUT64uehrohfgQUQW91kgmUEUv8C9 rY9upQ82Acg9if5ZhEWLiJHQiVARYYCXnTFcmv6aJSsxyHkfhwsvLzReoqjllvfl BQmFqgFWQZTyNyMvyZYZLVdfGBhMb6Zq0Ll9BkwW02p1n/hQlDQDSGynLWsfGUZN vAD1l9++0v8nFHh6NAxPHwzjv/fYpNbyTwZTKEn0rGXCSeF8xUpV0A1oMs17k8is Ag/qgtmOcDLCue+QWvMRDzUJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUu0wxKpkS 2QlsCKnnZg3HryndqGAwHwYDVR0jBBgwFoAUbath0S4/GW9RaThyPIAnWZxddVIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFQkNDLzJBRTg5ODFBMjcy NzExRUY5MTQzRTYyMkM0RjlBRTAyL2JhdGgwUzRfR1c5UmFUaHlQSUFuV1p4ZGRW SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmF0aDBTNF9HVzlSYVRoeVBJQW5XWnhkZFZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUJDQy8yQUU4OTgxQTI3MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9GMjAyMjA3NDI3 MjcxMUVGOTFBNDAxMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeSVjANBgkqhkiG9w0BAQsFAAOCAQEAUQC9uaCtrXtgavKg IEBDjL75i/B3VoAkvZHpfY9k+3GKgN0Tp3Jw8wb1woYKFZpWJ1Wju1gycqt5SjJ2 ACl96RgdKly1+RQKYwCptH4t7/GctrrNmsv9hRerN41Fk9frTZR3R5m6k1OMAQPz i4qE/5TW998zmEfrCgv6i4kkPUsWOynesuK6elNLHqDBnPuLvH3J9Fs0VgcRajGF A90V3/SoZYG72LsfzVBJ6ymtSavus38jDG/xD2h6I8HjvBC5yi+7wm+IGgJt2JNT wVZOrVNFLOaoDD18Qyku9XxU23S9VBupaqi0/X8fCKmAZUH27d7+n1b1Kq2Cnb3+ ZRA1aw== -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:03 2025 by rpki-client